~ ZHPDiag v2017.9.18.163 Par Nicolas Coolman (2017/09/18) ~ Démarré par eric (Administrator) (2017/09/20 07:21:40) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Certificate ZHPDiag: Illegal ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\eric\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 10 Pro, 64-bit (Build 15063) =>.Microsoft Corporation ---\\ Navigateurs Internet (4) - 0s ~ GCIE: Google Chrome v60.0.3112.78 ~ MFIE: Mozilla Firefox 55.0.3 (x86 fr) ~ MSIE: Microsoft Edge v40 ~ MSIE: Internet Explorer v11.608.15063.0 ---\\ Informations sur les produits Windows (3) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK ---\\ Logiciels de protection (1) - 13s Windows Defender (Activate) (Protection) ---\\ Surveillance de Logiciels (1) - 14s ~ Adobe Flash Player 27 NPAPI (Surveillance) ---\\ Informations sur le système (6) - 0s ~ Operating System: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 8153.24 MB (22% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 18 GB (6%) free of 264 GB : ATTENTION =>Warning Disk Space ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: LAPPAD-NDJIND ~ User Name: eric ~ Logged in as Administrator ---\\ Enumération des unités disques (2) - 0s ~ Drive C: has 18 GB free of 264 GB (System) ~ Drive F: has 44 GB free of 187 GB ---\\ Etat du Centre de Sécurité Windows (7) - 0s [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (25) - 3s [MD5.3AF6D6F752EDE013ED15DFD2D44F8EF9] - 05/09/2017 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [4848960] =>.Microsoft Windows® [MD5.ECB702B8C5650381C0784F1EEABB97BC] - 18/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [68608] =>.Microsoft Corporation [MD5.0242626678C83AE788C655C1990A3CC3] - 28/07/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [318232] =>.Microsoft Windows Publisher® [MD5.9AA7516745C98B81FC10227FF2652391] - 05/09/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [3307008] =>.Microsoft Corporation [MD5.9CDA170849A4F66F4D68B3DBB3AC8394] - 05/09/2017 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [706560] =>.Microsoft Corporation [MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 18/03/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [414208] =>.Microsoft Corporation [MD5.0F9FA6A2D4EAE50393DCE473759A9845] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [661224] =>.Microsoft Windows® [MD5.3F969D5ADEAB3284ABD500B37D74A8F8] - 18/03/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows® [MD5.70E14A01193D817004C0F88E767BC59B] - 19/03/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation [MD5.5A6D591D56791BA63CE73FCAD60D89A1] - 05/09/2017 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\drivers\AFD.sys [610720] =>.Microsoft Windows® [MD5.01733BEEE02E51F712330D5909BD701C] - 18/03/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [29088] =>.Microsoft Windows® [MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 18/03/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation [MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 18/03/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation [MD5.185A4519B7764F4DEF714D890A7A9FD2] - 18/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation [MD5.02B9639D9997E95CDF2F4C4F3BDCC73D] - 20/06/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation [MD5.C6C8315E3262FAE460529C6DA2951682] - 18/03/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation [MD5.DCC05E5EAA580C97F13B434FAFACED85] - 18/03/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation [MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 18/03/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows® [MD5.BAD3C424788BC071C3EC82CFCDA954D2] - 05/09/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation [MD5.075F8C81457804BB79DD33FE69A96C57] - 28/07/2017 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [2327456] =>.Microsoft Windows® [MD5.2CC6C325B271C7CA60F374F8F868CB45] - 18/03/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation [MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 18/03/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation [MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 20/03/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\Windows\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation [MD5.D74756DD1518D28A09CDA99696273FA4] - 01/08/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119712] =>.Microsoft Windows® [MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 18/03/2017 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\Windows\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows® ---\\ Liste des services NT non Microsoft et non désactivés (27) - 8s O23 - Service: BaisvikSoftware Suite Service (BaisvikSoftware Suite Service) . (.Baisvik - BaisvikSoftware Suite Service.) - C:\Program Files (x86)\BaisvikSoftware\SuiteService.exe {7F8276BC4AA97E8E49FBED6A595376F0} O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.® O23 - Service: CRMSvc (CRMSvc) . (.Copyright © 2017 - rpIHHjpXI.) - C:\WINDOWS\CRMSvc.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® O23 - Service: @oem45.inf,%hpservice_desc%;HP Service (hpsrv) . (.HP - HP Service.) - C:\Windows\System32\Hpservice.exe =>.HP O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.® O23 - Service: HPWMISVC (HPWMISVC) . (.HP Inc. - HP WMI Service.) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company® O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation O23 - Service: medERP (medERP) . (.Apache Software Foundation - Commons Daemon Service Runner.) - c:\mederp_server\bin\tomcat7.exe =>.Apache Software Foundation O23 - Service: Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2015 - .) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co.,Ltd.® O23 - Service: My Web Shield Sentinel (mweshield) . (."My Web Shield" - My Web Shield Sentinel.) - C:\Program Files\My Web Shield\mweshield.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield O23 - Service: My Web Shield Consolidator (mweshieldup) . (."My Web Shield" - My Web Shield Consolidator.) - C:\Program Files\My Web Shield\mweshieldup.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG® O23 - Service: (Net Driver HPZ12) . (.Hewlett-Packard - Dot4Net Module.) - C:\Windows\System32\HPZinw12.dll =>.Hewlett-Packard O23 - Service: NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software - Nitro PDF Spool Service.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.® O23 - Service: NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.® O23 - Service: OracleServiceXE (OracleServiceXE) . (.Oracle Corporation - Oracle RDBMS Kernel Executable.) - c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE =>.Oracle Corporation O23 - Service: OracleXETNSListener (OracleXETNSListener) . (.Oracle Corporation - Oracle TNSLSNR Executable.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE =>.Oracle Corporation O23 - Service: (Pml Driver HPZ12) . (.Hewlett-Packard - PmlDrv Module.) - C:\Windows\System32\HPZipm12.dll =>.Hewlett-Packard O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.® O23 - Service: Service KMSELDI (Service KMSELDI) . (.@ByELDI - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.® O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated® O23 - Service: TCPSvc (TCPSvc) . (...) - C:\Users\eric\AppData\Local\Temp\csrss\proxy\Tor\tor.exe O23 - Service: Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC - Unsigned Themes service executable.) - C:\Windows\unsignedthemes.exe =>.The Within Network, LLC® O23 - Service: Windows Defender Helper Service (Windows 1703 Creators Upda (WinDefender) . (...) - C:\Windows\windefender.exe O23 - Service: ZDServ (ZDServ) . (.Copyright (C) 2013 - ZDServ Application.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>.ZTE CORPORATION® ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (40) - 549s SS - Demand [16/09/2017] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SS - Demand [01/05/2016] [ 875616] BaiduPinyin Updater (BaiduPinyinUpdater) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu\BaiduPinyinUpdate\bdupdate.exe =>.Baidu (China) Co., Ltd.® SR - Auto [22/01/2015] [ 1283128] BaisvikSoftware Suite Service (BaisvikSoftware Suite Service) . (.Baisvik.) - C:\Program Files (x86)\BaisvikSoftware\SuiteService.exe {7F8276BC4AA97E8E49FBED6A595376F0} SR - Auto [12/12/2008] [ 238888] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.® SS - Demand [03/09/2015] [ 293272] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX® SS - Auto [16/09/2017] [ 1238528] CRMSvc (CRMSvc) . (.Copyright © 2017.) - C:\WINDOWS\CRMSvc.exe SS - Auto [27/08/2016] [ 153752] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [27/08/2016] [ 153752] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [28/04/2015] [ 1102472] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe =>.Hewlett-Packard Company® SR - Auto [12/10/2016] [ 38728] @oem45.inf,%hpservice_desc%;HP Service (hpsrv) . (.HP.) - C:\Windows\System32\Hpservice.exe =>.HP Inc.® SR - Auto [07/04/2017] [ 33640] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.® SR - Auto [18/04/2016] [ 606224] HPWMISVC (HPWMISVC) . (.HP Inc..) - C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company® SS - Demand [22/10/2004] [ 73728] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe =>.Macrovision Corporation SR - Auto [03/09/2015] [ 359848] Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX® SS - Demand [25/11/2015] [ 3020440] Intel(R) Biometric and Context Agent Service (IntelBCAsvc) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BCA\pabeSvc64.exe =>.Intel(R) Biometric and Context Agent® SR - Auto [04/12/2012] [ 77312] medERP (medERP) . (.Apache Software Foundation.) - c:\mederp_server\bin\tomcat7.exe =>.Apache Software Foundation SR - Auto [23/09/2015] [ 242264] Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2015.) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co.,Ltd.® SS - Demand [24/08/2017] [ 175568] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [31/08/2016] [ 931640] My Web Shield Sentinel (mweshield) . (."My Web Shield".) - C:\Program Files\My Web Shield\mweshield.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield SR - Auto [31/08/2016] [ 348472] My Web Shield Consolidator (mweshieldup) . (."My Web Shield".) - C:\Program Files\My Web Shield\mweshieldup.exe {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield SR - Auto [14/09/2016] [ 805752] @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG® SS - Auto [31/07/2012] [ 50688] (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\HPZinw12.dll =>.Hewlett-Packard SR - Auto [06/05/2015] [ 324760] NitroPDFDriverCreatorReadSpool10 (NitroDriverReadSpool10) . (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 10\NitroPDFDriverService10x64.exe =>.Nitro Software, Inc.® SR - Auto [06/05/2015] [ 418968] NitroUpdateService (NitroUpdateService) . (...) - C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe =>.Nitro Software, Inc.® SS - Disabl [29/05/2014] [ 45568] OracleJobSchedulerXE (OracleJobSchedulerXE) . (...) - c:\oraclexe\app\oracle\product\11.2.0\server\Bin\extjob.exe SS - Demand [29/05/2014] [ 81408] OracleMTSRecoveryService (OracleMTSRecoveryService) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\BIN\omtsreco.exe =>.Oracle Corporation SR - Auto [30/05/2014] [147110912] OracleServiceXE (OracleServiceXE) . (.Oracle Corporation.) - c:\oraclexe\app\oracle\product\11.2.0\server\bin\ORACLE.EXE =>.Oracle Corporation SS - Demand [29/05/2014] [ 83968] (OracleXEClrAgent) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\OraClrAgnt.exe =>.Oracle Corporation SR - Auto [29/05/2014] [ 522240] OracleXETNSListener (OracleXETNSListener) . (.Oracle Corporation.) - C:\oraclexe\app\oracle\product\11.2.0\server\bin\TNSLSNR.EXE =>.Oracle Corporation SS - Auto [31/07/2012] [ 66048] (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\HPZipm12.dll =>.Hewlett-Packard SR - Auto [23/03/2017] [ 324608] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp.® SS - Auto [12/08/2015] [ 985280] Service KMSELDI (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico SR - Auto [08/01/2016] [ 754784] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.® SR - Auto [17/02/2017] [ 278624] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated® SR - Auto [18/09/2017] [ 3282432] TCPSvc (TCPSvc) . (...) - C:\Users\eric\AppData\Local\Temp\csrss\proxy\Tor\tor.exe SS - Demand [21/04/2016] [ 874784] Intel Security True Key (TrueKey) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe =>.McAfee, Inc.® SS - Demand [21/04/2016] [ 15736] Intel Security True Key Scheduler (TrueKeyScheduler) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McTkSchedulerService.exe =>.McAfee, Inc.® SR - Auto [28/02/2015] [ 22184] Unsigned Themes (UnsignedThemes) . (.The Within Network, LLC.) - C:\Windows\unsignedthemes.exe =>.The Within Network, LLC® SR - Auto [ 0] [ 0] Windows Defender Helper Service (Windows 1703 Creators Upda (WinDefender) . (...) - C:\Windows\windefender.exe SR - Auto [24/12/2014] [ 432384] ZDServ (ZDServ) . (.Copyright (C) 2013.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>.ZTE CORPORATION® ---\\ Applications lancées au démarrage du système (29) - 8s O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp.® O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (. - Gestionnaire audio HD Realtek.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe O4 - HKLM\..\RunOnce: [Lahin_Raw_barra_al3eb_b3id_SNJTFHPBUK.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\OHPQYDHLSJ\SNJTFHPBUK.exe O4 - HKLM\..\RunOnce: [LAPPAD-NDJIND] . (...) -- C:\Windows\Temp\g2ED5.tmp.exe O4 - HKCU\..\Run: [Dashlane] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane® O4 - HKCU\..\Run: [DashlanePlugin] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\DashlanePlugin.exe =>.Dashlane® O4 - HKCU\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - HKCU\..\Run: [LCYVPKKQRM.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\KNWJUOJDUG\LCYVPKKQRM.exe O4 - HKCU\..\Run: [8TWeFR2T.exe] . (...) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe O4 - HKCU\..\Run: [jGjlY92aj2JZ.exe] . (...) -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d\jGjlY92aj2JZ.exe O4 - HKCU\..\Run: [CloudNet] . (.EpicNet Inc. - Cloud Net.) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL O4 - HKLM\..\Wow6432Node\Run: [HPMessageService] . (.HP Inc. - HP Message Service.) -- C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe =>.Hewlett-Packard Company® O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files\PowerISO\PWRISOVM.EXE =>.Power Software Limited® O4 - HKLM\..\Wow6432Node\Run: [AccelerometerSysTrayApplet] . (.Hewlett-Packard Company - Hp Accelerometer System Tray.) -- C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe =>.Hewlett-Packard® O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.® O4 - HKLM\..