Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPFix v2019.8.20.123 by Nicolas Coolman (2019/08/20)
~ Run by barro (Administrator) (10/09/2019 13:02:35)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\barro\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 16299)
---\\ SCRIPT DE L'UTILISATEUR. (169)
script zhpfix SysRestore ShortcutFix EmptyClsid Emptytemp EmptyFlash EmptyPrefetch FirewallRaz O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016] [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468] P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/ O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d HKLM\SOFTWARE\DriverSupport HKLM\SOFTWARE\Segurazo HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 HKLM\SOFTWARE\WOW6432Node\Segurazo HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKCU\SOFTWARE\DriverSupport HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424] O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632] O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344] O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112] O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112] O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376] O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584] O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService c:\program files\bytefence\ByteFenceService.exe HKLM\SYSTEM\CurrentControlSet\Services\DSAO C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC C:\ProgramData\Segurazo\SegurazoIC.exe HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD C:\Program Files (x86)\Segurazo\SegurazoKD.sys HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc C:\Program Files (x86)\Segurazo\SegurazoService.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD C:\ProgramData\Segurazo\SegurazoWD.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder C:\Program Files (x86)\BabylonToolbar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo C:\ProgramData\ByteFence C:\ProgramData\Driver Support C:\ProgramData\OneSafe PC Cleaner C:\ProgramData\PCTonics.com C:\ProgramData\Segurazo C:\Users\barro\AppData\Roaming\PC Speed Maximizer C:\Users\barro\AppData\Roaming\PCTonics.com C:\Users\barro\AppData\Roaming\segurazoclient C:\Users\barro\AppData\Roaming\SegurazoUninstaller C:\Users\barro\AppData\Local\PC_Drivers_Headquarters C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 C:\Users\barro\AppData\Roaming\inst.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.) O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.) SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.) SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.) SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.) SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.) SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.) SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.) SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.) SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.) SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.) SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.) O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0script zhpfix
SysRestore
ShortcutFix
EmptyClsid
Emptytemp
EmptyFlash
EmptyPrefetch
FirewallRaz
O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe
O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe
O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe
O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe
SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe
SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe
SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe
SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys
SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe
SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe
O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe
[MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016]
[MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468]
P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/
O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe
O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe
O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe
O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe
O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe
O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe
O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe
O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe
O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe
O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar
O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar
O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence
O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo
O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer
O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder
HKLM\SOFTWARE\dtc-pr
HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan
HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d
HKLM\SOFTWARE\DriverSupport
HKLM\SOFTWARE\Segurazo
HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8
HKLM\SOFTWARE\WOW6432Node\Segurazo
HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
HKCU\SOFTWARE\DriverSupport
HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport
O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence
O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar
O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions
O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer
O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner
O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com
O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer
O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com
O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient
O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support
O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424]
O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632]
O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344]
O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112]
O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112]
O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376]
O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584]
O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS
HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS
HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32
HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService
c:\program files\bytefence\ByteFenceService.exe
HKLM\SYSTEM\CurrentControlSet\Services\DSAO
C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe
HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC
C:\ProgramData\Segurazo\SegurazoIC.exe
HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD
C:\Program Files (x86)\Segurazo\SegurazoKD.sys
HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc
C:\Program Files (x86)\Segurazo\SegurazoService.exe
HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD
C:\ProgramData\Segurazo\SegurazoWD.exe
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe
C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
C:\Program Files (x86)\BabylonToolbar
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo
C:\ProgramData\ByteFence
C:\ProgramData\Driver Support
C:\ProgramData\OneSafe PC Cleaner
C:\ProgramData\PCTonics.com
C:\ProgramData\Segurazo
C:\Users\barro\AppData\Roaming\PC Speed Maximizer
C:\Users\barro\AppData\Roaming\PCTonics.com
C:\Users\barro\AppData\Roaming\segurazoclient
C:\Users\barro\AppData\Roaming\SegurazoUninstaller
C:\Users\barro\AppData\Local\PC_Drivers_Headquarters
C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32
C:\Users\barro\AppData\Roaming\inst.exe
NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés.
