~ ZHPDiag v2018.3.31.56 Par Nicolas Coolman (2018/03/26) ~ Démarré par HD - ND (Administrator) (2018/04/03 23:19:58) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Certificate ZHPDiag: Legal ~ Etat de la version: ~ Mode: Scanner ~ Rapport: C:\Users\HD - ND\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\HD - ND\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 7 Professional, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation ---\\ NAVIGATEURS INTERNET (2) - 0s ~ MFIE: Mozilla Firefox 59.0.2 (x64 en-US) ~ MSIE: Internet Explorer v11.0.9600.18952 ---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (4) - 4s ~ Windows Server License Manager Script : OK System - VBScript Engine not found Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ LOGICIELS DE PROTECTION (3) - 0s Malwarebytes' Anti-Malware (Protection) Microsoft Security Essentials v4.10.209.0 (Protection) Microsoft Security Client v4.10.0209.0 (Protection) ---\\ SURVEILLANCE LOGICIEL (2) - 0s ~ Adobe Flash Player 29 NPAPI (Surveillance) ~ Adobe Acrobat Reader DC - Français (Surveillance) ---\\ LOGICIELS D'OPTIMISATION (1) - 0s ~ CCleaner v5.35 (Optimisation) ---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s ~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4049.588 MB (62% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 79 GB (47%) free of 165 GB : OK =>.Disk Space ---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s ~ Computer Name: HD-ND-PC ~ User Name: HD - ND ~ Logged in as Administrator ---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (3) - 0s ~ Drive C: has 79 GB free of 165 GB (System) ~ Drive D: has 10 GB free of 10 GB ~ Drive E: has 122 GB free of 778 GB ---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (10) - 0s [HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\Software\WOW6432Node\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (26) - 3s [MD5.38AE1B3C38FAEF56FE4907922F0385BA] - 29/08/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [3229696] =>.Microsoft Corporation [MD5.C36BB659F08F046B139C8D1B980BF1AC] - 30/03/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [46080] =>.Microsoft Corporation [MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation [MD5.06B22F768A78331E1F7328CD50261EEB] - 15/02/2018 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [3241472] =>.Microsoft Corporation [MD5.11D6A262B617130F7C16E308C12E0D41] - 01/01/2018 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455680] =>.Microsoft Corporation [MD5.067FA52BFB59A56110A12312EF9AF243] - 20/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation [MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation [MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation [MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 20/11/2010 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation [MD5.0DC2A9882540DEA4A55B08785E09D8FC] - 04/04/2017 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [496128] =>.Microsoft Corporation [MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows® [MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation [MD5.F036CE71586E93D94DAB220D7BDF4416] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation [MD5.7D2D2284833760A82308CF09F7618E8B] - 01/01/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation [MD5.F3732465ECFF4565A4225F4928CC2BBD] - 09/03/2018 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [160256] =>.Microsoft Corporation [MD5.734837208CAFD6E0959A7A0333C95C9D] - 11/08/2017 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262656] =>.Microsoft Corporation [MD5.A97B92D11270695B15C3663BCCB737D3] - 01/01/2018 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1680616] =>.Microsoft Windows® [MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation [MD5.471815800AE33E6F1C32FB1B97C490CA] - 20/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation [MD5.1B6163C503398B23FF8B939C67747683] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation [MD5.4DD986720F7CB7A8A5D1226793097B9A] - 29/07/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [117248] =>.Microsoft Corporation [MD5.0D08D2F3B3FF84E433346669B5E0F639] - 20/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows® ---\\ LISTE DES SERVICES (Non Microsoft et non désactivés) (11) - 2s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe =>.AMD O23 - Service: Service Bluetooth Switcher (BtSwitcherService) . (.Cambridge Silicon Radio Limited - BtSwitcherService.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe =>.Cambridge Silicon Radio Ltd.® O23 - Service: Service audio Bluetooth CSR (CSRBtAudioService) . (.Cambridge Silicon Radio Limited - CSR Bluetooth Audio Service.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe =>.Cambridge Silicon Radio Ltd.® O23 - Service: CSR OBEX Service (CsrBtOBEXService) . (.Cambridge Silicon Radio Limited - Bluetooth OBEX Service.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe =>.Cambridge Silicon Radio Ltd.® O23 - Service: Service Bluetooth CSR (CsrBtService) . (.Cambridge Silicon Radio Limited - Csr Bluetooth Service.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe =>.Cambridge Silicon Radio Ltd.® O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe =>.Malwarebytes® O23 - Service: PDF Architect 5 Creator (PDF Architect 5 Creator) . (.pdfforge GmbH - PDF Architect 5.) - C:\Program Files\PDF Architect 5\creator-ws.exe =>.pdfforge GmbH® O23 - Service: PDF Architect 5 Manager (PDF Architect 5 Manager) . (.© pdfforge GmbH. - Manager service.) - C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe =>.pdfforge GmbH® O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.® ---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (16) - 9s SR - Auto [09/02/2018] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® SS - Demand [13/03/2018] [ 272384] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SR - Auto [18/08/2009] [ 203264] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe =>.AMD SR - Auto [22/03/2012] [ 64216] Service Bluetooth Switcher (BtSwitcherService) . (.Cambridge Silicon Radio Limited.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe =>.Cambridge Silicon Radio Ltd.® SR - Auto [22/03/2012] [ 465624] Service audio Bluetooth CSR (CSRBtAudioService) . (.Cambridge Silicon Radio Limited.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe =>.Cambridge Silicon Radio Ltd.® SR - Auto [22/03/2012] [ 1041616] CSR OBEX Service (CsrBtOBEXService) . (.Cambridge Silicon Radio Limited.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe =>.Cambridge Silicon Radio Ltd.® SR - Auto [22/03/2012] [ 825032] Service Bluetooth CSR (CsrBtService) . (.Cambridge Silicon Radio Limited.) - C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe =>.Cambridge Silicon Radio Ltd.