\Wow6432Node\Run: [NoterSave] . (.Copyright © 2017 - NoterSave.) -- C:\Program Files (x86)\NoterSave\NoterSave.exe O4 - HKUS\.DEFAULT\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - HKUS\S-1-5-18\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows® O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [Dashlane] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane® O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [DashlanePlugin] . (.Dashlane, Inc. - Dashlane.) -- C:\Users\eric\AppData\Roaming\Dashlane\DashlanePlugin.exe =>.Dashlane® O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [Free Download Manager] . (.FreeDownloadManager.org - Free Download Manager.) -- C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [LCYVPKKQRM.exe] . (...) -- C:\Users\eric\AppData\Local\Temp\KNWJUOJDUG\LCYVPKKQRM.exe O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [8TWeFR2T.exe] . (...) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [jGjlY92aj2JZ.exe] . (...) -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d\jGjlY92aj2JZ.exe O4 - HKUS\S-1-5-21-4040018575-2137455487-4043523077-1001\..\Run: [CloudNet] . (.EpicNet Inc. - Cloud Net.) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL ---\\ Google Chrome, Démarrage,Recherche,Extensions (38) - 6s G0 - GCSP: Preferences [User Data\Default][HomePage] http://bigpicturepop.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://google.cm =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://ythdqualities.oneted.de G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://logs.dashlane.com =>.Dashlane, Inc G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.cm =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc. G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides} G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs} G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive} G2 - GCE: Preference [User Data\Default] [bdahgdkcmdnbofpaanmjmfjchopeacka] IDM Integration Module =>.IDM Computer Solutions, Inc. G2 - GCE: Preference [User Data\Default] [blhjobkfabeopalncconblmakfcllmhk] =>.alekesxstrelof {Internet Download Manager} G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube} G2 - GCE: Preference [User Data\Default] [eojeoeddgeaeahpmfabdfpfialkoplcb] http://youtubeadblock.net =>Adware.CloudAtlas G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets} G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion} G2 - GCE: Preference [User Data\Default] [gpnhkimbdglndkhfkommdfcfclddonbe] G2 - GCE: Preference [User Data\Default] [libedajeiljdoodmokbppgapcfbignci] SoundCloud Downloader G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet} G2 - GCE: Preference [User Data\Default] [pbdpajcdgknpendpmecafmopknefafha] G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail} G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc. G2 - GCE: Preference [User Data\Default] [ahmpjcflkgiildlgicmcieglgoilbfdp] =>.Free Download Manager G2 - GCE: Preference [User Data\Default] [akjbfncbadcmnkopckegnmjgihagponf] HD for YouTube™ =>.DingoSolutions G2 - GCE: Preference [User Data\Default] [bgnkhhnnamicmpeenaelnjfhikgbkllg] Performix LLC =>.adguard.com {AdBlocker} G2 - GCE: Preference [User Data\Default] [ccpokhmgacfkdaelielfljggjbbmmdpi] Pass downloads to Internet Download Accelerator G2 - GCE: Preference [User Data\Default] [dhdgffkkebhmkfjojejmpbldmpobfkfo] Tampermonkey =>.tampermonkey.net G2 - GCE: Preference [User Data\Default] [fdjamakpfbbddfjaooikfcpapjohcfmg] Dashlane =>.Dashlane, Inc G2 - GCE: Preference [User Data\Default] [hgocelbnbdmphccojflbhmfoiejfjjlk] http://atavi.com/ G2 - GCE: Preference [User Data\Default] [imhlianhlhdicjchlbmbfaefhhjencbe] NewTab G2 - GCE: Preference [User Data\Default] [jkfpchpiljkaemlpmpebnglgkomamfeo] =>.Hewlett-Packard {HP Network} G2 - GCE: Preference [User Data\Default] [jpchabeoojaflbaajmjhfcfiknckabpo] =>.Cifonomag {Atavi} G2 - GCE: Preference [User Data\Default] [lmjnegcaeklhafolokijcfjliaokphfk] Video DownloadHelper =>.Downloadhelper.net G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc. G2 - GCE: Preference [User Data\Default] [pinhfkamckbogjgmbmdkdebbbpnmlaef] Bazz Search ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (12) - 3s P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\clicktoplay-rollout@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_130.dll =>.Adobe Systems Incorporated P2 - FPN: [HKLM] [@baidu.com/BaiduExpert-npplugin] - (.百度在线网络技术(北京)有限公司.) -- C:\Users\eric\AppData\Roaming\Baidu\BDWebAdapter\3.0.359.0\npBDExNP.dll P2 - FPN: [HKLM] [@microsoft.com/Lync,version=15.0] - (.Microsoft.) -- C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll =>.Microsoft P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (...) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (19) - 1s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%68%65%6c%70%65%72%62%61%72.%63%6f%6d/?p=mko_awfzxipyryeqqao2txtgptboxpbnaukw3gsz7dumyk6gyfg3omad4l-xhtqnsvm29zjl8stvufnikjjrjfk6zrjujrbpgorg2by-usevtyrtky9cq_i-9-1jmmnhdjhb5elprtgtg7yeycgmkpargrpcf2qsvmlxhgpgys24f2rrgsnjyprveipedixziw8e0klmdq8,&q={searchterms} =>.SUP.Linkury R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKEY_USERS\S-1-5-21-4040018575-2137455487-4043523077-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve =>.Microsoft Corporation R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.15063.608 (WinBuild.160101.0800)) -- C:\Windows\SysWOW64\ieframe.dll =>.Microsoft Corporation ---\\ Microsoft Edge, Plugin,Favoris,Démarrage,Recherche,Extension (1) - 0s E0 - Microsoft Edge: HKU\S-1-5-21-4040018575-2137455487-4043523077-1001\HomeButtonPage = http://www.yandex.ru/ ---\\ Internet Explorer,Proxy Management (8) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.7.1:8080 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [1192.168.7.1:8080] ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit= F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (33) ---\\ Browser Helper Object de navigateur (BHO) (9) - 1s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.® O2 - BHO: (no name) [64Bits] - {13D67BB7-DB5F-48AA-884D-7A5D94168509} (.Orphan.) O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} (.Orphan.) O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation® O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll =>.Oracle America, Inc.® O2 - BHO: TSWebMon [64Bits] - {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} (.Orphan.) O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll =>.Oracle America, Inc.® O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.HP Inc. - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll =>.Hewlett-Packard Company® ---\\ Raccourcis Global Startup (150) - 45s O4 - GS\Desktop [Administrateur]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe O4 - GS\Desktop [Administrateur]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation® O4 - GS\Desktop [Administrateur]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe O4 - GS\Desktop [Administrateur]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane® O4 - GS\Desktop [Administrateur]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe O4 - GS\Desktop [Administrateur]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.® O4 - GS\Desktop [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Administrateur]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [Administrateur]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe O4 - GS\Desktop [Administrateur]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe O4 - GS\Desktop [Administrateur]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe O4 - GS\Desktop [Administrateur]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions O4 - GS\Desktop [Administrateur]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.® O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrateur]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe O4 - GS\Quicklaunch [Administrateur]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - GS\Quicklaunch [Administrateur]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Administrateur]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.® O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Administrateur]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.® O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrateur]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com O4 - GS\TaskBar [Administrateur]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group® O4 - GS\TaskBar [Administrateur]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd® O4 - GS\Startup [Administrateur]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation O4 - GS\Programs [Administrateur]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation O4 - GS\Programs [Administrateur]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Programs [Administrateur]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe O4 - GS\Desktop [eric]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe O4 - GS\Desktop [eric]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation® O4 - GS\Desktop [eric]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe O4 - GS\Desktop [eric]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane® O4 - GS\Desktop [eric]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe O4 - GS\Desktop [eric]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.® O4 - GS\Desktop [eric]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [eric]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [eric]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe O4 - GS\Desktop [eric]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe O4 - GS\Desktop [eric]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe O4 - GS\Desktop [eric]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions O4 - GS\Desktop [eric]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.® O4 - GS\Desktop [eric]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [eric]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe O4 - GS\Quicklaunch [eric]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - GS\Quicklaunch [eric]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe O4 - GS\Quicklaunch [eric]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [eric]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.® O4 - GS\sendTo [eric]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [eric]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [eric]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.® O4 - GS\sendTo [eric]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [eric]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [eric]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com O4 - GS\TaskBar [eric]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group® O4 - GS\TaskBar [eric]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd® O4 - GS\Startup [eric]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation O4 - GS\Programs [eric]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation O4 - GS\Programs [eric]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe O4 - GS\Programs [eric]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Programs [eric]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe O4 - GS\Desktop [openpgsvc]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe O4 - GS\Desktop [openpgsvc]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation® O4 - GS\Desktop [openpgsvc]: CVitae 5.lnk . (...) C:\Users\eric\AppData\Roaming\Microsoft\Installer\{5988C473-7D71-4B59-857B-8DA5C701FBFF}\_0844F546BD9789DAA2ED62.exe O4 - GS\Desktop [openpgsvc]: Dashlane.lnk . (.Dashlane, Inc. - Dashlane.) C:\Users\eric\AppData\Roaming\Dashlane\Dashlane.exe =>.Dashlane® O4 - GS\Desktop [openpgsvc]: FlashBoot.lnk . (.Copyright (C) 2005-2013 Mikhail Kupchik - FlashBoot GUI Application.) C:\Program Files\FlashBoot\fb-gui.exe O4 - GS\Desktop [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.® O4 - GS\Desktop [openpgsvc]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [openpgsvc]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [openpgsvc]: Jargon Informatique.lnk . (...) C:\Program Files (x86)\Jargon Informatique\jargoninformatique.exe O4 - GS\Desktop [openpgsvc]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe O4 - GS\Desktop [openpgsvc]: Sparkle.lnk . (...) C:\Program Files (x86)\Sparkle\sparkle.exe O4 - GS\Desktop [openpgsvc]: VirtualDJ 8.lnk . (.Atomix Productions - VirtualDJ.) C:\Program Files (x86)\VirtualDJ\virtualdj8.exe =>.Atomix Productions O4 - GS\Desktop [openpgsvc]: WhatsApp.lnk . (...) C:\Users\eric\AppData\Local\WhatsApp\Update.exe --processStart WhatsApp.exe =>.WhatsApp, Inc.® O4 - GS\Desktop [openpgsvc]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\eric\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [openpgsvc]: AAA Logo.lnk . (.Copyright (C) 2013 SWGSoft - jeta-aaalogo.) C:\Program Files (x86)\AAALOGO\alogo.exe O4 - GS\Quicklaunch [openpgsvc]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - GS\Quicklaunch [openpgsvc]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe O4 - GS\Quicklaunch [openpgsvc]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [openpgsvc]: Web Navigation.lnk . (...) C:\Program Files (x86)\USB Disk Security\linkzb.exe =>.Lanzhou Itanium Software Technology Co., Ltd.® O4 - GS\sendTo [openpgsvc]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [openpgsvc]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files (x86)\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd.® O4 - GS\sendTo [openpgsvc]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [openpgsvc]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [openpgsvc]: Adobe Photoshop CS6 Portable.lnk . (.PortableAppZ.blogspot.com - Adobe Photoshop CS6 Portable.) F:\PhotoshopPortable\PhotoshopCS6Portable.exe =>.PortableAppZ.blogspot.com O4 - GS\TaskBar [openpgsvc]: RevoUPort.lnk . (.VS Revo Group - .) C:\Users\eric\Desktop\projet de gestion de centre de sante\RevoUninstaller_Portable\RevoUninstaller_Portable\RevoUPort.exe =>.VS Revo Group® O4 - GS\TaskBar [openpgsvc]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd® O4 - GS\Startup [openpgsvc]: Envoyer à OneNote.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office16\ONENOTEM.EXE /tsr =>.Microsoft Corporation O4 - GS\Programs [openpgsvc]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation O4 - GS\Programs [openpgsvc]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe O4 - GS\Programs [openpgsvc]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Programs [openpgsvc]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe O4 - GS\CommonDesktop [Public]: 38 Dictionnaires et Recueils de Correspondance.lnk . (.L'Aventure Multimedia - .) C:\Program Files (x86)\Micro Application\38 Dictionnaires et Recueils de Correspondance\LanceMediaDICO38.exe =>.L'Aventure Multimedia O4 - GS\CommonDesktop [Public]: FileZilla Client.lnk . (.FileZilla Project - FileZilla FTP Client.) C:\Program Files\FileZilla FTP Client\filezilla.exe =>.Tim Kosse® O4 - GS\CommonDesktop [Public]: Free Download Manager 5.lnk . (.FreeDownloadManager.org - Free Download Manager.) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe =>.Softdeluxe Ltd.® O4 - GS\CommonDesktop [Public]: GanttProject.lnk . (...) C:\Program Files (x86)\GanttProject-2.8\ganttproject.exe O4 - GS\CommonDesktop [Public]: GESCMS.lnk . (.pad - .) C:\Program Files (x86)\GESCMS\GESCMS.exe O4 - GS\CommonDesktop [Public]: Get Started With Oracle Database 11g Express Edition .lnk . (...) C:\oraclexe\app\oracle\product\11.2.0\server\Get_Started.url O4 - GS\CommonDesktop [Public]: HP Support Assistant.lnk . (.HP Inc. - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /p 2 =>.HP Inc.