HKLM\SOFTWARE\dtc-pr
HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan
HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.)
O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.)
O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.)
SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.)
SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.)
SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.)
SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.)
SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.)
SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.)
SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.)
SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.)
SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.)
SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.)
O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} . (...) -- (.not file.)
O4 - GS\Desktop [ASPNET]: Aquarium Lab.lnk . (.SeaApple Software - .) C:\Program Files (x86)\AquariumLab\
---\\ LOGICIEL. (5)
DESINSTALLER : BabylonToolbar
DESINSTALLER : ByteFence
DESINSTALLER : Segurazo
DESINSTALLER : SpeedOptimizer
DESINSTALLER : WarThunder
---\\ SERVICE. (24)
ABSENT Service: ByteFenceService [ByteFenceService.exe]
ABSENT Service: DSAO [DriverSupportAOsvc.exe]
ABSENT Service: SegurazoIC [SegurazoIC.exe]
ABSENT Service: SegurazoSvc [SegurazoService.exe]
ABSENT Service: SEGURAZOKD [SegurazoKD.sys]
ABSENT Service: SegurazoWD [SegurazoWD.exe]
ABSENT Service: QHProtected [No File found]
ABSENT Service: RdnaoFlSvc [No File found]
ABSENT Service: ADExchange [No File found]
ABSENT Service: AscFileFilter [No File found]
ABSENT Service: AscRegistryFilter [No File found]
ABSENT Service: cpuz145 [No File found]
ABSENT Service: epp [No File found]
ABSENT Service: GEARAspiWDM [No File found]
ABSENT Service: GoogleChromeElevationService1d55ef55ed3f552 [No File found]
ABSENT Service: IUFileFilter [No File found]
ABSENT Service: IUProcessFilter [No File found]
ABSENT Service: IURegistryFilter [No File found]
ABSENT Service: Iviaspi [No File found]
ABSENT Service: LdBoxDrv [No File found]
ARRETÉ : HKLM\SYSTEM\CurrentControlSet\Services\Samsung Pen Service [No File found]
ABSENT Service: SecDrv [No File found]
ABSENT Service: SlimWareServices [No File found]
ABSENT Service: UCBrowserSvc [No File found]
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (4)
REMPLACÉ Donnée Internet Explorer: http://search.babylon.com/ [HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page]
ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs]
ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs\\Tabs]
ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search\\SearchAssistant]
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (60)
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{03203F1C-2B08-4764-7350-6F4C9BB8B794}
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{515E6D62-7976-151A-212E-3D32C9C6E5EA}
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\stsrvl.exe
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\aria-debug-12112.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\cmdinstall.exe_19-09-09_19.49.55.log.7z
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015_000_vcRuntimeMinimum_x64.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015_001_vcRuntimeAdditional_x64.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120_000_vcRuntimeMinimum_x86.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120_001_vcRuntimeAdditional_x86.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4c.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4d.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4e.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4f.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\sa.E97CB0A1.LogitechCameraController_wd885nsp30hay_1__.Public.InstallAgent.dat
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\StructuredQuery.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\3846C88B.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\GLC1032.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\GLC97D.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\is-085JG.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\is-EGHQP.tmp
DEPLACÉ Fichier Temp*: C:\Users\barro\AppData\Local\Temp\is-N0QLH.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\nstC278.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL12DD.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL199D.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL21C9.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL2984.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL2B92.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL38F.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL4B52.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL5082.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL6097.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL6C5E.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL8B34.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL9A72.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLA96E.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLAF93.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLB935.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLC8BE.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLD846.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF150A718454FDFD40.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF19D6620DF65EC19E.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF3530E6BBD94F102A.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF3E6AE98B295A387A.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF4F265249F7994524.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF5B7786E92D2DDDC5.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF65FA0227E610971B.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF6FC6218E7FF6B1B3.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF7B2C3C354860A166.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF80513810B21ABCC5.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFAB05A86285693293.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFB5528BFED3112CC6.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFBEA6AE2DE780B680.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFD6CAE07974EE5BCF.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFF1D6392E386A115D.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFF2C8895335128003.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\wimboot.txt