® SS - Auto [10/08/2017] [ 153168] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [10/08/2017] [ 153168] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Auto [06/04/2009] [ 179856] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe =>.Malwarebytes® SS - Demand [03/04/2018] [ 194512] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SS - Demand [05/07/2017] [ 2709176] PDF Architect 5 (PDF Architect 5) . (.pdfforge GmbH.) - C:\Program Files\PDF Architect 5\ws.exe =>.pdfforge GmbH® SS - Demand [05/07/2017] [ 1051312] PDF Architect 5 CrashHandler (PDF Architect 5 CrashHandler) . (.pdfforge GmbH.) - C:\Program Files\PDF Architect 5\crash-handler-ws.exe =>.pdfforge GmbH® SR - Auto [05/07/2017] [ 859312] PDF Architect 5 Creator (PDF Architect 5 Creator) . (.pdfforge GmbH.) - C:\Program Files\PDF Architect 5\creator-ws.exe =>.pdfforge GmbH® SR - Auto [16/05/2017] [ 985848] PDF Architect 5 Manager (PDF Architect 5 Manager) . (.© pdfforge GmbH..) - C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe =>.pdfforge GmbH® SR - Auto [16/01/2017] [ 752224] SAMSUNG Mobile Connectivity Service (ss_conn_service) . (.DEVGURU Co., LTD..) - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe =>.Samsung Electronics CO., LTD.® ---\\ TÂCHES PLANIFIÉES EN AUTOMATIQUE (Registre) (128) - 6s O38 - TASK: {032ACD2B-6573-43B7-849A-2264AAE313C3} [64Bits][\XblfzlrMwbeaKro2] - (...) -- C:\Program Files (x86)\fBAefcjbU\WUwuRb.dll [271360] O38 - TASK: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (.Microsoft Corporation - Outil facilitant le développement de servic.) -- C:\Windows\System32\sc.exe [45056] =>.Microsoft Corporation O38 - TASK: {0BB844BC-5947-416B-9F0D-A18285C6643D} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\Windows\system32\DFDWiz.exe [79360] =>.Microsoft Corporation O38 - TASK: {0C401EEA-7C65-4E29-B5E7-120FC5DD428E} [64Bits][\Microsoft\Windows\Media Center\PeriodicScanRetry] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation O38 - TASK: {0D85596A-5FE4-4686-931A-1388C985113B} [64Bits][\Microsoft\Windows\Media Center\PvrRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation O38 - TASK: {0E4F8738-AEDF-41A6-8993-B41D3301F5FC} [64Bits][\Microsoft\Windows\Setup\EOSNotify] - (.Microsoft Corporation - EOS Notification.) -- C:\Windows\system32\EOSNotify.exe [304128] =>.Microsoft Corporation O38 - TASK: {1165C7D1-20E8-4600-AEC5-78BB219BCEB3} [64Bits][\Microsoft\Windows\Media Center\OCURDiscovery] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {14AA2A05-E07C-4D8E-8BA5-0B5A94DF26AE} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1183256] =>.Adobe Systems Incorporated O38 - TASK: {15667A9A-21EE-4177-8261-D94755A5FC51} [64Bits][\Microsoft\Windows\Media Center\PvrScheduleTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation O38 - TASK: {1B223B00-5CE8-4641-8429-6C62A834C38D} [64Bits][\Dapp] - (.Web Service Inc. - Web Service.) -- C:\Dapp\Dapp.exe [8723456] O38 - TASK: {23B025FC-82F3-4106-9C94-3F1D34DFFE57} [64Bits][\Microsoft\Windows\Media Center\RecordingRestart] - (.Microsoft Corporation - Module hôte Windows Media Center.) -- C:\Windows\ehome\ehrec.exe [76800] =>.Microsoft Corporation O38 - TASK: {2F147A71-8CFF-4E91-BF79-F83CA9E77A8B} [64Bits][\FileAdvisorUpdate] - (.File Type Advisor - File Type Advisor.) -- C:\Program Files (x86)\File Type Advisor\fileadvisor.exe [3728896] =>.File Type Advisor O38 - TASK: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} [64Bits][\Microsoft\Windows\WindowsBackup\ConfigNotification] - (.Microsoft Corporation - Sauvegarde Microsoft® Windows.) -- C:\Windows\System32\sdclt.exe [1264640] =>.Microsoft Corporation O38 - TASK: {333EBC30-C8DF-4A9C-9F06-BD92B63D4EE6} [64Bits][\LaCieS] - (...) -- C:\Disk\WebService.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan O38 - TASK: {38298418-495C-40FE-9FC2-3D81B087ADDC} [64Bits][\Microsoft\Windows\Media Center\ehDRMInit] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {4B661065-F1D6-4150-A8A9-0853318E2154} [64Bits][\Microsoft\Windows\Media Center\ConfigureInternetTimeService] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {4BE0A9EC-56CD-409A-8EDD-FBB4DE944259} [64Bits][\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation O38 - TASK: {5A40E926-9E86-4B89-9CFD-B12311724371} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil facilitant le développement de servic.) -- C:\Windows\System32\sc.exe [45056] =>.Microsoft Corporation O38 - TASK: {5C0AEEEA-C154-45BE-8499-BEA5F11BAFF6} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\Windows\system32\defrag.exe [183296] =>.Microsoft Corp. O38 - TASK: {68994FB2-BE6A-4C51-87DB-9B0E7336CA28} [64Bits][\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline] - (.Microsoft Corporation - Gestion des tâches planifiées.) -- C:\Windows\System32\schtasks.exe [285696] =>.Microsoft Corporation O38 - TASK: {6BFCE13E-FD13-4B03-9E9F-BD7008CEC544} [64Bits][\Microsoft\Windows\Media Center\UpdateRecordPath] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {72DB7465-BC54-491B-A92A-4637A28C9BBF} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\Windows\system32\appidcertstorecheck.exe [17920] =>.Microsoft Corporation O38 - TASK: {751490FE-4C95-42BC-BEE1-887732D723E9} [64Bits][\Microsoft\Windows\Media Center\DispatchRecoveryTasks] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {753C47AE-EC5E-44B3-95A9-2C8E553F0E39} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [70656] =>.Microsoft Corporation O38 - TASK: {76978B03-77F4-4155-BB56-4DDFB027A271} [64Bits][\Adobe Flash Player NPAPI Notifier] - (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_113_Plugin.exe [1362432] =>.Adobe Systems Incorporated O38 - TASK: {77339EED-3D0D-4DD3-9713-87E59734E4B9} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [7685808] =>.Piriform Ltd O38 - TASK: {77EA6495-8307-471B-8237-E33ADEA534A9} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc. O38 - TASK: {7D6BF3A2-BF02-4AA3-A886-4FF8CC56FF8C} [64Bits][\Microsoft\Windows\Media Center\ActivateWindowsSearch] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {7E574249-73E8-46C5-AF50-8D8159A8ACB9} [64Bits][\Adobe Flash Player Updater] - (.Adobe Systems Incorporated - Adobe® Flash® Player Update Service 29.