® O4 - GS\CommonDesktop [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: NetBeans IDE 8.0.2.lnk . (.Oracle Corporation - .) C:\Program Files (x86)\NetBeans 8.0.2\bin\netbeans64.exe =>.Oracle Corporation O4 - GS\CommonDesktop [Public]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF O4 - GS\CommonDesktop [Public]: PowerISO.lnk . (.Power Software Ltd - PowerISO.) C:\Program Files\PowerISO\PowerISO.exe =>.Power Software Ltd O4 - GS\CommonDesktop [Public]: UmmyVideoDownloader.lnk . (.Magicbit, Inc - Ummy Video Downloader.) C:\Users\eric\AppData\Local\UmmyVideoDownloader\UmmyVideoDownloader.exe =>.SUP.Magicbit O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe =>.Microsoft Corporation O4 - GS\Programs [Public]: Messenger.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Messenger.exe O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\eric\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Programs [Public]: Uninstall Messenger for Desktop.lnk . (...) C:\Program Files (x86)\Messenger for Desktop\Uninstall Messenger for Desktop.exe O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\Windows\system32\quickassist.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\Windows\system32\psr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\accicons.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Adobe Application Manager.lnk . (...) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe --appletID=CCM_UI --appletVersion=1.0 --workflow=CCM_workflow_launch O4 - GS\ProgramsCommon [Public]: Adobe Dreamweaver CC.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CC.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CC\Dreamweaver.exe =>.Adobe Systems Incorporated® O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: DTS Audio Control.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\System32\rundll32.exe shell32.dll,Control_RunDLL RTSnMg64.cpl,, =>..Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Enregistrement OCR I.R.I.S..lnk . (.I.R.I.S. Image Recognition Integarted Systems - Registration Wizard.) C:\Program Files (x86)\HP\IrisOCR_12.3.4.0\regipe.exe =>.IMAGE RECOGNITION INTEGRATED SYSTEMS SA® O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\xlicons.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\Windows\System32\Control.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\Windows\MiracastView\MiracastView.exe =>.Microsoft Windows® O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\ProgramsCommon [Public]: Nitro Pro 10.lnk . (.Nitro PDF - .) C:\Program Files (x86)\Nitro\Pro 10\NitroPDF.exe =>.Nitro PDF O4 - GS\ProgramsCommon [Public]: OneDrive Entreprise.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\grv_icons.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\joticon.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\outicon.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\Windows\PrintDialog\PrintDialog.exe =>.Microsoft Windows® O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\pubs.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Skype Entreprise 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\lyncicon.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Sublime Text 3.lnk . (.Copyright (C) 2006 - 2016 Sublime HQ Pty Ltd - Sublime Text.) C:\Program Files\Sublime Text 3\sublime_text.exe =>.Sublime HQ Pty Ltd® O4 - GS\ProgramsCommon [Public]: True Key.lnk . (...) C:\Program Files\Intel Security\True Key\Application\truekey.exe --open-source=startmenu =>.McAfee, Inc.® O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (...) C:\WINDOWS\Installer\{90160000-0011-0000-1000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation® ---\\ Modification Domaine/Adresses DNS (7) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = portdedouala.lan =>.Local Domain O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = portdedouala.lan =>.Local Domain O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.194.1.2 192.168.20.150 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{6fa96e37-86a5-4d12-92ea-34505b7285a0}: DhcpNameServer = 192.168.42.129 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{942905e8-b196-46fd-8774-2f72973ad90e}: DhcpNameServer = 194.194.1.2 192.168.20.150 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{dce7f7f0-d520-4177-bdd6-2dccc73654c7}: DhcpNameServer = 192.168.43.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{942905e8-b196-46fd-8774-2f72973ad90e}: DhcpDomain = portdedouala.lan =>.Local Domain ---\\ Protocole additionnel (25) - 2s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: mso-minsb.16 [64Bits] - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s O20 - AppInit_DLLs: . (...) - C:\ProgramData\xifs\Dingjob.dll (.not file.) ---\\ Logiciels installés (142) - 76s O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {3138F992-045B-4F55-825C-53B231E647CA} =>.Hewlett-Packard O42 - Logiciel: AAA Logo 2014 v4.11 FULL - (.SWGSoft.) [HKLM][64Bits] -- AAA Logo 2014_is1 =>.SWGSoft O42 - Logiciel: Adobe Dreamweaver CC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {00E094E1-A852-11E2-803D-ACEA632352B4} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Flash Player 27 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {07287123-B8AC-41CE-8346-3D777245C35B} =>.Apple Inc. O42 - Logiciel: CloudNet - (.EpicNet Inc..) [HKCU][64Bits] -- CloudNet =>Adware.MSIL O42 - Logiciel: ContentPush - (..) [HKLM][64Bits] -- ContentPush O42 - Logiciel: CVitae 5 - (.Semantis.) [HKLM][64Bits] -- {5988C473-7D71-4B59-857B-8DA5C701FBFF} =>.Semantis O42 - Logiciel: Dashlane - (.Dashlane, Inc..) [HKCU][64Bits] -- Dashlane =>.Dashlane, Inc. O42 - Logiciel: Driver Fixer - (.Baisvik.) [HKLM][64Bits] -- {4F679D8F-2F0A-46EE-BB8C-903E217CEC9E} O42 - Logiciel: DriverPack Notifier - (.DriverPack Solution.) [HKLM][64Bits] -- DriverPack Notifier =>.DriverPack Solution O42 - Logiciel: FastDataX 1.20 - (..) [HKLM][64Bits] -- FastDataX_is1 =>Adware.FastDataX O42 - Logiciel: FileZilla Client 3.25.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse O42 - Logiciel: FlashBoot 2.2e - (.Mikhail Kupchik.) [HKLM][64Bits] -- FlashBoot_is1 =>.Mikhail Kupchik O42 - Logiciel: FormatFactory 4.1.0.0 - (.Free Time.) [HKLM][64Bits] -- FormatFactory =>.Free Time O42 - Logiciel: Free Download Manager - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- {43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1 =>.FreeDownloadManager.org O42 - Logiciel: GanttProject - (..) [HKLM][64Bits] -- GanttProject O42 - Logiciel: GESCMS - (.PC SOFT.) [HKLM][64Bits] -- GESCMS =>.PC SOFT O42 - Logiciel: GlassFish Server Open Source Edition 4.1 - (.Sun Microsystems.) [HKLM][64Bits] -- nbi-glassfish-mod-4.1.0.13.0 =>.Sun Microsystems O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc® O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: gupdate 2.00 - (.xtex.) [HKLM][64Bits] -- gupdate 2.00 =>Adware.GUpdate O42 - Logiciel: Hi uninstall - (.Hi-Rez studios Games.) [HKLM][64Bits] -- Hiru O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E8D0E2B8-B64B-44BC-8E01-00DDACBDF78A} =>.Hewlett-Packard Company O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {0CC8AE1D-F5AA-4143-8FAD-E017E0E9EE70} =>.Hewlett-Packard O42 - Logiciel: HP PC Hardware Diagnostics UEFI - (..) [HKLM][64Bits] -- {924D3ABC-FC75-4042-9DDB-FB846A45848D} O42 - Logiciel: HP Support Assistant - (.HP.) [HKLM][64Bits] -- {78E2C850-ADA6-420D-BA35-2F4A9BE733CC} =>.HP O42 - Logiciel: HP Support Solutions Framework - (.HP.) [HKLM][64Bits] -- {EB72DB50-C935-4C26-8349-69828F198902} =>.HP O42 - Logiciel: HP System Event Utility - (.HP Inc..) [HKLM][64Bits] -- {29E20347-C62F-4657-938E-876A182B67F1} =>.HP Inc. O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard O42 - Logiciel: I.R.I.S. OCR - (.HP.) [HKLM][64Bits] -- {CA6BCA2F-EDEB-408F-850B-31404BE16A61} =>.HP O42 - Logiciel: Intel Security True Key - (.Intel Security.) [HKLM][64Bits] -- TrueKey =>.McAfee, Inc.® O42 - Logiciel: Intel(R) Biometric and Context Agent - (.Intel Corporation.) [HKLM][64Bits] -- {526002E5-7D5B-4703-A4E3-BA566AED5D8A} =>.Intel Corporation O42 - Logiciel: Intel(R) Biometric and Context Agent Redistributables - (.Intel Corporation.) [HKLM][64Bits] -- {E6D505B9-1A18-4F67-9BE0-D37B5164D581} =>.Intel Corporation O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX® O42 - Logiciel: Intel® RealSense™ SDK 2014 Runtime (x64): Core - (.Intel Corporation.) [HKLM][64Bits] -- {37D41A97-6B02-4C30-8753-85107BE1D674} =>.Intel Corporation O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.® O42 - Logiciel: Jargon Informatique - (.tuxfamily.org.) [HKLM][64Bits] -- Jargon Informatique O42 - Logiciel: Java 8 Update 141 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180141F0} =>.Oracle Corporation O42 - Logiciel: Java 8 Update 144 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F32180144F0} =>.Oracle Corporation O42 - Logiciel: Java 8 Update 144 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F64180144F0} =>.Oracle Corporation O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation O42 - Logiciel: Java SE Development Kit 7 Update 45 - (.Oracle.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0170450} =>.Oracle O42 - Logiciel: Java SE Development Kit 8 Update 141 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180141} =>.Oracle Corporation O42 - Logiciel: Java SE Development Kit 8 Update 144 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180144} =>.Oracle Corporation O42 - Logiciel: Java SE Development Kit 8 Update 45 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180450} =>.Oracle Corporation O42 - Logiciel: Java SE Development Kit 8 Update 73 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {64A3A4F4-B792-11D6-A78A-00B0D0180730} =>.Oracle Corporation O42 - Logiciel: K-Lite Codec Pack 13.4.5 Full - (.KLCP.) [HKLM][64Bits] -- KLiteCodecPack_is1 =>.KLCP O42 - Logiciel: KMSpico - (..) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico O42 - Logiciel: Macromedia Extension Manager - (.Macromedia.) [HKLM][64Bits] -- {3C8C9FB3-5FDF-40B4-B314-EAD722728C76} =>.Macromedia O42 - Logiciel: Micro Application - 38 Dictionnaires et Recueils de Correspondance - (.Micro Application.) [HKLM][64Bits] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0} =>.Micro Application O42 - Logiciel: Microsoft Access MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0015-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft DCF MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0090-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Excel MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0016-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {F2508213-9989-4E85-A078-72BE483917EF} =>.Microsoft Corporation O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} =>.Microsoft Corporation O42 - Logiciel: Microsoft Groove MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00BA-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft InfoPath MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0044-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation® O42 - Logiciel: Microsoft OneNote MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Outlook MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001A-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft PowerPoint MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0018-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Publisher MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0019-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Skype for Business MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Word MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001B-040C-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Mobile Broadband HL Service - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Mobile Broadband HL Service =>.Huawei Technologies Co., Ltd.® O42 - Logiciel: Mozilla Firefox 55.0.3 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 55.0.3 (x86 fr) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D4BD27CF-BFBC-11E3-9B8F-F04DA23A5C58} =>.Sony Creative Software Inc. O42 - Logiciel: Music Recorder - (.Nero AG.) [HKLM][64Bits] -- {94A4AE85-9F1D-4687-953F-38371C9D1A4F} =>.Nero AG O42 - Logiciel: My Web Shield - (.My Web Shield.) [HKLM][64Bits] -- mweshield {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield O42 - Logiciel: Nero 2017 - (.Nero AG.) [HKLM][64Bits] -- {6B81BDC4-3368-4898-8F16-48962F789221} =>.Nero AG O42 - Logiciel: Nero 2017 Content Pack - (.Nero AG.) [HKLM][64Bits] -- {4E6D3A36-4558-466D-83CC-AE2DCAC06C53} =>.Nero AG O42 - Logiciel: Nero Abstract Themes - (.Nero AG.) [HKLM][64Bits] -- {150D88F1-40AF-4678-A39D-BCE2332F34E5} =>.Nero AG O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM][64Bits] -- {6DAEECA5-8208-47DA-82AA-6B653EC31B97} =>.Nero AG O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {A4BF6CA6-18AB-4C1A-8E2E-FB9485149DC9} =>.Nero AG O42 - Logiciel: Nero Cliparts - (.Nero AG.) [HKLM][64Bits] -- {29E2C1C6-D76A-41D3-980F-6E346AA9A6A8} =>.Nero AG O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63} =>.Nero AG O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263} =>.Nero AG O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {D8CCA6A9-E0CA-4589-BA17-54C909B1C8B5} =>.Nero AG O42 - Logiciel: Nero Device Updates - (.Nero AG.) [HKLM][64Bits] -- {521087D5-A9CC-4434-9206-FA011ABBDCF3} =>.Nero AG O42 - Logiciel: Nero Disc Menus 1 - (.Nero AG.) [HKLM][64Bits] -- {EEBF1676-AF87-4266-93D8-0C14A34C4217} =>.Nero AG O42 - Logiciel: Nero Disc Menus 2 - (.Nero AG.) [HKLM][64Bits] -- {FE81E6B5-652B-40E7-B3B2-7171C6F297DA} =>.Nero AG O42 - Logiciel: Nero Disc Menus 3 - (.Nero AG.) [HKLM][64Bits] -- {CE675FBD-75C3-45F1-B6AF-8D250861D536} =>.Nero AG O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74} =>.Nero AG O42 - Logiciel: Nero Disc to Device - (.Nero AG.) [HKLM][64Bits] -- {6E6D453B-AADE-4F14-97F6-9B464488BC53} =>.Nero AG O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B} =>.Nero AG O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {991572A1-F8B9-42E5-B485-A79724558A84} =>.Nero AG O42 - Logiciel: Nero Family and Events Themes - (.Nero AG.) [HKLM][64Bits] -- {955BF340-C379-4375-AA2F-F3BCB2A498AB} =>.Nero AG O42 - Logiciel: Nero Football (Soccer) Themes - (.Nero AG.) [HKLM][64Bits] -- {7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23} =>.Nero AG O42 - Logiciel: Nero Holiday and Sports Themes - (.Nero AG.) [HKLM][64Bits] -- {504D84ED-AE75-4F85-A68B-BB3D4CB3E169} =>.Nero AG O42 - Logiciel: Nero Image Samples - (.Nero AG.) [HKLM][64Bits] -- {C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A} =>.Nero AG O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {F030BFE8-8476-4C08-A553-233DE80A2BE1} =>.Nero AG O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D} =>.Nero AG O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {21916D21-F3DD-44F9-952B-FD122CBD1526} =>.Nero AG O42 - Logiciel: Nero MediaHome - (.Nero AG.) [HKLM][64Bits] -- {DF4748D8-2FC2-4D51-87D0-95A81CCA962B} =>.Nero AG O42 - Logiciel: Nero PiP Effects 1 - (.Nero AG.) [HKLM][64Bits] -- {4D25D881-7183-462F-95C8-990CA1944E0B} =>.Nero AG O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26} =>.Nero AG O42 - Logiciel: Nero Platinum Effects 12 - (.Nero AG.) [HKLM][64Bits] -- {8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1} =>.Nero AG O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {47C00502-CFAC-42D3-8019-D9C557AD49AD} =>.Nero AG O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {D740FC18-FAB2-4DE1-A9F5-E7B81A578CCF} =>.Nero AG O42 - Logiciel: Nero Retro Film Themes - (.Nero AG.) [HKLM][64Bits] -- {83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588} =>.Nero AG O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0} =>.Nero AG O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} =>.Nero AG O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM][64Bits] -- {EBFB4FEE-C2EB-4EE3-A832-DB850DE54F78} =>.Nero AG O42 - Logiciel: Nero Video Samples - (.Nero AG.) [HKLM][64Bits] -- {05C6B128-1B40-4495-9CB9-090B368BFA0A} =>.Nero AG O42 - Logiciel: Nero Video Transitions 1 - (.Nero AG.) [HKLM][64Bits] -- {22856BC3-F893-4CBF-95F2-E1F63CD2B1AB} =>.Nero AG O42 - Logiciel: NetBeans IDE 8.0.2 - (.NetBeans.org.) [HKLM][64Bits] -- nbi-nb-base-8.0.2.0.201411181905 =>.NetBeans.org O42 - Logiciel: NewBlue Video Essentials VI for Windows - (.NewBlue.) [HKLM][64Bits] -- NewBlue Video Essentials VI for Windows =>.NewBlue O42 - Logiciel: Nitro Pro 10 - (.Nitro.) [HKLM][64Bits] -- {C78478E6-8206-470E-B843-0204995371C6} =>.Nitro O42 - Logiciel: NoterSave version 1.0 - (.WeMonetize.) [HKLM][64Bits] -- NoterSave_is1 =>.SUP.Tuto4PC O42 - Logiciel: Oracle Database 11g Express Edition - (.Oracle Corporation.) [HKLM][64Bits] -- {05A7B662-80A3-4EB9-AE1D-89A62449431C} =>.Oracle Corporation O42 - Logiciel: Oracle Database 11g Express Edition - (.Oracle Corporation.) [HKLM][64Bits] -- InstallShield_{05A7B662-80A3-4EB9-AE1D-89A62449431C} =>.Oracle Corporation O42 - Logiciel: Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass ( - (.Google, Inc..) [HKLM][64Bits] -- 092555911492C6959D2596D612F52DCA71881CA2 =>.Google, Inc. O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO =>.Power Software Ltd O42 - Logiciel: Prerequisite installer - (.Nero AG.) [HKLM][64Bits] -- {EB511CD1-C87C-490D-A7B1-D6C47F57820F} =>.Nero AG O42 - Logiciel: Progr. désin. pilote d'impr. UFR II - (.Canon Inc..) [HKLM][64Bits] -- Canon UFR II Printer Driver =>.CANON INC.