---\\ REGISTRE ( Clés, Valeurs, Données ). (46)
ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe]
ABSENT Clé: HKLM\SOFTWARE\dtc-pr
ABSENT Clé: HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
ABSENT Clé: HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan
ABSENT Clé: HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
ABSENT Clé: HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
ABSENT Clé: HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
ABSENT Clé: HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d
ABSENT Clé: HKLM\SOFTWARE\DriverSupport
ABSENT Clé: HKLM\SOFTWARE\Segurazo
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\Segurazo
ABSENT Clé: HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
ABSENT Clé: HKCU\SOFTWARE\DriverSupport
ABSENT Clé: HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
ABSENT Clé: HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport
ABSENT Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\CLSID\BFD98515-CD74-48A4-98E2-13D209E3EE4F}
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé CMH: HKLM64\Software\Classes\Directory\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\DSAO
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
ABSENT Clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32
ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.)]
ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\Intel(R) TPM Provisioning Service
ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\Samsung Pen Service
SUPPRIMÉ Valeur: babylontoolbar [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
---\\ COMMANDE. (4)
~ EmptyCSID: Dossiers CLSID vides supprimés (4)
~ EmptyTemp: Dossier Local temp partiellement vidé (56)
~ EmptyFlash: Dossier FlashPlayer vide.
~ EmptyPrefetch: Fichiers Prefetcher supprimés (261)
---\\ NON TRAITÉ. (7)
script zhpfix SysRestore ShortcutFix EmptyClsid Emptytemp EmptyFlash EmptyPrefetch FirewallRaz O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016] [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468] P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/ O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d HKLM\SOFTWARE\DriverSupport HKLM\SOFTWARE\Segurazo HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 HKLM\SOFTWARE\WOW6432Node\Segurazo HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKCU\SOFTWARE\DriverSupport HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424] O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632] O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344] O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112] O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112] O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376] O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584] O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService c:\program files\bytefence\ByteFenceService.exe HKLM\SYSTEM\CurrentControlSet\Services\DSAO C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC C:\ProgramData\Segurazo\SegurazoIC.exe HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD C:\Program Files (x86)\Segurazo\SegurazoKD.sys HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc C:\Program Files (x86)\Segurazo\SegurazoService.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD C:\ProgramData\Segurazo\SegurazoWD.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder C:\Program Files (x86)\BabylonToolbar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo C:\ProgramData\ByteFence C:\ProgramData\Driver Support C:\ProgramData\OneSafe PC Cleaner C:\ProgramData\PCTonics.com C:\ProgramData\Segurazo C:\Users\barro\AppData\Roaming\PC Speed Maximizer C:\Users\barro\AppData\Roaming\PCTonics.com C:\Users\barro\AppData\Roaming\segurazoclient C:\Users\barro\AppData\Roaming\SegurazoUninstaller C:\Users\barro\AppData\Local\PC_Drivers_Headquarters C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 C:\Users\barro\AppData\Roaming\inst.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.) O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.) SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.) SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.) SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.) SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.) SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.) SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.) SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.) SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.) SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.) SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.) O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0script zhpfix
SysRestore
ShortcutFix
FirewallRaz
[MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe
[MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe
NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés.