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [272384] =>.Adobe Systems Incorporated O38 - TASK: {89A50F12-A981-4B42-BCC2-15BDECCFC0BE} [64Bits][\OXEQaMeQLrItgErZxsR2] - (...) -- C:\Program Files (x86)\LhRqTWvAWAkNC\aapQUXX.dll [3024792] O38 - TASK: {91981072-2367-4F57-BE75-86469A5F7120} [64Bits][\{71C033AE-8399-8AD0-4AA5-DAF9B9208AF2}] - (.Microsoft Corporation - Windows® installer.) -- C:\Users\HD - ND\AppData\Roaming\qAcGTgyIuWEy.exe [73216] [/q /i http://freshrefreshnerer24.info/064k4k7P8Y6.] =>Adware.TasksRedirect O38 - TASK: {96157AB0-CBDB-467A-9F76-230A400D38F4} [64Bits][\Microsoft\Windows\Media Center\InstallPlayReady] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {994C86AD-A929-4B2C-88A0-4E25A107A029} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Bibliothèque de configuration de la protect.) -- C:\Windows\System32\srrstr.dll [270848] =>.Microsoft Corporation O38 - TASK: {A48CABBF-24C8-4B87-B00F-9261807C3B43} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\Windows\system32\appidpolicyconverter.exe [148480] =>.Microsoft Corporation O38 - TASK: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Activité de la localisation.) -- C:\Windows\System32\LocationNotifications.exe [90112] =>.Microsoft Corporation O38 - TASK: {A86A920D-56FD-43C4-BF65-1DF831412389} [64Bits][\hesymncsXSHUyo] - (...) -- C:\Program Files (x86)\xgpUQycTQqVU2\aWDUJwcupRwbl.dll [3173784] O38 - TASK: {A8D0E063-768A-4AB5-AE72-BF021E460A4E} [64Bits][\Microsoft\Windows\Media Center\ReindexSearchRoot] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {B72DEE08-9BA7-4948-8DCE-9BFDF8A6988E} [64Bits][\Microsoft\Windows\Media Center\mcupdate] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation O38 - TASK: {BA1E824F-B81B-4EEF-86A5-377201120128} [64Bits][\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\Windows\system32\CompatTelRunner.exe [136384] =>.Microsoft Corporation O38 - TASK: {BE1C9E30-96FC-4AA8-9BF5-F0501E505852} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc. O38 - TASK: {C016366B-7126-46CA-B36B-592A3D95A60B} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\Windows\System32\wsqmcons.exe [293888] =>.Microsoft Corporation O38 - TASK: {C94BA693-1E6F-4ED4-B75F-E74D11A5D081} [64Bits][\Microsoft\Windows\Media Center\PBDADiscovery] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {CB3D64BF-C0C9-45FF-BFB0-FF1A8F680186} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [125952] =>.Microsoft Corporation O38 - TASK: {D0250F3F-6480-484F-B719-42F659AC64D5} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\System32\wermgr.exe [50688] =>.Microsoft Corporation O38 - TASK: {D317BF7B-B87B-4E04-87DF-3EF645A1FBE2} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW1] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {D5C79B9E-E581-4595-BEEC-9EE2C5F63170} [64Bits][\Microsoft\Windows\Media Center\PBDADiscoveryW2] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {D7B6E81D-3CF4-432C-84D2-24213F4316E6} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [11264] =>.Microsoft Corporation O38 - TASK: {D83C5519-AA5D-4DA9-87F4-1EC6A7D120AE} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45568] =>.Microsoft Corporation O38 - TASK: {D96D525E-8AD1-454C-ADAE-51C63EB2F7BB} [64Bits][\Microsoft\Windows\Media Center\RegisterSearch] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation O38 - TASK: {DCBB6E2F-9819-4E56-8E40-137DC3C9CC16} [64Bits][\{75E5E88B-DE2D-17E0-DD24-4BB862CFB542}] - (.Microsoft Corporation - Windows® installer.) -- C:\Users\HD - ND\jOyWoxFBcyAoA.exe [73216] [/q /i http://freshrefreshnerer24rb.info/aq2R9c45.6] =>Adware.TasksRedirect O38 - TASK: {DCF5D147-D860-4995-9254-48BB0AEDAC6E} [64Bits][\Microsoft\Windows\Media Center\SqlLiteRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation O38 - TASK: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} [64Bits][\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask] - (.Microsoft Corporation - Outil facilitant le développement de servic.) -- C:\Windows\System32\sc.exe [45056] =>.Microsoft Corporation O38 - TASK: {E22A8667-F75B-4BA9-BA46-067ED4429DE8} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [705024] =>.Microsoft Corporation O38 - TASK: {E3163C33-301D-4730-A266-5518C5ED3967} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [36864] =>.Microsoft Corporation O38 - TASK: {E675C4E9-B079-43FB-BD0E-7A2251FF684E} [64Bits][\Microsoft\Windows\Media Center\MediaCenterRecoveryTask] - (.Microsoft Corporation - Gestionnaire de mises à jour du magasin Win.) -- C:\Windows\ehome\mcupdate.exe [198656] =>.Microsoft Corporation O38 - TASK: {EB02381F-D652-4B1C-894A-712498C62C51} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\Windows\system32\lpremove.exe [71168] =>.Microsoft Corporation O38 - TASK: {F3D9A2BA-6578-472F-93B7-6C33ED88DBF0} [64Bits][\Microsoft\Windows\Application Experience\ProgramDataUpdater] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\Windows\system32\compattelrunner.exe [136384] =>.Microsoft Corporation O38 - TASK: {F6EB5F23-3EB3-42DF-B90A-C06FDCED3F03} [64Bits][\cmdsvr] - (. - cmdsvr.) -- C:\Dapp\cmdsvr.exe [10017792] O38 - TASK: {F8D2844D-6557-44FB-9DCD-42B1446EAA14} [64Bits][\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [410784] =>.Microsoft Corporation O38 - TASK: {F9343379-91AC-444D-A4F7-3BF2138A5E42} [64Bits][\Microsoft\Windows\Windows Activation Technologies\ValidationTask] - (.Microsoft Corporation - Windows Activation Technologies Service.) -- C:\Windows\System32\Wat\WatAdminSvc.exe [1255736] =>.Microsoft Corporation O38 - TASK: {FA8C49EB-EB68-4A00-B7E3-5F2FB427ED0C} [64Bits][\WPD\SqmUpload_S-1-5-21-1291241882-2880171052-1378755957-1000] - (.Microsoft Corporation - Composants API de l’appareil mobile Windows.) -- C:\Windows\System32\portabledeviceapi.dll [758272] =>.Microsoft Corporation O38 - TASK: {FAE2661D-753E-4DF3-840B-0D6E8B66245C} [64Bits][\PpWUtqNAktYcHMPNs2] - (...) -- C:\Program Files (x86)\HroDwsJolcQKhkTVgGR\JocejJQ.dll [3093400] O38 - TASK: {FB3C354D-297A-4EB2-9B58-090F6361906B} [64Bits][\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem] - (.Microsoft Corporation - Outil de ligne de commande des paramètres d.) -- C:\Windows\System32\powercfg.exe [71168] =>.Microsoft Corporation O38 - TASK: {FE60BFCC-DED2-41EC-B12F-FCBDD10805D0} [64Bits][\Microsoft\Windows\Media Center\OCURActivate] - (.Microsoft Corporation - Application d’inscription de périphérique d.) -- C:\Windows\ehome\ehPrivJob.exe [295936] =>.Microsoft Corporation C:\Windows\System32\Tasks\XblfzlrMwbeaKro2 - (...) -- C:\Program Files (x86)\fBAefcjbU\WUwuRb.dll [C:\Program Files (x86)\fBAefcjbU\WUwuRb.dll] C:\Windows\System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [w32time task_ed] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - (.Microsoft Corporation.) -- C:\Windows\system32\DFDWiz.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - (.Microsoft Corporation.) -- C:\Windows\ehome\mcupdate.exe [-pscn 0] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - (.Microsoft Corporation.) -- C:\Windows\ehome\mcupdate.exe [-PvrRecoveryTask] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Setup\EOSNotify - (.Microsoft Corporation.) -- C:\Windows\system32\EOSNotify.