~ ZHPDiag v2017.11.19.201 Par Nicolas Coolman (2017/11/19) ~ Démarré par jean- (Administrator) (2017/11/21 04:21:21) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Certificate ZHPDiag: Legal ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\jean-\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\jean-\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Sans échec avec prise en charge du réseau (Fail-safe with network boot) Windows 10 Home, 64-bit (Build 15063) =>.Microsoft Corporation ---\\ Navigateurs Internet (3) - 0s ~ MFIE: Mozilla Firefox 57.0 (x86 fr) ~ MSIE: Microsoft Edge v40 ~ MSIE: Internet Explorer v11.726.15063.0 ---\\ Informations sur les produits Windows (8) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK ~ Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : 8HVX7 Windows License : OK ~ Windows Remaining Initializations Number : 1001 Windows Automatic Updates : OK ---\\ Logiciels de protection (3) - 5s Emsisoft Anti-Malware (Protection) FirewallEngine v3.0.0.21 (Protection) Windows Defender (Activate) (Protection) ---\\ Logiciels d'optimisation (1) - 7s ~ CCleaner v5.37 (Optimize) ---\\ Surveillance de Logiciels (1) - 7s ~ Adobe Reader 9.1 MUI (Surveillance) ---\\ Informations sur le système (6) - 0s ~ Operating System: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD ~ Operating System: 64-bit ~ Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot) Total RAM: 3747.568 MB (67% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 874 GB (93%) free of 938 GB : OK =>.Disk Space ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: DESKTOP-37KC94K ~ User Name: jean- ~ Logged in as Administrator ---\\ Enumération des unités disques (11) - 0s ~ Drive C: has 874 GB free of 938 GB (System) ~ Drive D: has 0 GB free of 13 GB ~ Drive E: has GB free of 23 GB ~ Drive G: has 0 GB free of 30 GB ~ Drive I: has 114 GB free of 122 GB ~ Drive J: has GB free of 0 GB ~ Drive M: has 109 GB free of 118 GB ~ Drive N: has 795 GB free of 951 GB ~ Drive Q: has 934 GB free of 953 GB ~ Drive S: has 0 GB free of 14 GB ~ Drive T: has 12 GB free of 15 GB ---\\ Etat du Centre de Sécurité Windows (7) - 0s [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (25) - 1s [MD5.01078D46C77CE0D7DC584A29062A799D] - 07/09/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4848952] =>.Microsoft Windows® [MD5.ECB702B8C5650381C0784F1EEABB97BC] - 07/09/2016 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [68608] =>.Microsoft Corporation [MD5.0242626678C83AE788C655C1990A3CC3] - 07/09/2016 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [318232] =>.Microsoft Windows Publisher® [MD5.B86F2476A799E044A2064D2FFD8A8877] - 07/09/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3307008] =>.Microsoft Corporation [MD5.9CDA170849A4F66F4D68B3DBB3AC8394] - 07/09/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [706560] =>.Microsoft Corporation [MD5.50CDF68A8EA8A2A9165CD573FA6C42D8] - 07/09/2016 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414208] =>.Microsoft Corporation [MD5.6AFA66A457759C1FEC29A52612A67043] - 07/09/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [661224] =>.Microsoft Windows® [MD5.1F4909406532C2FFCBD3683A65F7198F] - 07/09/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [508344] =>.Microsoft Windows® [MD5.70E14A01193D817004C0F88E767BC59B] - 07/09/2016 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation [MD5.5A6D591D56791BA63CE73FCAD60D89A1] - 07/09/2016 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [610720] =>.Microsoft Windows® [MD5.01733BEEE02E51F712330D5909BD701C] - 07/09/2016 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [29088] =>.Microsoft Windows® [MD5.B6E5AD7C83A5254DEE9D86023C0E5A81] - 07/09/2016 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation [MD5.ABE77AD954BC3D72F559CF0C381E50BC] - 07/09/2016 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [160256] =>.Microsoft Corporation [MD5.185A4519B7764F4DEF714D890A7A9FD2] - 07/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [150528] =>.Microsoft Corporation [MD5.02B9639D9997E95CDF2F4C4F3BDCC73D] - 07/09/2016 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86528] =>.Microsoft Corporation [MD5.C6C8315E3262FAE460529C6DA2951682] - 07/09/2016 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [115200] =>.Microsoft Corporation [MD5.DCC05E5EAA580C97F13B434FAFACED85] - 07/09/2016 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214528] =>.Microsoft Corporation [MD5.F2AD1B72C5A6475FB5FF332E1980DF88] - 07/09/2016 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [467352] =>.Microsoft Windows® [MD5.BAD3C424788BC071C3EC82CFCDA954D2] - 07/09/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [305152] =>.Microsoft Corporation [MD5.4FB781DF7C0ED6B989F465A7886583F1] - 07/09/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2327448] =>.Microsoft Windows® [MD5.2CC6C325B271C7CA60F374F8F868CB45] - 07/09/2016 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [97792] =>.Microsoft Corporation [MD5.5279EC98F6218D29EADDFECCC0D80E9A] - 07/09/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [107008] =>.Microsoft Corporation [MD5.53A01D3FDB701AC5D9DDE4140227E3D9] - 07/09/2016 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [183296] =>.Microsoft Corporation [MD5.D74756DD1518D28A09CDA99696273FA4] - 07/09/2016 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [119712] =>.Microsoft Windows® [MD5.E3429DBBEA3965BB96E24B16EF4A2551] - 07/09/2016 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [397216] =>.Microsoft Windows® ---\\ Liste des services NT non Microsoft et non désactivés (17) - 5s O23 - Service: McAfee Application Installer Cleanup (0162281511199756) (0162281511199756mcinstcleanup) . (.McAfee, Inc. - McAfee Installer.) - C:\Users\jean-\AppData\Local\Temp\0162281511199756mcinst.exe =>.McAfee, Inc.® O23 - Service: Emsisoft Protection Service (a2AntiMalware) . (.Emsisoft Ltd - Emsisoft Protection Service.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe =>.Emsisoft Ltd® O23 - Service: Adguard Service (Adguard Service) . (.Performix LLC - AdGuard for Windows.) - C:\Program Files (x86)\Adguard\AdguardSvc.exe =>.Performix LLC® O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\System32\atiesrxx.exe =>.AMD O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc. O23 - Service: COMODO Online Storage Service (COSService.exe) . (.COMODO Security Solutions - COMODO COSService.) - C:\Program Files\COMODO\COMMON\COSService.exe =>.Comodo Security Solutions® O23 - Service: Dragon Logger service (DragonLoggerService) . (.Nuance Communications, Inc. - Dragon NaturallySpeaking Logging Service.) - C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe =>.Nuance Communications, Inc.® O23 - Service: Dragon Service (DragonSvc) . (.Nuance Communications, Inc. - Dragon NaturallySpeaking Service.) - C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe {265A7BAB2D778E1A} =>.Nuance Communications, Inc. O23 - Service: Epson Scanner Service (EpsonScanSvc) . (.Seiko Epson Corporation - Epson Scanner Service (64bit).) - C:\Windows\system32\EscSvc64.exe =>.Seiko Epson Corporation O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® O23 - Service: LiveUpdate (LiveUpdateSvc) . (...) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe (.not file.) O23 - Service: Macrium Service (MacriumService) . (.Paramount Software UK Ltd - Macrium Reflect Utility Service.) - C:\Program Files\Macrium\Common\MacriumService.exe =>.Paramount Software UK Ltd® O23 - Service: QQPCMgr RTP Service (QQPCRTP) . (...) - C:\Program Files (x86)\Tencent\QQPCMgr\12.9.19161.223\QQPCRtp.exe (.not file.) =>.SUP.Tencent O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® O23 - Service: (SFR.DashBoard.Service) . (.SFR - SFR.DashBoard.Service.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.DashBoard.Service.exe {36C6EC4BC05F72EE031149C2474E10B2} =>.SFR O23 - Service: COMODO BackUp Service (SynchronizationService.exe) . (.COMODO Security Solutions - COMODO SynchronizationService.) - C:\Program Files\COMODO\COMMON\SynchronizationService.exe =>.Comodo Security Solutions® O23 - Service: TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 12.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH® ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (24) - 74s SS - Auto [07/09/2016] [ 53248] McAfee Application Installer Cleanup (0162281511199756) (0162281511199756mcinstcleanup) . (.McAfee, Inc..) - C:\Users\jean-\AppData\Local\Temp\0162281511199756mcinst.exe =>.McAfee, Inc.® SS - Auto [07/09/2016] [ 53248] Emsisoft Protection Service (a2AntiMalware) . (.Emsisoft Ltd.) - C:\Program Files\Emsisoft Anti-Malware\a2service.exe =>.Emsisoft Ltd® SS - Auto [07/09/2016] [ 53248] Adguard Service (Adguard Service) . (.Performix LLC.) - C:\Program Files (x86)\Adguard\AdguardSvc.exe =>.Performix LLC® SS - Auto [07/09/2016] [ 53248] (AMD External Events Utility) . (.AMD.) - C:\WINDOWS\System32\atiesrxx.exe =>.Microsoft Windows Hardware Compatibility Publisher® SS - Auto [07/09/2016] [ 53248] AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc. SS - Auto [07/09/2016] [ 53248] COMODO Online Storage Service (COSService.exe) . (.COMODO Security Solutions.) - C:\Program Files\COMODO\COMMON\COSService.exe =>.Comodo Security Solutions® SS - Demand [07/09/2016] [ 53248] Diskeeper (Diskeeper) . (.Condusiv Technologies.) - C:\Program Files\Condusiv Technologies\Diskeeper\DKService.exe {00D50D0A50CC433B7E1771514961AD98} =>.Condusiv Technologies SS - Demand [07/09/2016] [ 53248] DokanMounter (DokanMounter) . (.Paragon Software.) - C:\Program Files (x86)\Paragon Software\ExtFS for Windows\extservice.exe {247D157352D5671A5E44263793DF43D2} =>.Paragon Software SS - Auto [07/09/2016] [ 53248] Dragon Logger service (DragonLoggerService) . (.Nuance Communications, Inc..) - C:\Program Files (x86)\Common Files\Nuance\loggerservice.exe =>.Nuance Communications, Inc.® SS - Auto [07/09/2016] [ 53248] Dragon Service (DragonSvc) . (.Nuance Communications, Inc..) - C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe {265A7BAB2D778E1A} =>.Nuance Communications, Inc. SS - Auto [07/09/2016] [ 53248] Epson Scanner Service (EpsonScanSvc) . (.Seiko Epson Corporation.) - C:\Windows\system32\EscSvc64.exe =>.SEIKO EPSON Corporation® SS - Auto [07/09/2016] [ 53248] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [07/09/2016] [ 53248] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Auto [07/09/2016] [ 53248] Macrium Service (MacriumService) . (.Paramount Software UK Ltd.) - C:\Program Files\Macrium\Common\MacriumService.exe =>.Paramount Software UK Ltd® SS - Demand [07/09/2016] [ 53248] MonfloServer service (MONFLO_SVC) . (...) - C:\Program Files (x86)\Mirillis\MonfloServer\monflo_svc.exe =>.Mirillis® SS - Demand [07/09/2016] [ 53248] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SS - Demand [07/09/2016] [ 53248] @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe =>.Nero AG® SS - Demand [07/09/2016] [ 53248] Nero BackItUp Background Service (NeroBackItUpBackgroundService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero BackItUp\NBService.exe =>.Nero AG® SS - Demand [07/09/2016] [ 53248] ParagonMounter (ParagonMounter) . (.Paragon Software.) - C:\Program Files (x86)\Paragon Software\ExtFS for Windows\extservice.exe {247D157352D5671A5E44263793DF43D2} =>.Paragon Software SS - Auto [07/09/2016] [ 53248] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® SS - Auto [07/09/2016] [ 53248] (SFR.DashBoard.Service) . (.SFR.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.DashBoard.Service.exe {36C6EC4BC05F72EE031149C2474E10B2} =>.SFR SS - Auto [07/09/2016] [ 53248] COMODO BackUp Service (SynchronizationService.exe) . (.COMODO Security Solutions.) - C:\Program Files\COMODO\COMMON\SynchronizationService.exe =>.Comodo Security Solutions® SS - Auto [07/09/2016] [ 53248] TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH® SS - Demand [07/09/2016] [ 53248] Wondershare Application Framework Service (WsAppService) . (.Wondershare.) - C:\Program Files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe =>.Wondershare software CO., LIMITED® ---\\ Tâches planifiées en automatique (Registre) (91) - 11s O38 - TASK: {03929953-2218-489C-A54B-D4E2DFEDDF7D} [64Bits][\ExtFS GUI] - (.Paragon Software - Graphic user interface for Paragon ExtFS fo.) -- C:\Program Files (x86)\Paragon Software\ExtFS for Windows\Paragon ExtFS for Windows.exe [4057792] {247D157352D5671A5E44263793DF43D2} =>.Paragon Software O38 - TASK: {03A27619-8317-4B76-8A4A-AC204C77F591} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [70144] =>.Microsoft Corporation O38 - TASK: {05C35C43-30B0-478C-A045-7452BCE45E4E} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp. O38 - TASK: {061EAFF1-49A5-4001-8DCA-46230AB559CE} [64Bits][\CCleaner Update] - (.Piriform Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [498480] =>.Piriform Ltd® O38 - TASK: {065D4602-D803-4B24-8A2D-1F09B2C43F39} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cleanup] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation® O38 - TASK: {0BAC2956-DA98-46B5-BA40-6E5B0C6A7C98} [64Bits][\EPSON XP-710 Series Update {E3C7832B-981C-4D8A-9765-0314DE4144D7}] - (.SEIKO EPSON CORPORATION - E_DTSKSD.EXE.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488] =>.SEIKO EPSON Corporation® O38 - TASK: {0C518199-F01B-42CF-9CB7-16710B002812} [64Bits][\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask] - (.Microsoft Corporation - MDMAgent.) -- C:\WINDOWS\system32\MDMAgent.exe [68096] =>.Microsoft Corporation O38 - TASK: {0CC2C164-C391-4AE1-AC44-61014D23FC1F} [64Bits][\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp. O38 - TASK: {1099EE33-9FD9-4136-85D8-E7633CB502CE} [64Bits][\EPSON XP-710 Series Invitation {14E3A905-365F-481D-99D5-B624F0CB45D1}] - (.SEIKO EPSON CORPORATION - E_DTSKSD.EXE.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488] =>.SEIKO EPSON Corporation® O38 - TASK: {118061B5-F855-425F-8B38-47DB1D951D05} [64Bits][\CosUacRestartUnpriveleged] - (.COMODO Security Solutions - cCloud.) -- C:\Program Files\COMODO\cCloud\cCloud.exe [7195824] =>.Comodo Security Solutions® O38 - TASK: {13F556B7-CFCD-4571-9C30-5A27E336B3DE} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Refresh Settings] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation O38 - TASK: {186E3FCA-A925-48F1-88BF-0AD9D9289626} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [13312] =>.Microsoft Corporation O38 - TASK: {19A83AC3-5FF2-48A6-99D4-35106658F876} [64Bits][\Microsoft\Windows\Subscription\LicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [137112] =>.Microsoft Windows® O38 - TASK: {1F41298B-D003-483D-A41D-759333674C57} [64Bits][\Nero\Nero Info] - (.Nero AG - Nero Info.) -- C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6526328] =>.Nero AG® O38 - TASK: {208FAF3B-9A74-4CDC-A1BC-FCA88CA2D342} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45568] =>.Microsoft Corporation O38 - TASK: {240478A4-B7D2-43B1-AF21-626C77E72C1F} [64Bits][\Microsoft\Windows\DiskFootprint\Diagnostics] - (.Microsoft Corporation - DiskSnapshot.exe.) -- C:\WINDOWS\system32\disksnapshot.exe [82944] =>.Microsoft Corporation O38 - TASK: {2532DB2F-A598-4946-BA1F-6EBE9D19C34C} [64Bits][\Microsoft\Windows\Location\WindowsActionDialog] - (.Microsoft Corporation - Service Broker pour la boîte de dialogue Ac.) -- C:\WINDOWS\System32\WindowsActionDialog.exe [59392] =>.Microsoft Corporation O38 - TASK: {31EF6547-81DE-4DB4-B6F3-6855449815E0} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc® O38 - TASK: {33609FB3-B780-4FF6-82D9-85CADA6B9FAE} [64Bits][\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\windows\system32\MusNotification.exe [306176] =>.Microsoft Corporation O38 - TASK: {33C04DDB-DE68-4033-8570-ADDDBFF99E1B} [64Bits][\Microsoft\Windows\NlaSvc\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows® O38 - TASK: {3619A588-C82A-437E-AAB3-F0AE62D9596A} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation O38 - TASK: {3AEEF4D4-C4A8-42A1-8A1E-80CA054C2E9C} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Tâches de fond de la protection du système.) -- C:\WINDOWS\system32\srtasks.exe [57856] =>.Microsoft Corporation O38 - TASK: {3E757B5E-55B1-4F43-820F-3CA89C3FB296} [64Bits][\Microsoft\Windows\WindowsUpdate\Scheduled Start] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [68608] =>.Microsoft Corporation O38 - TASK: {3EA82649-A360-4898-A6FB-C273024D1364} [64Bits][\Microsoft\Windows\Shell\FamilySafetyMonitor] - (.Microsoft Corporation - Moniteur du contrôle parental.) -- C:\WINDOWS\System32\wpcmon.exe [1763376] =>.Microsoft Windows® O38 - TASK: {4051EB0B-2917-432F-B9F9-431C7E3C9181} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [128512] =>.Microsoft Corporation O38 - TASK: {4A5D4628-E32A-4422-9B01-D37DD4C1CE75} [64Bits][\Microsoft\Windows\WwanSvc\NotificationTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows® O38 - TASK: {4B6926D3-D490-4D93-82CE-D109F1D1BC80} [64Bits][\Microsoft\Windows\WindowsUpdate\sih] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [229888] =>.Microsoft Corporation O38 - TASK: {4F43A2E6-AE4E-480C-8289-CAFF6C0C9BC1} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Maintenance Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation O38 - TASK: {5010C4B7-1314-4A40-8FDA-19E7BB61FBA8} [64Bits][\Microsoft\Windows\Sysmain\WsSwapAssessmentTask] - (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll [972800] =>.Microsoft Corporation O38 - TASK: {52C4776E-11B1-402C-A230-0A0306A146C4} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\WINDOWS\System32\wsqmcons.exe [77824] =>.Microsoft Corporation O38 - TASK: {5BC5A21F-4785-41A6-B4B1-62FB9B08FABD} [64Bits][\Microsoft\Windows\Workplace Join\Automatic-Device-Join] - (.Microsoft Corporation - Outil de ligne de commande DSREG.) -- C:\WINDOWS\System32\dsregcmd.exe [659968] =>.Microsoft Corporation O38 - TASK: {5C326114-085E-444C-9B7A-D3E2E59C549E} [64Bits][\Microsoft\Windows\Device Information\Device] - (.Microsoft Corporation - Device Census.) -- C:\WINDOWS\system32\devicecensus.exe [34712] =>.Microsoft Windows® O38 - TASK: {5D81326C-D6EC-49A0-AAB5-D8A874E06E83} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Reboot] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [306176] =>.Microsoft Corporation O38 - TASK: {5E21119C-9331-43F4-8034-4693223F59B4} [64Bits][\Open URL by RoboForm] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [68608] =>.Microsoft Corporation O38 - TASK: {61BD468E-F5F2-4D36-8B7A-8521069DF8E9} [64Bits][\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup] - (.Microsoft Corporation - DLL du client de déploiement d’AppX.) -- C:\Windows\System32\AppxDeploymentClient.dll [654976] =>.Microsoft Windows® O38 - TASK: {621D8D38-A0DC-4121-A1A5-882E3C5BC32D} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\WINDOWS\system32\sc.exe [68608] =>.Microsoft Corporation O38 - TASK: {6772AC65-7600-4DF2-9BD5-F17292FAAE4B} [64Bits][\Microsoft\Windows\Speech\SpeechModelDownloadTask] - (.Microsoft Corporation - Speech Model Download Executable.) -- C:\Windows\System32\speech_onecore\Common\SpeechModelDownload.exe [162816] =>.Microsoft Corporation O38 - TASK: {70E0A093-79B7-461E-A9C7-B67CD7B1511E} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [89600] =>.Microsoft Corporation O38 - TASK: {710AEA9E-8004-4287-A917-0CA0A960E3C6} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation® O38 - TASK: {716AB76B-ECA8-49C1-8040-D0D14598F3A2} [64Bits][\ExtFS Updater] - (.Paragon Software Group - Paragon Updater.) -- C:\Program Files (x86)\Paragon Software\ExtFS for Windows\Updater.exe [322240] {247D157352D5671A5E44263793DF43D2} =>.Paragon Software Group O38 - TASK: {72F645BF-7724-479A-8BF1-38786D0507A8} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Verification] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation® O38 - TASK: {74D7FB4E-5765-475C-BD04-760B68036940} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Resume On Boot] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation O38 - TASK: {7508389C-FF71-4BE4-AD8A-5F56FB645036} [64Bits][\Microsoft\Windows\ApplicationData\CleanupTemporaryState] - (.Microsoft Corporation - Windows Application Data API Server.) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll [328616] =>.Microsoft Windows® O38 - TASK: {782400EA-55CC-4FF8-98B4-FF514B966E32} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation O38 - TASK: {78F76D6D-0B70-46A9-8DEB-4FCB650A6627} [64Bits][\Microsoft\Windows\SharedPC\Account Cleanup] - (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation O38 - TASK: {799AC654-A37D-49AA-B0F3-433D7D5EBBD9} [64Bits][\Microsoft\Windows\WCM\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [459168] =>.Microsoft Windows® O38 - TASK: {79A81B65-3460-4C7A-8CF8-BF528104E7C6} [64Bits][\MonfloServer] - (.Mirillis - .) -- C:\Program Files (x86)\Mirillis\MonfloServer\MonfloServer.vbs [125] =>.Mirillis O38 - TASK: {80E5FB01-DF9C-493E-B826-DD7094E7A8DB} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\WINDOWS\system32\DFDWiz.exe [51200] =>.Microsoft Corporation O38 - TASK: {829C695F-E874-432A-9A9F-7862D04236B9} [64Bits][\Microsoft\Windows\ApplicationData\DsSvcCleanup] - (.Microsoft Corporation - Data Sharing Service Maintenance Driver.) -- C:\WINDOWS\system32\dstokenclean.exe [12800] =>.Microsoft Corporation O38 - TASK: {846C5F34-D2D2-4BEF-93BB-C6AE65652083} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [7814600] =>.Piriform Ltd® O38 - TASK: {847E1739-E874-4AE6-87C9-5A88237A480C} [64Bits][\CleanTemps] - (.DESKTOP-37KC94K\jean- - .) -- C:\MaConfig\Process\CleanTemps.cmd [269] O38 - TASK: {86EA7093-F923-4D53-A066-8CDE084B8EC7} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc® O38 - TASK: {87488988-70F6-44C5-A1BD-E328BE17C205} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\WINDOWS\system32\appidpolicyconverter.exe [159744] =>.Microsoft Corporation O38 - TASK: {88209412-5377-4AA1-B01E-F5D5A6F39E21} [64Bits][\Microsoft\Windows\SpacePort\SpaceAgentTask] - (.Microsoft Corporation - Paramètres des espaces de stockage.) -- C:\WINDOWS\system32\SpaceAgent.exe [129536] =>.Microsoft Corporation O38 - TASK: {88D1B06D-FABE-44C1-BB35-C27FC074B47F} [64Bits][\Microsoft\Windows\Subscription\EnableLicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [137112] =>.Microsoft Windows® O38 - TASK: {88E18EB0-E633-47C9-8FE5-84CEAB8F5EF7} [64Bits][\microsoft\windows\applicationdata\appuriverifierdaily] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [105472] =>.Microsoft Corporation O38 - TASK: {896ED842-4861-49E9-A2C1-0AE31689F876} [64Bits][\Microsoft\Windows\Clip\License Validation] - (.Microsoft Corporation - Client License Platform migration tool.) -- C:\WINDOWS\System32\ClipUp.exe [1347640] =>.Microsoft Windows Publisher® O38 - TASK: {8DDC14C9-4121-4753-9B37-261E9C12376E} [64Bits][\OneDrive Standalone Update Task-S-1-5-21-4265624635-2019933758-61733912-1001] - (.Microsoft Corporation - Standalone Updater.) -- C:\Users\jean-\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2296008] =>.Microsoft Corporation® O38 - TASK: {8EE52AD7-9F81-40D3-AE0C-9F5DB09BC56F} [64Bits][\Microsoft\Windows\DiskCleanup\SilentCleanup] - (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\WINDOWS\system32\cleanmgr.exe [217088] =>.Microsoft Corporation O38 - TASK: {932257A6-F45D-4437-B443-81D92A9C41C3} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Windows Defender\MpCmdRun.exe [438032] =>.Microsoft Corporation® O38 - TASK: {936FF605-A684-4476-8E62-E051A903B3D3} [64Bits][\Microsoft\Windows\Time Zone\SynchronizeTimeZone] - (.Microsoft Corporation - TimeZone Sync Task.) -- C:\WINDOWS\system32\tzsync.exe [60928] =>.Microsoft Corporation O38 - TASK: {938954E2-DAFB-4BCD-8740-6AC11EBFE13C} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\WINDOWS\system32\appidcertstorecheck.exe [19456] =>.Microsoft Corporation O38 - TASK: {95F7441D-F4DE-4103-8791-34DEA0DB80C0} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [815616] =>.Microsoft Corporation O38 - TASK: {9CF304F4-4D08-4DBB-A568-102240A2160B} [64Bits][\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser] - (.Microsoft Corporation - Tâche de l’analyseur d’expérience de compte.) -- C:\WINDOWS\System32\MbaeParserTask.exe [112640] =>.Microsoft Corporation O38 - TASK: {A56D8ADE-6282-46DD-A936-50C31B3AA72F} [64Bits][\EPSON XP-710 Series Invitation {E3C7832B-981C-4D8A-9765-0314DE4144D7}] - (.SEIKO EPSON CORPORATION - E_DTSKSD.EXE.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488] =>.SEIKO EPSON Corporation® O38 - TASK: {B0B01AAA-FF6C-4441-B75E-44A24B0B37CD} [64Bits][\Microsoft\Windows\DUSM\dusmtask] - (.Microsoft Corporation - DUSM Task.) -- C:\WINDOWS\System32\dusmtask.exe [35840] =>.Microsoft Corporation O38 - TASK: {B578763A-8E86-421F-BE3C-56986BA31A96} [64Bits][\BackItUp_Launch] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero BackItUp\BackItUp.exe [1143664] =>.Nero AG® O38 - TASK: {B5EA650A-8EE9-4BA5-BAA0-2A8ACE00500D} [64Bits][\Microsoft\Windows\SpacePort\SpaceManagerTask] - (.Microsoft Corporation - Storage Spaces Manager.) -- C:\WINDOWS\system32\spaceman.exe [34816] =>.Microsoft Corporation O38 - TASK: {BCC432F2-7A57-4195-881F-9013CF46F613} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\WINDOWS\system32\lpremove.exe [66560] =>.Microsoft Corporation O38 - TASK: {BD69C6ED-AD55-467C-B787-533200C3B376} [64Bits][\Microsoft\XblGameSave\XblGameSaveTask] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation O38 - TASK: {BEAF8A6C-47E0-4E84-840B-3A61426B5AAD} [64Bits][\Microsoft\Windows\Application Experience\StartupAppTask] - (.Microsoft Corporation - DLL de tâche d’analyse de démarrage.) -- C:\Windows\System32\Startupscan.dll [19968] =>.Microsoft Corporation O38 - TASK: {C05E2FFD-7D0D-4F6B-952B-A3318F829D19} [64Bits][\Microsoft\Windows\Management\Provisioning\Cellular] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [68608] =>.Microsoft Corporation O38 - TASK: {C162FF56-952F-4ABA-AE13-AA8CB0F4C087} [64Bits][\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers] - (.Microsoft Corporation - Module d’installation de pilotes.) -- C:\WINDOWS\System32\drvinst.exe [158720] =>.Microsoft Corporation O38 - TASK: {C97B639A-C1BF-4E0C-ACFD-CF5B27B65B3C} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\WINDOWS\system32\wermgr.exe [187800] =>.Microsoft Windows® O38 - TASK: {CD19BC8A-E9FE-49ED-92A5-0E1194F69F00} [64Bits][\Microsoft\XblGameSave\XblGameSaveTaskLogon] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation O38 - TASK: {CDC553D2-B5AD-4AF3-BB6D-5AA47466C1F9} [64Bits][\Microsoft\Windows\Management\Provisioning\Logon] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [68608] =>.Microsoft Corporation O38 - TASK: {CFE9501D-B60F-45DB-B48F-19C572F7F30E} [64Bits][\microsoft\windows\applicationdata\appuriverifierinstall] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [105472] =>.Microsoft Corporation O38 - TASK: {D12786FD-2075-43C0-B4FB-737254EA8B87} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Policy Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation O38 - TASK: {D2C50CE0-7E9B-4F0D-A2A4-95AC59829444} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [40448] =>.Microsoft Corporation O38 - TASK: {D5EBF28C-A33D-4CBA-8355-0F457EE12498} [64Bits][\Microsoft\Windows\Application Experience\ProgramDataUpdater] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [136088] =>.Microsoft Windows® O38 - TASK: {D818D9F7-684A-4FF4-A6D5-C0F0E1026B8D} [64Bits][\Microsoft\Windows\UNP\RunCampaignManager] - (.Microsoft Corporation - UNP CampaignManager.) -- C:\WINDOWS\System32\UNP\UNPCampaignManager.exe [1039712] =>.Microsoft Windows® O38 - TASK: {DDA42FD6-6371-4A93-9B6A-266BE87F9597} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Schedule Scan] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [34304] =>.Microsoft Corporation O38 - TASK: {DF8364F0-6D56-4E59-B7D8-4FB25D10E4F6} [64Bits][\ShouldIRemoveIt_Notifications] - (. - Should I Remove It? notifications (optional.) -- C:\Program Files (x86)\Reason\Should I Remove It\ShouldIRemoveIt.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan O38 - TASK: {E11183CC-FCAC-479E-B422-6A72654C14EA} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Notification d'emplacement.) -- C:\WINDOWS\System32\LocationNotificationWindows.exe [66560] =>.Microsoft Corporation O38 - TASK: {E1A3F1CB-8239-492C-A85E-74BAD2516214} [64Bits][\User_Feed_Synchronization-{3EF053DA-9088-495B-9E19-1A7664ABB844}] - (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [15360] =>.Microsoft Corporation O38 - TASK: {E92D141A-0D16-47B4-BAF4-0E0B807A4A76} [64Bits][\CreateExplorerShellUnelevatedTask] - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe [4848952] =>.Microsoft Windows® O38 - TASK: {EC11A6F7-343D-49E9-A974-A3716157F2C1} [64Bits][\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [136088] =>.Microsoft Windows® O38 - TASK: {F51CC70D-E5EA-449B-809B-EA89C8710DD1} [64Bits][\EPSON XP-710 Series Update {14E3A905-365F-481D-99D5-B624F0CB45D1}] - (.SEIKO EPSON CORPORATION - E_DTSKSD.EXE.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [679488] =>.SEIKO EPSON Corporation® O38 - TASK: {F88E01C2-99E3-4AF6-BFAA-7ACC8EF521D4} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClient] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [89600] =>.Microsoft Corporation O38 - TASK: {F9015704-44A7-4962-B811-A4C0206CF851} [64Bits][\Microsoft\Windows\WindowsUpdate\sihboot] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [229888] =>.Microsoft Corporation O38 - TASK: {FCA1FFDF-8B63-4DD7-95F7-DA75420495D7} [64Bits][\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\windows\system32\MusNotification.exe [306176] =>.Microsoft Corporation ---\\ Applications lancées au démarrage du système (19) - 6s O4 - HKLM\..\Run: [emsisoft anti-malware] . (.Emsisoft Ltd - Emsisoft Real-Time Protection.) -- c:\program files\emsisoft anti-malware\a2guard.exe =>.Emsisoft Ltd® O4 - HKCU\..\Run: [Power2GoExpress11] . (.CyberLink Corp. - Power2Go Desktop Burning Gadget.) -- C:\Program Files (x86)\CyberLink\Power2Go11\Power2GoExpress.exe =>.CyberLink Corp.® O4 - HKCU\..\Run: [AshSnap] . (.Ashampoo GmbH & Co. KG - Ashampoo Snap Business.) -- C:\Program Files (x86)\Ashampoo\Ashampoo Snap Business 10\ashsnap.exe =>.Ashampoo GmbH & Co. KG® O4 - HKCU\..\Run: [ISUSPM] . (.Flexera Software LLC. - Common Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe =>.Flexera Software LLC® O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKCU\..\Run: [CCleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKCU\..\Run: [Adguard] . (.Performix LLC - AdGuard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe =>.Performix LLC® O4 - HKLM\..\Wow6432Node\Run: [CLMLServer_For_P2G11] . (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go11\CLMLSvc_P2G11.exe =>.CyberLink Corp.® O4 - HKLM\..\Wow6432Node\Run: [Wondershare Helper Compact.exe] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe =>.Wondershare Technology Co.,Ltd® O4 - HKLM\..\Wow6432Node\Run: [ISUSPM] . (.Flexera Software LLC. - Common Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\isuspm.exe =>.Flexera Software LLC® O4 - HKLM\..\Wow6432Node\RunOnce: [{1E504276-A4F4-416C-88DF-01C86482FA46}] . (. - .) -- (.Orphan.) O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows® O4 - HKUS\S-1-5-21-4265624635-2019933758-61733912-1001\..\Run: [Power2GoExpress11] . (.CyberLink Corp. - Power2Go Desktop Burning Gadget.) -- C:\Program Files (x86)\CyberLink\Power2Go11\Power2GoExpress.exe =>.CyberLink Corp.® O4 - HKUS\S-1-5-21-4265624635-2019933758-61733912-1001\..\Run: [AshSnap] . (.Ashampoo GmbH & Co. KG - Ashampoo Snap Business.) -- C:\Program Files (x86)\Ashampoo\Ashampoo Snap Business 10\ashsnap.exe =>.Ashampoo GmbH & Co. KG® O4 - HKUS\S-1-5-21-4265624635-2019933758-61733912-1001\..\Run: [ISUSPM] . (.Flexera Software LLC. - Common Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe =>.Flexera Software LLC® O4 - HKUS\S-1-5-21-4265624635-2019933758-61733912-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKUS\S-1-5-21-4265624635-2019933758-61733912-1001\..\Run: [CCleaner] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKUS\S-1-5-21-4265624635-2019933758-61733912-1001\..