® O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {410F406E-7AFC-4E9F-BF7E-0CB3C72BDAB9} =>.RealNetworks, Inc. O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp.® O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp® O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.® O42 - Logiciel: Reload Icons Cache 1.00 - (.Mr Blade Design's.) [HKLM][64Bits] -- Reload Icons Cache 1.00 =>.Mr Blade Design's O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.® O42 - Logiciel: Security Update for Skype for Business 2016 (KB3115408) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{C5C666D0-D5BD-4FE8-BE51-938926DC58E1} =>.Microsoft Corporation® O42 - Logiciel: Security Update for Skype for Business 2016 (KB4011040) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{D57DBD71-B426-45C4-9B1D-6347DE27B73D} =>.Microsoft Corporation® O42 - Logiciel: Security Update for Skype for Business 2016 (KB4011040) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{D57DBD71-B426-45C4-9B1D-6347DE27B73D} =>.Microsoft Corporation® O42 - Logiciel: Sublime Text Build 3065 - (.Sublime HQ Pty Ltd.) [HKLM][64Bits] -- Sublime Text 3_is1 =>.Sublime HQ Pty Ltd® O42 - Logiciel: SWI-Prolog (remove only) - (..) [HKLM][64Bits] -- SWI-Prolog O42 - Logiciel: Sybase PowerAMC 15.1 - (.Sybase Inc..) [HKLM][64Bits] -- {48B0BE4A-EDC9-44C4-A3DB-67D62D75961F} =>.Macrovision Corporation® O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated® O42 - Logiciel: UmmyVideoDownloader - (..) [HKLM][64Bits] -- {E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1 O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM][64Bits] -- USB Disk Security_is1 =>.Zbshareware Lab O42 - Logiciel: UxStyle - (.The Within Network, LLC.) [HKLM][64Bits] -- {28A17CCB-77BB-49C9-847B-60E076DC43D1} =>.The Within Network, LLC O42 - Logiciel: UxStyle - (.The Within Network, LLC.) [HKLM][64Bits] -- {6bf90d91-c5db-454e-a7b4-81bc6cbbe13f} =>.The Within Network, LLC® O42 - Logiciel: VirtualDJ 8 - (.Atomix Productions.) [HKLM][64Bits] -- {F7A68F9D-BBF0-48FF-B138-2EFB5165638C} =>.Atomix Productions O42 - Logiciel: vs2015_redist x64 - (.Realnetworks.) [HKLM][64Bits] -- {EAED8692-5B63-4665-B857-D626633691DA} =>.RealNetworks O42 - Logiciel: vs2015_redist x86 - (.Realnetworks.) [HKLM][64Bits] -- {BD46163A-0331-4A61-B65A-7B66D7C93F8E} =>.RealNetworks O42 - Logiciel: WhatsApp - (.WhatsApp.) [HKCU][64Bits] -- WhatsApp =>.WhatsApp, Inc.® O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: Yubby - (.CRM Ltd.) [HKLM][64Bits] -- {D105DFE2-8DF6-4BA0-ABF1-392716658963} O42 - Logiciel: ZDServer - (.ZTE Corporation.) [HKLM][64Bits] -- {C8197F5F-E0DC-44f1-8AF2-1AA5A84F695D} =>.ZTE CORPORATION® O42 - Logiciel: ZTE Mobile Broadband Device Drivers 1.0.0.17 - (.ZTE.) [HKLM][64Bits] -- {9194B665-5134-4B6B-AD73-A5292CB072D3}_is1 =>.ZTE ---\\ HKCU & HKLM Software Keys (229) - 76s HKLM\SOFTWARE\Wow6432Node\89078A9FA5262B8AF87E572E4F3BA9D1 =>Adware.CrossRider HKLM\SOFTWARE\Wow6432Node\Apache Software Foundation =>.Apache Inc. HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. =>.Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc. HKLM\SOFTWARE\Wow6432Node\Atonitherlibution HKLM\SOFTWARE\Wow6432Node\Baidu =>.Baidu HKLM\SOFTWARE\Wow6432Node\BaisvikSoftware HKLM\SOFTWARE\Wow6432Node\BSD =>.Berkeley HKLM\SOFTWARE\Wow6432Node\C+W_Mini HKLM\SOFTWARE\Wow6432Node\CDDB =>.Cddb Software HKLM\SOFTWARE\Wow6432Node\Connectify =>.Connectify HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions =>.Cygnus Solutions HKLM\SOFTWARE\Wow6432Node\Disk Doctor Labs Inc. HKLM\SOFTWARE\Wow6432Node\drpsu =>.Driver PackSolution HKLM\SOFTWARE\Wow6432Node\DT Soft =>.DT Soft Ltd HKLM\SOFTWARE\Wow6432Node\EA Games =>.EA Games HKLM\SOFTWARE\Wow6432Node\EASEUS =>.EaseUS Software HKLM\SOFTWARE\Wow6432Node\FileZilla 3 =>.FileZilla HKLM\SOFTWARE\Wow6432Node\FileZilla Client =>.Tim Kosse HKLM\SOFTWARE\Wow6432Node\FreeDownloadManager.ORG =>.FreeDownloadManager.org HKLM\SOFTWARE\Wow6432Node\GanttProject HKLM\SOFTWARE\Wow6432Node\Google =>.Google HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\Huawei technologies =>.Huawei Technologies HKLM\SOFTWARE\Wow6432Node\Icaros =>.Icaros HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel HKLM\SOFTWARE\Wow6432Node\Intel Security =>.Intel Security HKLM\SOFTWARE\Wow6432Node\Internet Download Manager =>.Tonec Inc HKLM\SOFTWARE\Wow6432Node\IObit =>.IObit HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft HKLM\SOFTWARE\Wow6432Node\jawego =>.SUP.JawegoPartners HKLM\SOFTWARE\Wow6432Node\JetBrains =>.JetBrains HKLM\SOFTWARE\Wow6432Node\jhdbca HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos HKLM\SOFTWARE\Wow6432Node\KLCodecPack =>.KLite Inc HKLM\SOFTWARE\Wow6432Node\Komeent HKLM\SOFTWARE\Wow6432Node\LAV =>.LAV Inc HKLM\SOFTWARE\Wow6432Node\Lavasoft =>.Lavasoft HKLM\SOFTWARE\Wow6432Node\LAventure =>.L'Aventure HKLM\SOFTWARE\Wow6432Node\Licenses =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard =>.LogMeIn Entreprise HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia HKLM\SOFTWARE\Wow6432Node\McAfee =>.McAfee Inc. HKLM\SOFTWARE\Wow6432Node\McAfee.com =>.McAfee Inc. HKLM\SOFTWARE\Wow6432Node\Micro Application =>.Micro Application HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\Wow6432Node\mtAirtostrong =>PUP.Optional.Salus HKLM\SOFTWARE\Wow6432Node\mtocep HKLM\SOFTWARE\Wow6432Node\mtRonzap =>PUP.Optional.Salus HKLM\SOFTWARE\Wow6432Node\mtxifs HKLM\SOFTWARE\Wow6432Node\MySQL AB =>.MySQL AB HKLM\SOFTWARE\Wow6432Node\Namco HKLM\SOFTWARE\Wow6432Node\Nero =>.Ahead Corporation HKLM\SOFTWARE\Wow6432Node\NewBlue =>.NewBlue HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\Wow6432Node\OpenVPN-GUI =>.OpenVPN Technologie HKLM\SOFTWARE\Wow6432Node\ORACLE =>.Oracle HKLM\SOFTWARE\Wow6432Node\PostgreSQL =>.PostgreSQL HKLM\SOFTWARE\Wow6432Node\PostgreSQL Global Development Group =>.PostgreSQL Global Development Group HKLM\SOFTWARE\Wow6432Node\PowerISO =>.PowerISO Computing HKLM\SOFTWARE\Wow6432Node\PowerPivot =>.PowerPivot HKLM\SOFTWARE\Wow6432Node\PowerTechnology =>.PowerTechnology HKLM\SOFTWARE\Wow6432Node\Razer =>.Razer HKLM\SOFTWARE\Wow6432Node\RealNetworks =>.RealNetworks HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Rene.E Laboratory =>.Rene.E Laboratory HKLM\SOFTWARE\Wow6432Node\Rtp =>.RTP Software HKLM\SOFTWARE\Wow6432Node\Samsung =>.Samsung Electronics HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype HKLM\SOFTWARE\Wow6432Node\Sony Creative Software =>.Sony Creative Software HKLM\SOFTWARE\Wow6432Node\SOSVirus =>.SosVirus HKLM\SOFTWARE\Wow6432Node\Speedownloader0099 =>PUP.Optional.SoftwareEngine HKLM\SOFTWARE\Wow6432Node\SuperBoost =>.QiWang HKLM\SOFTWARE\Wow6432Node\SWI HKLM\SOFTWARE\Wow6432Node\Sybase HKLM\SOFTWARE\Wow6432Node\Symantec =>.Symantec HKLM\SOFTWARE\Wow6432Node\Tencent =>.SUP.Tencent HKLM\SOFTWARE\Wow6432Node\ThinPrint =>.ThinPrint HKLM\SOFTWARE\Wow6432Node\trotuxSoftware =>.SUP.Trotux HKLM\SOFTWARE\Wow6432Node\TrueKey =>.Intel Corporation HKLM\SOFTWARE\Wow6432Node\VirtualDJ =>.Atomix Production HKLM\SOFTWARE\Wow6432Node\VMware, Inc. =>.VMware, Inc. HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\WafCX =>.WafCX HKLM\SOFTWARE\Wow6432Node\WinZiper =>.SUP.WinZipper HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp. =>.Xing Technology Corp. HKLM\SOFTWARE\Wow6432Node\XinYi Network =>.XinYi Network HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo! Inc. HKLM\SOFTWARE\Wow6432Node\zbshareware =>.Zbshareware HKLM\SOFTWARE\Wow6432Node\ZTE Mobile Broadband Device Drivers HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\2VG HKCU\SOFTWARE\89078A9FA5262B8AF87E572E4F3BA9D1 =>Adware.CrossRider HKCU\SOFTWARE\AAA Logo 2014 HKCU\SOFTWARE\AAA_LOGO =>.SWGSoft HKCU\SOFTWARE\APN PIP =>.SUP.Conduit HKCU\SOFTWARE\Apowersoft =>.Apowersoft HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\Baidu =>.Baidu HKCU\SOFTWARE\BaisvikSoftware HKCU\SOFTWARE\BSD =>.Berkeley HKCU\SOFTWARE\BugSplat =>.Bugsplat Game HKCU\SOFTWARE\Canon =>.Canon HKCU\SOFTWARE\CDDB =>.Cddb Software HKCU\SOFTWARE\Chromium =>.Chromium HKCU\SOFTWARE\Convar =>.Legitimate HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions HKCU\SOFTWARE\Dashlane =>.Dashlane HKCU\SOFTWARE\Dashlane_profiles =>.Dashlane, Inc HKCU\SOFTWARE\DirectShow =>.Microsoft Corporation HKCU\SOFTWARE\Disc Soft =>.Disc Soft HKCU\SOFTWARE\Disk Doctor Labs Inc. HKCU\SOFTWARE\Disk Doctors Labs HKCU\SOFTWARE\DownloadAstro =>.Download Astro HKCU\SOFTWARE\DownloadManager =>.DownloadManager HKCU\SOFTWARE\DRP HKCU\SOFTWARE\drpsu =>.Driver PackSolution HKCU\SOFTWARE\DT Soft =>.DT Soft Ltd HKCU\SOFTWARE\EaseUS =>.EaseUS Software HKCU\SOFTWARE\EffectMgr =>.Legitimate HKCU\SOFTWARE\ej-technologies =>.ej-technologies HKCU\SOFTWARE\EMU =>.Games Software HKCU\SOFTWARE\EpicNet Inc. =>Adware.MSIL HKCU\SOFTWARE\Facebook =>.Facebook HKCU\SOFTWARE\FastDataX =>Adware.FastDataX HKCU\SOFTWARE\FlashBoot =>.PrimeExpert Software HKCU\SOFTWARE\FLT =>.FLT Software HKCU\SOFTWARE\FreeDownloadManager.ORG =>.FreeDownloadManager.org HKCU\SOFTWARE\FreeTime =>.FreeTime Inc HKCU\SOFTWARE\Freeware =>.VirtualDub.org HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\GRETECH =>.Gretech HKCU\SOFTWARE\Haali =>.Haali Media HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard HKCU\SOFTWARE\HP =>.HP HKCU\SOFTWARE\I.R.I.S. =>.I.R.I.S. HKCU\SOFTWARE\Icaros =>.Icaros HKCU\SOFTWARE\IM =>.Legitimate HKCU\SOFTWARE\IM Providers =>.IM Providers HKCU\SOFTWARE\InstallPath =>.Legitimate HKCU\SOFTWARE\Intel =>.Intel HKCU\SOFTWARE\Intel Security =>.Intel Security HKCU\SOFTWARE\IObit =>.IObit HKCU\SOFTWARE\JavaSoft =>.JavaSoft HKCU\SOFTWARE\jawego =>.SUP.JawegoPartners HKCU\SOFTWARE\JetBrains =>.JetBrains HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKCU\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs HKCU\SOFTWARE\LAventure =>.L'Aventure HKCU\SOFTWARE\Licenses =>.Microsoft Corporation HKCU\SOFTWARE\Macromedia =>.Macromedia HKCU\SOFTWARE\madshi =>.madshi.net HKCU\SOFTWARE\Magicbit =>.SUP.Magicbit HKCU\SOFTWARE\MainConcept =>.MainConcept AG HKCU\SOFTWARE\MainConcept (Consumer) =>.MainConcept AG HKCU\SOFTWARE\MediaInfo =>.Jérôme Martinez HKCU\SOFTWARE\Mine =>.Microsoft Corporation HKCU\SOFTWARE\Mirage =>.Mirage Game HKCU\SOFTWARE\Mobirise.com =>.Mobirise.com HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team HKCU\SOFTWARE\mtxifs HKCU\SOFTWARE\Nero =>.Ahead Corporation HKCU\SOFTWARE\NeroDigital =>.Nero Digital HKCU\SOFTWARE\Netscape =>.Netscape HKCU\SOFTWARE\NewBlue =>.NewBlue HKCU\SOFTWARE\NewHighTech HKCU\SOFTWARE\Nitro =>.Nitro HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions HKCU\SOFTWARE\pad HKCU\SOFTWARE\PC SOFT =>.PC SOFT HKCU\SOFTWARE\pgAdmin III HKCU\SOFTWARE\PluginAddon =>PUP.Optional.Vonteera HKCU\SOFTWARE\PopCap HKCU\SOFTWARE\PowerISO =>.PowerISO Computing HKCU\SOFTWARE\PowerTechnology =>.PowerTechnology HKCU\SOFTWARE\Psiphon3 HKCU\SOFTWARE\QtProject =>.QtProject HKCU\SOFTWARE\Real HKCU\SOFTWARE\RealNetworks =>.RealNetworks HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\Rtp =>.RTP Software HKCU\SOFTWARE\Samsung =>.Samsung Electronics HKCU\SOFTWARE\SAP =>.SAP HKCU\SOFTWARE\Semantis =>.Semantis HKCU\SOFTWARE\Skype =>.Skype HKCU\SOFTWARE\Sony Creative Software =>.Sony Creative Software HKCU\SOFTWARE\Speedownloader0099 =>PUP.Optional.SoftwareEngine HKCU\SOFTWARE\SpinTop HKCU\SOFTWARE\StackDocklet HKCU\SOFTWARE\SWI HKCU\SOFTWARE\Sybase HKCU\SOFTWARE\Synaptics =>.Synaptics HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation HKCU\SOFTWARE\Sysinternals =>.Sysinternals HKCU\SOFTWARE\TechSmith =>.TechSmith HKCU\SOFTWARE\Tencent =>.SUP.Tencent HKCU\SOFTWARE\Tihiy HKCU\SOFTWARE\Trolltech =>.Trolltech HKCU\SOFTWARE\undefined =>.SUP.Downloader HKCU\SOFTWARE\Valve =>.Valve HKCU\SOFTWARE\VideoBox =>Adware.Amonetize HKCU\SOFTWARE\VirtualDJ =>.Atomix Production HKCU\SOFTWARE\Visan =>.Visan Software HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc. HKCU\SOFTWARE\WindowsUpdater HKCU\SOFTWARE\WinRAR =>.WinRAR HKCU\SOFTWARE\WinRAR SFX =>.RarLab HKCU\SOFTWARE\Wondershare =>.Wondershare HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\XinYi Network =>.XinYi Network HKCU\SOFTWARE\Yahoo =>.Yahoo! Inc. HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation HKCU\SOFTWARE\AppDataLow\Yandex =>.Yandex HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft HKCU\SOFTWARE\AppDataLow\Software\ThinPrint =>.ThinPrint HKCU\SOFTWARE\AppDataLow\Software\Yahoo =>.Yahoo! Inc. ---\\ Contenu des dossiers Programmes (492) - 69s O43 - CFD: 01/08/2017 - [] D -- C:\Program Files\5FGQEJF8EM O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Add-ins O43 - CFD: 24/05/2016 - [0] D -- C:\Program Files\Apache Software Foundation =>.Apache Inc. O43 - CFD: 18/09/2017 - [] D -- C:\Program Files\BDSCJGDHLE =>Adware.Wizzcaster O43 - CFD: 25/06/2016 - [] D -- C:\Program Files\BitTorrent O43 - CFD: 30/12/2016 - [] D -- C:\Program Files\Canon =>.CANON INC.