***** ~ Fin de rapport terminé en 00h00mn21s
~ Run by barro (Administrator) (10/09/2019 13:02:35)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Certificate ZHPFix: Legal
~ State version : Version OK
~ Report : C:\Users\barro\Desktop\ZHPFix.txt
~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 16299)
---\\ SCRIPT DE L'UTILISATEUR. (169)
script zhpfix SysRestore ShortcutFix EmptyClsid Emptytemp EmptyFlash EmptyPrefetch FirewallRaz O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016] [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468] P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/ O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d HKLM\SOFTWARE\DriverSupport HKLM\SOFTWARE\Segurazo HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 HKLM\SOFTWARE\WOW6432Node\Segurazo HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKCU\SOFTWARE\DriverSupport HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424] O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632] O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344] O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112] O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112] O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376] O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584] O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService c:\program files\bytefence\ByteFenceService.exe HKLM\SYSTEM\CurrentControlSet\Services\DSAO C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC C:\ProgramData\Segurazo\SegurazoIC.exe HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD C:\Program Files (x86)\Segurazo\SegurazoKD.sys HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc C:\Program Files (x86)\Segurazo\SegurazoService.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD C:\ProgramData\Segurazo\SegurazoWD.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder C:\Program Files (x86)\BabylonToolbar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo C:\ProgramData\ByteFence C:\ProgramData\Driver Support C:\ProgramData\OneSafe PC Cleaner C:\ProgramData\PCTonics.com C:\ProgramData\Segurazo C:\Users\barro\AppData\Roaming\PC Speed Maximizer C:\Users\barro\AppData\Roaming\PCTonics.com C:\Users\barro\AppData\Roaming\segurazoclient C:\Users\barro\AppData\Roaming\SegurazoUninstaller C:\Users\barro\AppData\Local\PC_Drivers_Headquarters C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 C:\Users\barro\AppData\Roaming\inst.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.) O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.) SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.) SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.) SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.) SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.) SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.) SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.) SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.) SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.) SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.) SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.) O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0script zhpfix
SysRestore
ShortcutFix
EmptyClsid
Emptytemp
EmptyFlash
EmptyPrefetch
FirewallRaz
O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe
O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe
O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe
O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe
SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe
SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe
SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe
SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys
SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe
SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe
O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe
[MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016]
[MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468]
P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/
O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe
O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe
O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe
O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe
O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe
O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe
O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe
O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe
O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe
O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar
O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar
O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence
O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo
O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer
O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder
HKLM\SOFTWARE\dtc-pr
HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan
HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d
HKLM\SOFTWARE\DriverSupport
HKLM\SOFTWARE\Segurazo
HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8
HKLM\SOFTWARE\WOW6432Node\Segurazo
HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
HKCU\SOFTWARE\DriverSupport
HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport
O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence
O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar
O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions
O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer
O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner
O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com
O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo
O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer
O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com
O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient
O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters
O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support
O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll
O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424]
O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632]
O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344]
O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112]
O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112]
O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376]
O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584]
O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS
HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32
HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS
HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32
HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService
c:\program files\bytefence\ByteFenceService.exe
HKLM\SYSTEM\CurrentControlSet\Services\DSAO
C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe
HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC
C:\ProgramData\Segurazo\SegurazoIC.exe
HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD
C:\Program Files (x86)\Segurazo\SegurazoKD.sys
HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc
C:\Program Files (x86)\Segurazo\SegurazoService.exe
HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD
C:\ProgramData\Segurazo\SegurazoWD.exe
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe
C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
C:\Program Files (x86)\BabylonToolbar
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo
C:\ProgramData\ByteFence
C:\ProgramData\Driver Support
C:\ProgramData\OneSafe PC Cleaner
C:\ProgramData\PCTonics.com
C:\ProgramData\Segurazo
C:\Users\barro\AppData\Roaming\PC Speed Maximizer
C:\Users\barro\AppData\Roaming\PCTonics.com
C:\Users\barro\AppData\Roaming\segurazoclient
C:\Users\barro\AppData\Roaming\SegurazoUninstaller
C:\Users\barro\AppData\Local\PC_Drivers_Headquarters
C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32
C:\Users\barro\AppData\Roaming\inst.exe
NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés.