\Run: [Adguard] . (.Performix LLC - AdGuard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe =>.Performix LLC® ---\\ Processus lancés (3) - 6s [MD5.CE851F0108F799A58A8F112C0CE3F1B5] - (...) -- C:\Program Files (x86)\EaseUS\EaseUS EverySync\bin\EaseUSEverySyncCache.exe [992808] [PID.2844] [MD5.509BF90874E65436432344C0C0DD56C1] - (.Ashampoo Development GmbH & Co. KG - Ashampoo UI7 Guard.) -- C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 7\UI7Guard.exe [1848216] [PID.356] =>.Ashampoo GmbH & Co. KG® [MD5.579D44335F9A686047EA77F20C8DC12C] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\jean-\AppData\Roaming\ZHP\ZHPDiag3.exe [2929536] [PID.7552] =>.Nicolas Coolman ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (12) - 6s M0 - MFSP: prefs.js [jean- - l81e2byz.default] http://fr.search.yahoo.com/ =>.Yahoo! Inc. P2 - EXT FILE: (...) -- C:\Users\jean-\AppData\Roaming\Mozilla\Firefox\Profiles\l81e2byz.default\searchplugins\yahoo! powered.xml =>Adware.YahooPowered P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\activity-stream@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\onboarding@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr =>.Google Inc. R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr =>.Google Inc. R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr =>.Google Inc. R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr/ =>.Google Inc. R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr =>.Google Inc. R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.fr =>.Google Inc. R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr/ =>.Google Inc. R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr =>.Google Inc. R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.fr =>.Google Inc. R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.15063.608 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation ---\\ Internet Explorer,Proxy Management (3) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSWOW64\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object de navigateur (BHO) (2) - 1s O2 - BHO: TSWebMon [64Bits] - {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} (.Orphan.) O2 - BHO: Easy Photo Print [64Bits] - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.Seiko Epson Corporation - Epson Easy Photo Print (TBL x64).) -- C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll =>.SEIKO EPSON CORPORATION® ---\\ Internet Explorer, Barre d'outil (1) - 2s O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.) ---\\ Raccourcis Global Startup (34) - 8s O4 - GS\Desktop [Administrateur]: AdsFix_Donate.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.paypal.com/ =>.Microsoft Corporation O4 - GS\Desktop [Administrateur]: IM-Magic Partition Resizer Free.lnk . (.IM-Magic Inc. - IM-Magic Partition Resizer.) C:\Program Files\IM-Magic\Partition Resizer\dm.resizer.exe =>.IM-Magic Inc. O4 - GS\Desktop [Administrateur]: Pre_Scan_Donate.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Desktop [Administrateur]: Pre_Scan_Restore.lnk . (...) C:\Pre_Scan\Pre_Scan_Restore.exe C:\Pre_Scan O4 - GS\Desktop [Administrateur]: UsbFix.lnk . (.Copyright (C) 2013-2016 SOSVirus - UsbFix.) C:\Users\jean-\AppData\Roaming\UsbFix\UsbFix.exe O4 - GS\Desktop [Administrateur]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\jean-\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\jean-\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\Desktop [jean-]: AdsFix_Donate.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.paypal.com/ =>.Microsoft Corporation O4 - GS\Desktop [jean-]: IM-Magic Partition Resizer Free.lnk . (.IM-Magic Inc. - IM-Magic Partition Resizer.) C:\Program Files\IM-Magic\Partition Resizer\dm.resizer.exe =>.IM-Magic Inc. O4 - GS\Desktop [jean-]: Pre_Scan_Donate.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Desktop [jean-]: Pre_Scan_Restore.lnk . (...) C:\Pre_Scan\Pre_Scan_Restore.exe C:\Pre_Scan O4 - GS\Desktop [jean-]: UsbFix.lnk . (.Copyright (C) 2013-2016 SOSVirus - UsbFix.) C:\Users\jean-\AppData\Roaming\UsbFix\UsbFix.exe O4 - GS\Desktop [jean-]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\jean-\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Desktop [jean-]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\jean-\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\sendTo [jean-]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\CommonDesktop [Public]: Adguard.lnk . (.Performix LLC - AdGuard for Windows.) C:\Program Files (x86)\Adguard\Adguard.exe =>.Performix LLC® O4 - GS\CommonDesktop [Public]: Ashampoo Photo Commander 14.lnk . (.Ashampoo GmbH & Co. KG - Ashampoo Photo Commander 14.) C:\Program Files (x86)\Ashampoo\Ashampoo Photo Commander 14\apc.exe =>.Ashampoo GmbH & Co. KG® O4 - GS\CommonDesktop [Public]: Ashampoo Snap Business 10.lnk . (.Ashampoo GmbH & Co. KG - Ashampoo Snap Business.) C:\Program Files (x86)\Ashampoo\Ashampoo Snap Business 10\ashsnap.exe =>.Ashampoo GmbH & Co. KG® O4 - GS\CommonDesktop [Public]: Ashampoo UnInstaller 6.lnk . (.Ashampoo Development GmbH & Co. KG - Ashampoo UI 6.) C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 6\UI6.exe =>.Ashampoo GmbH & Co. KG® O4 - GS\CommonDesktop [Public]: Ashampoo UnInstaller 7.lnk . (.Ashampoo Development GmbH & Co. KG - Ashampoo UI 7.) C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 7\UI7.exe =>.Ashampoo GmbH & Co. KG® O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - GS\CommonDesktop [Public]: Confidential.lnk . (.TagForge - Confidential.) C:\Program Files (x86)\TagForge\Confidential\tagger.exe O4 - GS\CommonDesktop [Public]: MonfloClientPC.lnk . (...) C:\Program Files (x86)\Mirillis\MonfloServer\MonfloClientPC\MonfloClient.exe =>.Mirillis® O4 - GS\CommonDesktop [Public]: MonfloServer.lnk . (.Mirillis Ltd. - Monflo Server.) C:\Program Files (x86)\Mirillis\MonfloServer\MonfloServer.exe =>.Mirillis® O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: Removal Tool.lnk . (.9-lab LLC - 9-lab Malware Removal Tool.) C:\Program Files\9-lab\Removal Tool\rmtool.exe =>.9-Lab® O4 - GS\CommonDesktop [Public]: RogueKiller.lnk . (.Adlice Software - Anti-malware remediation tool.) C:\Program Files\RogueKiller\RogueKiller64.exe =>.Adlice® O4 - GS\CommonDesktop [Public]: WinRAR.lnk . (.Alexander Roshal - .) C:\Program Files (x86)\WinRAR\WinRAR.exe =>.Alexander Roshal O4 - GS\CommonDesktop [Public]: Wise Auto Shutdown.lnk . (.WiseCleaner.COM - Wise Auto Shutdown.) C:\Program Files (x86)\Wise\Wise Auto Shutdown\WiseAutoShutdown.exe =>.Lespeed Technology Ltd.® O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Assistant Mise à niveau de Windows 10.lnk . (.Microsoft Corporation - Assistant Mise à jour de Windows 10.) C:\Windows10Upgrade\Windows10UpgraderApp.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\ProgramsCommon [Public]: Prism - Convertisseur de fichiers vidéo.lnk . (.NCH Software - Prism - Convertisseur de fichiers vidéo.) C:\Program Files (x86)\NCH Software\Prism\prism.exe =>.NCH Software® ---\\ Modification Domaine/Adresses DNS (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{a778058e-ddb3-4e56-a8fe-5582c6425c94}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress ---\\ Protocole additionnel (22) - 0s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation ---\\ Logiciels installés (168) - 71s O42 - Logiciel: 9-lab Removal Tool - (..) [HKLM][64Bits] -- 9-lab Removal Tool =>.9-Lab® O42 - Logiciel: Acer Crystal Eye webcam Ver:1.1.192.810 - (.Chicony Electronics Co.,Ltd..) [HKLM][64Bits] -- {D0ACE89D-EC7F-470F-80BE-4C98ED366B32} =>.Chicony Electronics Co., Ltd.® O42 - Logiciel: Acer ePower Management - (.Acer Incorporated.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964} =>.Acer Incorporated O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} =>.Acer Incorporated® O42 - Logiciel: Acer VCM - (.Acer Incorporated.) [HKLM][64Bits] -- {047F790A-7A2A-4B6A-AD02-38092BA63DAC} =>.Acer Incorporated O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} =>.Adobe Systems Incorporated O42 - Logiciel: Adguard - (.Performix LLC.) [HKLM][64Bits] -- {1ba1c838-bba2-49ed-8738-fd92b81204eb} =>.Performix LLC® O42 - Logiciel: Adguard - (.Performix LLC.) [HKLM][64Bits] -- {685F6AB3-7C61-42D1-AE5B-3864E48D1035} =>.Performix LLC O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F2E04A40-3EA7-42F8-B7CC-B6E7A39DC150} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001} =>.Adobe Systems Incorporated O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp =>.Advanced Micro Devices, Inc.® O42 - Logiciel: AOMEI OneKey Recovery 1.6 - (.AOMEI Technology Co., Ltd..) [HKLM][64Bits] -- {A83692F5-3E9B-4E95-9E7E-B5DF553690FD}_is1 =>.AOMEI Technology Co., Ltd. O42 - Logiciel: Application Compatibility Toolkit - (.Microsoft.) [HKLM][64Bits] -- {CE3829CE-559B-3BFA-BAE7-0F745FAFCD28} =>.Microsoft O42 - Logiciel: Ashampoo Photo Commander 14 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {0A11EA01-616B-A905-B3D2-3B7C238851DC}_is1 =>.Ashampoo GmbH & Co. KG® O42 - Logiciel: Ashampoo Slideshow Studio 2017 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {91B33C97-41EE-3DB7-1FDD-5308E332AC28}_is1 =>.Ashampoo GmbH & Co. KG® O42 - Logiciel: Ashampoo Snap Business 10 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {0A11EA01-B8D3-070F-8078-A1A0F010BD33}_is1 =>.Ashampoo GmbH & Co. KG® O42 - Logiciel: Ashampoo UnInstaller 6 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {4209F371-7DE5-9DF2-5DEF-91667EBBBBC5}_is1 =>.Ashampoo GmbH & Co. KG® O42 - Logiciel: Ashampoo UnInstaller 7 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- {4209F371-C268-A90D-7A44-135E420FACEF}_is1 =>.Ashampoo GmbH & Co. KG® O42 - Logiciel: Assessments on Client - (.Microsoft.) [HKLM][64Bits] -- {F8288793-51B6-47EF-2F93-D37767663FC5} =>.Microsoft O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549} =>.Atheros Communications Inc.® O42 - Logiciel: Avanquest update - (.Avanquest Software.) [HKLM][64Bits] -- {76E41F43-59D2-4F30-BA42-9A762EE1E8DE} =>.Avanquest® O42 - Logiciel: AvcEngine - (.adaware.) [HKLM][64Bits] -- {D2F2C330-FC34-4190-BA46-4BF58450F37F} =>.adaware O42 - Logiciel: CameraHelperMsi - (.Logitech.) [HKLM][64Bits] -- {15634701-BACE-4449-8B25-1567DA8C9FD3} =>.Logitech O42 - Logiciel: cbColors Folder Icons Full - (.ArcticLine Software.) [HKLM][64Bits] -- cbColors Folder Icons Full_is1 =>.ArcticLine Software O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd® O42 - Logiciel: Confidential - (.Tag Forge.) [HKLM][64Bits] -- {5389d637-f3b2-4a8c-bf06-4418b66b5e46} {00F05A549DB3D02A822A57B03E94E49708} O42 - Logiciel: Confidential - (.Tag Forge.) [HKLM][64Bits] -- {ABA01B4F-764C-4CC1-8D86-510A159A18C7} O42 - Logiciel: CyberLink LabelPrint 2.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} =>.CyberLink Corp.® O42 - Logiciel: CyberLink LabelPrint 2.5 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Power2Go 11 - (.CyberLink Corp..) [HKLM][64Bits] -- {7A3F32E0-D8E1-40C1-8E1B-1F5693F2ADE0} =>.CyberLink Corp. O42 - Logiciel: CyberLink PresenterLink+ - (.CyberLink Corp..) [HKLM][64Bits] -- {7A3F3715-7953-4247-8B5C-5D03050B9EA9} =>.CyberLink Corp. O42 - Logiciel: CyberLink WaveEditor 2 - (.CyberLink Corp..) [HKLM][64Bits] -- {324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3} =>.CyberLink Corp. O42 - Logiciel: Diskeeper 15 - (.Condusiv Technologies.) [HKLM][64Bits] -- {9A17EDA8-85DD-4B99-AB97-6B5D58A878E0} =>.Condusiv Technologies O42 - Logiciel: Dragon NaturallySpeaking 13 - (.Nuance Communications Inc..) [HKLM][64Bits] -- {33EA20FB-5389-4938-BA59-2BCD9BB68F41} =>.Nuance Communications Inc. O42 - Logiciel: EaseUS EverySync 3.0 - (.EaseUS.) [HKLM][64Bits] -- EaseUS EverySync_is1 =>.EaseUS O42 - Logiciel: EaseUS Todo PCTrans 9.0 - (.EaseUS.) [HKLM][64Bits] -- EaseUS Todo PCTrans_is1 =>.EaseUS O42 - Logiciel: Emsisoft Anti-Malware - (.Emsisoft Ltd..) [HKLM][64Bits] -- {CA975286-D816-410C-B6C9-F7213CA84695} =>.Emsisoft Ltd. O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {07AA1C7F-E8CA-4FDC-B975-BC9EBC22B6DE} =>.SEIKO EPSON CORPORATION® O42 - Logiciel: Epson Event Manager - (.Seiko Epson Corporation.) [HKLM][64Bits] -- {9F205E94-9E42-4486-A92A-DF3F6CB85444} =>.Seiko Epson Corporation O42 - Logiciel: Epson E-Web Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {6BF9F374-EC67-4808-A90C-F127DE6D989D} =>.Seiko Epson Corporation O42 - Logiciel: Epson Print CD - (.Seiko Epson Corporation.) [HKLM][64Bits] -- {D16A31F9-276D-4968-A753-FFEAC56995D0} =>.SEIKO EPSON CORPORATION® O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner =>.SEIKO EPSON CORPORATION® O42 - Logiciel: Epson Software Updater - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {B55DB65D-EF6E-4E04-89D5-B03603BF681B} =>.Seiko Epson Corporation O42 - Logiciel: EPSON XP-710 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON XP-710 Series =>.SEIKO EPSON Corporation® O42 - Logiciel: erLT - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} =>.Logitech, Inc. O42 - Logiciel: Everyday Folder Icons v 1.0 - (.ArcticLine Software.) [HKLM][64Bits] -- Everyday Folder Icons_is1 =>.ArcticLine Software O42 - Logiciel: eXpert PDF démo - (.Avanquest.) [HKCU][64Bits] -- {EF0B188B-6C1F-4573-8979-DAB1C66266CD} =>.Avanquest O42 - Logiciel: Express Burn Disc Burning Software - (.NCH Software.) [HKLM][64Bits] -- ExpressBurn =>.NCH Software® O42 - Logiciel: Express Zip - Compresseur de fichiers - (.NCH Software.) [HKLM][64Bits] -- ExpressZip =>.NCH Software® O42 - Logiciel: Extra Folder Icons Full - (.ArcticLine Software.) [HKLM][64Bits] -- Extra Folder Icons Full_is1 =>.ArcticLine Software O42 - Logiciel: File Identifier - (.Sharpened Productions.) [HKLM][64Bits] -- {C257E434-E8F1-4E06-A616-598E4933553E}_is1 =>.Sharpened Productions O42 - Logiciel: FileMarker.NET Pro v 1.0 - (.ArcticLine Software.) [HKLM][64Bits] -- {A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1 =>.ArcticLine Software O42 - Logiciel: FirewallEngine - (.adaware.) [HKLM][64Bits] -- {232046DA-BB57-4114-9A0D-1119F00C4398} =>.adaware O42 - Logiciel: Folder Marker Pro - (.ArcticLine Software.) [HKLM][64Bits] -- Folder Marker Pro_is1 =>.ArcticLine Software O42 - Logiciel: GDR 5343 pour SQL Server 2012 (KB3045321) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB3045321 =>.Microsoft Corporation® O42 - Logiciel: GDR 5388 pour SQL Server 2012 (KB3194719) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB3194719 =>.Microsoft Corporation® O42 - Logiciel: Gestionnaire de Connexion SFR 3.1 - (.SFR.) [HKLM][64Bits] -- {FC48747D-095F-4CF6-B54E-37D4F4738A15}_is1 =>.SFR O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc. O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card =>.Acer Incorporated® O42 - Logiciel: Imaging And Configuration Designer - (.Microsoft.) [HKLM][64Bits] -- {05935793-A34C-4272-3361-7AF9AEEE5649} =>.Microsoft O42 - Logiciel: Imaging Designer - (.Microsoft.) [HKLM][64Bits] -- {FB54F620-9555-3A11-26CB-B027C4DDF260} =>.Microsoft O42 - Logiciel: Imaging Tools Support - (.Microsoft.) [HKLM][64Bits] -- {C30A729A-E9BA-37F8-3C58-64AD9F1D4694} =>.Microsoft O42 - Logiciel: IM-Magic Partition Resizer Free 2017 - (.IM-Magic Inc..) [HKLM][64Bits] -- IM_Magic_PR =>.IM-Magic Inc. O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation® O42 - Logiciel: iSkysoft iMedia Converter Deluxe(Build 8.8.0.1) - (.iSkysoft Software.) [HKLM][64Bits] -- iSkysoft iMedia Converter Deluxe_is1 =>.iSkysoft Software O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {8E5233E1-7495-44FB-8DEB-4BE906D59619} =>.Microsoft Corporation O42 - Logiciel: Kit de déploiement et d’évaluation Windows - Windows 10 - (.Microsoft Corporation.) [HKLM][64Bits] -- {39ebb79f-797c-418f-b329-97cfdf92b7ab} =>.Microsoft Corporation® O42 - Logiciel: Kits Configuration Installer - (.Microsoft.) [HKLM][64Bits] -- {C661B45B-1D2A-AF7C-27D0-B4FFD670A4FE} =>.Microsoft O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM][64Bits] -- LManager =>.Dritek System Inc.® O42 - Logiciel: Logitech Webcam Software - (.Logitech Inc..) [HKLM][64Bits] -- {D40EB009-0499-459c-A8AF-C9C110766215} =>.Logitech® O42 - Logiciel: LWS Facebook - (.Logitech.) [HKLM][64Bits] -- {FF167195-9EE4-46C0-8CD7-FBA3457E88AB} =>.Logitech O42 - Logiciel: LWS Gallery - (.Logitech.) [HKLM][64Bits] -- {6F76EC3C-34B1-436E-97FB-48C58D7BEDCD} =>.Logitech O42 - Logiciel: LWS Help_main - (.Logitech.) [HKLM][64Bits] -- {1651216E-E7AD-4250-92A1-FB8ED61391C9} =>.Logitech O42 - Logiciel: LWS Launcher - (.Logitech.) [HKLM][64Bits] -- {83C8FA3C-F4EA-46C4-8392-D3CE353738D6} =>.Logitech O42 - Logiciel: LWS Motion Detection - (.Logitech.) [HKLM][64Bits] -- {71E66D3F-A009-44AB-8784-75E2819BA4BA} =>.Logitech O42 - Logiciel: LWS Pictures And Video - (.Logitech.) [HKLM][64Bits] -- {08610298-29AE-445B-B37D-EFBE05802967} =>.Logitech O42 - Logiciel: LWS Twitter - (.Logitech.) [HKLM][64Bits] -- {174A3B31-4C43-43DD-866F-73C9DB887B48} =>.Logitech O42 - Logiciel: LWS Webcam Software - (.Logitech.) [HKLM][64Bits] -- {8937D274-C281-42E4-8CDB-A0B2DF979189} =>.Logitech O42 - Logiciel: LWS WLM Plugin - (.Logitech.) [HKLM][64Bits] -- {9DAEA76B-E50F-4272-A595-0124E826553D} =>.Logitech O42 - Logiciel: LWS YouTube Plugin - (.Logitech.) [HKLM][64Bits] -- {21DF0294-6B9D-4741-AB6F-B2ABFBD2387E} =>.Logitech O42 - Logiciel: Macrium Reflect Free Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- {DF15DF65-0D1A-4A5D-9BF0-B0DAC51398B0} =>.Paramount Software (UK) Ltd. O42 - Logiciel: Macrium Reflect Free Edition - (.Paramount Software (UK) Ltd..) [HKLM][64Bits] -- MacriumReflect =>.Paramount Software UK Ltd® O42 - Logiciel: Manuels EPSON - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {84CECC1B-21EF-41B1-9A91-3E724E5D99D3} =>.Seiko Epson Corporation O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation® O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation O42 - Logiciel: Microsoft VSS Writer for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3E0DD83F-BE4C-4478-86A0-AD0D79D1353E} =>.Microsoft Corporation O42 - Logiciel: MonfloServer - (.Mirillis.) [HKLM][64Bits] -- Mirillis MonfloServer =>.Mirillis O42 - Logiciel: Mozilla Firefox 57.