® O43 - CFD: 03/07/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 15/08/2017 - [] D -- C:\Program Files\Communications RND Reflector O43 - CFD: 16/12/2016 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Documentation O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Données de test O43 - CFD: 29/03/2016 - [] D -- C:\Program Files\EaseUS =>.EaseUS Software O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Exemples O43 - CFD: 29/03/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation O43 - CFD: 17/05/2016 - [] D -- C:\Program Files\Fichiers de ressources O43 - CFD: 23/03/2017 - [] AD -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse O43 - CFD: 10/04/2017 - [] AD -- C:\Program Files\FlashBoot =>.PrimeExpert Software O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\fr =>.Corel Corporation O43 - CFD: 03/09/2017 - [] D -- C:\Program Files\FreeDownloadManager.ORG =>.Softdeluxe Ltd.® O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files\glassfish-4.1 =>.Sun Microsystems O43 - CFD: 19/07/2016 - [] D -- C:\Program Files\HP =>.Hewlett-Packard O43 - CFD: 14/08/2017 - [] D -- C:\Program Files\Hyper-V =>.Microsoft Corporation O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Icônes O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Intel =>.Intel Corporation O43 - CFD: 23/04/2016 - [] D -- C:\Program Files\Intel Security =>.Intel Corporation O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation O43 - CFD: 25/08/2017 - [] D -- C:\Program Files\Java =>.Oracle O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files\KMSpico =>HackTool.KMSpico O43 - CFD: 18/09/2017 - [] D -- C:\Program Files\L76ZO09L6P =>Adware.Wizzcaster O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\M2TS Fish Video Survey O43 - CFD: 19/07/2016 - [] D -- C:\Program Files\Microsoft Analysis Services =>.Microsoft Corporation O43 - CFD: 19/07/2017 - [] AD -- C:\Program Files\Microsoft Office =>.Microsoft Corporation O43 - CFD: 19/07/2017 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\My Web Shield {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files\NetBeans 8.0.2 =>.NetBeans O43 - CFD: 15/06/2016 - [] D -- C:\Program Files\NewBlue =>.NewBlue O43 - CFD: 03/07/2017 - [] D -- C:\Program Files\Nitro =>.Nitro O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Nmap Files O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\Ole Automation O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\Outils O43 - CFD: 13/04/2016 - [] D -- C:\Program Files\pl O43 - CFD: 24/05/2016 - [0] D -- C:\Program Files\PostgreSQL =>.PostgreSQL O43 - CFD: 26/06/2017 - [] AD -- C:\Program Files\PowerISO =>.PowerISO Computing O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Realtek =>.Realtek O43 - CFD: 14/04/2016 - [0] D -- C:\Program Files\Reason O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics O43 - CFD: 23/05/2016 - [0] D -- C:\Program Files\SAP =>.SAP O43 - CFD: 19/05/2016 - [] D -- C:\Program Files\ShellNew O43 - CFD: 28/03/2017 - [] AD -- C:\Program Files\Sublime Text 3 =>.Sublime HQ Pty Ltd® O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated® O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\ThirdPartyLegal O43 - CFD: 18/05/2016 - [] D -- C:\Program Files\TrueKey =>.Intel Corporation O43 - CFD: 16/04/2017 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files\VB Scripts O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\W9387PVVFO O43 - CFD: 25/07/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation O43 - CFD: 03/07/2017 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH® O43 - CFD: 19/09/2017 - [] D -- C:\Program Files\XSBDBY8FNB =>Adware.Wizzcaster O43 - CFD: 24/03/2017 - [] D -- C:\Program Files (x86)\1a641ce1-bb17-40f5-a1fc-3ea2f4cf1fdb1490347953 =>Adware.CrossRider O43 - CFD: 11/04/2017 - [] AD -- C:\Program Files (x86)\AAALOGO =>.SWGSoft O43 - CFD: 17/03/2017 - [] AD -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated® O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Baidu =>.Baidu (China) Co., Ltd.® O43 - CFD: 18/12/2016 - [] AD -- C:\Program Files (x86)\BaisvikSoftware {7F8276BC4AA97E8E49FBED6A595376F0} O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc. O43 - CFD: 04/09/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation O43 - CFD: 24/03/2017 - [] D -- C:\Program Files (x86)\ContentPush O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Convar =>.Convar Deutschland GmbH O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\CVitae 5 O43 - CFD: 26/03/2017 - [] D -- C:\Program Files (x86)\Dashlane =>.Dashlane O43 - CFD: 23/12/2016 - [] D -- C:\Program Files (x86)\DriverPack Notifier =>.DriverPack Solution O43 - CFD: 18/09/2017 - [] D -- C:\Program Files (x86)\driverupdaterplus =>.SUP.EventMonitor O43 - CFD: 06/12/2016 - [] D -- C:\Program Files (x86)\EASEUS =>.EaseUS Software O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\eb3umnclhpo O43 - CFD: 18/09/2017 - [] AD -- C:\Program Files (x86)\FastDataX =>Adware.FastDataX O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\FormatFactory =>.Free Time Co., Ltd.® O43 - CFD: 13/12/2016 - [0] D -- C:\Program Files (x86)\Foxy Games =>.Foxy Games O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\FreeTime =>.FreeTime O43 - CFD: 06/12/2016 - [] D -- C:\Program Files (x86)\GanttProject-2.8 O43 - CFD: 04/09/2017 - [] AD -- C:\Program Files (x86)\GESCMS O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 25/07/2017 - [] AD -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard O43 - CFD: 24/04/2017 - [] D -- C:\Program Files (x86)\Hiru =>.Hiru O43 - CFD: 05/08/2017 - [] AD -- C:\Program Files (x86)\HP =>.Hewlett-Packard O43 - CFD: 19/09/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation O43 - CFD: 05/09/2017 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation O43 - CFD: 20/07/2017 - [] D -- C:\Program Files (x86)\IObit =>.IObit O43 - CFD: 26/03/2017 - [] D -- C:\Program Files (x86)\Jargon Informatique =>.tuxfamily.org O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Jaspersoft O43 - CFD: 02/08/2017 - [] D -- C:\Program Files (x86)\Java =>.Oracle O43 - CFD: 15/06/2017 - [0] D -- C:\Program Files (x86)\JetBrains =>.JetBrains Inc O43 - CFD: 31/08/2017 - [] AD -- C:\Program Files (x86)\K-Lite Codec Pack =>.KLite Inc O43 - CFD: 12/12/2016 - [] D -- C:\Program Files (x86)\Macromedia =>.Macromedia O43 - CFD: 31/07/2017 - [] D -- C:\Program Files (x86)\Messenger for Desktop =>.Alexandru Rosianu O43 - CFD: 21/01/2017 - [] D -- C:\Program Files (x86)\Micro Application =>.Micro Application O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE =>.Microsoft Corporation O43 - CFD: 19/07/2017 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation O43 - CFD: 12/12/2016 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation O43 - CFD: 19/07/2017 - [] AD -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Mykronoz =>.Mykronoz O43 - CFD: 20/09/2017 - [] D -- C:\Program Files (x86)\Navilog1 O43 - CFD: 28/04/2017 - [] AD -- C:\Program Files (x86)\Nero =>.Ahead Corporation O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\NewBlue =>.NewBlue O43 - CFD: 03/07/2017 - [] D -- C:\Program Files (x86)\Nitro =>.Nitro O43 - CFD: 18/09/2017 - [] AD -- C:\Program Files (x86)\NoterSave =>.RSA Security O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Oracle =>.Oracle O43 - CFD: 18/03/2017 - [0] D -- C:\Program Files (x86)\pccleanplus =>.SUP.PCCleanPlus O43 - CFD: 31/03/2017 - [] AD -- C:\Program Files (x86)\PowerISO =>.PowerISO Computing O43 - CFD: 02/02/2017 - [0] D -- C:\Program Files (x86)\R.G. Mechanics =>.R.G. Mechanics O43 - CFD: 21/07/2017 - [] D -- C:\Program Files (x86)\Real =>.RealNetworks Inc. O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 30/11/2016 - [0] D -- C:\Program Files (x86)\Rene.E Laboratory =>.Rene.E Laboratory O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics O43 - CFD: 17/09/2017 - [] D -- C:\Program Files (x86)\Sparkle =>.Ignite Realtime O43 - CFD: 10/07/2017 - [] D -- C:\Program Files (x86)\SuperBoost =>.QiWang O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Sybase O43 - CFD: 30/11/2016 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\USB Disk Security =>.FlashPeak Inc O43 - CFD: 22/06/2017 - [] AD -- C:\Program Files (x86)\VirtualDJ =>.Atomix Production O43 - CFD: 25/07/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\xtex =>Adware.GUpdate O43 - CFD: 30/11/2016 - [] D -- C:\Program Files (x86)\Yahoo! =>.Yahoo! O43 - CFD: 30/11/2016 - [] AD -- C:\Program Files (x86)\ZTEMobileBroadbandDeviceDrivers O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AAA Logo O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation O43 - CFD: 25/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 12/12/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CC 2015 O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bacula O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BaisvikSoftware O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour =>.Apple Inc. O43 - CFD: 22/12/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro =>.The DAEMON Team O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 10.5 =>.EaseUS Software O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashBoot =>.PrimeExpert Software O43 - CFD: 11/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager =>.FreeDownloadManager.com O43 - CFD: 23/08/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GanttProject =>.GanttProject Team O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GESCMS O43 - CFD: 03/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc O43 - CFD: 25/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle O43 - CFD: 25/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit =>.Oracle O43 - CFD: 31/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack =>.KLite Inc O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macromedia =>.Macromedia O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application =>.Micro Application O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace =>.Microsoft Corporation O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero =>.Ahead Corporation O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2016 =>.Ahead Corporation O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 2017 =>.Ahead Corporation O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetBeans =>.NetBeans.org O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue =>.NewBlue O43 - CFD: 05/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle Database 11g Express Edition O43 - CFD: 19/07/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 =>.Microsoft Corporation O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils PC SOFT O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO =>.PowerISO Computing O43 - CFD: 21/07/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks =>.RealNetworks O43 - CFD: 02/11/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung =>.Samsung Electronics O43 - CFD: 21/08/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SWI-Prolog O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sybase O43 - CFD: 18/03/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation O43 - CFD: 03/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UmmyVideoDownloader =>.UmmyVideoDownloader O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security =>.FlashPeak Inc O43 - CFD: 03/07/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 20/05/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip =>.WinZip O43 - CFD: 03/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\百度输入法 O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\159d8e6ff42042bbae0f0def4445b047 =>Adware.Suspect O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\1faff803c0964a86b82fdd284408c283 =>Adware.Suspect O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-0e03-1 =>.SUP.Polluteware O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-4495-0 =>.SUP.Polluteware O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\240cf49e-45b7-0 =>.SUP.Polluteware O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-5341-1 =>.SUP.Polluteware O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\240cf49e-6c35-0 =>.SUP.Polluteware O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\240cf49e-6d97-1 =>.SUP.Polluteware O43 - CFD: 22/07/2016 - [] D -- C:\ProgramData\Airtostrongs =>PUP.Optional.Salus O43 - CFD: 27/10/2016 - [] D -- C:\ProgramData\Apple =>.Apple Inc. O43 - CFD: 16/04/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\Avg =>.AVG Software O43 - CFD: 30/11/2016 - [] D -- C:\ProgramData\Avira =>.Avira Software O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d =>Adware.Suspect O43 - CFD: 19/05/2016 - [] D -- C:\ProgramData\Baidu =>.Baidu O43 - CFD: 18/12/2016 - [] D -- C:\ProgramData\BaisvikSoftware O43 - CFD: 24/04/2016 - [] D -- C:\ProgramData\BDLogging =>.Bitdefender O43 - CFD: 19/06/2016 - [] D -- C:\ProgramData\BiniSoft.org =>.BiniSoft.org O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\BSD =>.Berkeley O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation O43 - CFD: 26/06/2017 - [0] D -- C:\ProgramData\Camtel EVDO-Huawei O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Canon =>.Canon O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\CloudPrinter =>.SUP.Linkury O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\DatacardService =>.Entriq, Inc. O43 - CFD: 16/04/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 15/06/2016 - [] D -- C:\ProgramData\eSellerate =>.eSellerate O43 - CFD: 06/05/2016 - [] D -- C:\ProgramData\Ford Motor Company O43 - CFD: 04/09/2017 - [] D -- C:\ProgramData\GESCMS O43 - CFD: 04/05/2017 - [] D -- C:\ProgramData\Hewlett-Packard =>.Hewlett-Packard O43 - CFD: 05/08/2017 - [] AD -- C:\ProgramData\HP =>.Hewlett-Packard O43 - CFD: 11/10/2016 - [0] D -- C:\ProgramData\IDM =>.IDM O43 - CFD: 26/05/2016 - [] D -- C:\ProgramData\install_clap =>.Microsoft Corporation O43 - CFD: 24/05/2017 - [] D -- C:\ProgramData\IObit =>.IObit O43 - CFD: 29/05/2017 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab O43 - CFD: 26/06/2017 - [] D -- C:\ProgramData\KONAMI =>.Konami O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft O43 - CFD: 24/03/2017 - [] D -- C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler O43 - CFD: 07/12/2016 - [] D -- C:\ProgramData\Macromedia =>.Macromedia O43 - CFD: 17/05/2016 - [] D -- C:\ProgramData\McAfee =>.McAfee O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation O43 - CFD: 19/07/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation O43 - CFD: 28/12/2016 - [] D -- C:\ProgramData\MobileBrServ =>.Huawei Technologies Co.,Ltd O43 - CFD: 29/03/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\MTN Xtra Surf =>.Huawei Technologies Co.,Ltd O43 - CFD: 28/04/2017 - [] AD -- C:\ProgramData\Nero =>.Ahead Corporation O43 - CFD: 29/03/2016 - [] D -- C:\ProgramData\Nitro =>.Nitro O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\oceps O43 - CFD: 03/08/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle O43 - CFD: 03/10/2016 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc. O43 - CFD: 01/08/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] D -- C:\ProgramData\PowerAMC 15 O43 - CFD: 20/07/2017 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\Real =>.RealNetworks Inc. O43 - CFD: 21/07/2017 - [0] D -- C:\ProgramData\RealNetworks =>.RealNetworks O43 - CFD: 19/07/2017 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation O43 - CFD: 29/07/2016 - [] D -- C:\ProgramData\Ronzap O43 - CFD: 20/06/2016 - [] D -- C:\ProgramData\Ronzaps O43 - CFD: 21/10/2016 - [] D -- C:\ProgramData\RzSurroundVAD_1.1.62.0 =>.Razer