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/OCURDiscovery] =>.Microsoft Corporation C:\Windows\System32\Tasks\Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [] =>.Adobe Systems Incorporated C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask - (.Microsoft Corporation.) -- C:\Windows\ehome\mcupdate.exe [-PvrSchedule] =>.Microsoft Corporation C:\Windows\System32\Tasks\Dapp - (.Web Service Inc..) -- C:\Dapp\Dapp.exe [] C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart - (.Microsoft Corporation.) -- C:\Windows\ehome\ehrec.exe [/RestartRecording] =>.Microsoft Corporation C:\Windows\System32\Tasks\FileAdvisorUpdate - (.File Type Advisor.) -- C:\Program Files (x86)\File Type Advisor\fileadvisor.exe [/updateprogram] =>.File Type Advisor C:\Windows\System32\Tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - (.Microsoft Corporation.) -- C:\Windows\System32\sdclt.exe [/CONFIGNOTIFICATION] =>.Microsoft Corporation C:\Windows\System32\Tasks\LaCieS - (...) -- C:\Disk\WebService.exe (.not file.) [] (.Orphan.) =>.SUP.Orphan C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/DRMInit] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/DoConfigureInternetTimeService] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - (.Microsoft Corporation.) -- C:\Windows\ehome\mcupdate.exe [-ObjectStoreRecoveryTask] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [config upnphost start= auto] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag - (.Microsoft Corp..) -- C:\Windows\system32\defrag.exe [-c] =>.Microsoft Corp. C:\Windows\System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - (.Microsoft Corporation.) -- C:\Windows\System32\schtasks.exe [/run] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/DoUpdateRecordPath] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - (.Microsoft Corporation.) -- C:\Windows\system32\appidcertstorecheck.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/DoRecoveryTasks] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_113_Plugin.exe [-check plugin] =>.Adobe Systems Incorporated C:\Windows\System32\Tasks\CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [$(Arg0)] =>.Piriform Ltd C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua] =>.Google Inc. C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/DoActivateWindowsSearch] =>.Microsoft Corporation C:\Windows\System32\Tasks\Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [] =>.Adobe Systems Incorporated C:\Windows\System32\Tasks\OXEQaMeQLrItgErZxsR2 - (...) -- C:\Program Files (x86)\LhRqTWvAWAkNC\aapQUXX.dll [C:\Program Files (x86)\LhRqTWvAWAkNC\aapQUXX.dll] C:\Windows\System32\Tasks\{71C033AE-8399-8AD0-4AA5-DAF9B9208AF2} - (.Microsoft Corporation.) -- C:\Users\HD - ND\AppData\Roaming\qAcGTgyIuWEy.exe [/q /i http://freshrefreshnerer24.info/064k4k7P8Y6.] C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/InstallPlayReady] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\SystemRestore\SR - (.Microsoft Corporation.) -- C:\Windows\System32\srrstr.dll [srrstr.dll] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\AppID\PolicyConverter - (.Microsoft Corporation.) -- C:\Windows\system32\appidpolicyconverter.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Location\Notifications - (.Microsoft Corporation.) -- C:\Windows\System32\LocationNotifications.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\hesymncsXSHUyo - (...) -- C:\Program Files (x86)\xgpUQycTQqVU2\aWDUJwcupRwbl.dll [C:\Program Files (x86)\xgpUQycTQqVU2\aWDUJwcupRwbl.dll] C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/DoReindexSearchRoot] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\mcupdate - (.Microsoft Corporation.) -- C:\Windows\ehome\mcupdate.exe [$(Arg0)] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - (.Microsoft Corporation.) -- C:\Windows\system32\CompatTelRunner.exe [/UploadEtlFilesOnly] =>.Microsoft Corporation C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google Inc. C:\Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - (.Microsoft Corporation.) -- C:\Windows\System32\wsqmcons.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/PBDADiscovery] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - (.Microsoft Corporation.) -- C:\Windows\System32\raserver.exe [/offerraupdate] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - (.Microsoft Corporation.) -- C:\Windows\System32\wermgr.exe [-queuereporting] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/wait:7] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/wait:90] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Autochk\Proxy - (.Microsoft Corporation.) -- C:\Windows\System32\acproxy.dll [acproxy.dll] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - (.Microsoft Corporation.) -- C:\Windows\System32\dfdts.dll [dfdts.dll] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/DoRegisterSearch] =>.Microsoft Corporation C:\Windows\System32\Tasks\{75E5E88B-DE2D-17E0-DD24-4BB862CFB542} - (.Microsoft Corporation.) -- C:\Users\HD - ND\jOyWoxFBcyAoA.exe [/q /i http://freshrefreshnerer24rb.info/aq2R9c45.6] C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - (.Microsoft Corporation.) -- C:\Windows\ehome\mcupdate.exe [-SqlLiteRecoveryTask] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [sppsvc] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - (.Microsoft Corporation.) -- C:\Windows\System32\bfe.dll [bfe.dll] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - (.Microsoft Corporation.) -- C:\Windows\System32\BthUdTask.exe [$(Arg0)] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - (.Microsoft Corporation.) -- C:\Windows\ehome\mcupdate.exe [-MediaCenterRecoveryTask] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\MUI\LPRemove - (.Microsoft Corporation.) -- C:\Windows\system32\lpremove.exe [] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - (.Microsoft Corporation.) -- C:\Windows\system32\compattelrunner.exe [-maintenance] =>.Microsoft Corporation C:\Windows\System32\Tasks\cmdsvr - (..) -- C:\Dapp\cmdsvr.exe [] C:\Windows\System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan - (.Microsoft Corporation.) -- C:\Program Files\Microsoft Security Client\MpCmdRun.exe [Scan -ScheduleJob -RestrictPrivileges] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - (.Microsoft Corporation.) -- C:\Windows\System32\Wat\WatAdminSvc.exe [/run] =>.Microsoft Corporation C:\Windows\System32\Tasks\WPD\SqmUpload_S-1-5-21-1291241882-2880171052-1378755957-1000 - (.Microsoft Corporation.) -- C:\Windows\System32\portabledeviceapi.dll [portabledeviceapi.dll] =>.Microsoft Corporation C:\Windows\System32\Tasks\PpWUtqNAktYcHMPNs2 - (...) -- C:\Program Files (x86)\HroDwsJolcQKhkTVgGR\JocejJQ.dll [C:\Program Files (x86)\HroDwsJolcQKhkTVgGR\JocejJQ.dll] C:\Windows\System32\Tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - (.Microsoft Corporation.) -- C:\Windows\System32\powercfg.exe [-energy -auto] =>.Microsoft Corporation C:\Windows\System32\Tasks\Microsoft\Windows\Media Center\OCURActivate - (.Microsoft Corporation.) -- C:\Windows\ehome\ehPrivJob.exe [/OCURActivate] =>.Microsoft Corporation ---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (18) - 1s O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe =>.Microsoft Corporation® O4 - HKLM\..\RunOnce: [xsyzruq2c14] . (. - HDIZD89.) -- C:\Program Files (x86)\Comic\5179.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKCU\..\Run: [PGGHMBM7WD75OX0] . (. - .) -- C:\Program Files\59PAV5TTZM\59PAV5TTZ.exe (.Not File.) =>.SUP.Orphan O4 - HKCU\..\Run: [40S2YLEBPSVYILN] . (.%YC0% - %.) -- C:\Program Files (x86)\nkmwovtphrr\EBO9P.exe O4 - HKCU\..\Run: [QBR2LOWZXLLQ09A] . (. - .) -- C:\Program Files\79EH6N29IZ\79EH6N29I.exe (.Not File.) =>.SUP.Orphan O4 - HKCU\..\Run: [TDSJFI2K0TDG5T6] . (. - .) -- C:\Program Files\P99UGZQGZ9\914VN2S0S.exe (.Not File.) =>.SUP.Orphan O4 - HKCU\..