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 57.0 (x86 fr) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC} =>.Microsoft Corporation O42 - Logiciel: MXAx64 - (.Microsoft.) [HKLM][64Bits] -- {E17085AE-9658-AA36-AE63-2A79581D8B64} =>.Microsoft O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE} =>.Egis Technology Inc. O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE} =>.Egis Technology Inc. O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {40F2F005-FA4C-4BEA-83A6-BFD969467594} =>.Nero AG O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM][64Bits] -- {A163159C-B476-4501-B163-3F77809AC833} =>.Nero AG O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {CFB0F37D-22E7-4F37-8FAE-B319A58AC5B9} =>.Nero AG O42 - Logiciel: Nero BurningROM 2016 - (.Nero AG.) [HKLM][64Bits] -- {83D2F005-37FD-4321-B5F7-24EFEACC9834} =>.Nero AG O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63} =>.Nero AG O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263} =>.Nero AG O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM][64Bits] -- {92EBE575-0C6E-4713-B095-34BB927E5AC6} =>.Nero AG O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {F030BFE8-8476-4C08-A553-233DE80A2BE1} =>.Nero AG O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {EF0BA418-AF37-471E-9594-EAE5913F4681} =>.Nero AG O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0} =>.Nero AG O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} =>.Nero AG O42 - Logiciel: OnlineThreatsEngine - (.adaware.) [HKLM][64Bits] -- {26F31E12-3722-45FD-903B-49012286BB4C} =>.adaware O42 - Logiciel: OpenAL - (.Open Audio Library.) [HKLM][64Bits] -- OpenAL =>.Creative Labs Inc® O42 - Logiciel: Paragon ExtFS for Windows - (.Paragon Software GmbH.) [HKLM][64Bits] -- {F0CF025B-D6F3-4F7C-939B-23291F52875C} O42 - Logiciel: Paragon Migrate OS to SSD™ 4.0 - (.Paragon Software.) [HKLM][64Bits] -- {D4378A80-C713-11DF-9399-005056C00008} =>.Paragon Software O42 - Logiciel: PDF-to-HTML 1.1 Demo - (..) [HKLM][64Bits] -- PDF-to-HTML 1.1 Demo O42 - Logiciel: Pixillion - Convertisseur de fichiers image - (.NCH Software.) [HKLM][64Bits] -- Pixillion =>.NCH Software® O42 - Logiciel: Prerequisite installer - (.Nero AG.) [HKLM][64Bits] -- {5F284483-EE8D-447E-BEBE-2BF13B08C4BF} =>.Nero AG O42 - Logiciel: Prism - Convertisseur de fichiers vidéo - (.NCH Software.) [HKLM][64Bits] -- Prism =>.NCH Software® O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconduct Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp® O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp® O42 - Logiciel: Rebit 5: Avanquest Extensions - (.Rebit, Inc..) [HKLM][64Bits] -- {CFD5FF4C-CF60-4D33-8E8C-B51CD9AD34B1} =>.Rebit, Inc. O42 - Logiciel: Rebit 5: core components (64 bit) - (.Rebit, Inc..) [HKLM][64Bits] -- {9D025A34-3F45-4F2E-929A-A33CC939C77D} =>.Rebit, Inc. O42 - Logiciel: Rebit 5: Viewer components (64 bit) - (.Rebit, Inc..) [HKLM][64Bits] -- {80B6E801-3CD2-4A1A-A30E-D38195E41B25} =>.Rebit, Inc. O42 - Logiciel: Rebit Pro (32-bit) - (.Rebit, Inc..) [HKLM][64Bits] -- {AE7F7F16-8015-44F2-A5E5-306F50ED8E41} =>.Rebit, Inc. O42 - Logiciel: Rebit Pro (64-bit) - (.Rebit, Inc..) [HKLM][64Bits] -- {77BE1F2C-552C-438E-8E6B-4C0816BDEC5D} =>.Rebit, Inc. O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva =>.Piriform Ltd® O42 - Logiciel: RogueKiller version 12.11.24.0 - (.Adlice Software.) [HKLM][64Bits] -- 8B3D7924-ED89-486B-8322-E8594065D5CB_is1 =>.Adlice® O42 - Logiciel: Service Pack 2 for SQL Server 2012 (KB2958429) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2958429 =>.Microsoft Corporation® O42 - Logiciel: SQL Server 2012 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {124D51A1-F3C2-45AE-B812-D3CA71247093} =>.Microsoft Corporation O42 - Logiciel: SQL Server 2012 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D29ED63-84F9-4EC7-B49F-994A3A3195B2} =>.Microsoft Corporation O42 - Logiciel: SQL Server 2012 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {87D50333-E534-493A-8E98-0A49BC28F64B} =>.Microsoft Corporation O42 - Logiciel: SQL Server 2012 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {C22613C2-C7A4-4761-A906-116ECD4E7477} =>.Microsoft Corporation O42 - Logiciel: SQL Server 2012 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {54F84805-0116-467F-8713-899DFC472235} =>.Microsoft Corporation O42 - Logiciel: SQL Server 2012 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {D0F44C37-A22B-4733-BBA7-86C9F4988725} =>.Microsoft Corporation O42 - Logiciel: SQL Server Browser for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B9E6EB0-0EED-4E74-9479-F982C3254F71} =>.Microsoft Corporation O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {30CA21F2-901A-44DB-A43F-FC31CD0F2493} =>.Microsoft Corporation O42 - Logiciel: Stashimi Stub Installer - (.Nero AG.) [HKLM][64Bits] -- {910B539D-F257-46C8-9CB8-6C95EFF9CF22} =>.Nero AG O42 - Logiciel: Stellar Phoenix Windows Data Recovery - (.Stellar Information Technology Pvt Ltd..) [HKLM][64Bits] -- Stellar Phoenix Windows Data Recovery_is1 =>.Stellar Information Technology Pvt Ltd. O42 - Logiciel: Supercopier 1.2.3.4 - (.Supercopier.) [HKLM][64Bits] -- Supercopier =>.Supercopier O42 - Logiciel: Switch - Convertisseur de fichiers audio - (.NCH Software.) [HKLM][64Bits] -- Switch =>.NCH Software® O42 - Logiciel: TeamViewer 12 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer GmbH® O42 - Logiciel: TeraCopy 2.3 - (.Code Sector.) [HKLM][64Bits] -- TeraCopy_is1 =>.Code Sector® O42 - Logiciel: Toolkit Documentation - (.Microsoft.) [HKLM][64Bits] -- {6143A694-5FE1-BDF6-F78E-4F7BF3E9419B} =>.Microsoft O42 - Logiciel: UEV Tools on amd64 - (.Microsoft.) [HKLM][64Bits] -- {1454FA4E-58BC-2EF1-9A19-147B0E499E03} =>.Microsoft O42 - Logiciel: Ultracopier 1.2.3.4 - (.Ultracopier.) [HKLM][64Bits] -- Ultracopier =>.Ultracopier O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker =>.Cedrick Collomb O42 - Logiciel: Update for Windows 10 for x64-based Systems (KB4023057) - (.Microsoft Corporation.) [HKLM][64Bits] -- {17515373-7495-4995-9089-B7D6DF455C38} =>.Microsoft Corporation O42 - Logiciel: UsbFix Premium 2016 - (.SOSVirus (SOSVirus.Net).) [HKLM][64Bits] -- Usbfix O42 - Logiciel: User State Migration Tool - (.Microsoft.) [HKLM][64Bits] -- {F7AADEDA-233A-1079-CD15-03AEB050F0C6} =>.Microsoft O42 - Logiciel: Video to GIF 5.3 - (.AoaoPhoto Digital Studio..) [HKLM][64Bits] -- Video to GIF O42 - Logiciel: Video to Picture 5.3 - (.AoaoPhoto Digital Studio..) [HKLM][64Bits] -- Video to Picture O42 - Logiciel: Volume Activation Management Tool - (.Microsoft.) [HKLM][64Bits] -- {0D008B74-0622-7F35-0791-C763427F3969} =>.Microsoft O42 - Logiciel: Watermark Software 8.3 - (.watermark-software.com.) [HKLM][64Bits] -- Watermark Software =>.watermark-software.com O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Welcome Center =>.Acer Incorporated® O42 - Logiciel: Windows 10 Update and Privacy Settings - (.Microsoft Corporation.) [HKLM][64Bits] -- {4DFCD818-036A-4229-A67D-CF17DC461D92} =>.Microsoft Corporation O42 - Logiciel: Windows Assessment Services - Client (AMD64 Architecture Specific, Client S - (.Microsoft.) [HKLM][64Bits] -- {561FA6E1-9438-E678-2D2A-CA99F8DDFBC0} =>.Microsoft O42 - Logiciel: Windows Assessment Services - Client (Client SKU) - (.Microsoft.) [HKLM][64Bits] -- {8C5FB518-E78C-F8F0-BFEC-8EAC65F51003} =>.Microsoft O42 - Logiciel: Windows Assessment Toolkit - (.Microsoft.) [HKLM][64Bits] -- {F4EBF948-F00E-29EF-894C-D10A718F981D} =>.Microsoft O42 - Logiciel: Windows Assessment Toolkit (AMD64 Architecture Specific) - (.Microsoft.) [HKLM][64Bits] -- {91361B2A-F741-E591-303B-4EF957F3BAF1} =>.Microsoft O42 - Logiciel: Windows Deployment Customizations - (.Microsoft.) [HKLM][64Bits] -- {9D550F66-5D52-29CA-28B5-EE0C2C0CDFBE} =>.Microsoft O42 - Logiciel: Windows Deployment Tools - (.Microsoft.) [HKLM][64Bits] -- {52EA560E-E50F-DC8F-146D-1B631548BA29} =>.Microsoft O42 - Logiciel: Windows PE x86 x64 - (.Microsoft.) [HKLM][64Bits] -- {230524D3-ADB4-69CC-2A78-96D879E3221B} =>.Microsoft O42 - Logiciel: Windows PE x86 x64 wims - (.Microsoft.) [HKLM][64Bits] -- {47AEE104-BF96-E407-D3FE-80BBD42732F4} =>.Microsoft O42 - Logiciel: Windows Phone Common Packaging and Test Tools (NT_x86_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {4D989432-59D7-76A0-DD51-B96422F6FF7F} =>.Microsoft Corporation O42 - Logiciel: Windows System Image Manager on amd64 - (.Microsoft.) [HKLM][64Bits] -- {363D76EC-B5B9-5D7B-0F59-C193FF6F03FC} =>.Microsoft O42 - Logiciel: WinRAR 5.50 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: Wise Auto Shutdown 1.6.3 - (.WiseCleaner.com, Inc..) [HKLM][64Bits] -- Wise Auto Shutdown_is1 =>.Lespeed Technology Ltd.® O42 - Logiciel: Wondershare 1-Click PC Care 8 - (.Wondershare.) [HKLM][64Bits] -- {7216871F-869E-437C-B9BF-2A13F5DCE635}_is1 =>.Wondershare software CO., LIMITED® O42 - Logiciel: Wondershare Helper Compact 2.6.0 - (.Wondershare.) [HKLM][64Bits] -- {5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1 =>.Wondershare O42 - Logiciel: Wondershare TidyMyMusic(Build 1.5.0.1) - (.Wondershare Software.) [HKLM][64Bits] -- Wondershare TidyMyMusic_is1 =>.Wondershare Software O42 - Logiciel: WPT Redistributables - (.Microsoft.) [HKLM][64Bits] -- {549DAD2D-2505-204C-EC58-59807FE6E037} =>.Microsoft O42 - Logiciel: WPTx64 - (.Microsoft.) [HKLM][64Bits] -- {97B6FAD9-6F14-CC46-3165-F1785ECCE255} =>.Microsoft ---\\ HKCU & HKLM Software Keys (162) - 72s HKLM\SOFTWARE\Wow6432Node\1-abc =>.1-abc Software HKLM\SOFTWARE\Wow6432Node\Adguard =>.Adguard HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe HKLM\SOFTWARE\Wow6432Node\Adware Removal Tool by TSA =>.TSA Softwares HKLM\SOFTWARE\Wow6432Node\AMD =>.AMD HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. =>.Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc. HKLM\SOFTWARE\Wow6432Node\Applogon =>.Unknown HKLM\SOFTWARE\Wow6432Node\Ashampoo =>.Ashampoo HKLM\SOFTWARE\Wow6432Node\ATI =>.ATI HKLM\SOFTWARE\Wow6432Node\ATI Technologies =>.ATI Technologies HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software HKLM\SOFTWARE\Wow6432Node\AVG =>.AVG Software HKLM\SOFTWARE\Wow6432Node\BVRP Software =>.BVRP Software HKLM\SOFTWARE\Wow6432Node\Corel =>.Corel HKLM\SOFTWARE\Wow6432Node\CStart8 HKLM\SOFTWARE\Wow6432Node\CyberLink =>.CyberLink Corporation HKLM\SOFTWARE\Wow6432Node\DigitalWave =>.DigitalWave Corporation HKLM\SOFTWARE\Wow6432Node\Dragon Systems =>.Dragon Systems Inc HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft =>.DVDVideoSoft HKLM\SOFTWARE\Wow6432Node\EaseUS =>.EaseUS Software HKLM\SOFTWARE\Wow6432Node\EaseUS Todo Backup =>.EaseUS Software HKLM\SOFTWARE\Wow6432Node\EPSON =>.EPSON HKLM\SOFTWARE\Wow6432Node\Eset =>.ESET HKLM\SOFTWARE\Wow6432Node\g3n-h@ckm@n =>.g3n-h@ckm@n HKLM\SOFTWARE\Wow6432Node\Ghisler =>.Ghisler Software HKLM\SOFTWARE\Wow6432Node\Google =>.Google HKLM\SOFTWARE\Wow6432Node\HaaliMkx =>.Haali Media HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel HKLM\SOFTWARE\Wow6432Node\iSkysoft =>.iSkysoft Software HKLM\SOFTWARE\Wow6432Node\iSkysoftSysMenuDATA =>.iSkysoft Software HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos HKLM\SOFTWARE\Wow6432Node\KillSoft =>.Killsoft HKLM\SOFTWARE\Wow6432Node\Kybernet HKLM\SOFTWARE\Wow6432Node\Licenses =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\logishrd =>.LogiShrd HKLM\SOFTWARE\Wow6432Node\Logitech =>.Logitech HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard =>.LogMeIn Entreprise HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes Anti-Rootkit =>.Malwarebytes HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\Wow6432Node\NCH Software =>.NCH Software HKLM\SOFTWARE\Wow6432Node\Nero =>.Ahead Corporation HKLM\SOFTWARE\Wow6432Node\Norusuru HKLM\SOFTWARE\Wow6432Node\Nuance =>.Nuance HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\Wow6432Node\OpenAL =>.Open Audio Library HKLM\SOFTWARE\Wow6432Node\Paragon Software =>.Paragon Software HKLM\SOFTWARE\Wow6432Node\PCWinSoft =>.PCWinSoft HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Rebit HKLM\SOFTWARE\Wow6432Node\ScanSoft =>.Scansoft HKLM\SOFTWARE\Wow6432Node\SFR =>.SFR HKLM\SOFTWARE\Wow6432Node\Siber Systems =>.Siber Systems HKLM\SOFTWARE\Wow6432Node\SOSVirus =>.SosVirus HKLM\SOFTWARE\Wow6432Node\Stellar Data Recovery =>.Stellar Systems HKLM\SOFTWARE\Wow6432Node\TeamViewer =>.TeamViewer HKLM\SOFTWARE\Wow6432Node\Tencent =>.SUP.Tencent HKLM\SOFTWARE\Wow6432Node\TrendMicro =>.TrendMicro HKLM\SOFTWARE\Wow6432Node\Turbo View & Convert HKLM\SOFTWARE\Wow6432Node\Voice =>.Legitimate HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\WafCX =>.WafCX HKLM\SOFTWARE\Wow6432Node\WiseCleaner =>.wisecleaner HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare HKLM\SOFTWARE\Wow6432Node\WOW6432Node =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\Yellow blue soft HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\1-abc =>.1-abc Software HKCU\SOFTWARE\9-lab =>.9-lab HKCU\SOFTWARE\Adguard =>.Adguard HKCU\SOFTWARE\Adobe =>.Adobe HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting HKCU\SOFTWARE\Anvisoft =>.Anvisoft HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\ArcticLine =>.ArcticLine HKCU\SOFTWARE\Ashampoo =>.Ashampoo HKCU\SOFTWARE\ASProtect =>.ASPack Software HKCU\SOFTWARE\ATI =>.ATI HKCU\SOFTWARE\AVG =>.AVG Software HKCU\SOFTWARE\BenVista =>.BenVista HKCU\SOFTWARE\BugSplat =>.Bugsplat Game HKCU\SOFTWARE\Caphyon =>.Caphyon HKCU\SOFTWARE\CineForm =>.CineForm HKCU\SOFTWARE\Code Sector =>.Code Sector HKCU\SOFTWARE\ComodoGroup =>.ComodoGroup HKCU\SOFTWARE\CrystalIdea Software =>.CrystalIdea Software HKCU\SOFTWARE\CStart8 HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation HKCU\SOFTWARE\Disc Soft =>.Disc Soft HKCU\SOFTWARE\DMGR1.25 HKCU\SOFTWARE\Dragon Systems =>.Dragon Systems Inc HKCU\SOFTWARE\DVDVideoSoft =>.DVDVideoSoft HKCU\SOFTWARE\EaseUS =>.EaseUS Software HKCU\SOFTWARE\Emsisoft =>.Emsisoft HKCU\SOFTWARE\EPSON =>.EPSON HKCU\SOFTWARE\Explorer++ =>.Explorer++ HKCU\SOFTWARE\FLEXnet =>.FlexNet HKCU\SOFTWARE\Freecom =>.Freecom HKCU\SOFTWARE\g3n-h@ckm@n =>.g3n-h@ckm@n HKCU\SOFTWARE\Geek Uninstaller =>.Geek Uninstaller HKCU\SOFTWARE\Ghisler =>.Ghisler Software HKCU\SOFTWARE\giveawayoftheday.com =>.giveawayoftheday.com HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\GoPro =>.GoPro HKCU\SOFTWARE\IMSIDesign =>.IMSIDesign HKCU\SOFTWARE\Informer Technologies, Inc. =>.Informer Technologies, Inc. HKCU\SOFTWARE\iSkysoft =>.iSkysoft Software HKCU\SOFTWARE\KillSoft =>.Killsoft HKCU\SOFTWARE\LAV =>.LAV Inc HKCU\SOFTWARE\Leadertech =>.Leadertech Systems HKCU\SOFTWARE\LiberKey HKCU\SOFTWARE\Licenses =>.Microsoft Corporation HKCU\SOFTWARE\LogiShrd =>.LogiShrd HKCU\SOFTWARE\Logitech =>.Logitech HKCU\SOFTWARE\LogMeInRescueCallingCard =>.LogMeIn Entreprise HKCU\SOFTWARE\Macrium =>.Macrium HKCU\SOFTWARE\Macromedia =>.Macromedia HKCU\SOFTWARE\Mirillis =>.Mirillis HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team HKCU\SOFTWARE\MultiCommander HKCU\SOFTWARE\NCH Software =>.NCH Software HKCU\SOFTWARE\NCH Swift Sound =>.NCH Swift Sound HKCU\SOFTWARE\Nero =>.Ahead Corporation HKCU\SOFTWARE\Opera Software =>.Opera Software HKCU\SOFTWARE\Paramount Software (UK) Ltd. =>.Paramount Software (UK) Ltd. HKCU\SOFTWARE\PCWinSoft =>.PCWinSoft HKCU\SOFTWARE\Piriform =>.Piriform HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKCU\SOFTWARE\Rebit HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\SafelyRemove HKCU\SOFTWARE\ScanSoft =>.Scansoft HKCU\SOFTWARE\SEIKO EPSON CORPORATION =>.Seiko Epson Corporation HKCU\SOFTWARE\SFR =>.SFR HKCU\SOFTWARE\SharewareOnSale =>.SharewareOnSale HKCU\SOFTWARE\Siber Systems =>.Siber Systems HKCU\SOFTWARE\Spoon =>.Spoon Software HKCU\SOFTWARE\Start Menu Reviver HKCU\SOFTWARE\Stellar HKCU\SOFTWARE\Stellar Data Recovery =>.Stellar Systems HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation HKCU\SOFTWARE\sysinternals =>.Sysinternals HKCU\SOFTWARE\TeamViewer =>.TeamViewer HKCU\SOFTWARE\TechWorld HKCU\SOFTWARE\Trolltech =>.Trolltech HKCU\SOFTWARE\UsbFix =>.El Desaparecido HKCU\SOFTWARE\UsbFix Standard HKCU\SOFTWARE\WinRAR =>.WinRAR HKCU\SOFTWARE\WinRAR SFX =>.RarLab HKCU\SOFTWARE\Wondershare =>.Wondershare HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\WSVCUPlugin =>.Wondershare HKCU\SOFTWARE\Yellow blue soft HKCU\SOFTWARE\ZebHelpProcess Helper =>.Nicolas Coolman HKCU\SOFTWARE\Zemana =>.Zemana HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation ---\\ Contenu des dossiers Programmes (418) - 51s O43 - CFD: 19/11/2017 - [] D -- C:\Program Files\9-lab =>.9-Lab® O43 - CFD: 05/11/2017 - [] D -- C:\Program Files\AMD =>.Microsoft Windows Hardware Compatibility Publisher® O43 - CFD: 07/11/2017 - [] AD -- C:\Program Files\ATI Technologies =>.ATI Technologies O43 - CFD: 20/11/2017 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software s.r.o.