Inc O43 - CFD: 13/10/2016 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics O43 - CFD: 18/03/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation O43 - CFD: 17/09/2017 - [] D -- C:\ProgramData\SpinTop Games =>.SpinTop Games O43 - CFD: 16/12/2016 - [] D -- C:\ProgramData\SP_FT_Logs O43 - CFD: 05/04/2016 - [] D -- C:\ProgramData\Steam =>.Steam Games O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Sun =>.Oracle O43 - CFD: 23/04/2016 - [] D -- C:\ProgramData\SuperBoost =>.QiWang O43 - CFD: 29/03/2016 - [] D -- C:\ProgramData\Synaptics =>.Synaptics O43 - CFD: 17/09/2017 - [] AD -- C:\ProgramData\Temp =>.Microsoft Corporation O43 - CFD: 23/04/2016 - [] D -- C:\ProgramData\TrueKey =>.Intel Corporation O43 - CFD: 17/03/2017 - [] D -- C:\ProgramData\Ubisoft =>.Ubisoft O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Visan =>.Visan Industries O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\VMware =>.VMware O43 - CFD: 21/07/2017 - [] D -- C:\ProgramData\VS Revo Group =>.VS Revo Group O43 - CFD: 18/09/2017 - [] D -- C:\ProgramData\WindowsErrorReporting =>Trojan.GenericKD O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation O43 - CFD: 04/10/2016 - [] D -- C:\ProgramData\xifss O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\ZDSupport O43 - CFD: 21/01/2017 - [0] D -- C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A} O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} O43 - CFD: 21/04/2016 - [0] D -- C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705} O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} O43 - CFD: 21/04/2016 - [] D -- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98} O43 - CFD: 01/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe O43 - CFD: 30/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Doublelatbam O43 - CFD: 03/10/2016 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller =>.Electronic Arts, Inc. O43 - CFD: 15/06/2016 - [] D -- C:\Program Files (x86)\Common Files\eSellerate =>.eSellerate O43 - CFD: 22/04/2016 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield O43 - CFD: 16/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation O43 - CFD: 28/09/2016 - [] D -- C:\Program Files (x86)\Common Files\IObit =>.IObit O43 - CFD: 02/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle O43 - CFD: 12/12/2016 - [] AD -- C:\Program Files (x86)\Common Files\Macromedia =>.Macromedia O43 - CFD: 23/04/2016 - [] D -- C:\Program Files (x86)\Common Files\McAfee =>.McAfee O43 - CFD: 01/08/2017 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation O43 - CFD: 28/04/2017 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Corporation O43 - CFD: 04/09/2017 - [] D -- C:\Program Files (x86)\Common Files\PC SOFT =>.PC Soft O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation O43 - CFD: 01/08/2017 - [0] D -- C:\Users\eric\AppData\Roaming\3p1driaqk4s O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\879c261566424c7fba51384d066e660e O43 - CFD: 26/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\AchrafCherti O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524 O43 - CFD: 04/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Apowersoft =>.Apowersoft O43 - CFD: 21/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 19/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\Baidu =>.Baidu O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\BaisvikSoftware O43 - CFD: 04/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O43 - CFD: 25/03/2017 - [0] D -- C:\Users\eric\AppData\Roaming\Clovot O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\CVitae 5 O43 - CFD: 22/12/2016 - [0] D -- C:\Users\eric\AppData\Roaming\DAEMON Tools Pro =>.The DAEMON Team O43 - CFD: 12/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Dashlane =>.Dashlane O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\dll4c4dqy3m =>Heuristic.Wizzcaster O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\DMCache =>.DMCache O43 - CFD: 26/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\Downloaded Installations =>.Microsoft Corporation O43 - CFD: 23/12/2016 - [] AD -- C:\Users\eric\AppData\Roaming\DriverPack Notifier =>.DriverPack Solution O43 - CFD: 23/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\DRPNPS O43 - CFD: 23/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\DRPSu =>.Driver PackSolution O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\EpicNet Inc =>Adware.MSIL O43 - CFD: 06/05/2017 - [] D -- C:\Users\eric\AppData\Roaming\FileZilla =>.FileZilla O43 - CFD: 21/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Google =>.Google O43 - CFD: 18/03/2017 - [] AD -- C:\Users\eric\AppData\Roaming\gplyra =>.SUP.Gplyra O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Hewlett-Packard =>.Hewlett-Packard O43 - CFD: 25/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\hpqLog =>.Hewlett-Packard O43 - CFD: 19/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\HpUpdate =>.Hewlett-Packard O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\IDM =>.IDM O43 - CFD: 05/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Imminent =>PUP.Optional.IMBooster O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\InstallShield =>.InstallShield O43 - CFD: 06/10/2016 - [] D -- C:\Users\eric\AppData\Roaming\Internet Download Accelerator O43 - CFD: 29/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\IObit =>.IObit O43 - CFD: 17/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\JetBrains =>.JetBrains Inc O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\MetroSidebar =>.MetroSidebar O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Roaming\mgyun =>.mgyun.com O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microleaves =>.SUP.Microleaves O43 - CFD: 13/09/2017 - [] SD -- C:\Users\eric\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 23/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Mikrotik O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Mozilla =>.Mozilla Corporation O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\MPC-HC =>.MPC-HC Team O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\n2dddu3iwrk =>Heuristic.Wizzcaster O43 - CFD: 04/05/2017 - [] D -- C:\Users\eric\AppData\Roaming\Nero =>.Ahead Corporation O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\NetBeans =>.NetBeans.org O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Nitro =>.Nitro O43 - CFD: 03/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Opera Software =>.Opera Software O43 - CFD: 28/07/2016 - [] D -- C:\Users\eric\AppData\Roaming\Oracle =>.Oracle O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\OWB O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\postgresql =>.PostgreSQL O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\PowerDesigner O43 - CFD: 26/06/2017 - [] D -- C:\Users\eric\AppData\Roaming\PowerISO =>.PowerISO Computing O43 - CFD: 21/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\ProductData =>.Microsoft Corporation O43 - CFD: 30/11/2016 - [] D -- C:\Users\eric\AppData\Roaming\Profiles =>.Microsoft Corporation O43 - CFD: 06/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Psiphon3 O43 - CFD: 12/06/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Publish Providers =>.Legitimate O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\py4fb2s5qpf =>Heuristic.Wizzcaster O43 - CFD: 21/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Real =>.RealNetworks Inc. O43 - CFD: 21/07/2017 - [0] D -- C:\Users\eric\AppData\Roaming\RealNetworks =>.RealNetworks O43 - CFD: 02/11/2016 - [] D -- C:\Users\eric\AppData\Roaming\Samsung =>.Samsung Electronics O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Skype =>.Skype O43 - CFD: 05/10/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Solvusoft =>.SUP.Solvusoft O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sony =>.Sony O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\SQL Developer O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\sqldeveloper O43 - CFD: 07/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sublime Text 3 O43 - CFD: 26/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Subversion =>.Games Software O43 - CFD: 22/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Sun =>.Oracle O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\SuperBoost =>.QiWang O43 - CFD: 13/04/2016 - [0] D -- C:\Users\eric\AppData\Roaming\SWI-Prolog O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Roaming\Synaptics =>.Synaptics O43 - CFD: 07/04/2017 - [] HD -- C:\Users\eric\AppData\Roaming\system =>.Microsoft Corporation O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Tencent =>.SUP.Tencent O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Thinstall =>.VMare O43 - CFD: 24/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\updatetool O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\vlc =>.VideoLan Team O43 - CFD: 19/07/2016 - [] D -- C:\Users\eric\AppData\Roaming\VMware =>.VMware O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\WhatsApp =>.WhatsApp O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\WinRAR =>.WinRAR O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Roaming\www.kiwix.org O43 - CFD: 12/05/2016 - [] D -- C:\Users\eric\AppData\Roaming\xpce O43 - CFD: 06/06/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Yahoo! =>.Yahoo! O43 - CFD: 06/06/2016 - [] D -- C:\Users\eric\AppData\Roaming\Yandex =>.Yandex O43 - CFD: 01/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\YCanPDF =>.YCanPDF O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Roaming\Zbshareware Lab =>.Zbshareware Lab O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\2a4969b64a414f6f870b4f560ce8fe62 O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\322fbda0a4bf4aaba4279b215d233142 O43 - CFD: 01/08/2016 - [0] D -- C:\Users\eric\AppData\Local\ActiveSync =>.Microsoft Corporation O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\AdvinstAnalytics =>.SUP.Various O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 20/05/2016 - [] D -- C:\Users\eric\AppData\Local\Apps =>.Microsoft Corporation O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\CEF =>.CEF O43 - CFD: 03/06/2016 - [] D -- C:\Users\eric\AppData\Local\Chromium =>.Chromium O43 - CFD: 08/05/2017 - [] D -- C:\Users\eric\AppData\Local\Comms =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation O43 - CFD: 14/05/2017 - [0] D -- C:\Users\eric\AppData\Local\CrashDumps =>.Microsoft Corporation O43 - CFD: 10/07/2016 - [] D -- C:\Users\eric\AppData\Local\CrashRpt O43 - CFD: 16/04/2017 - [0] D -- C:\Users\eric\AppData\Local\DBG =>.DBG O43 - CFD: 18/08/2017 - [0] D -- C:\Users\eric\AppData\Local\Diagnostics =>.Microsoft Corporation O43 - CFD: 28/11/2016 - [] D -- C:\Users\eric\AppData\Local\Disc_Soft_Ltd =>.Disc Soft Ltd O43 - CFD: 25/08/2017 - [] D -- C:\Users\eric\AppData\Local\Eclipse =>.Eclipse O43 - CFD: 28/08/2017 - [] D -- C:\Users\eric\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation O43 - CFD: 23/05/2016 - [] D -- C:\Users\eric\AppData\Local\Facebook =>.Facebook O43 - CFD: 23/03/2017 - [] D -- C:\Users\eric\AppData\Local\FileZilla =>.FileZilla O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Free Download Manager =>.FreeDownloadManager.com O43 - CFD: 17/05/2016 - [] D -- C:\Users\eric\AppData\Local\Geckofx =>.Geckofx O43 - CFD: 17/11/2016 - [] D -- C:\Users\eric\AppData\Local\Google =>.Google O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Local\Hewlett-Packard =>.Hewlett-Packard O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 19/07/2016 - [] D -- C:\Users\eric\AppData\Local\HP =>.Hewlett-Packard O43 - CFD: 18/09/2017 - [] D -- C:\Users\eric\AppData\Local\Macromedia =>.Macromedia O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\Messenger =>.Microsoft Corporation O43 - CFD: 13/09/2017 - [] D -- C:\Users\eric\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 03/04/2016 - [] D -- C:\Users\eric\AppData\Local\MicrosoftEdge =>.Microsoft Corporation O43 - CFD: 31/07/2016 - [] D -- C:\Users\eric\AppData\Local\Microsoft_Corporation =>.Microsoft Corporation O43 - CFD: 31/03/2017 - [0] D -- C:\Users\eric\AppData\Local\Mobirise.com =>.Mobirise.com O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 26/06/2017 - [] D -- C:\Users\eric\AppData\Local\Nero =>.Ahead Corporation O43 - CFD: 03/05/2017 - [] D -- C:\Users\eric\AppData\Local\Nero_AG =>.Ahead O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\NetBeans =>.NetBeans.org O43 - CFD: 02/04/2016 - [0] D -- C:\Users\eric\AppData\Local\NetworkTiles =>.NetworkTiles O43 - CFD: 27/03/2017 - [] D -- C:\Users\eric\AppData\Local\OpenERP S.A O43 - CFD: 19/09/2017 - [] D -- C:\Users\eric\AppData\Local\Packages =>.Microsoft Corporation O43 - CFD: 22/12/2016 - [0] D -- C:\Users\eric\AppData\Local\PackageStaging =>.Apcera O43 - CFD: 30/03/2016 - [0] D -- C:\Users\eric\AppData\Local\PeerDistRepub =>.Microsoft Corporation O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 30/03/2016 - [] D -- C:\Users\eric\AppData\Local\Publishers =>.Microsoft Corporation O43 - CFD: 21/10/2016 - [] D -- C:\Users\eric\AppData\Local\Razer =>.Razer O43 - CFD: 18/07/2017 - [] D -- C:\Users\eric\AppData\Local\Recovery =>.Recovery Labs O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\Semantis =>.Semantis O43 - CFD: 13/12/2016 - [] D -- C:\Users\eric\AppData\Local\SKIDROW =>.SKIDROW O43 - CFD: 12/06/2016 - [] D -- C:\Users\eric\AppData\Local\Sony =>.Sony O43 - CFD: 02/08/2017 - [] D -- C:\Users\eric\AppData\Local\speech =>.Microsoft Corporation O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Local\SquirrelTemp =>.Squirrels O43 - CFD: 13/12/2016 - [] D -- C:\Users\eric\AppData\Local\storage O43 - CFD: 30/03/2017 - [] D -- C:\Users\eric\AppData\Local\Sublime Text 3 O43 - CFD: 10/06/2016 - [] D -- C:\Users\eric\AppData\Local\TechSmith =>.TechSmith O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\eric\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Local\Thinstall =>.VMare O43 - CFD: 30/03/2016 - [] D -- C:\Users\eric\AppData\Local\TileDataLayer =>.Microsoft Corporation O43 - CFD: 23/04/2016 - [] D -- C:\Users\eric\AppData\Local\tkdata =>.TK-Data O43 - CFD: 30/11/2016 - [] D -- C:\Users\eric\AppData\Local\Tlition O43 - CFD: 16/12/2016 - [] D -- C:\Users\eric\AppData\Local\Trolltech =>.Trolltech O43 - CFD: 03/08/2017 - [] AD -- C:\Users\eric\AppData\Local\UmmyVideoDownloader =>.UmmyVideoDownloader O43 - CFD: 29/03/2017 - [] D -- C:\Users\eric\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 28/03/2017 - [] D -- C:\Users\eric\AppData\Local\Visokio O43 - CFD: 29/03/2017 - [] D -- C:\Users\eric\AppData\Local\Visokio Omniscope app O43 - CFD: 16/06/2016 - [] D -- C:\Users\eric\AppData\Local\VMware =>.VMware O43 - CFD: 04/09/2017 - [] D -- C:\Users\eric\AppData\Local\WDSetup =>.WDSetup O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Local\WhatsApp =>.WhatsApp O43 - CFD: 29/03/2016 - [] D -- C:\Users\eric\AppData\Local\www.kiwix.org O43 - CFD: 20/09/2017 - [] D -- C:\Users\eric\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 29/03/2016 - [0] D -- C:\Users\eric\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome =>.Google Inc. O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar =>.Convar Deutschland GmbH O43 - CFD: 12/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane =>.Dashlane