HKLM\SOFTWARE\dtc-pr
HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan
HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.)
O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.)
O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.)
SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.)
SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.)
SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.)
SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.)
SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.)
SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.)
SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.)
SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.)
SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.)
SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.)
SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.)
SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.)
O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} . (...) -- (.not file.)
O4 - GS\Desktop [ASPNET]: Aquarium Lab.lnk . (.SeaApple Software - .) C:\Program Files (x86)\AquariumLab\
---\\ LOGICIEL. (5)
DESINSTALLER : BabylonToolbar
DESINSTALLER : ByteFence
DESINSTALLER : Segurazo
DESINSTALLER : SpeedOptimizer
DESINSTALLER : WarThunder
---\\ SERVICE. (24)
ABSENT Service: ByteFenceService [ByteFenceService.exe]
ABSENT Service: DSAO [DriverSupportAOsvc.exe]
ABSENT Service: SegurazoIC [SegurazoIC.exe]
ABSENT Service: SegurazoSvc [SegurazoService.exe]
ABSENT Service: SEGURAZOKD [SegurazoKD.sys]
ABSENT Service: SegurazoWD [SegurazoWD.exe]
ABSENT Service: QHProtected [No File found]
ABSENT Service: RdnaoFlSvc [No File found]
ABSENT Service: ADExchange [No File found]
ABSENT Service: AscFileFilter [No File found]
ABSENT Service: AscRegistryFilter [No File found]
ABSENT Service: cpuz145 [No File found]
ABSENT Service: epp [No File found]
ABSENT Service: GEARAspiWDM [No File found]
ABSENT Service: GoogleChromeElevationService1d55ef55ed3f552 [No File found]
ABSENT Service: IUFileFilter [No File found]
ABSENT Service: IUProcessFilter [No File found]
ABSENT Service: IURegistryFilter [No File found]
ABSENT Service: Iviaspi [No File found]
ABSENT Service: LdBoxDrv [No File found]
ARRETÉ : HKLM\SYSTEM\CurrentControlSet\Services\Samsung Pen Service [No File found]
ABSENT Service: SecDrv [No File found]
ABSENT Service: SlimWareServices [No File found]
ABSENT Service: UCBrowserSvc [No File found]
---\\ TÂCHE PLANIFIÉE. (0)
---\\ NAVIGATEUR INTERNET. (4)
REMPLACÉ Donnée Internet Explorer: http://search.babylon.com/ [HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page]
ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs]
ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs\\Tabs]
ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search\\SearchAssistant]
---\\ EXPLORATEUR ( Dossiers, Fichiers ). (60)
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{03203F1C-2B08-4764-7350-6F4C9BB8B794}
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{515E6D62-7976-151A-212E-3D32C9C6E5EA}
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B}
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\stsrvl.exe
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\aria-debug-12112.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\cmdinstall.exe_19-09-09_19.49.55.log.7z
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015_000_vcRuntimeMinimum_x64.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015_001_vcRuntimeAdditional_x64.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120_000_vcRuntimeMinimum_x86.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120_001_vcRuntimeAdditional_x86.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4c.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4d.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4e.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4f.LOG
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\sa.E97CB0A1.LogitechCameraController_wd885nsp30hay_1__.Public.InstallAgent.dat
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\StructuredQuery.log
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\3846C88B.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\GLC1032.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\GLC97D.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\is-085JG.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\is-EGHQP.tmp
DEPLACÉ Fichier Temp*: C:\Users\barro\AppData\Local\Temp\is-N0QLH.tmp
SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\nstC278.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL12DD.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL199D.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL21C9.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL2984.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL2B92.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL38F.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL4B52.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL5082.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL6097.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL6C5E.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL8B34.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL9A72.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLA96E.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLAF93.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLB935.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLC8BE.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLD846.tmp