® O43 - CFD: 16/11/2017 - [] AD -- C:\Program Files\CCleaner =>.Piriform Ltd O43 - CFD: 20/11/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 07/11/2017 - [] D -- C:\Program Files\COMODO =>.Comodo Group. O43 - CFD: 02/09/2016 - [] D -- C:\Program Files\Condusiv Technologies {00D50D0A50CC433B7E1771514961AD98} =>.Condusiv Technologies O43 - CFD: 02/09/2016 - [0] HD -- C:\Program Files\DAEMON Tools Pro =>.The DAEMON Team O43 - CFD: 20/11/2017 - [] D -- C:\Program Files\Emsisoft Anti-Malware =>.Emsisoft O43 - CFD: 28/08/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse O43 - CFD: 20/11/2017 - [0] D -- C:\Program Files\Google =>.Google O43 - CFD: 31/08/2016 - [] D -- C:\Program Files\IM-Magic O43 - CFD: 05/11/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation O43 - CFD: 28/08/2016 - [] D -- C:\Program Files\KillSoft O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files\Macrium =>.Paramount Software UK Ltd® O43 - CFD: 08/11/2017 - [] AD -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 10/11/2017 - [] AD -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files\Paragon Software =>.Paragon Software GmbH® O43 - CFD: 05/11/2017 - [] D -- C:\Program Files\Realtek =>.Realtek O43 - CFD: 28/08/2016 - [] D -- C:\Program Files\Rebit =>.Rebit Inc® O43 - CFD: 02/09/2016 - [0] HD -- C:\Program Files\Rebit 5 O43 - CFD: 11/11/2017 - [] HD -- C:\Program Files\Recuva =>.Piriform O43 - CFD: 14/11/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files\RogueKiller =>.Adlice Software O43 - CFD: 07/09/2016 - [] D -- C:\Program Files\Supercopier =>.SFX Team O43 - CFD: 06/09/2016 - [] AD -- C:\Program Files\TeraCopy =>.Code Sector Inc. O43 - CFD: 07/09/2016 - [] D -- C:\Program Files\Ultracopier =>.Herman Brule O43 - CFD: 28/08/2016 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 28/08/2016 - [] D -- C:\Program Files\Unlocker =>.Cedrick Collomb O43 - CFD: 05/11/2017 - [] AD -- C:\Program Files\UNP =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH® O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\1-abc =>.1-abc Software O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Acer =>.Acer Incorporated® O43 - CFD: 20/11/2017 - [] D -- C:\Program Files (x86)\Adguard =>.Insoft LLC O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated® O43 - CFD: 16/11/2017 - [] D -- C:\Program Files (x86)\Adware Removal Tool by TSA =>.TSA Softwares O43 - CFD: 07/09/2016 - [] D -- C:\Program Files (x86)\AoaoPhoto Digital Studio =>.E-Mig Technology, Inc.® O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\AOMEI OneKey Recovery 1.6 =>.AOMEI Tech Co O43 - CFD: 20/11/2017 - [] D -- C:\Program Files (x86)\Ashampoo =>.Ashampoo GmbH O43 - CFD: 07/11/2017 - [] AD -- C:\Program Files (x86)\ATI Technologies =>.ATI Technologies O43 - CFD: 18/11/2017 - [] D -- C:\Program Files (x86)\AVG =>.AVG Software O43 - CFD: 20/11/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\CyberLink =>.CyberLink Corporation O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\DIFX =>.Microsoft Corporation O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\Diskeeper Setup Files {00D50D0A50CC433B7E1771514961AD98} O43 - CFD: 12/11/2017 - [] AD -- C:\Program Files (x86)\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\EaseUS =>.EaseUS Software O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\EgisTec MyWinLockerSuite =>.EgisTec O43 - CFD: 29/08/2016 - [] D -- C:\Program Files (x86)\EPSON =>.SEIKO EPSON CORPORATION® O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\EPSON Software =>.Epson/Seico O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\File Identifier =>.Sharpened Productions, Inc.® O43 - CFD: 13/11/2017 - [] HD -- C:\Program Files (x86)\FileMarker.NET =>.ArcticLine Software® O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\FileZilla Server =>.FileZilla O43 - CFD: 02/09/2016 - [] AD -- C:\Program Files (x86)\Folder Marker =>.ArcticLine Software® O43 - CFD: 07/11/2017 - [] D -- C:\Program Files (x86)\Franzis =>.Ashampoo GmbH & Co. KG® O43 - CFD: 20/11/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Hotspot Shield =>.Hotspot Shield O43 - CFD: 19/11/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\iSkysoft =>.iSkySoft O43 - CFD: 06/11/2017 - [] D -- C:\Program Files (x86)\KeyCryptSDK =>.Zemana Ltd O43 - CFD: 28/08/2016 - [] D -- C:\Program Files (x86)\KillCopy O43 - CFD: 28/08/2016 - [] D -- C:\Program Files (x86)\KillSoft O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Kybernet O43 - CFD: 02/09/2016 - [] AD -- C:\Program Files (x86)\Launch Manager =>.Legitimate O43 - CFD: 07/09/2016 - [] D -- C:\Program Files (x86)\Logitech =>.Logitech, Inc.® O43 - CFD: 20/11/2017 - [] D -- C:\Program Files (x86)\McAfee =>.McAfee O43 - CFD: 31/08/2016 - [] D -- C:\Program Files (x86)\Microsoft =>.Microsoft Corporation O43 - CFD: 08/11/2017 - [] AD -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 10/11/2017 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation O43 - CFD: 02/09/2016 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition =>.Microsoft Corporation O43 - CFD: 07/09/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 10.0 =>.Pinnacle Systems, Inc. O43 - CFD: 05/11/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Mirillis =>.Mirillis® O43 - CFD: 17/11/2017 - [] AD -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\NCH Software =>.NCH Software O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\Nero =>.Ahead Corporation O43 - CFD: 08/11/2017 - [] D -- C:\Program Files (x86)\NSIS Uninstall Information =>.MSIS O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Nuance =>.Nuance O43 - CFD: 11/11/2017 - [] D -- C:\Program Files (x86)\OpenAL =>.Open Audio Library O43 - CFD: 05/11/2017 - [] D -- C:\Program Files (x86)\Paragon Software {247D157352D5671A5E44263793DF43D2} =>.Paragon Software O43 - CFD: 06/09/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek O43 - CFD: 20/11/2017 - [] D -- C:\Program Files (x86)\Reason O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 02/09/2016 - [] D -- C:\Program Files (x86)\SFR =>.SFR O43 - CFD: 07/11/2017 - [] D -- C:\Program Files (x86)\Sidify =>.Sidify O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\Stellar Phoenix Windows Data Recovery =>.Stellar Systems O43 - CFD: 10/11/2017 - [] AD -- C:\Program Files (x86)\TagForge O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\TeamViewer =>.TeamViewer GmbH O43 - CFD: 08/09/2016 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation O43 - CFD: 06/09/2016 - [] D -- C:\Program Files (x86)\Windows Kits =>.Microsoft Corporation O43 - CFD: 02/09/2016 - [] AD -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation O43 - CFD: 02/09/2016 - [] AD -- C:\Program Files (x86)\Windows Live SkyDrive =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Wise =>.Legitimate O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Wondershare =>.Wondershare O43 - CFD: 06/11/2017 - [0] AD -- C:\Program Files (x86)\Zemana AntiLogger =>.Zemana Ltd O43 - CFD: 07/09/2016 - [] D -- C:\Program Files (x86)\Zemana AntiMalware =>.Zemana O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\9-lab Removal Tool O43 - CFD: 16/11/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adguard =>.Insoft LLC O43 - CFD: 16/11/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center =>.Advanced Micro Devices Inc O43 - CFD: 08/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft =>.Anvisoft O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo =>.Ashampoo GmbH O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd O43 - CFD: 07/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO =>.Comodo Group. O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Condusiv Technologies =>.Condusiv Technologies O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Confidential O43 - CFD: 19/11/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink LabelPrint 2.5 =>.CyberLink Corporation O43 - CFD: 19/11/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink WaveEditor 2 =>.CyberLink Corporation O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Pro =>.The DAEMON Team O43 - CFD: 13/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon NaturallySpeaking =>.Dragon Systems Inc O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo PCTrans =>.EaseUS Software O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware =>.Emsisoft O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON =>.EPSON O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software =>.Epson/Seico O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileMarker.NET O43 - CFD: 19/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Marker O43 - CFD: 13/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoodSync O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech =>.Logitech O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2012 =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis =>.Mirillis O43 - CFD: 13/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MultiCommander O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paragon ExtFS for Windows O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paragon Migrate OS to SSD™ 4.0 O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes audio O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de graphisme O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de vidéo O43 - CFD: 31/08/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rebit 5 O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rebit Pro O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva =>.Piriform O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller =>.Adlice Software O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SFR =>.SFR O43 - CFD: 14/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos =>.Sophos O43 - CFD: 20/11/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software =>.NCH Software O43 - CFD: 16/11/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation O43 - CFD: 30/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology O43 - CFD: 16/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy =>.Code Sector Inc. O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Utilitaires O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Auto Shutdown =>.WiseCleaner.com, Inc O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare =>.Wondershare O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\9-lab =>.9-lab O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Adguard =>.Insoft LLC O43 - CFD: 06/09/2016 - [] D -- C:\ProgramData\Adobe =>.Adobe O43 - CFD: 07/11/2017 - [] D -- C:\ProgramData\AMD =>.AMD O43 - CFD: 08/09/2016 - [] D -- C:\ProgramData\AomeiBR =>.AOMEI Technology O43 - CFD: 05/11/2017 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Ashampoo =>.Ashampoo GmbH O43 - CFD: 08/11/2017 - [] D -- C:\ProgramData\ATI =>.ATI O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software O43 - CFD: 18/11/2017 - [] D -- C:\ProgramData\Avg =>.AVG Software O43 - CFD: 07/11/2017 - [] D -- C:\ProgramData\Benchmarking.exe O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\BitDefender =>.Bitdefender O43 - CFD: 28/08/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\BVRP Software =>.BVRP Software O43 - CFD: 08/11/2017 - [] HD -- C:\ProgramData\Common Files =>.Microsoft Corporation O43 - CFD: 02/09/2016 - [] D -- C:\ProgramData\Condusiv Technologies =>.Condusiv Technologies O43 - CFD: 09/09/2016 - [] D -- C:\ProgramData\CyberLink =>.CyberLink Corporation O43 - CFD: 28/08/2016 - [] D -- C:\ProgramData\DAEMON Tools Pro =>.The DAEMON Team O43 - CFD: 19/11/2017 - [0] D -- C:\ProgramData\DigitalWave.ApplicationUpdater_files O43 - CFD: 05/11/2017 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 10/11/2017 - [] D -- C:\ProgramData\Emsisoft =>.Emsisoft O43 - CFD: 29/08/2016 - [] D -- C:\ProgramData\EPSON =>.EPSON O43 - CFD: 13/11/2017 - [] D -- C:\ProgramData\FLEXnet =>.Flexera Software O43 - CFD: 18/11/2017 - [] D -- C:\ProgramData\Hotspot Shield =>.Hotspot Shield O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\install_backup O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\install_clap =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\iSkysoft =>.iSkySoft O43 - CFD: 15/11/2017 - [] D -- C:\ProgramData\iSkysoft Video Converter Ultimate =>.iSkysoft Software O43 - CFD: 09/11/2017 - [] RASHD -- C:\ProgramData\Key-Base =>.Unknown O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Lavasoft =>.Lavasoft O43 - CFD: 07/09/2016 - [] D -- C:\ProgramData\LogiShrd =>.Logitech Inc. O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Macrium =>.Macrium O43 - CFD: 13/11/2017 - [] D -- C:\ProgramData\Macrovision =>.Macrovision O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes O43 - CFD: 20/11/2017 - [0] D -- C:\ProgramData\Malwarebytes' Anti-Malware (portable) =>.Malwarebytes O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\McAfee =>.McAfee O43 - CFD: 28/08/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 06/11/2017 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation O43 - CFD: 28/08/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation O43 - CFD: 17/11/2017 - [] D -- C:\ProgramData\NCH Software =>.NCH Software O43 - CFD: 19/11/2017 - [] AD -- C:\ProgramData\Nero =>.Ahead Corporation O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Nuance =>.Nuance O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\Paragon =>.Paragon O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\PDFelement 6 Pro O43 - CFD: 03/09/2016 - [] D -- C:\ProgramData\Reason O43 - CFD: 19/11/2017 - [] D -- C:\ProgramData\Rebit O43 - CFD: 28/08/2016 - [] AD -- C:\ProgramData\Rebit 5 O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation O43 - CFD: 07/09/2016 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Sophos =>.Sophos O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\SUPPORTDIR =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [0] AD -- C:\ProgramData\Temp =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\Tencent =>.SUP.Tencent O43 - CFD: 20/11/2017 - [] D -- C:\ProgramData\UCheck =>.Adlice Software O43 - CFD: 29/08/2016 - [] D -- C:\ProgramData\UDL =>.Microsoft Corporation O43 - CFD: 07/11/2017 - [] D -- C:\ProgramData\USBSRService =>.Crystal Rich Ltd O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation O43 - CFD: 07/11/2017 - [] D -- C:\ProgramData\Wondershare =>.Wondershare O43 - CFD: 28/08/2016 - [] D -- C:\ProgramData\Wondershare Video Editor =>.Wondershare Inc O43 - CFD: 10/11/2017 - [] D -- C:\ProgramData\{EAAB5A83-3809-4B0E-83A6-E4B0DBF2157E} O43 - CFD: 02/09/2016 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe O43 - CFD: 19/11/2017 - [] AD -- C:\Program Files (x86)\Common Files\Adobe AIR =>.Adobe Inc. O43 - CFD: 06/09/2016 - [] D -- C:\Program Files (x86)\Common Files\CyberLink =>.CyberLink Corporation O43 - CFD: 12/11/2017 - [] D -- C:\Program Files (x86)\Common Files\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 13/11/2017 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield O43 - CFD: 07/09/2016 - [] D -- C:\Program Files (x86)\Common Files\iSkysoft =>.iSkySoft O43 - CFD: 14/11/2017 - [] AD -- C:\Program Files (x86)\Common Files\IVA =>.Legitimate O43 - CFD: 05/11/2017 - [] AD -- C:\Program Files (x86)\Common Files\logishrd =>.Logitech Inc. O43 - CFD: 20/11/2017 - [] D -- C:\Program Files (x86)\Common Files\McAfee =>.McAfee O43 - CFD: 10/11/2017 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Corporation O43 - CFD: 14/11/2017 - [] D -- C:\Program Files (x86)\Common Files\Nuance =>.Nuance O43 - CFD: 18/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation O43 - CFD: 20/03/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation O43 - CFD: 17/11/2017 - [] D -- C:\Program Files (x86)\Common Files\Windows Live =>.Microsoft Corporation O43 - CFD: 28/08/2016 - [] D -- C:\Program Files (x86)\Common Files\Wondershare =>.Wondershare O43 - CFD: 14/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\1-abc =>.1-abc Software O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\9-lab =>.9-lab O43 - CFD: 10/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Apowersoft =>.Apowersoft O43 - CFD: 10/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 03/09/2016 - [] D -- C:\Users\jean-\AppData\Roaming\ArcticLine =>.ArcticLine O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Ashampoo Slideshow Studio 2017 =>.Pinnacle Systems, Inc. O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Roaming\ATI =>.ATI O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\AVAST Software =>.AVAST Software O43 - CFD: 18/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\AVG =>.AVG Software O43 - CFD: 03/09/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Condusiv_Technologies O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Confidential O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\CrystalIdea Software =>.CrystalIdea Software O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\CyberLink =>.CyberLink Corporation O43 - CFD: 08/09/2016 - [0] D -- C:\Users\jean-\AppData\Roaming\DAEMON Tools Pro =>.The DAEMON Team O43 - CFD: 12/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 06/09/2016 - [] D -- C:\Users\jean-\AppData\Roaming\EASEUS =>.EaseUS Software O43 - CFD: 29/08/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Epson =>.EPSON O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\eufsc O43 - CFD: 18/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\FileZilla Server =>.FileZilla O43 - CFD: 13/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\FLEXnet =>.Flexera Software O43 - CFD: 12/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Geek Uninstaller =>.Geek Uninstaller O43 - CFD: 13/11/2017 - [0] D -- C:\Users\jean-\AppData\Roaming\GHISLER =>.Ghisler Software O43 - CFD: 08/09/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Identities =>.Microsoft Corporation O43 - CFD: 07/09/2016 - [0] D -- C:\Users\jean-\AppData\Roaming\iSkysoft iMedia Converter Deluxe =>.iSkysoft Software O43 - CFD: 07/09/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Leadertech =>.Leadertech Systems O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 14/11/2017 - [] SD -- C:\Users\jean-\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 08/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Modules O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Mozilla =>.Mozilla Corporation O43 - CFD: 03/09/2016 - [] D -- C:\Users\jean-\AppData\Roaming\NCH Software =>.NCH Software O43 - CFD: 06/09/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Nero =>.Ahead Corporation O43 - CFD: 14/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Nuance =>.Nuance O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Opera Software =>.Opera Software O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Performix LLC =>.Performix LLC O43 - CFD: 29/08/2016 - [] D -- C:\Users\jean-\AppData\Roaming\Skype =>.Skype O43 - CFD: 20/11/2017 - [0] D -- C:\Users\jean-\AppData\Roaming\TeamViewer =>.TeamViewer GmbH O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\TeraCopy =>.Code Sector Inc. O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Thunderbird =>.Thunderbird O43 - CFD: 20/11/2017 - [] AD -- C:\Users\jean-\AppData\Roaming\UsbFix O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\USBSafelyRemove =>.Crystal Rich Ltd O43 - CFD: 07/09/2016 - [0] D -- C:\Users\jean-\AppData\Roaming\videos O43 - CFD: 13/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\WinRAR =>.WinRAR O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Wise Auto Shutdown =>.WiseCleaner.com, Inc O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Wondershare =>.Wondershare O43 - CFD: 21/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Abelssoft =>.Abelssoft O43 - CFD: 06/09/2016 - [] D -- C:\Users\jean-\AppData\Local\Adobe =>.Adobe O43 - CFD: 09/11/2017 - [] D -- C:\Users\jean-\AppData\Local\AMD =>.AMD O43 - CFD: 05/11/2017 - [0] SHD -- C:\Users\jean-\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Apps =>.Microsoft Corporation O43 - CFD: 06/11/2017 - [] D -- C:\Users\jean-\AppData\Local\ashampoo =>.Ashampoo GmbH O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Local\ATI =>.ATI O43 - CFD: 18/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Avg =>.AVG Software O43 - CFD: 18/11/2017 - [] D -- C:\Users\jean-\AppData\Local\AvgSetupLog =>.AVG Software O43 - CFD: 08/11/2017 - [] D -- C:\Users\jean-\AppData\Local\CEF =>.CEF O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Local\Comms =>.Microsoft Corporation O43 - CFD: 03/09/2016 - [] D -- C:\Users\jean-\AppData\Local\Condusiv_Technologies O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [0] D -- C:\Users\jean-\AppData\Local\CrashDumps =>.Microsoft Corporation O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\AppData\Local\CyberLink =>.CyberLink Corporation O43 - CFD: 20/11/2017 - [0] D -- C:\Users\jean-\AppData\Local\DBG =>.DBG O43 - CFD: 05/11/2017 - [0] D -- C:\Users\jean-\AppData\Local\Diagnostics =>.Microsoft Corporation O43 - CFD: 13/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Downloaded Installations =>.Microsoft Corporation O43 - CFD: 18/11/2017 - [] D -- C:\Users\jean-\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation O43 - CFD: 10/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Emsisoft_Ltd O43 - CFD: 21/11/2017 - [] D -- C:\Users\jean-\AppData\Local\ESET =>.ESET O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Google =>.Google O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\AppData\Local\GoPro =>.GoPro O43 - CFD: 05/11/2017 - [0] SHD -- C:\Users\jean-\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 07/09/2016 - [] D -- C:\Users\jean-\AppData\Local\iSkysoft =>.iSkySoft O43 - CFD: 07/09/2016 - [] D -- C:\Users\jean-\AppData\Local\Logitech® Webcam Software =>.Logitech Inc. O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Local\MicrosoftEdge =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [0] D -- C:\Users\jean-\AppData\Local\Mirillis =>.Mirillis O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Opera Software =>.Opera Software O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Packages =>.Microsoft Corporation O43 - CFD: 06/11/2017 - [] D -- C:\Users\jean-\AppData\Local\PackageStaging =>.Apcera O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Performix_LLC =>.Performix LLC O43 - CFD: 08/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Power2Go11 O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Local\Publishers =>.Microsoft Corporation O43 - CFD: 18/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Recovery =>.Recovery Labs O43 - CFD: 13/11/2017 - [] D -- C:\Users\jean-\AppData\Local\RoboForm =>.Siber Systems Inc. O43 - CFD: 03/09/2016 - [] D -- C:\Users\jean-\AppData\Local\SFR =>.SFR O43 - CFD: 14/11/2017 - [] D -- C:\Users\jean-\AppData\Local\speech =>.Microsoft Corporation O43 - CFD: 13/11/2017 - [] D -- C:\Users\jean-\AppData\Local\TechSmith =>.TechSmith O43 - CFD: 21/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [0] SHD -- C:\Users\jean-\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 18/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Thunderbird =>.Thunderbird O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Local\TileDataLayer =>.Microsoft Corporation O43 - CFD: 15/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Turbo View & Convert O43 - CFD: 05/11/2017 - [] D -- C:\Users\jean-\AppData\Local\UNP =>.Microsoft Corporation O43 - CFD: 02/09/2016 - [] D -- C:\Users\jean-\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Users\jean-\AppData\Local\Wolf of Webstreet OPC Private Limited O43 - CFD: 28/08/2016 - [] D -- C:\Users\jean-\AppData\Local\Wondershare =>.Wondershare O43 - CFD: 07/09/2016 - [] D -- C:\Users\jean-\AppData\Local\Zemana =>.Zemana O43 - CFD: 06/11/2017 - [] D -- C:\Users\jean-\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 28/08/2016 - [0] D -- C:\Users\jean-\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 07/11/2017 - [0] D -- C:\Users\jean-\AppData\Local\Programs\Opera =>.Opera Software O43 - CFD: 17/11/2017 - [] D -- C:\Users\jean-\Desktop\AshampooPhotoCommander14-jd19dn O43 - CFD: 16/11/2017 - [] D -- C:\Users\jean-\Desktop\foldermarker, filemarker, reason core security & herdprotect O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\Desktop\FRST-OlderVersion O43 - CFD: 06/11/2017 - [] D -- C:\Users\jean-\Desktop\Hosts-MEP O43 - CFD: 20/11/2017 - [] RD -- C:\Users\jean-\Desktop\LFS Hyper-100% Sécurisé-Cewbé-Widen Finalis Suite 19 O43 - CFD: 17/11/2017 - [0] D -- C:\Users\jean-\Desktop\LOG =>.Unknown O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\Desktop\mbar O43 - CFD: 06/11/2017 - [] D -- C:\Users\jean-\Desktop\MEP-CleanTemps O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\Desktop\OBIS en Oath de Widen & son app officielle PDFElement O43 - CFD: 16/11/2017 - [0] D -- C:\Users\jean-\Desktop\Quarantine O43 - CFD: 08/11/2017 - [] D -- C:\Users\jean-\Desktop\rufus_files O43 - CFD: 07/11/2017 - [] D -- C:\Users\jean-\Desktop\SARDU_322 O43 - CFD: 01/09/2016 - [] D -- C:\Users\jean-\Desktop\synchronisation applications 2 pcs O43 - CFD: 10/11/2017 - [] D -- C:\Users\jean-\Desktop\UltimateeBookConverter309-ma37dg O43 - CFD: 14/11/2017 - [0] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1-abc =>.1-abc Software O43 - CFD: 16/11/2017 - [] RD -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [] RD -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [] RD -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 05/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AoaoPhoto Digital Studio =>.AoaoPhoto Digital Studio O43 - CFD: 16/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IM-Magic Partition Resizer Free O43 - CFD: 16/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KillCopy O43 - CFD: 18/03/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Programmes audio O43 - CFD: 16/11/2017 - [] RD -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 19/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Suite NCH Software =>.NCH Software O43 - CFD: 16/11/2017 - [0] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supercopier =>.SFX Team O43 - CFD: 16/11/2017 - [] RD -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation O43 - CFD: 16/11/2017 - [0] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultracopier =>.Herman Brule O43 - CFD: 16/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker =>.Cedrick Collomb O43 - CFD: 16/11/2017 - [0] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Watermark Pro O43 - CFD: 16/11/2017 - [] RD -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 20/11/2017 - [] D -- C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件 O43 - CFD: 05/11/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Users\Default\AppData\Local\ATI =>.ATI O43 - CFD: 31/08/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Users\Default User\AppData\Local\ATI =>.ATI O43 - CFD: 31/08/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 18/03/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 08/11/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Avg =>.AVG Software O43 - CFD: 18/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\CrashRpt O43 - CFD: 09/11/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DBG =>.DBG O43 - CFD: 05/11/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 05/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Zemana =>.Zemana O43 - CFD: 09/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Avanquest =>.Avanquest O43 - CFD: 11/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 21/11/2017 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\IObit =>.IObit O43 - CFD: 17/11/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 20/11/2017 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Performix LLC =>.Performix LLC O43 - CFD: 21/11/2017 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Tencent =>.SUP.Tencent ---\\ ShellIconOverlayIdentifiers (SIOI) (9) - 2s O106 - SIOI: SyncedIcon Class [ EaseUSEverySyncedOverlay] - {52103F52-9856-43F7-B5C4-A026FD84288C}. (.TODO: - TODO: .) -- C:\Program Files (x86)\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlayX64.dll O106 - SIOI: SyncFailedIcon Class [ EaseUSEverySyncFailedOverlay] - {A6D755FC-42D6-46BF-8A5D-1F810C3FCEA6}. (.TODO: - TODO: .) -- C:\Program Files (x86)\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlayX64.dll O106 - SIOI: SyncingIcon Class [ EaseUSEverySyncingOverlay] - {0F45C9C8-E236-4CEC-A858-BFEB47D8CD3C}. (.TODO: - TODO: .) -- C:\Program Files (x86)\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlayX64.dll O106 - SIOI: [COSDriveIconOverlay] - {5FDACB62-6B7B-4116-9403-C5E0D3852A57}. (.C-O-M-O-D-O - COMODO BackUp ShellExtension.) -- C:\Program Files\COMODO\COMMON\ShellExtension.dll =>.Comodo Security Solutions® O106 - SIOI: [COSSyncItemInSyncIconOverlay] - {68F287EF-DA6D-4595-AF52-90FF6CE52AFE}. (.C-O-M-O-D-O - COMODO BackUp ShellExtension.) -- C:\Program Files\COMODO\COMMON\ShellExtension.dll =>.Comodo Security Solutions® O106 - SIOI: [COSSyncItemModifiedIconOverlay] - {AE67D273-7253-4236-B55E-D40055B305D6}. (.C-O-M-O-D-O - COMODO BackUp ShellExtension.) -- C:\Program Files\COMODO\COMMON\ShellExtension.dll =>.Comodo Security Solutions® O106 - SIOI: [COSSyncItemNewIconOverlay] - {022F23E9-DA0F-4A86-A728-CAF6150C0B63}. (.C-O-M-O-D-O - COMODO BackUp ShellExtension.) -- C:\Program Files\COMODO\COMMON\ShellExtension.dll =>.Comodo Security Solutions® O106 - SIOI: [COSSyncItemUnsynchronizedIconOverlay] - {4D7EE7CF-E7A1-45FE-8F80-3A37574918D7}. (.C-O-M-O-D-O - COMODO BackUp ShellExtension.) -- C:\Program Files\COMODO\COMMON\ShellExtension.dll =>.Comodo Security Solutions® O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation ---\\ Raccourcis de menus conceptuels (SCMH) (38) - 7s O108 - CMH1: 9-lab Removal Tool [64Bits] - {8E571ABB-30D3-402F-BBEC-3954466CF529} . (.9-lab LLC - 9-lab Malware Removal Tool.) -- C:\Program Files\9-lab\Removal Tool\shellext.dll =>.9-Lab® O108 - CMH1: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft Windows® O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH2: QMContextScan [64Bits] - {63332668-8CE1-445D-A5EE-25929176714E} . (.Orphan.) O108 - CMH2: QMContextUninstall [64Bits] - {CBDECEF7-7A29-4cbf-A009-2673D82C7BF9} . (.Orphan.) O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH3: QMContextScan [64Bits] - {63332668-8CE1-445D-A5EE-25929176714E} . (.Orphan.) O108 - CMH3: QMContextUninstall [64Bits] - {CBDECEF7-7A29-4cbf-A009-2673D82C7BF9} . (.Orphan.) O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH4: 9-lab Removal Tool [64Bits] - {8E571ABB-30D3-402F-BBEC-3954466CF529} . (.9-lab LLC - 9-lab Malware Removal Tool.) -- C:\Program Files\9-lab\Removal Tool\shellext.dll =>.9-Lab® O108 - CMH4: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft Windows® O108 - CMH4: RecuvaShellExt [64Bits] - {435E5DF5-2510-463C-B223-BDA47006D002} . (.Piriform Ltd - Recuva shell extensions.) -- C:\Program Files\Recuva\RecuvaShell64.dll =>.Piriform Ltd® O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH4: TeraCopy [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt64.dll O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation O108 - CMH5: ACE [64Bits] - {5E2121EE-0300-11D4-8D3B-444553540000} . (.Advanced Micro Devices, Inc. - AMD Desktop Control Panel.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll =>.Advanced Micro Devices, Inc.® O108 - CMH5: EUFileSyncShlMenu [64Bits] - {9BE7BF64-6790-4873-8704-606E622B3E8C} . (.CHENGDU Yiwo Tech Development Co., Ltd. - EverySync.) -- C:\Program Files (x86)\EaseUS\EaseUS EverySync\bin\EUSyncExtMenux64.dll =>.CHENGDU Yiwo Tech Development Co., Ltd. O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH5: QMRealTimeSpeedupShellContextMenuExtension [64Bits] - {C5617F6A-39BB-436D-91CF-61C1B45DD688} . (...) -- C:\Program Files (x86)\Tencent\QQPCMgr\12.9.19161.223\QMGCShellExt64.dll (.not file.) =>.SUP.Tencent O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation O108 - CMH6: 9-lab Removal Tool [64Bits] - {8E571ABB-30D3-402F-BBEC-3954466CF529} . (.9-lab LLC - 9-lab Malware Removal Tool.) -- C:\Program Files\9-lab\Removal Tool\shellext.dll =>.9-Lab® O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows® O108 - CMH6: QMContextScan [64Bits] - {63332668-8CE1-445D-A5EE-25929176714E} . (.Orphan.) O108 - CMH6: QMContextUninstall [64Bits] - {CBDECEF7-7A29-4cbf-A009-2673D82C7BF9} . (.Orphan.) O108 - CMH7: 9-lab Removal Tool [64Bits] - {8E571ABB-30D3-402F-BBEC-3954466CF529} . (.9-lab LLC - 9-lab Malware Removal Tool.) -- C:\Program Files\9-lab\Removal Tool\shellext.dll =>.9-Lab® O108 - CMH7: CLVDShellExt11 [64Bits] - {0A968D6C-1B49-4200-94C3-CDDDD6E40454} . (.Cyberlink - Cyberlink Shell Extension dynamic link libr.) -- C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt11.dll =>.CyberLink Corp.