\Run: [01GFF9BFRDRUU24] . (. - .) -- C:\Program Files\TVDQD1WW4O\DN8RK4YHX.exe (.Not File.) =>.SUP.Orphan O4 - HKCU\..\Run: [VU3B5EAD2DZ35S4] . (. - .) -- C:\Program Files\10AD22RRZZ\10AD22RRZ.exe (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-1291241882-2880171052-1378755957-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKUS\S-1-5-21-1291241882-2880171052-1378755957-1000\..\Run: [PGGHMBM7WD75OX0] . (. - .) -- C:\Program Files\59PAV5TTZM\59PAV5TTZ.exe (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-21-1291241882-2880171052-1378755957-1000\..\Run: [40S2YLEBPSVYILN] . (.%YC0% - %.) -- C:\Program Files (x86)\nkmwovtphrr\EBO9P.exe O4 - HKUS\S-1-5-21-1291241882-2880171052-1378755957-1000\..\Run: [QBR2LOWZXLLQ09A] . (. - .) -- C:\Program Files\79EH6N29IZ\79EH6N29I.exe (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-21-1291241882-2880171052-1378755957-1000\..\Run: [TDSJFI2K0TDG5T6] . (. - .) -- C:\Program Files\P99UGZQGZ9\914VN2S0S.exe (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-21-1291241882-2880171052-1378755957-1000\..\Run: [01GFF9BFRDRUU24] . (. - .) -- C:\Program Files\TVDQD1WW4O\DN8RK4YHX.exe (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-21-1291241882-2880171052-1378755957-1000\..\Run: [VU3B5EAD2DZ35S4] . (. - .) -- C:\Program Files\10AD22RRZZ\10AD22RRZ.exe (.Not File.) =>.SUP.Orphan ---\\ PROCESSUS LANCÉS (28) - 2s [MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [0] [PID.924] =>.AMD [MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [0] [PID.1172] =>.AMD [MD5.CA805DA983594B01F3554464B2E5158F] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.1476] =>.Adobe Systems, Incorporated® [MD5.6FF259D19E446CE736D2D9C1DA74C14E] - (.Cambridge Silicon Radio Limited - BtSwitcherService.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216] [PID.1564] =>.Cambridge Silicon Radio Ltd.® [MD5.21249D1C893CDA49C296727242109AD2] - (.Cambridge Silicon Radio Limited - Bluetooth OBEX Service.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616] [PID.1600] =>.Cambridge Silicon Radio Ltd.® [MD5.56CD42AC0A286A29804D5E938B76BC75] - (.Cambridge Silicon Radio Limited - Csr Bluetooth Service.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032] [PID.1628] =>.Cambridge Silicon Radio Ltd.® [MD5.95C08B0275755A9180012F15F189ECCE] - (.pdfforge GmbH - PDF Architect 5.) -- C:\Program Files\PDF Architect 5\creator-ws.exe [859312] [PID.1792] =>.pdfforge GmbH® [MD5.3E8A310729B4BECFF410684E5F9ACB80] - (.© pdfforge GmbH. - Manager service.) -- C:\Program Files (x86)\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985848] [PID.1860] =>.pdfforge GmbH® [MD5.46826B02C346D48A62FF11882AF662BB] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) -- C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224] [PID.1924] =>.Samsung Electronics CO., LTD.® [MD5.F36B14E5DD31BC45028556768615BDCA] - (.Cambridge Silicon Radio Limited - CSR Bluetooth Audio Service.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624] [PID.1104] =>.Cambridge Silicon Radio Ltd.® [MD5.4F5116208EFC4A130AB1D557D22EEC17] - (.Web Service Inc. - Web Service.) -- C:\Dapp\Dapp.exe [8723456] [PID.2576] [MD5.8CF17AFF1BEF543728EE8CE6DDDF7BF2] - (. - cmdsvr.) -- C:\Dapp\cmdsvr.exe [10017792] [PID.2584] [MD5.4F5116208EFC4A130AB1D557D22EEC17] - (.Web Service Inc. - Web Service.) -- C:\Dapp\Dapp.exe [8723456] [PID.2628] [MD5.8CF17AFF1BEF543728EE8CE6DDDF7BF2] - (. - cmdsvr.) -- C:\Dapp\cmdsvr.exe [10017792] [PID.2636] [MD5.CA905CDAECE0275CECCF6E57B5CF530E] - (. - HDIZD89.) -- C:\Program Files (x86)\Comic\5179.exe [664064] [PID.2096] [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.2480] =>.The Chromium Authors [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.2132] =>.The Chromium Authors [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.2616] =>.The Chromium Authors [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.2608] =>.The Chromium Authors [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.2264] =>.The Chromium Authors [MD5.8C5EBBC1D6AEEE719104C8A55375C717] - (.%YC0% - %.) -- C:\Program Files (x86)\nkmwovtphrr\EBO9P.exe [666112] [PID.848] [MD5.E6F5AD3FD6D0F64EC88357FC481A71AB] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [9856176] [PID.2888] =>.Piriform Ltd® [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.3164] =>.The Chromium Authors [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.3172] =>.The Chromium Authors [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.3504] =>.The Chromium Authors [MD5.0A210BB79420FE566022A40880E42F01] - (.The Chromium Authors - Chromium.) -- C:\Dapp\Browser\ChromiumPortable.exe [3946496] [PID.3508] =>.The Chromium Authors [MD5.C05821177C19D0FC45D72CDC2728B6BE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\HD - ND\Desktop\ZHPDiag3.exe [3042176] [PID.3076] =>.Nicolas Coolman [MD5.601D0A73DABB8B35870BA59A829C8211] - (.Nicolas Coolman - ZHPCleaner.) -- C:\Users\HD - ND\Desktop\ZHPCleaner.exe [3106176] [PID.2972] =>.Nicolas Coolman ---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (18) - 5s M0 - MFSP: prefs.js [HD - ND - 5ufkutd5.default-1507739699234] http://www.google.fr/ =>.Google Inc. P2 - EXT FILE: (.System Table - .) -- C:\Users\HD - ND\AppData\Roaming\Mozilla\Firefox\Profiles\5ufkutd5.default-1507739699234\extensions\143734@modext.tech.xpi P2 - EXT FILE: (.System Table - .) -- C:\Users\HD - ND\AppData\Roaming\Mozilla\Firefox\Profiles\5ufkutd5.default-1507739699234\extensions\214028@modext.tech.xpi P2 - EXT FILE: (.System Table - .) -- C:\Users\HD - ND\AppData\Roaming\Mozilla\Firefox\Profiles\5ufkutd5.default-1507739699234\extensions\383882@modext.tech.xpi P2 - EXT FILE: (...) -- C:\Users\HD - ND\AppData\Roaming\Mozilla\Firefox\Profiles\5ufkutd5.default-1507739699234\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi P2 - EXT FILE: (.Video DownloadHelper - Download Videos from the Web.) -- C:\Users\HD - ND\AppData\Roaming\Mozilla\Firefox\Profiles\5ufkutd5.default-1507739699234\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi =>.Video DownloadHelper P2 - EXT FILE: (.Google Inc. - __MSG_description__", .) -- C:\Users\HD - ND\AppData\Roaming\Mozilla\Firefox\Profiles\5ufkutd5.default-1507739699234\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Google Inc. P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\activity-stream@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\followonsearch@mozilla.com.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\onboarding@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\{A5FD4672-4D73-4F90-A1C0-2ABD39DB2565}.xpi =>PUP.Optional.YouTubeAdBlock P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_113.dll =>.Adobe Systems Incorporated ---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (19) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRHOjYN9_5EdL73pVoaOVYBTr19vL9L9zOZ347HxqZZS4k-KSka3SacrN4uz222p-noDF7lwzrMPV4yKdbtjdiu4SSRMz3lChzNJfsVWKMFmno9ak05QNdrFNL7Ei9edXk-pT8YwME-TCcezrbqOVfxmAsVudrMiTIRPxY3-Qv8w8LGFUiLa1ckNhIwF4Y6w,, =>.SUP.Linkury R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbrhojyn9_5edl73pvoaovybtr19vl9l9zoz347hxqzzs4k-kska3sacrn4uz222p-nodf7lwzrmpv4ykdbtjdiu4ssrmz3lchznjfgrdmea6mey0oxei-ffifcfmyy6iqptop4xtmuqgkn9rijkzjvtd6o1t7wjhldcdlu0sj5jdur1xce0gcq-oqcefh-zq,,&q={searchterms} =>.SUP.