O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory =>.FormatFactory O43 - CFD: 03/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc O43 - CFD: 16/04/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jargon Informatique =>.tuxfamily.org O43 - CFD: 18/03/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 13/12/2016 - [0] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\New Super Mario Forever 2012 - FULL PC Version - Foxy Games O43 - CFD: 17/09/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparkle =>.Ignite Realtime O43 - CFD: 19/09/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation O43 - CFD: 22/06/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ =>.Atomix Production O43 - CFD: 29/08/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp =>.WhatsApp O43 - CFD: 18/03/2017 - [] RD -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation O43 - CFD: 03/07/2017 - [] D -- C:\Users\eric\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 22/12/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 22/12/2016 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 22/12/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 22/12/2016 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 23/04/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\DBG =>.DBG O43 - CFD: 17/04/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 19/07/2017 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\PeerDistRepub =>.Microsoft Corporation O43 - CFD: 11/09/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 16/04/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\BaisvikSoftware O43 - CFD: 16/04/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit O43 - CFD: 11/09/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 19/09/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\tor =>.Tor User empty folders CLSID founds (1). Clean with ZHPFix 'EmptyCLSID' command =>.SUP.Empty.CLSID ---\\ ShellExecuteHook (1) - 0s O46 - SEH:ShellExecuteHooks - (no name) - [HKLM] [64Bits] - {AFC5519E-A73B-11E6-9931-64006A5CFC23} . (...) -- (.not file.) ---\\ ShellIconOverlayIdentifiers (SIOI) (9) - 1s O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: ReadOnlyOverlayHandler Class [ OneDrive6] - {9AA2F32D-362A-42D9-9328-24A483E2CCC3}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\eric\AppData\Local\Microsoft\OneDrive\17.3.6966.0824\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® ---\\ Image File Execution Options (18) - 3s O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows® O50 - IFEO:C:\Windows\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher® O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation ---\\ Liste des pilotes du système (93) - 41s O58 - SDL:2017/03/18 21:56:25 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107424] =>.Microsoft Windows® O58 - SDL:2016/10/12 06:37:52 A . (.HP - HP Accelerometer.) -- C:\Windows\System32\drivers\Accelerometer.sys [56128] =>.HP Inc.® O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows® O58 - SDL:2012/06/14 17:39:44 A . (.Beceem communications pvt ltd. - Beceem Communications Inc. WiMAX driver.) -- C:\Windows\System32\drivers\BcmBusCtr_64.sys [62976] =>.Beceem communications pvt ltd. O58 - SDL:2017/03/18 21:56:25 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows® O58 - SDL:2017/07/19 09:11:32 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\Windows\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)® O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\Windows\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\Windows\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\Windows\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows® O58 - SDL:2017/07/19 08:54:13 A . (.Connectify - NDISRD helper driver.) -- C:\Windows\System32\drivers\cnnctfy3.sys [42152] =>.Connectify® O58 - SDL:2017/07/19 09:11:32 A . (.Connectify - CNNCTFY helper driver.) -- C:\Windows\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)® O58 - SDL:2015/08/31 19:25:56 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx11_1x64.sys [28008] =>.Power Technology® O58 - SDL:2015/11/15 00:07:54 A . (.Windows (R) Win 7 DDK provider - Explore Systems Virtual Audio Device.) -- C:\Windows\System32\drivers\dfx12x64.sys [39048] =>.Power Technology® O58 - SDL:2012/06/14 17:39:44 A . (.Beceem communications pvt ltd. - Beceem Communications Inc. WiMAX driver.) -- C:\Windows\System32\drivers\drxvi314_64lh.sys [363136] =>.Beceem communications pvt ltd. O58 - SDL:2016/10/09 00:48:25 A . (.Disc Soft Ltd - DAEMON Tools Pro Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtproscsibus.sys [30264] =>.Disc Soft Ltd® O58 - SDL:2016/11/05 08:23:18 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283200] =>.DT Soft Ltd® O58 - SDL:2016/11/28 12:11:12 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtultrascsibus.sys [30264] =>.Disc Soft Ltd® O58 - SDL:2016/11/28 12:11:16 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual USB Bus Driver.) -- C:\Windows\System32\drivers\dtultrausbbus.sys [47672] =>.Disc Soft Ltd® O58 - SDL:2015/02/28 23:22:52 A . (.The Within Network, LLC - UxStyle Community Edition Kernel Driver.) -- C:\Windows\System32\drivers\elytsxu.sys [32424] =>.The Within Network, LLC® O58 - SDL:2016/08/01 23:15:38 A . (.ELAN Microelectronic Corp. - ELAN SMBus Driver.) -- C:\Windows\System32\drivers\ETDSMBus.sys [31832] =>.ELAN MICROELECTRONICS CORPORATION® O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows® O58 - SDL:2017/06/26 16:07:57 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [86016] =>.Huawei Technologies Co., Ltd. O58 - SDL:2009/09/09 10:23:46 A . (.Intel Corporation - BIOS Update Driver.) -- C:\Windows\System32\drivers\flashud.sys [51712] =>.Intel Corporation O58 - SDL:2014/10/22 14:29:00 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys [155912] =>.Bitdefender SRL® O58 - SDL:2016/10/12 06:37:56 A . (.HP - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\drivers\hpdskflt.sys [42312] =>.HP Inc.® O58 - SDL:2014/05/15 14:18:36 A . (.Hewlett-Packard Company - Keyboard Filter Driver.) -- C:\Windows\System32\drivers\HpqKbFiltr64.sys [28376] =>.Hewlett-Packard Company® O58 - SDL:2017/03/18 21:56:25 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:23 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2017/03/18 21:56:19 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2016/08/29 21:15:48 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\Windows\System32\drivers\iaStorA.sys [1469944] =>.Intel(R) Rapid Storage Technology® O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows® O58 - SDL:2017/08/05 17:26:42 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [225568] =>.Tonec Inc.® O58 - SDL:2015/09/03 12:36:28 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [6415256] =>.Intel Corporation - pGFX® O58 - SDL:2016/05/12 05:32:26 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [481768] =>.Intel(R) OWR® O58 - SDL:2014/01/20 08:19:28 A . (.Ralink Corporation - Bluetooth Filter Driver.) -- C:\Windows\System32\drivers\IvtUrbBtFlt.sys [51936] =>.IVT CORPORATION® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59808] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575904] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows® O58 - SDL:2016/08/31 16:00:32 A . (...) -- C:\Windows\System32\drivers\mwescontroller.sys [57680] {39D3FCDE4532A63BD298039D0555D0C2} =>PUP.Optional.WebShield O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:23 A . (.MediaTek Inc. - MediaTek 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28x.sys [2537984] =>.MediaTek Inc. O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows® O58 - SDL:2017/04/23 08:35:25 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\Windows\System32\drivers\rt640x64.sys [950784] =>.Realtek Semiconductor Corp.® O58 - SDL:2016/04/21 06:44:27 A . (.Ralink Technology, Corp. - Ralink Bluetooth Adapter.) -- C:\Windows\System32\drivers\rtbth.sys [1219200] =>.MEDIATEK INC.® O58 - SDL:2017/03/23 06:06:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [5702144] =>.Realtek Semiconductor Corp.® O58 - SDL:2017/03/26 19:40:06 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\drivers\RtsPer.sys [791040] =>.Realtek Semiconductor Corp.® O58 - SDL:2016/09/17 01:12:20 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\Windows\System32\drivers\rzpmgrk.sys [44144] =>.Razer Inc.® O58 - SDL:2016/10/16 12:04:08 A . (.Windows (R) Win 7 DDK provider - RazerSurround VAD Audio driver.) -- C:\Windows\System32\drivers\RzSurroundVAD.sys [49176] =>.Razer USA Ltd.® O58 - SDL:2015/10/08 08:00:24 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [127760] =>.Power Software Limited® O58 - SDL:2017/03/18 21:56:26 A . (...) -- C:\Windows\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows® O58 - SDL:2017/02/17 03:14:54 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys [69216] =>.Synaptics Incorporated® O58 - SDL:2016/04/21 07:04:46 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [33960] =>.Synaptics Incorporated® O58 - SDL:2017/02/17 03:15:00 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys [72800] =>.Synaptics Incorporated® O58 - SDL:2016/09/05 05:47:06 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\Windows\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.® O58 - SDL:2017/05/18 22:17:30 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\Windows\System32\drivers\ssudmdm.sys [166288] =>.Samsung Electronics Co., Ltd.® O58 - SDL:2017/03/18 21:56:25 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows® O58 - SDL:2017/02/17 03:15:18 A . (.Synaptics Incorporated - Synaptics I2C Driver.) -- C:\Windows\System32\drivers\SynRMIHID_Aux.sys [66144] =>.Synaptics Incorporated® O58 - SDL:2017/02/17 03:15:20 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\drivers\SynTP.sys [936544] =>.Synaptics Incorporated® O58 - SDL:2013/08/22 13:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.® O58 - SDL:2017/02/15 06:54:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverW8x64.sys [204920] =>.Intel(R) Embedded Subsystems and IP Blocks Group® O58 - SDL:2016/05/19 05:02:48 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\Windows\System32\drivers\TFsFltX64.sys [97400] =>.SUP.Tencent O58 - SDL:2017/03/18 21:56:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows® O58 - SDL:2016/07/18 12:15:39 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\Windows\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [32160] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows® O58 - SDL:2016/08/01 11:32:10 A . (.HP - HP Wireless Button Driver.) -- C:\Windows\System32\drivers\WirelessButtonDriver64.sys [32832] =>.HP Inc.® O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\Windows\System32\epmntdrv.sys [18528] =>.CHENGDU YIWO Tech Development Co., Ltd.® O58 - SDL:2014/11/18 14:39:06 A . (...) -- C:\Windows\System32\EuGdiDrv.sys [10848] =>.CHENGDU YIWO Tech Development Co., Ltd.® ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (11) - 62s O61 - LFC: 2017/09/18 21:57:47 A . (..) -- C:\Users\eric\AppData\Roaming\af688c2fb64e4f05a7eadcc4857dc524\8TWeFR2T.exe [110080] O61 - LFC: 2017/09/18 22:01:54 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\dll4c4dqy3m\vlsmh5qj2bq.exe [8192] O61 - LFC: 2017/09/18 22:06:11 A . (.EpicNet Inc..) -- C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [776704] =>Adware.MSIL O61 - LFC: 2017/09/19 00:03:05 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\n2dddu3iwrk\yhpppi0pl3s.exe [8192] O61 - LFC: 2017/09/19 02:04:42 A . (.Banin.) -- C:\Users\eric\AppData\Roaming\py4fb2s5qpf\hsftbemcrx5.exe [8192] O61 - LFC: 2017/09/20 06:56:03 A . (..) -- C:\Users\eric\Desktop\Navilog1 (2).exe [260562] O61 - LFC: 2017/09/20 06:54:57 A . (..) -- C:\Users\eric\Downloads\Navilog1 (1).exe [260562] O61 - LFC: 2017/09/20 06:56:03 A . (..) -- C:\Users\eric\Downloads\Navilog1 (2).exe [260562] O61 - LFC: 2017/09/20 07:02:55 A . (..) -- C:\Users\eric\Downloads\Navilog1 (3).exe [260562] O61 - LFC: 2017/09/20 07:03:15 A . (..) -- C:\Users\eric\Downloads\Navilog1 (4).exe [260562] O61 - LFC: 2017/09/20 06:55:09 A . (..) -- C:\Users\eric\Downloads\Navilog1.exe [260562] ---\\ Associations Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- %1" %* O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de démarrage Internet (12) - 0s O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Recherche d'infection sur les navigateurs (6) - 11s O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKCU] [64Bits]{85A60A59-D3D8-468F-B598-FB4393789EF4} - (Google) - http://www.google.com/ =>.Google Inc. O69 - SBI: SearchScopes [HKCU] [64Bits]{AECF2199-92B4-489A-6E9F-05BB7C51B337} - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKCU] [64Bits]{C0C3A6C6-03BC-4195-8FCB-AEA091301353} - (Yahoo!) - http://search.yahoo.com/ =>.Yahoo! Inc. O69 - SBI: SearchScopes [HKCU] [64Bits]{ielnksrch} - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzU3kNIXrMgi_S4jMkrzCxpQx778QxHt-0cU5PfYrESwwrZ4zkWiOEBYb2YgiZn5IASpbWsOUYWoazDCn10RFcC58lRtT3cccrUOx3Nf-bCryHzQxwVcelubxxEudFuYo7mU_IkkPOkJwYPMgZg1ehdWiZq2fDcs7sMIJvuE-1LU,&q={searchTerms} =>.SUP.Linkury O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ Enumère les services démarrés par Svchost (48) - 3s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [189952] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [189952] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [303104] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1269248] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [934912] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [31232] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [138752] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150016] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [108032] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [877568] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [133120] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [413184] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\sessenv.dll [385536] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [93184] =>.Microsoft Corporation O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2153984] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [877568] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1015296] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\Windows\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher® O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [1052160] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [43520] =>.Microsoft Corporation O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104448] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [874496] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [490496] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\sens.dll [69632] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [537600] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [306688] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2445824] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1159680] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [612864] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [55296] =>.Microsoft Corporation O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [699904] =>.Microsoft Corporation O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [276480] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [385536] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [681984] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\ncasvc.dll [167424] =>.Microsoft Corporation O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [196096] =>.Microsoft Corporation ---\\ Liste des exceptions du parefeu Windows (10) - 4s O87 - FAEL: "UDP Query User{062018FD-1341-4514-9F9C-51183C5EF470}C:\users\eric\desktop\winbox_4.exe" [In-None-P17-TRUE] .