® O108 - CMH7: COMODOBackupUtility [64Bits] - {FA66022E-2FE4-4A29-916C-84A0D8173FBB} . (.C-O-M-O-D-O - COMODO BackUp ShellExtension.) -- C:\Program Files\COMODO\COMMON\ShellExtension.dll =>.Comodo Security Solutions® O108 - CMH7: Emsisoft Shell Extension x64 [64Bits] - {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} . (.Emsisoft Ltd - Emsisoft shell context menu library.) -- C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL =>.Emsisoft Ltd® O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O108 - CMH7: EPP [64Bits] - {09A47860-11B0-4DA5-AFA5-26D86198A780} . (.Microsoft Corporation - Extension Microsoft Security Client Shell.) -- C:\Program Files\Windows Defender\shellext.dll =>.Microsoft Windows® O108 - CMH7: KillCopy [64Bits] - {A5C2457A-87BC-324E-8124-0025DC10AA04} . (.Killer{R} - KillCopy Shell Extension DLL.) -- C:\Program Files (x86)\KillSoft\KillCopy\killcopy_amd64.dll O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ Image File Execution Options (18) - 1s O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows® O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher® O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation ---\\ Liste des pilotes du système (100) - 24s O58 - SDL:2017/03/18 21:56:25 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107424] =>.Microsoft Windows® O58 - SDL:2017/11/20 09:07:24 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\665DBBD9.sys [478392] =>.Kaspersky Lab® O58 - SDL:2017/03/27 07:01:46 A . (.Copyright (C) Performix LLC 2017 - Adguard WFP network driver x64 for Windows.) -- C:\WINDOWS\System32\drivers\adgnetworkwfpdrv.sys [81000] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259488] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27040] =>.Microsoft Windows® O58 - SDL:2015/07/20 20:18:02 N . (...) -- C:\WINDOWS\System32\drivers\AQFileRestore.sys [22096] {063075ABDA76EDE363542BE6FD700E6B} O58 - SDL:2017/03/18 21:56:25 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [132000] =>.Microsoft Windows® O58 - SDL:2015/10/21 02:14:48 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [21648880] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2015/10/21 02:14:46 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [674288] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2009/08/13 10:36:22 A . (.Avanquest - AutoSave Mini-Filter.) -- C:\WINDOWS\System32\drivers\AutoSave.sys [36896] =>.Avanquest North America Inc.® O58 - SDL:2017/08/29 13:39:12 A . (.BitDefender - Active Virus Control filter driver.) -- C:\WINDOWS\System32\drivers\avc3.sys [1612648] =>.Bitdefender SRL® O58 - SDL:2017/08/29 13:39:12 A . (.BitDefender - Active Virus Control Kernel Filtering drive.) -- C:\WINDOWS\System32\drivers\avckf.sys [879600] =>.Bitdefender SRL® O58 - SDL:2017/11/20 06:13:12 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\B51221F5.sys [255928] =>.Malwarebytes Corporation® O58 - SDL:2017/03/18 21:56:25 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533920] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [102816] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [347032] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T4 Chipset.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [2104224] =>.Microsoft Windows® O58 - SDL:2016/05/27 11:07:24 A . (.CyberLink - Virtual Audio-In Device.) -- C:\WINDOWS\System32\drivers\clvad.sys [40384] =>.CyberLink Corp.® O58 - SDL:2014/11/05 10:21:09 A . (.CyberLink - CyberLink Virtual CDROM Bus Enumerator.) -- C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [103176] =>.CyberLink Corp.® O58 - SDL:2016/06/02 04:48:21 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\WINDOWS\System32\drivers\clwvd7.sys [49944] =>.CyberLink Corp.® O58 - SDL:2016/05/27 11:07:01 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\WINDOWS\System32\drivers\clwvdVM.sys [55240] =>.CyberLink Corp.® O58 - SDL:2016/08/10 23:11:12 A . (.Zemana Ltd. - Zemana AntiLogger Free.) -- C:\WINDOWS\System32\drivers\DF858CFA-9AE5-43AC-A1-D1-B6-C8-57-00-6E-AB.sys [159360] =>.Zemana Ltd.® O58 - SDL:2013/05/06 16:16:14 A . (.Condusiv Technologies - Device Filter Manager Driver.) -- C:\WINDOWS\System32\drivers\DKDFM.sys [41744] =>.CONDUSIV TECHNOLOGIES® O58 - SDL:2014/10/24 15:56:02 A . (.Condusiv Technologies - IntelliWrite Mini-Filter Driver.) -- C:\WINDOWS\System32\drivers\DKRtWrt.sys [53520] {00D50D0A50CC433B7E1771514961AD98} =>.Condusiv Technologies O58 - SDL:2014/04/14 08:39:16 A . (.Condusiv Technologies - Telemetry File System Mini Filter Driver.) -- C:\WINDOWS\System32\drivers\DKTLFSMF.sys [119536] {00D50D0A50CC433B7E1771514961AD98} =>.Condusiv Technologies O58 - SDL:2017/10/09 16:28:32 A . (.Windows (R) Win 7 DDK provider - Dokan Filesystem Driver.) -- C:\WINDOWS\System32\drivers\dokan.sys [67264] {247D157352D5671A5E44263793DF43D2} =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/12/10 05:10:58 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Backup Driver.) -- C:\WINDOWS\System32\drivers\eubakup.sys [60968] =>.CHENGDU YIWO Tech Development Co., Ltd O58 - SDL:2015/12/10 05:10:58 A . (...) -- C:\WINDOWS\System32\drivers\EUBKMON.sys [48168] =>.Microsoft Corporation O58 - SDL:2015/12/10 05:10:58 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Access Driver.) -- C:\WINDOWS\System32\drivers\eudskacs.sys [18472] =>.CHENGDU YIWO Tech Development Co., Ltd O58 - SDL:2015/12/10 05:10:58 A . (.CHENGDU YIWO Tech Development Co., Ltd - Disk Backup Image Preview Driver.) -- C:\WINDOWS\System32\drivers\EuFdDisk.sys [192552] =>.CHENGDU YIWO Tech Development Co., Ltd O58 - SDL:2017/03/18 21:56:23 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419040] =>.Microsoft Windows® O58 - SDL:2017/11/14 12:36:06 A . (.© 2017 SurfRight B.V. - HitmanPro 3.7 Support Driver.) -- C:\WINDOWS\System32\drivers\hitmanpro37.sys [55232] =>.SurfRight B.V.® O58 - SDL:2014/11/17 02:41:20 A . (.Paragon Software Group - A part of Paragon System Utilities.) -- C:\WINDOWS\System32\drivers\hotcore3.sys [34056] =>.Paragon Software GmbH® O58 - SDL:2017/03/18 21:56:25 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64416] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [33280] =>.Intel(R) Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [70656] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165376] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:28 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:23 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2017/03/18 21:56:19 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673184] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412064] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526240] =>.Microsoft Windows® O58 - SDL:2017/08/29 13:39:10 A . (.Bitdefender - IGNIS filter driver.) -- C:\WINDOWS\System32\drivers\ignis.sys [304448] =>.Bitdefender SRL® O58 - SDL:2017/03/22 12:44:48 A . (.Zemana Ltd. - Zemana AntiLogger Free.) -- C:\WINDOWS\System32\drivers\KeyCrypt64.sys [161408] =>.Zemana Ltd.® O58 - SDL:2013/11/29 07:41:28 A . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabi.) -- C:\WINDOWS\System32\drivers\L1C63x64.sys [130248] =>.Qualcomm Atheros® O58 - SDL:2017/11/20 15:28:41 A . (...) -- C:\WINDOWS\System32\drivers\lpsport.sys [61304] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108960] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123808] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103328] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82848] =>.Microsoft Windows® O58 - SDL:2012/10/23 03:13:10 A . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Dr.) -- C:\WINDOWS\System32\drivers\lvrs64.sys [351520] =>.Logitech, Inc.® O58 - SDL:2012/10/23 03:13:10 A . (.Logitech Inc. - Logitech USB Video Class Driver.) -- C:\WINDOWS\System32\drivers\lvuvc64.sys [4758176] =>.Logitech, Inc.® O58 - SDL:2010/04/14 14:28:26 A . (.MBB Incorporated - CDROM Filter.) -- C:\WINDOWS\System32\drivers\massfilter.sys [11776] =>.MBB Incorporated O58 - SDL:2017/11/20 06:12:13 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [192952] =>.Malwarebytes Corporation® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59808] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [64416] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575904] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842656] =>.Microsoft Windows® O58 - SDL:2017/10/03 14:23:44 A . (.Windows (R) Win 7 DDK provider - Macrium Virtual Disk Provider.) -- C:\WINDOWS\System32\drivers\mrvdp.sys [64984] =>.Paramount Software UK Ltd® O58 - SDL:2017/03/18 21:56:25 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63904] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108960] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150432] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166304] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58784] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows® O58 - SDL:2017/08/08 19:07:42 A . (.Windows (R) Win 7 DDK provider - Paramount Software Image Mounting Driver.) -- C:\WINDOWS\System32\drivers\psmounterex.sys [189152] =>.Paramount Software UK Ltd® O58 - SDL:2017/03/23 05:52:46 A . (.Windows (R) Win 7 DDK provider - Volume Access Driver.) -- C:\WINDOWS\System32\drivers\PSVolAcc.sys [31856] =>.Paramount Software UK Ltd® O58 - SDL:2015/12/14 22:33:34 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4705536] =>.Realtek Semiconductor Corp® O58 - SDL:2016/05/17 09:00:00 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [416472] =>.Realtek Semiconductor Corp® O58 - SDL:2017/03/18 21:56:26 A . (...) -- C:\WINDOWS\System32\drivers\SDFRd.sys [31128] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44960] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81824] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31136] =>.Microsoft Windows® O58 - SDL:2017/11/20 14:47:55 A . (.Tencent - 电脑管家-TAO游戏启动加速驱动.) -- C:\WINDOWS\System32\drivers\TAOAccelerator64_ev.sys [118512] =>.SUP.Tencent O58 - SDL:2017/11/20 14:47:55 A . (.Tencent Technology(Shenzhen) Company Limited - TAOKernel.) -- C:\WINDOWS\System32\drivers\TAOKernelEx64_ev.sys [142560] {2676106A7BA66B53180E6D7C0C3D431D} =>.SUP.Tencent O58 - SDL:2017/11/20 14:47:55 A . (.电脑管家 - 电脑管家-驱动模块.) -- C:\WINDOWS\System32\drivers\TFsFltX64_ev.sys [97008] =>.SUP.Tencent O58 - SDL:2017/11/19 09:23:30 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [28272] =>.Adlice® O58 - SDL:2017/03/18 21:56:25 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166816] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305568] =>.Microsoft Windows® O58 - SDL:2015/11/12 22:50:10 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32160] =>.Microsoft Windows® O58 - SDL:2017/03/18 21:56:25 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows® O58 - SDL:2017/10/26 02:22:24 A . (.WiseCleaner.com - Process Monitor.) -- C:\WINDOWS\System32\drivers\WiseProcessMonitor.sys [38984] {0B847F536116FD6D5A31DBF8F6AD8AA1} =>.WiseCleaner.com O58 - SDL:2016/09/07 13:38:49 A . (.Zemana Ltd. - ZAM.) -- C:\WINDOWS\System32\drivers\zamguard64.sys [203680] =>.Zemana Ltd.® O58 - SDL:2009/07/21 14:05:14 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys [119680] =>.ZTE Incorporated O58 - SDL:2009/12/28 17:04:40 A . (.ZTE Corporation - USB NDIS Miniport Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbnet.sys [135168] =>.ZTE Corporation O58 - SDL:2009/07/21 14:05:14 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys [119680] =>.ZTE Incorporated O58 - SDL:2009/07/21 14:05:14 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbnmeaext.sys [119680] =>.ZTE Incorporated O58 - SDL:2009/07/21 14:05:14 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys [119680] =>.ZTE Incorporated O58 - SDL:2009/11/09 08:19:14 A . (.ZTE Incorporated - USB Modem/Serial Device Driver.) -- C:\WINDOWS\System32\drivers\zteusbvoice.sys [119680] =>.ZTE Incorporated O58 - SDL:2016/07/28 08:38:42 A . (...) -- C:\WINDOWS\System32\ambakdrv.sys [31192] =>.CHENGDU AOMEI Tech Co., Ltd.® O58 - SDL:2016/07/28 08:38:42 A . (...) -- C:\WINDOWS\System32\amreg.sys [12248] =>.CHENGDU AOMEI Tech Co., Ltd.® O58 - SDL:2016/07/28 08:38:42 A . (...) -- C:\WINDOWS\System32\amwrtdrv.sys [18392] =>.CHENGDU AOMEI Tech Co., Ltd.® O58 - SDL:2013/02/25 10:10:02 A . (...) -- C:\WINDOWS\System32\MDA_NTDRV.sys [21208] =>.北京铠信神州科技有限责任公司® ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (7) - 25s O61 - LFC: 2017/11/16 09:25:25 A . (.Alex Dragokas.) -- C:\Users\jean-\Desktop\clearlnk_2.9.0.11.exe [462976] O61 - LFC: 2017/11/14 17:04:48 A . (.glax24 (safezone.cc).) -- C:\Users\jean-\Desktop\SecurityCheck.exe [518860] O61 - LFC: 2017/11/14 13:52:10 A . (..) -- C:\Users\jean-\Desktop\zoek.exe [1313792] O61 - LFC: 2017/11/20 14:46:14 A . (..) -- C:\Users\jean-\Downloads\CyberLink_PhotoDirector_9_Ultra (1).exe [2246024] {69E937B4039726297CDEF573} O61 - LFC: 2017/11/20 14:46:05 A . (..) -- C:\Users\jean-\Downloads\CyberLink_PhotoDirector_9_Ultra.exe [2246024] {69E937B4039726297CDEF573} O61 - LFC: 2017/11/20 14:57:27 A . (..) -- C:\Users\jean-\Downloads\CyberLink-PhotoDirector_8.0.2031.0_0229034231.exe [1749847] O61 - LFC: 2017/11/20 15:18:10 A . (..) -- C:\Users\jean-\Downloads\cyberlink-power2go_Essential-11.0_3347475145.exe [1749847] ---\\ Associations Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\WINDOWS\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- %1" %* O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de démarrage Internet (12) - 1s O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files\internet explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Recherche d'infection sur les navigateurs (3) - 14s O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKCU] [64Bits]{96BBC430-9900-4299-9F5D-7951AB36EFDF} - (Google) - http://www.google.com/ =>.Google Inc. O69 - SBI: SearchScopes [HKLM] [64Bits]{6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/ =>.Google Inc. ---\\ Enumère les services démarrés par Svchost (47) - 1s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [189952] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\System32\srvsvc.dll [303104] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1269248] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [934912] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [996864] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [138752] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\System32\iscsiexe.dll [150016] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [108032] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\System32\schedsvc.dll [877568] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\System32\wbem\WMIsvc.dll [221696] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\System32\profsvc.dll [411648] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\WINDOWS\System32\sessenv.dll [385536] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [98816] =>.Microsoft Corporation O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [192512] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1135104] =>.Microsoft Corporation O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\WINDOWS\System32\NaturalAuth.dll [723968] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\System32\wlidsvc.dll [2153984] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [877568] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [1015296] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\WINDOWS\System32\Windows.Internal.Management.dll [536064] =>.Microsoft Corporation O83 - Search Svchost Services: xbgm (xbgm) . (.Microsoft Corporation - Xbox Game Monitoring Service.) -- C:\WINDOWS\System32\xbgmsvc.dll [301216] =>.Microsoft Windows Publisher® O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\System32\themeservice.dll [69632] =>.Microsoft Corporation O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Token Broker.) -- C:\WINDOWS\System32\TokenBroker.dll [1052672] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\WINDOWS\System32\lfsvc.dll [43520] =>.Microsoft Corporation O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\WINDOWS\System32\irmon.dll [24576] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [104448] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [874496] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\WINDOWS\System32\mprdim.dll [490496] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [69632] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [537600] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\System32\tapisrv.dll [306688] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\System32\wuaueng.dll [2449408] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [1159680] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [612864] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\System32\dmwappushsvc.dll [55296] =>.Microsoft Corporation O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\WINDOWS\System32\flightsettings.dll [719872] =>.Microsoft Corporation O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\WINDOWS\System32\WpnService.dll [276480] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [385536] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\System32\XboxNetApiSvc.dll [1067008] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\WINDOWS\System32\usocore.dll [684544] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\WINDOWS\System32\NetSetupSvc.dll [261632] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [233984] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\WINDOWS\System32\XboxGipSvc.dll [18944] =>.Microsoft Corporation ---\\ Liste des exceptions du parefeu Windows (2) - 2s O87 - FAEL: "TCP Query User{DFBB7AE0-114F-46C1-A7ED-6939E9233AE6}C:\program files (x86)\tencent\qqpcmgr\12.9.19161.223\qmdl.