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbrhojyn9_5edl73pvoaovybtr19vl9l9zoz347hxqzzs4k-kska3sacrn4uz222p-nodf7lwzrmpv4ykdbtjdiu4ssrmz3lchznjfgrdmea6mey0oxei-ffifcfmyy6iqptop4xtmuqgkn9rijkzjvtd6o1t7wjhldcdlu0sj5jdur1xce0gcq-oqcefh-zq,,&q={searchterms} =>.SUP.Linkury R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbrhojyn9_5edl73pvoaovybtr19vl9l9zoz347hxqzzs4k-kska3sacrn4uz222p-nodf7lwzrmpv4ykdbtjdiu4ssrmz3lchznjfgrdmea6mey0oxei-ffifcfmyy6iqptop4xtmuqgkn9rijkzjvtd6o1t7wjhldcdlu0sj5jdur1xce0gcq-oqcefh-zq,,&q={searchterms} =>.SUP.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbrhojyn9_5edl73pvoaovybtr19vl9l9zoz347hxqzzs4k-kska3sacrn4uz222p-nodf7lwzrmpv4ykdbtjdiu4ssrmz3lchznjfgrdmea6mey0oxei-ffifcfmyy6iqptop4xtmuqgkn9rijkzjvtd6o1t7wjhldcdlu0sj5jdur1xce0gcq-oqcefh-zq,,&q={searchterms} =>.SUP.Linkury R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKEY_USERS\S-1-5-21-1291241882-2880171052-1378755957-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgkbrhojyn9_5edl73pvoaovybtr19vl9l9zoz347hxqzzs4k-kska3sacrn4uz222p-nodf7lwzrmpv4ykdbtjdiu4ssrmz3lchznjfgrdmea6mey0oxei-ffifcfmyy6iqptop4xtmuqgkn9rijkzjvtd6o1t7wjhldcdlu0sj5jdur1xce0gcq-oqcefh-zq,,&q={searchterms} =>.SUP.Linkury R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.18953 (winblue_ltsb.180216-0600)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation ---\\ INTERNET EXPLORER, Site de confiance et site sensible (3) - 0s ~ IE Restricted Site Good: localhost ~ Microsoft Internet Explorer Restricted Site(s) Domains: 1(Good) / 0(Bad) ~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 0(Good) / 0(Bad) ---\\ INTERNET EXPLORER,Proxy Management (5) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft ---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation ---\\ ÉTUDE DU FICHIER HOSTS (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (38) ---\\ RACCOURCIS GLOBAL STARTUP (98) - 9s O4 - GS\Desktop [Administrateur]: Données (E) - Raccourci.lnk . (...) E:\ O4 - GS\Desktop [Administrateur]: Free M4a to MP3 Converter.lnk . (.ManiacTools - Free M4a to MP3 Converter.) C:\Program Files (x86)\Free M4a to MP3 Converter\m4a_converter.exe =>.Soft Integrator Europe Spółka z o.o® O4 - GS\Desktop [Administrateur]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\HD - ND\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrateur]: Adobe Photoshop CS5.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS5 Portable\Adobe Photoshop CS5.exe =>.Adobe Systems, Incorporated O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O4 - GS\Quicklaunch [Administrateur]: Smart Switch.lnk . (.Samsung - Smart Switch PC.) C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPC.exe =>.Samsung Electronics CO., LTD.® O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Adobe Photoshop CS5 - Raccourci.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS5 Portable\Adobe Photoshop CS5.exe =>.Adobe Systems, Incorporated O4 - GS\TaskBar [Administrateur]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - GS\TaskBar [Administrateur]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited® O4 - GS\TaskBar [Administrateur]: Free M4a to MP3 Converter.lnk . (.ManiacTools - Free M4a to MP3 Converter.) C:\Program Files (x86)\Free M4a to MP3 Converter\m4a_converter.exe =>.Soft Integrator Europe Spółka z o.o® O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Microsoft Office Excel 2003.lnk . (...) C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\xlicons.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Microsoft Office Word 2003.lnk . (...) C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe %SNF% =>.Mozilla Corporation® O4 - GS\TaskBar [Administrateur]: MP3Gain.lnk . (.Snelg Enterprises - MP3Gain GUI.) C:\Program Files (x86)\MP3Gain\MP3GainGUI.exe =>.Snelg Enterprises O4 - GS\TaskBar [Administrateur]: PhotoZoom Pro 5.lnk . (...) C:\Program Files\PhotoZoom Pro 5\PhotoZoom Pro 5.exe O4 - GS\TaskBar [Administrateur]: Smart Switch.lnk . (.Samsung - Smart Switch PC.) C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPC.exe =>.Samsung Electronics CO., LTD.® O4 - GS\TaskBar [Administrateur]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Youtube Downloader HD.lnk . (...) C:\Program Files (x86)\Youtube Downloader HD\YouTubeDownloaderHD.exe O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O4 - GS\Desktop [HD - ND]: Données (E) - Raccourci.lnk . (...) E:\ O4 - GS\Desktop [HD - ND]: Free M4a to MP3 Converter.lnk . (.ManiacTools - Free M4a to MP3 Converter.) C:\Program Files (x86)\Free M4a to MP3 Converter\m4a_converter.exe =>.Soft Integrator Europe Spółka z o.o® O4 - GS\Desktop [HD - ND]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\HD - ND\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [HD - ND]: Adobe Photoshop CS5.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS5 Portable\Adobe Photoshop CS5.exe =>.Adobe Systems, Incorporated O4 - GS\Quicklaunch [HD - ND]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O4 - GS\Quicklaunch [HD - ND]: Smart Switch.lnk . (.Samsung - Smart Switch PC.) C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPC.exe =>.Samsung Electronics CO., LTD.® O4 - GS\sendTo [HD - ND]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [HD - ND]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: Adobe Photoshop CS5 - Raccourci.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS5 Portable\Adobe Photoshop CS5.exe =>.Adobe Systems, Incorporated O4 - GS\TaskBar [HD - ND]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - GS\TaskBar [HD - ND]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited® O4 - GS\TaskBar [HD - ND]: Free M4a to MP3 Converter.lnk . (.ManiacTools - Free M4a to MP3 Converter.) C:\Program Files (x86)\Free M4a to MP3 Converter\m4a_converter.exe =>.Soft Integrator Europe Spółka z o.o® O4 - GS\TaskBar [HD - ND]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: Microsoft Office Excel 2003.lnk . (...) C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\xlicons.exe =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: Microsoft Office Word 2003.lnk . (...) C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe %SNF% =>.Mozilla Corporation® O4 - GS\TaskBar [HD - ND]: MP3Gain.lnk . (.Snelg Enterprises - MP3Gain GUI.) C:\Program Files (x86)\MP3Gain\MP3GainGUI.exe =>.Snelg Enterprises O4 - GS\TaskBar [HD - ND]: PhotoZoom Pro 5.lnk . (...) C:\Program Files\PhotoZoom Pro 5\PhotoZoom Pro 5.exe O4 - GS\TaskBar [HD - ND]: Smart Switch.lnk . (.Samsung - Smart Switch PC.) C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPC.exe =>.Samsung Electronics CO., LTD.