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF150A718454FDFD40.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF19D6620DF65EC19E.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF3530E6BBD94F102A.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF3E6AE98B295A387A.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF4F265249F7994524.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF5B7786E92D2DDDC5.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF65FA0227E610971B.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF6FC6218E7FF6B1B3.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF7B2C3C354860A166.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF80513810B21ABCC5.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFAB05A86285693293.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFB5528BFED3112CC6.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFBEA6AE2DE780B680.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFD6CAE07974EE5BCF.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFF1D6392E386A115D.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFF2C8895335128003.TMP
DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\wimboot.txt
---\\ REGISTRE ( Clés, Valeurs, Données ). (46)
ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe]
ABSENT Clé: HKLM\SOFTWARE\dtc-pr
ABSENT Clé: HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan
ABSENT Clé: HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan
ABSENT Clé: HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
ABSENT Clé: HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe
ABSENT Clé: HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService
ABSENT Clé: HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d
ABSENT Clé: HKLM\SOFTWARE\DriverSupport
ABSENT Clé: HKLM\SOFTWARE\Segurazo
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8
ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\Segurazo
ABSENT Clé: HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
ABSENT Clé: HKCU\SOFTWARE\DriverSupport
ABSENT Clé: HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8
ABSENT Clé: HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport
ABSENT Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\CLSID\BFD98515-CD74-48A4-98E2-13D209E3EE4F}
ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé CMH: HKLM64\Software\Classes\Directory\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\DSAO
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc
ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer
ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder
ABSENT Clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS
ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32
ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.)]
ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\Intel(R) TPM Provisioning Service
ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\Samsung Pen Service
SUPPRIMÉ Valeur: babylontoolbar [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]
---\\ COMMANDE. (4)
~ EmptyCSID: Dossiers CLSID vides supprimés (4)
~ EmptyTemp: Dossier Local temp partiellement vidé (56)
~ EmptyFlash: Dossier FlashPlayer vide.
~ EmptyPrefetch: Fichiers Prefetcher supprimés (261)
---\\ NON TRAITÉ. (7)
script zhpfix SysRestore ShortcutFix EmptyClsid Emptytemp EmptyFlash EmptyPrefetch FirewallRaz O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016] [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468] P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/ O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d HKLM\SOFTWARE\DriverSupport HKLM\SOFTWARE\Segurazo HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 HKLM\SOFTWARE\WOW6432Node\Segurazo HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKCU\SOFTWARE\DriverSupport HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424] O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632] O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344] O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112] O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112] O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376] O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584] O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService c:\program files\bytefence\ByteFenceService.exe HKLM\SYSTEM\CurrentControlSet\Services\DSAO C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC C:\ProgramData\Segurazo\SegurazoIC.exe HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD C:\Program Files (x86)\Segurazo\SegurazoKD.sys HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc C:\Program Files (x86)\Segurazo\SegurazoService.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD C:\ProgramData\Segurazo\SegurazoWD.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder C:\Program Files (x86)\BabylonToolbar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo C:\ProgramData\ByteFence C:\ProgramData\Driver Support C:\ProgramData\OneSafe PC Cleaner C:\ProgramData\PCTonics.com C:\ProgramData\Segurazo C:\Users\barro\AppData\Roaming\PC Speed Maximizer C:\Users\barro\AppData\Roaming\PCTonics.com C:\Users\barro\AppData\Roaming\segurazoclient C:\Users\barro\AppData\Roaming\SegurazoUninstaller C:\Users\barro\AppData\Local\PC_Drivers_Headquarters C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 C:\Users\barro\AppData\Roaming\inst.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.) O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.) SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.) SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.) SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.) SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.) SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.) SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.) SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.) SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.) SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.) SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.) O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0script zhpfix
SysRestore
ShortcutFix
FirewallRaz
[MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe
[MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe
NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés.
***** ~ Fin de rapport terminé en 00h00mn21s