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\tencent\qqpcmgr\12.9.19161.223\qmdl.exe (.not file.) =>.SUP.Tencent O87 - FAEL: "UDP Query User{1845F311-DEDC-4C85-835D-39DFD943DF3D}C:\program files (x86)\tencent\qqpcmgr\12.9.19161.223\qmdl.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\tencent\qqpcmgr\12.9.19161.223\qmdl.exe (.not file.) =>.SUP.Tencent ---\\ Recherche des packages WindowsInstaller (83) - 20s [MD5.1A889D06421F4202778466BD5AE26343] [WIS][2017/11/10 15:30:48] (.Emsisoft Ltd. - Emsisoft Anti-Malware.) -- C:\WINDOWS\Installer\12a11bb.msi [292859904] =>.Emsisoft Ltd. [MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2017/11/14 00:44:40] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\1420334.msi [40960] =>.Google Inc. [MD5.8BE35202071AEDFF20FEA482B197F8D2] [WIS][2016/09/04 08:11:28] (.Nero AG - Nero BurningROM 2016.) -- C:\WINDOWS\Installer\159ed6.msi [35113984] =>.Nero AG [MD5.A94AB35BA3BEF7F94E163FC964E44675] [WIS][2016/09/04 08:12:41] (.Nero AG - NeroControlCenter.) -- C:\WINDOWS\Installer\159ee0.msi [2140672] =>.Nero AG [MD5.E41BF30257495A6FF15BC30FDE08E08C] [WIS][2016/09/04 08:12:38] (.Nero AG - Nero Core Components.) -- C:\WINDOWS\Installer\159eea.msi [5588992] =>.Nero AG [MD5.979F1F98EA72C0B18F9C3A7ED4A928C2] [WIS][2016/09/04 08:12:43] (.Nero AG - Nero Burning ROM 15.) -- C:\WINDOWS\Installer\159ef4.msi [3156992] =>.Nero AG [MD5.0CE3DB6358B90E9CC1A53D59A13E5E32] [WIS][2016/09/04 08:12:24] (.Nero AG - Nero Prerequisites.) -- C:\WINDOWS\Installer\159efe.msi [3817472] =>.Nero AG [MD5.CCD1A3FF06A8338BFD9E5F760754B7B5] [WIS][2016/09/04 08:12:23] (.Nero AG - Nero SharedVideoCodecs.) -- C:\WINDOWS\Installer\159f08.msi [867328] =>.Nero AG [MD5.E53A82728A820134CA9E5820FE329254] [WIS][2016/09/04 08:12:28] (.Nero AG - Nero CoverDesigner.) -- C:\WINDOWS\Installer\159f12.msi [1812480] =>.Nero AG [MD5.63115A5698215F6D1A388A7E3CF5B8FC] [WIS][2016/09/04 08:12:25] (.Nero AG - Nero Launcher.) -- C:\WINDOWS\Installer\159f24.msi [4322304] =>.Nero AG [MD5.CA70C605C7423D3BD80BAA96527BAC6B] [WIS][2016/09/04 08:12:44] (.Nero AG - Nero BurningCore 15.) -- C:\WINDOWS\Installer\159f2e.msi [2830336] =>.Nero AG [MD5.83D2E5BDBB119F6BA08AE5EC9DA44769] [WIS][2016/09/04 08:12:27] (.Nero AG - Nero Info.) -- C:\WINDOWS\Installer\159f38.msi [1168896] =>.Nero AG [MD5.7730C7CB6213D019A9ED600B6F336FEB] [WIS][2016/09/04 08:12:21] (.Nero AG - Nero Video 2016.) -- C:\WINDOWS\Installer\159f42.msi [2380288] =>.Nero AG [MD5.3C26F48FD8A566D5746570508D1F641D] [WIS][2014/11/04 16:44:06] (.Nuance Communications Inc..) -- C:\WINDOWS\Installer\229476.msi [40985088] =>.Nuance Communications Inc. [MD5.ED4D8BE359482F0AB4A121BFFAC58004] [WIS][2014/11/11 09:49:56] (.Advanced Micro Devices, Inc. - Branding.) -- C:\WINDOWS\Installer\238baa.msi [439808] =>.Advanced Micro Devices, Inc. [MD5.97125AFCBC8A72CD388B97DE6781923B] [WIS][2015/08/28 19:06:16] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bb1.msi [912896] =>.Advanced Micro Devices, Inc. [MD5.B546EB97E5CF6DAC32DC00A67BF580DE] [WIS][2015/08/28 19:03:22] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bb8.msi [735232] =>.Advanced Micro Devices, Inc. [MD5.A587267F0FC8A80FCC41B56DFBD902F6] [WIS][2015/08/28 19:03:30] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bbf.msi [702464] =>.Advanced Micro Devices, Inc. [MD5.8C79F1631AFA87B72A85AFD0F1B3E102] [WIS][2015/08/28 19:03:36] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bc6.msi [724992] =>.Advanced Micro Devices, Inc. [MD5.0AAEA3360E53750371266FC082EDC939] [WIS][2015/08/28 19:03:44] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bcd.msi [828928] =>.Advanced Micro Devices, Inc. [MD5.763D75332A7DFCFEF30AE59DD283DA29] [WIS][2015/08/28 19:03:52] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bd4.msi [683520] =>.Advanced Micro Devices, Inc. [MD5.64A85D7100170EBBFF9141FB51325918] [WIS][2015/08/28 19:04:00] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bdb.msi [711680] =>.Advanced Micro Devices, Inc. [MD5.BCE81000DA84446A7A3E849171D53D47] [WIS][2015/08/28 19:04:06] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238be2.msi [705024] =>.Advanced Micro Devices, Inc. [MD5.BD83CD9371736716ADDBFCFBBEE718C6] [WIS][2015/08/28 19:04:16] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238be9.msi [720384] =>.Advanced Micro Devices, Inc. [MD5.33572D55735A316BACD66CC3341437F7] [WIS][2015/08/28 19:04:22] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bf0.msi [733184] =>.Advanced Micro Devices, Inc. [MD5.B3FFF732E2F2D184219F1C012858E007] [WIS][2015/08/28 19:04:30] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bf7.msi [709632] =>.Advanced Micro Devices, Inc. [MD5.688DDCE90E843D7504B954C8D12ECCA4] [WIS][2015/08/28 19:04:38] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238bfe.msi [754688] =>.Advanced Micro Devices, Inc. [MD5.FCBBAE51605A85E8F25F936A4AA6908D] [WIS][2015/08/28 19:04:46] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c05.msi [734720] =>.Advanced Micro Devices, Inc. [MD5.8D7326CC1133E4ACCA9EF69DF0776E5D] [WIS][2015/08/28 19:04:54] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c0c.msi [702464] =>.Advanced Micro Devices, Inc. [MD5.EE629ECDF6F30DA20A73B58E3E33DA74] [WIS][2015/08/28 19:05:02] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c13.msi [696832] =>.Advanced Micro Devices, Inc. [MD5.BD28E69DCA15A2B35A6E44F9310157A5] [WIS][2015/08/28 19:05:10] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c1a.msi [728576] =>.Advanced Micro Devices, Inc. [MD5.E585B0641428EE6C7EE86FAA11991CF4] [WIS][2015/08/28 19:05:18] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c21.msi [711680] =>.Advanced Micro Devices, Inc. [MD5.E8D36BE982F9BCE6EE671B3554232D69] [WIS][2015/08/28 19:05:26] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c28.msi [811008] =>.Advanced Micro Devices, Inc. [MD5.21AF251D7AF16805A8E64FFD02D902E1] [WIS][2015/08/28 19:05:34] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c2f.msi [700928] =>.Advanced Micro Devices, Inc. [MD5.D408F3F21C4CB920F52A1FF65A539D14] [WIS][2015/08/28 19:05:42] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c36.msi [785920] =>.Advanced Micro Devices, Inc. [MD5.A2D9D2C37710C3FE20D5CC29C294F066] [WIS][2015/08/28 19:05:50] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c3d.msi [715776] =>.Advanced Micro Devices, Inc. [MD5.A3E230590629CB9D2D91908EE4743A6B] [WIS][2015/08/28 19:05:58] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c44.msi [707072] =>.Advanced Micro Devices, Inc. [MD5.F0422A46F06BBBDBBFA499D8CC88DB23] [WIS][2015/08/28 19:06:06] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c4b.msi [709632] =>.Advanced Micro Devices, Inc. [MD5.977230509503BB110C7EF2B3579014C5] [WIS][2015/08/28 19:06:40] (.Advanced Micro Devices, Inc. - Catalyst Control Center Utility 64.) -- C:\WINDOWS\Installer\238c52.msi [386560] =>.Advanced Micro Devices, Inc. [MD5.61FD29D4531373F058A2CF49B9D190D5] [WIS][2015/08/28 19:07:30] (.Advanced Micro Devices, Inc. - AMD Fuel.) -- C:\WINDOWS\Installer\238c59.msi [2977280] =>.Advanced Micro Devices, Inc. [MD5.211BAFE1D59B34F70CC2693DA2A9604F] [WIS][2015/08/28 19:03:12] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\238c60.msi [56495104] =>.Advanced Micro Devices, Inc. [MD5.A06425CF80A318FE1DA5F1D33D58ED41] [WIS][2017/11/08 20:08:28] (.Paramount Software (UK) Ltd. - Paramount Software (UK) Ltd.) -- C:\WINDOWS\Installer\251c8e.msi [60014592] =>.Paramount Software (UK) Ltd. [MD5.C14FC9F00608327498188E762C1B5A6E] [WIS][2016/01/29 11:09:58] (.Seiko Epson Corporation - Epson Event Manager.) -- C:\WINDOWS\Installer\26d3659.msi [21528576] =>.Seiko Epson Corporation [MD5.0C15746B153EDF715B83128866BC9CF5] [WIS][2016/03/24 23:00:00] (..) -- C:\WINDOWS\Installer\26d365e.msi [2473984] [MD5.621626360A30A2AC20A8296B7BA1F891] [WIS][2015/05/27 07:45:36] (.SEIKO EPSON CORPORATION - Epson E-Web Print.) -- C:\WINDOWS\Installer\26d3668.msi [6565888] =>.SEIKO EPSON CORPORATION [MD5.DDC250D795361108EA065498137C2DF3] [WIS][2017/11/05 09:58:23] (.Paragon Software GmbH - Paragon ExtFS for Windows.) -- C:\WINDOWS\Installer\2b5c7cb.msi [44376064] [MD5.12C41D01A301A310AC974E687321D8E4] [WIS][2016/09/09 11:53:16] (.Paragon Software - Program.) -- C:\WINDOWS\Installer\2d60a5.msi [42436608] =>.Paragon Software [MD5.D5CD48708BD4D5D6CEF110175086A92B] [WIS][2016/08/24 22:59:34] (..) -- C:\WINDOWS\Installer\30fdc24.msi [462848] [MD5.07FC24DDA7F53D3013DD696BEB3C27D4] [WIS][2015/08/28 19:06:24] (.Advanced Micro Devices, Inc. - Catalyst Control Center.) -- C:\WINDOWS\Installer\35795.msi [775168] =>.Advanced Micro Devices, Inc. [MD5.C8FD4EA5C32964B1A11CAC5B1EB1C13D] [WIS][2017/10/17 02:45:19] (.Nuance Communications Inc..) -- C:\WINDOWS\Installer\3756e1d.msi [44228608] =>.Nuance Communications Inc. [MD5.72BF0B7142646F1CD0FA7C872DB106D6] [WIS][2017/11/09 17:05:57] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\3a4ef.msi [26112] =>.Google Inc. [MD5.C8AE92CC4A184E8F368B5EDD8ACB65DE] [WIS][2012/09/27 00:34:20] (.Logitech - LWS Help_main.) -- C:\WINDOWS\Installer\3ada118.msi [1691648] =>.Logitech [MD5.A664C0BF6CD02C194E2F93B173EFAB99] [WIS][2012/09/13 08:41:18] (.Logitech - LWS Webcam Software.) -- C:\WINDOWS\Installer\3ada120.msi [12635648] =>.Logitech [MD5.9936EC725C156F51806D40A1EEB9C303] [WIS][2012/09/13 08:41:16] (.Logitech - CameraHelperMsi.) -- C:\WINDOWS\Installer\3ada128.msi [734720] =>.Logitech [MD5.77DA1CE3C93828E7EADDFCA901B02509] [WIS][2012/10/26 18:55:20] (.Logitech, Inc. - Logitech eReg 1.12 merge module-to-MSI converter.) -- C:\WINDOWS\Installer\3ada130.msi [889344] =>.Logitech, Inc. [MD5.7FF38CF9D5CC70E556BB45F21588B9C8] [WIS][2012/07/23 23:15:18] (.Logitech - LWS Facebook.) -- C:\WINDOWS\Installer\3ada138.msi [487936] =>.Logitech [MD5.C99CBE7F8073112543FBCABFF867425A] [WIS][2012/09/26 23:19:08] (.Logitech - LWS Gallery.) -- C:\WINDOWS\Installer\3ada140.msi [1406976] =>.Logitech [MD5.9CD4095CC64D5AF82868E44AA925B272] [WIS][2012/09/27 00:36:58] (.Logitech - LWS Launcher.) -- C:\WINDOWS\Installer\3ada148.msi [1686528] =>.Logitech [MD5.7D6A576EB4F0A6153EDF3DDD8AF0DBF3] [WIS][2012/09/13 08:41:12] (.Logitech - LWS Motion Detection.) -- C:\WINDOWS\Installer\3ada150.msi [4755456] =>.Logitech [MD5.D1D7DE61C671118600B2C6A944071F55] [WIS][2012/09/13 08:41:22] (.Logitech - LWS Pictures And Video.) -- C:\WINDOWS\Installer\3ada158.msi [4807680] =>.Logitech [MD5.E5B88BEDB15EFA1DE3A295C2A3F73875] [WIS][2011/07/27 03:51:16] (.Logitech - LWS Twitter.) -- C:\WINDOWS\Installer\3ada160.msi [468992] =>.Logitech [MD5.3405E6FB3D2484BBEE16CBF5DD7A9CD6] [WIS][2011/06/13 04:26:48] (.Logitech - LWS WLM Plugin.) -- C:\WINDOWS\Installer\3ada168.msi [119296] =>.Logitech [MD5.A273D9D2C1BBB6ABCF10364331ACD926] [WIS][2011/11/11 23:14:28] (.Logitech - LWS YouTube Plugin.) -- C:\WINDOWS\Installer\3ada170.msi [379904] =>.Logitech [MD5.1B73EAE55453B40B4F5EBEB7C576A3C9] [WIS][2017/10/25 16:54:50] (.Performix LLC - Version: 6.2.433.2167 .) -- C:\WINDOWS\Installer\4133a9d.msi [38232064] =>.Performix LLC [MD5.F79C99EC1FDE53C508DD94DCB288A577] [WIS][2017/11/08 09:42:24] (.Tag Forge - Confidential.) -- C:\WINDOWS\Installer\432a9.msi [19193856] [MD5.F6406D7665E9028E783F796E9AAC2572] [WIS][2016/08/28 13:39:36] (.Rebit, Inc. - Rebit 5.) -- C:\WINDOWS\Installer\452b2b.msi [1024000] =>.Rebit, Inc. [MD5.77632C9E2E9AFFCC8479BF4A9E42E506] [WIS][2016/08/28 13:40:03] (.Rebit, Inc. - Rebit 5.) -- C:\WINDOWS\Installer\452b3a.msi [5109760] =>.Rebit, Inc. [MD5.E5C13CED2EDF6C2836BA8DC738C2E24A] [WIS][2016/08/28 13:40:22] (.Rebit, Inc. - Rebit 5.) -- C:\WINDOWS\Installer\452b3f.msi [13200384] =>.Rebit, Inc. [MD5.5B87B0C7B4400683320F039FF46B8AE5] [WIS][2017/09/20 14:43:51] (.Nero AG - Nero Update.) -- C:\WINDOWS\Installer\4e0faf.msi [1417216] =>.Nero AG [MD5.4744E1D3A55C1011FFB0533B540140F9] [WIS][2016/08/28 18:42:04] (.Rebit, Inc. - Rebit Pro.) -- C:\WINDOWS\Installer\69232.msi [34205696] =>.Rebit, Inc. [MD5.5B37BEAC17E6B52186ED7214529C4E84] [WIS][2017/11/05 14:29:54] (.adaware - AvcEngine.) -- C:\WINDOWS\Installer\7ae65.msi [4224000] =>.adaware [MD5.CDE1305E408AA23E669B57593250E8A0] [WIS][2017/11/05 14:30:48] (.adaware - FirewallEngine.) -- C:\WINDOWS\Installer\7ae6a.msi [2624000] =>.adaware [MD5.5E91768E57C6E50DEF87C06AC2AA4CF9] [WIS][2017/11/05 14:31:23] (.adaware - OnlineThreatsEngine.) -- C:\WINDOWS\Installer\7ae6f.msi [2513920] =>.adaware [MD5.9FD08D11364F56C4DB1EBA4C65191CEC] [WIS][2016/09/02 15:48:55] (.Egis Technology Inc. - MyWinLocker Suite.) -- C:\WINDOWS\Installer\7cce4.msi [58998784] =>.Egis Technology Inc. [MD5.82791FB5F7DE17E78E4B22B54265FB29] [WIS][2016/09/02 15:10:59] (.Adobe Systems Incorporated - ADOBER~1.0Adobe Reader 9.) -- C:\WINDOWS\Installer\7cd25.msi [21356032] =>.Adobe Systems Incorporated [MD5.C714313C5B319707475D6CF852249231] [WIS][2016/09/02 15:10:45] (.Adobe Systems Incorporated - Acrobat.com.) -- C:\WINDOWS\Installer\7cd2f.msi [20480] =>.Adobe Systems Incorporated [MD5.3E9BD4853992C8D48002C88B57278865] [WIS][2017/07/05 04:45:00] (.SEIKO EPSON CORPORATION - Epson Software Updater.) -- C:\WINDOWS\Installer\7ff6be2.msi [5971968] =>.SEIKO EPSON CORPORATION [MD5.1ECEE372F358E03C9AD8F8F71E782BE7] [WIS][2016/09/02 14:44:05] (.Condusiv Technologies - V-locity.) -- C:\WINDOWS\Installer\a341f37.msi [24766464] =>.Condusiv Technologies [MD5.C48890A23D24A5C574CA6174F737A454] [WIS][2016/01/28 14:37:17] (.CyberLink Corp..) -- C:\WINDOWS\Installer\aefbe9.msi [393728] =>.CyberLink Corp. [MD5.B7271712003986908C36DEA1999E8A06] [WIS][2016/09/06 15:08:23] (.Adobe Systems Incorporated - Adobe AIR Installer.) -- C:\WINDOWS\Installer\bde5114.msi [49152] =>.Adobe Systems Incorporated [MD5.434D2768A3DA771730B1690A82AB1CDB] [WIS][2016/09/06 15:30:24] (.Nero AG - BackItUp.) -- C:\WINDOWS\Installer\bf4c78a.msi [19574272] =>.Nero AG [MD5.A06425CF80A318FE1DA5F1D33D58ED41] [WIS][2017/11/08 20:08:28] (.Paramount Software (UK) Ltd. - Paramount Software (UK) Ltd.) -- C:\WINDOWS\Installer\reflect_setupv7.1.2646-x64-00.msi [60014592] =>.Paramount Software (UK) Ltd. ---\\ Scan Additionnel (12) - 0s HKLM\SYSTEM\CurrentControlSet\Services\QQPCRTP =>.SUP.Tencent C:\Users\jean-\AppData\Roaming\Mozilla\Firefox\Profiles\l81e2byz.default\searchplugins\yahoo! powered.xml =>Adware.YahooPowered HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} =>.SUP.Orphan C:\ProgramData\Tencent =>.SUP.Tencent HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\QMContextScan =>.SUP.Orphan HKLM\Software\Classes\lnkfile\shellex\ContextMenuHandlers\QMContextUninstall =>.SUP.Orphan HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\QMContextScan =>.SUP.Orphan HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\QMContextUninstall =>.SUP.Orphan HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\QMRealTimeSpeedupShellContextMenuExtension =>.SUP.Tencent HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\QMContextScan =>.SUP.Orphan HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\QMContextUninstall =>.SUP.Orphan C:\WINDOWS\System32\drivers\TAOKernelEx64_ev.sys =>.SUP.Tencent ---\\ Récapitulatif des éléments trouvés sur votre station (2) - 0s https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.SUP.Tencent https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan ~ Unselected Options: ~ End of the scan, 44053 items in 06mn21s (1505)(0)