(...) -- C:\users\eric\desktop\winbox_4.exe O87 - FAEL: "TCP Query User{2B47B8DE-CE28-4EB6-B6BA-91A57B277D8C}C:\users\eric\desktop\winbox_4.exe" [In-None-P6-TRUE] .(...) -- C:\users\eric\desktop\winbox_4.exe O87 - FAEL: "UDP Query User{98F7EB9F-5CF3-4AA4-BAC0-87F565548911}C:\users\eric\downloads\programs\winbox.exe" [In-None-P17-TRUE] .(...) -- C:\users\eric\downloads\programs\winbox.exe O87 - FAEL: "TCP Query User{D9755CD0-A6F1-4B0A-A14E-F3357C100506}C:\users\eric\downloads\programs\winbox.exe" [In-None-P6-TRUE] .(...) -- C:\users\eric\downloads\programs\winbox.exe O87 - FAEL: "UDP Query User{90BF81D5-E97C-47C7-808C-1AB451388BCC}C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe (.not file.) O87 - FAEL: "TCP Query User{F9E0ACE8-FA32-4887-9BC7-5E284001048E}C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\dmc devi may cry\binaries\win32\dmc-devilmaycry.exe (.not file.) O87 - FAEL: "UDP Query User{9B2D0B11-F972-4416-9BCE-839F458A93C2}C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe (.not file.) O87 - FAEL: "TCP Query User{01ADD3D6-EED4-47EC-A413-01F29162F071}C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\app\eric\product\11.2.0\client_5\jdk\jre\bin\java.exe (.not file.) O87 - FAEL: "UDP Query User{6D012195-1718-4813-88BC-AF3678D6274C}C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe (.not file.) O87 - FAEL: "TCP Query User{BC46962E-2838-4D96-9DBC-35649AD32761}C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\app\eric\product\11.2.0\dbhome_1\jdk\jre\bin\java.exe (.not file.) ---\\ Recherche de clés de registre Tracing (2) - 8s HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASAPI32 =>Hacktool.Office HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASMANCS =>Hacktool.Office ---\\ Scan Additionnel (114) - 6s HKLM\SYSTEM\CurrentControlSet\Services\mweshield =>PUP.Optional.WebShield C:\Program Files\My Web Shield\mweshield.exe =>PUP.Optional.WebShield HKLM\SYSTEM\CurrentControlSet\Services\mweshieldup =>PUP.Optional.WebShield C:\Program Files\My Web Shield\mweshieldup.exe =>PUP.Optional.WebShield HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico C:\Users\eric\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe =>Adware.MSIL C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\eojeoeddgeaeahpmfabdfpfialkoplcb =>Adware.CloudAtlas HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{13D67BB7-DB5F-48AA-884D-7A5D94168509} =>.SUP.Orphan HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{13D67BB7-DB5F-48AA-884D-7A5D94168509} =>.SUP.Orphan HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA} =>.SUP.Orphan HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3049C3E9-B461-4BC5-8870-4C09146192CA} =>.SUP.Orphan HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>.SUP.Orphan HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>.SUP.Orphan HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mweshield =>PUP.Optional.WebShield HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gupdate 2.00 =>Adware.GUpdate HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NoterSave_is1 =>.SUP.Tuto4PC HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\gupdate 2.00 =>Adware.GUpdate HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\NoterSave_is1 =>.SUP.Tuto4PC HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CloudNet =>Adware.MSIL C:\Program Files\BDSCJGDHLE\BDSCJGDHL.exe =>Adware.Wizzcaster C:\Program Files\BDSCJGDHLE\uninstaller.exe =>Adware.Wizzcaster C:\Program Files\BDSCJGDHLE =>Adware.Wizzcaster C:\Program Files\KMSpico =>HackTool.KMSpico C:\Program Files\L76ZO09L6P\L76ZO09L6.exe =>Adware.Wizzcaster C:\Program Files\L76ZO09L6P\uninstaller.exe =>Adware.Wizzcaster C:\Program Files\L76ZO09L6P =>Adware.Wizzcaster C:\Program Files\My Web Shield =>PUP.Optional.WebShield C:\Program Files\XSBDBY8FNB\XSBDBY8FN.exe =>Adware.Wizzcaster C:\Program Files\XSBDBY8FNB\uninstaller.exe =>Adware.Wizzcaster C:\Program Files\XSBDBY8FNB =>Adware.Wizzcaster C:\Program Files (x86)\1a641ce1-bb17-40f5-a1fc-3ea2f4cf1fdb1490347953 =>Adware.CrossRider C:\Program Files (x86)\pccleanplus =>.SUP.PCCleanPlus C:\Program Files (x86)\xtex =>Adware.GUpdate C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico C:\ProgramData\159d8e6ff42042bbae0f0def4445b047 =>Adware.Suspect C:\ProgramData\1faff803c0964a86b82fdd284408c283 =>Adware.Suspect C:\ProgramData\240cf49e-0e03-1 =>.SUP.Polluteware C:\ProgramData\240cf49e-4495-0 =>.SUP.Polluteware C:\ProgramData\240cf49e-45b7-0 =>.SUP.Polluteware C:\ProgramData\240cf49e-5341-1 =>.SUP.Polluteware C:\ProgramData\240cf49e-6c35-0 =>.SUP.Polluteware C:\ProgramData\240cf49e-6d97-1 =>.SUP.Polluteware C:\ProgramData\Airtostrongs =>PUP.Optional.Salus C:\ProgramData\b945d8214d7047bd89ea300fbaf0006d =>Adware.Suspect C:\ProgramData\CloudPrinter =>.SUP.Linkury C:\ProgramData\Logic Handler =>PUP.Optional.LogicHandler C:\ProgramData\WindowsErrorReporting =>Trojan.GenericKD C:\Users\eric\AppData\Roaming\dll4c4dqy3m\vlsmh5qj2bq.exe =>Heuristic.Wizzcaster C:\Users\eric\AppData\Roaming\dll4c4dqy3m =>Heuristic.Wizzcaster C:\Users\eric\AppData\Roaming\EpicNet Inc =>Adware.MSIL C:\Users\eric\AppData\Roaming\gplyra =>.SUP.Gplyra C:\Users\eric\AppData\Roaming\Imminent =>PUP.Optional.IMBooster C:\Users\eric\AppData\Roaming\Microleaves =>.SUP.Microleaves C:\Users\eric\AppData\Roaming\n2dddu3iwrk\yhpppi0pl3s.exe =>Heuristic.Wizzcaster C:\Users\eric\AppData\Roaming\n2dddu3iwrk =>Heuristic.Wizzcaster C:\Users\eric\AppData\Roaming\py4fb2s5qpf\hsftbemcrx5.exe =>Heuristic.Wizzcaster C:\Users\eric\AppData\Roaming\py4fb2s5qpf =>Heuristic.Wizzcaster C:\Users\eric\AppData\Roaming\Solvusoft =>.SUP.Solvusoft C:\Users\eric\AppData\Roaming\Tencent =>.SUP.Tencent C:\Users\eric\AppData\Local\AdvinstAnalytics =>.SUP.Various C:\Windows\System32\drivers\mwescontroller.sys =>PUP.Optional.WebShield HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} =>.SUP.Linkury HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASAPI32 =>Hacktool.Office HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Windows KMS Activator Ultimate 2017 v3_RASMANCS =>Hacktool.Office C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_airdroid.fr.softonic.com_0.localstorage =>.SUP.Softonic C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.safefinder.com_0.localstorage =>PUP.Optional.Browser C:\Users\eric\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.snapdo.com_0.localstorage =>PUP.Optional.SmartBar HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\03D22C9C66915D58C88912B64C1F984B8344EF09 =>PUM.Misplaced.Certificate [Comodo Security] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\0F684EC1163281085C6AF20528878103ACEFCAAB =>PUM.Misplaced.Certificate [F-Secure] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1667908C9E22EFBD0590E088715CC74BE4C60884 =>PUM.Misplaced.Certificate [FRISK] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\18DEA4EFA93B06AE997D234411F3FD72A677EECE =>PUM.Misplaced.Certificate [Bitdefender] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF =>PUM.Misplaced.Certificate [G-Data] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\249BDA38A611CD746A132FA2AF995A2D3C941264 =>PUM.Misplaced.Certificate [Malwarebytes] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\31AC96A6C17C425222C46D55C3CCA6BA12E54DAF =>PUM.Misplaced.Certificate [Symantec] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\331E2046A1CCA7BFEF766724394BE6112B4CA3F7 =>PUM.Misplaced.Certificate [Trend Micro] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3353EA609334A9F23A701B9159E30CB6C22D4C59 =>PUM.Misplaced.Certificate [Webroot] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\373C33726722D3A5D1EDD1F1585D5D25B39BEA1A =>PUM.Misplaced.Certificate [SUPERAntiSpyware] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F =>PUM.Misplaced.Certificate [Kaspersky] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3D496FA682E65FC122351EC29B55AB94F3BB03FC =>PUM.Misplaced.Certificate [AVG Technologies] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 =>PUM.Misplaced.Certificate [PC Tools] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 =>PUM.Misplaced.Certificate [K7 Computing] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4420C99742DF11DD0795BC15B7B0ABF090DC84DF =>PUM.Misplaced.Certificate [Doctor Web] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF =>PUM.Misplaced.Certificate [Emsisoft] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5240AB5B05D11B37900AC7712A3C6AE42F377C8C =>PUM.Misplaced.Certificate [CheckPoint] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DD3D41810F28B2A13E9A004E6412061E28FA48D =>PUM.Misplaced.Certificate [Emsisoft] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7457A3793086DBB58B3858D6476889E3311E550E =>PUM.Misplaced.Certificate [K7 Computing] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\76A9295EF4343E12DFC5FE05DC57227C1AB00D29 =>PUM.Misplaced.Certificate [BullGuard] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\775B373B33B9D15B58BC02B184704332B97C3CAF =>PUM.Misplaced.Certificate [McAfee] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\872CD334B7E7B3C3D1C6114CD6B221026D505EAB =>PUM.Misplaced.Certificate [Comodo Security] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\88AD5DFE24126872B33175D1778687B642323ACF =>PUM.Misplaced.Certificate [McAfee] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9132E8B079D080E01D52631690BE18EBC2347C1E =>PUM.Misplaced.Certificate [Adaware Software] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\982D98951CF3C0CA2A02814D474A976CBFF6BDB1 =>PUM.Misplaced.Certificate [Safer Networking] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 =>PUM.Misplaced.Certificate [Webroot] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9C43F665E690AB4D486D4717B456C5554D4BCEB5 =>PUM.Misplaced.Certificate [ThreatTrack] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 =>PUM.Misplaced.Certificate [CurioLab] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 =>PUM.Misplaced.Certificate [Avira Operations] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A5341949ABE1407DD7BF7DFE75460D9608FBC309 =>PUM.Misplaced.Certificate [BullGuard] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\A59CC32724DD07A6FC33F7806945481A2D13CA2F =>PUM.Misplaced.Certificate [ESET] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 =>PUM.Misplaced.Certificate [AVG Technologies] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD4C5429E10F4FF6C01840C20ABA344D7401209F =>PUM.Misplaced.Certificate [Avast Software] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\AD96BB64BA36379D2E354660780C2067B81DA2E0 =>PUM.Misplaced.Certificate [Symantec] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 =>PUM.Misplaced.Certificate [Malwarebytes] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CDC37C22FE9272D8F2610206AD397A45040326B8 =>PUM.Misplaced.Certificate [Trend Micro] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 =>PUM.Misplaced.Certificate [Kaspersky] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB303C9B61282DE525DC754A535CA2D6A9BD3D87 =>PUM.Misplaced.Certificate [ThreatTrack] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\DB77E5CFEC34459146748B667C97B185619251BA =>PUM.Misplaced.Certificate [Avast Software] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E22240E837B52E691C71DF248F12D27F96441C00 =>PUM.Misplaced.Certificate [Total Defense] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF =>PUM.Misplaced.Certificate [AVG Technologies] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\ED841A61C0F76025598421BC1B00E24189E68D54 =>PUM.Misplaced.Certificate [Bitdefender] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F83099622B4A9F72CB5081F742164AD1B8D048C9 =>PUM.Misplaced.Certificate [ESET] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FBB42F089AF2D570F2BF6F493D107A3255A9BB1A =>PUM.Misplaced.Certificate [Panda Security] HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 =>PUM.Misplaced.Certificate [Doctor Web] ---\\ Récapitulatif des éléments trouvés sur votre station (38) - 1s https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.WebShield https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico https://nicolascoolman.eu/2017/09/13/adware-msil/ =>Adware.MSIL https://nicolascoolman.eu/2017/08/10/adware-cloudatlas/ =>Adware.CloudAtlas https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>.SUP.Linkury https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan https://nicolascoolman.eu/2017/01/22/adware-gupdate/ =>Adware.GUpdate https://www.nicolascoolman.com/fr/pup-optional-tuto4pc/ =>.SUP.Tuto4PC https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.JawegoPartners https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>PUP.Optional.Salus https://www.nicolascoolman.com/fr/hijacker-trovigo/ =>PUP.Optional.SoftwareEngine https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.SUP.Tencent https://nicolascoolman.eu/2017/03/14/superfluous-trotux/ =>.SUP.Trotux https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.WinZipper https://nicolascoolman.eu/2017/02/06/superfluous-conduit/ =>.SUP.Conduit https://nicolascoolman.eu/2017/06/21/adware-fastdatax/ =>Adware.FastDataX https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Magicbit https://www.nicolascoolman.com/fr/trojan-vonteera/ =>PUP.Optional.Vonteera https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Downloader https://www.anti-malware.top/2016/05/24/adware-amonetize/ =>Adware.Amonetize https://nicolascoolman.eu/2017/09/15/adware-wizzcaster/ =>Adware.Wizzcaster https://www.anti-malware.top/2016/05/10/superfluous-pccleanplus/ =>.SUP.PCCleanPlus https://nicolascoolman.eu/2017/03/02/adware-suspect/ =>Adware.Suspect https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Polluteware https://nicolascoolman.eu/2017/01/04/pup-optional-logichandler/ =>PUP.Optional.LogicHandler https://nicolascoolman.eu/2017/04/25/trojan-generickd/ =>Trojan.GenericKD https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Heuristic.Wizzcaster https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Gplyra https://nicolascoolman.eu/2017/09/08/adware-imbooster/ =>PUP.Optional.IMBooster https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Microleaves https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Solvusoft https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Various https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Hacktool.Office https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Softonic https://nicolascoolman.eu/2017/01/26/hijacker-browser/ =>PUP.Optional.Browser https://nicolascoolman.eu/2017/09/09/pup-optional-smartbar/ =>PUP.Optional.SmartBar https://nicolascoolman.eu/2017/06/26/trojan-certlock/ =>PUM.Misplaced.Certificate ~ Unselected Options: O40, O82, ~ End of the scan, 58807 items in 17mn32s (1753)(0)