® O4 - GS\TaskBar [HD - ND]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\TaskBar [HD - ND]: Youtube Downloader HD.lnk . (...) C:\Program Files (x86)\Youtube Downloader HD\YouTubeDownloaderHD.exe O4 - GS\Programs [HD - ND]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated® O4 - GS\CommonDesktop [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team O4 - GS\CommonDesktop [Public]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: Malwarebytes' Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe =>.Malwarebytes® O4 - GS\CommonDesktop [Public]: PDFCreator.lnk . (.pdfforge - PDFCreator.) C:\Program Files\PDFCreator\PDFCreator.exe =>.pdfforge GmbH® O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN® O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Bluetooth File Transfer Wizard.lnk . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>..Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC O4 - GS\ProgramsCommon [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team O4 - GS\ProgramsCommon [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited® O4 - GS\ProgramsCommon [Public]: Conseiller de mise à niveau vers Windows 7.lnk . (.Microsoft Corporation - Windows 7 Upgrade Advisor.) C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor\WindowsUpgradeAdvisor.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Microsoft Security Essentials.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Security Client\msseces.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation ---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{0E674686-C446-46B2-9554-2930FF30EBEA}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{D2DB74A7-6F7A-4E61-B235-3DD8B9A685F7}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress ---\\ PROTOCOLE ADDITIONNEL (20) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® ---\\ LOGICIELS INSTALLÉS (38) - 13s O42 - Logiciel: 7-Zip 16.04 (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Flash Player 29 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Photoshop CS5 Portable - (.Adobe.) [HKLM][64Bits] -- {61172A5D-60AA-43BE-958F-90451024E768}_is1 =>.Adobe O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824265200} =>.Adobe Systems Incorporated O42 - Logiciel: Audacity 2.1.3 - (.Audacity Team.) [HKLM][64Bits] -- Audacity®_is1 =>.Audacity Team O42 - Logiciel: Backup and Sync from Google - (.Google, Inc..) [HKLM][64Bits] -- {908DB568-E5FA-40C7-A2AA-AB340190858B} =>.Google, Inc. O42 - Logiciel: BenVista PhotoZoom Pro 5.0.2 - (.BenVista Ltd..) [HKLM][64Bits] -- PhotoZoom Pro 5 =>.BenVista Ltd. O42 - Logiciel: Canon MP280 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series =>.Canon Inc.® O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd® O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 =>.CDBurnerXP O42 - Logiciel: Conseiller de mise à niveau vers Windows 7 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D10CB57-B085-44c3-B435-2D193BA153F0} =>.Microsoft Corporation O42 - Logiciel: ConvertHelper 3.2 - (.DownloadHelper.) [HKLM][64Bits] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1 =>.DownloadHelper O42 - Logiciel: CSR Harmony Wireless Software Stack - (.CSR Plc..) [HKLM][64Bits] -- {17DEA095-8EE1-49A2-AC5A-9663DB098FA9} =>.CSR Plc. O42 - Logiciel: File Type Advisor 1.7 - (..) [HKLM][64Bits] -- File Type Advisor_is1 O42 - Logiciel: Free M4a to MP3 Converter 9.5 - (.ManiacTools.com.) [HKLM][64Bits] -- Free M4a to MP3 Converter_is1 =>.Soft Integrator Europe Spółka z o.o® O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 =>.Malwarebytes® O42 - Logiciel: Manager - (.2017 pdfforge GmbH. All rights reserved.) [HKLM][64Bits] -- {8DED36D9-54D6-4127-A112-5A1BA1CDD66B} =>.2017 pdfforge GmbH. All rights reserved O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {2AA3C13E-0531-41B8-AE48-AE28C940A809} =>.Microsoft Corporation O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client =>.Microsoft Corporation® O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation O42 - Logiciel: Mozilla Firefox 59.0.2 (x64 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 59.0.2 (x64 en-US) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: PDF Architect 5 - (.pdfforge GmbH.) [HKLM][64Bits] -- PDF Architect 5 =>.pdfforge GmbH O42 - Logiciel: PDF Architect 5 Create Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {0E25DE98-E56E-4259-B554-F1360BB2DC22} =>.pdfforge GmbH O42 - Logiciel: PDF Architect 5 Edit Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {EE01D8D7-2DD0-4C43-BF42-D9C8FC8DAE99} =>.pdfforge GmbH O42 - Logiciel: PDF Architect 5 View Module - (.pdfforge GmbH.) [HKLM][64Bits] -- {4DC94B75-B036-474D-8AC8-E2D055C95FBD} =>.pdfforge GmbH O42 - Logiciel: PDFCreator - (.pdfforge GmbH.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} =>.pdfforge GmbH O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp.® O42 - Logiciel: Samsung USB Driver for Mobile Phones - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.® O42 - Logiciel: Smart Switch - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {74FA5314-85C8-4E2A-907D-D9ECCCB770A7} =>.Samsung Electronics Co., Ltd. O42 - Logiciel: Smart Switch - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7} =>.Samsung Electronics Co., Ltd. O42 - Logiciel: Supercopier 1.2.3.6 - (.Supercopier.) [HKLM][64Bits] -- Supercopier =>.Supercopier O42 - Logiciel: System Table - (..) [HKLM][64Bits] -- System Table_is1 O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: Youtube Downloader HD v. 2.9.9.30 - (.YoutubeDownloaderHD.com.) [HKLM][64Bits] -- Youtube Downloader HD_is1 =>.YoutubeDownloaderHD.com O42 - Logiciel: YoutubeAdBlock - (.Company Inc..) [HKLM][64Bits] -- E3605470-291B-44EB-8648-745EE356599A =>PUP.Optional.YouTubeAdBlock ---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (134) - 13s HKLM\SOFTWARE\Adobe =>.Adobe HKLM\SOFTWARE\BenVista =>.BenVista HKLM\SOFTWARE\Borland =>.Borland HKLM\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited HKLM\SOFTWARE\Canon =>.Canon HKLM\SOFTWARE\Cygwin =>.Cygwin HKLM\SOFTWARE\DigitalWave =>.DigitalWave Corporation HKLM\SOFTWARE\DownloadHelper =>.DownloadHelper HKLM\SOFTWARE\Freemake =>.Freemake HKLM\SOFTWARE\Google =>.Google HKLM\SOFTWARE\HaaliMkx =>.Haali Media HKLM\SOFTWARE\Intel =>.Intel HKLM\SOFTWARE\Licenses =>.Microsoft Corporation HKLM\SOFTWARE\Macromedia =>.Macromedia HKLM\SOFTWARE\Malwarebytes Anti-Rootkit =>.Malwarebytes HKLM\SOFTWARE\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware HKLM\SOFTWARE\Mozilla =>.Mozilla HKLM\SOFTWARE\mozilla.org =>.mozilla.org HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\mtPitachok HKLM\SOFTWARE\Nero =>.Ahead Corporation HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\PDF Architect 5 =>.pdfforge GmbH HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\Samsung =>.Samsung Electronics HKLM\SOFTWARE\Skype =>.Skype HKLM\SOFTWARE\TeamViewer =>.TeamViewer HKLM\SOFTWARE\ThinPrint =>.ThinPrint HKLM\SOFTWARE\TOSHIBA =>.Toshiba Corporation HKLM\SOFTWARE\TrendMicro =>.TrendMicro HKLM\SOFTWARE\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\WafCX =>.WafCX HKLM\SOFTWARE\Wondershare =>.Wondershare HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe HKLM\SOFTWARE\WOW6432Node\BenVista =>.BenVista HKLM\SOFTWARE\WOW6432Node\Borland =>.Borland HKLM\SOFTWARE\WOW6432Node\Canneverbe Limited =>.Canneverbe Limited HKLM\SOFTWARE\WOW6432Node\Canon =>.Canon HKLM\SOFTWARE\WOW6432Node\Cygwin =>.Cygwin HKLM\SOFTWARE\WOW6432Node\DigitalWave =>.DigitalWave Corporation HKLM\SOFTWARE\WOW6432Node\DownloadHelper =>.DownloadHelper HKLM\SOFTWARE\WOW6432Node\Freemake =>.Freemake HKLM\SOFTWARE\WOW6432Node\Google =>.Google HKLM\SOFTWARE\WOW6432Node\HaaliMkx =>.Haali Media HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel HKLM\SOFTWARE\WOW6432Node\Licenses =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia HKLM\SOFTWARE\WOW6432Node\Malwarebytes Anti-Rootkit =>.Malwarebytes HKLM\SOFTWARE\WOW6432Node\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\WOW6432Node\mtPitachok HKLM\SOFTWARE\WOW6432Node\Nero =>.Ahead Corporation HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\WOW6432Node\PDF Architect 5 =>.pdfforge GmbH HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\WOW6432Node\Samsung =>.Samsung Electronics HKLM\SOFTWARE\WOW6432Node\Skype =>.Skype HKLM\SOFTWARE\WOW6432Node\TeamViewer =>.TeamViewer HKLM\SOFTWARE\WOW6432Node\ThinPrint =>.ThinPrint HKLM\SOFTWARE\WOW6432Node\TOSHIBA =>.Toshiba Corporation HKLM\SOFTWARE\WOW6432Node\TrendMicro =>.TrendMicro HKLM\SOFTWARE\WOW6432Node\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\WafCX =>.WafCX HKLM\SOFTWARE\WOW6432Node\Wondershare =>.Wondershare HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\7-Zip =>.Igor Pavlov HKCU\SOFTWARE\Adobe =>.Adobe HKCU\SOFTWARE\ahead =>.Ahead HKCU\SOFTWARE\Apowersoft =>.Apowersoft HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. =>.Apple Inc. HKCU\SOFTWARE\Astonsoft =>.Astonsoft HKCU\SOFTWARE\Attribute Changer HKCU\SOFTWARE\BenVista =>.BenVista HKCU\SOFTWARE\Borland =>.Borland HKCU\SOFTWARE\Cambridge Silicon Radio =>.Cambridge Silicon Radio HKCU\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited HKCU\SOFTWARE\Canon =>.Canon HKCU\SOFTWARE\Chromium =>.Chromium HKCU\SOFTWARE\Convertir.co =>.convertir.Co HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions HKCU\SOFTWARE\Cygwin =>.Cygwin HKCU\SOFTWARE\Dapp HKCU\SOFTWARE\DLAO HKCU\SOFTWARE\EaseUS =>.EaseUS Software HKCU\SOFTWARE\ej-technologies =>.ej-technologies HKCU\SOFTWARE\FileAdvisor =>.Soft Integrator Ltd HKCU\SOFTWARE\FonePaw =>.FonePaw HKCU\SOFTWARE\Freemake =>.Freemake HKCU\SOFTWARE\FreeMusicConverter.net HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\Haali =>.Haali Media HKCU\SOFTWARE\IM Providers =>.IM Providers HKCU\SOFTWARE\JavaSoft =>.JavaSoft HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKCU\SOFTWARE\LAV =>.LAV Inc HKCU\SOFTWARE\Macromedia =>.Macromedia HKCU\SOFTWARE\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware HKCU\SOFTWARE\ManiacTools =>.ManiacTools HKCU\SOFTWARE\Mirage =>.Mirage Game HKCU\SOFTWARE\MOVAVI =>.Movavi HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team HKCU\SOFTWARE\MultimediaTools =>.Legitimate HKCU\SOFTWARE\Netscape =>.Netscape HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions HKCU\SOFTWARE\Opera Software =>.Opera Software HKCU\SOFTWARE\PDF Architect 5 =>.pdfforge GmbH HKCU\SOFTWARE\pdfforge =>.pdfforge HKCU\SOFTWARE\Piriform =>.Piriform HKCU\SOFTWARE\Python =>.Python HKCU\SOFTWARE\QtProject =>.QtProject HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\Rtp =>.RTP Software HKCU\SOFTWARE\Safer Networking Limited =>.Safer Networking Limited HKCU\SOFTWARE\Samsung =>.Samsung Electronics HKCU\SOFTWARE\screen.center HKCU\SOFTWARE\Skype =>.Skype HKCU\SOFTWARE\Spoon =>.Spoon Software HKCU\SOFTWARE\TaskXMR HKCU\SOFTWARE\TeamViewer =>.TeamViewer HKCU\SOFTWARE\Trolltech =>.Trolltech HKCU\SOFTWARE\Ultracopier =>.Herman Brule HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation HKCU\SOFTWARE\Wondershare =>.Wondershare HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\Xenocode =>.Xenocode HKCU\SOFTWARE\ZebHelpProcess Helper =>.Nicolas Coolman HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation ---\\ CONTENU DES DOSSIERS PROGRAMMES (306) - 37s O43 - CFD: 03/04/2018 - [0] D -- C:\Program Files\10AD22RRZZ O43 - CFD: 03/04/2018 - [0] D -- C:\Program Files\59PAV5TTZM O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\7-Zip =>.Igor Pavlov O43 - CFD: 03/04/2018 - [0] D -- C:\Program Files\79EH6N29IZ O43 - CFD: 24/08/2017 - [] D -- C:\Program Files\Attribute Changer O43 - CFD: 29/08/2017 - [] HD -- C:\Program Files\CanonBJ =>.Canon Inc. O43 - CFD: 30/11/2017 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd O43 - CFD: 03/04/2018 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 11/08/2017 - [] D -- C:\Program Files\ConvertHelper3 =>.Downloadhelper.net O43 - CFD: 23/09/2017 - [] D -- C:\Program Files\CSR =>.Cambridge Silicon Radio Ltd.® O43 - CFD: 24/07/2017 - [] D -- C:\Program Files\DVD Maker =>.Aone Software O43 - CFD: 03/04/2018 - [] D -- C:\Program Files\f949626b27a6f439bc57616cbd16afdc O43 - CFD: 22/07/2017 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation O43 - CFD: 15/03/2018 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [] D -- C:\Program Files\LaCie Private Public O43 - CFD: 22/07/2017 - [] D -- C:\Program Files\Microsoft Security Client =>.Microsoft Corporation O43 - CFD: 26/08/2017 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [0] D -- C:\Program Files\My Program O43 - CFD: 03/04/2018 - [0] D -- C:\Program Files\P99UGZQGZ9 O43 - CFD: 22/07/2017 - [] D -- C:\Program Files\PDF Architect 5 =>.pdfforge GmbH O43 - CFD: 30/07/2017 - [] D -- C:\Program Files\PDFCreator =>.Philip Chinery O43 - CFD: 08/08/2017 - [] D -- C:\Program Files\PhotoZoom Pro 5 O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [] D -- C:\Program Files\Supercopier =>.SFX Team O43 - CFD: 03/04/2018 - [0] D -- C:\Program Files\TVDQD1WW4O O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 25/08/2017 - [0] D -- C:\Program Files\Unlocker =>.Cedrick Collomb O43 - CFD: 22/07/2017 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team O43 - CFD: 24/07/2017 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 15/11/2017 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 09/01/2018 - [0] D -- C:\Program Files (x86)\4dots Software =>.4dots Software O43 - CFD: 24/07/2017 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe O43 - CFD: 03/10/2017 - [0] D -- C:\Program Files (x86)\Astonsoft =>.Astonsoft O43 - CFD: 24/07/2017 - [] D -- C:\Program Files (x86)\Audacity =>.Audacity O43 - CFD: 05/03/2018 - [0] AD -- C:\Program Files (x86)\BlueStacks =>.BlueStack Systems, Inc. O43 - CFD: 05/02/2018 - [] D -- C:\Program Files (x86)\CD to MP3 Freeware O43 - CFD: 03/10/2017 - [] D -- C:\Program Files (x86)\CDBurnerXP =>.Stefan Haglund O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\Comic O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation O43 - CFD: 07/02/2018 - [] D -- C:\Program Files (x86)\Convertisseur MP3 =>.Legitimate O43 - CFD: 23/09/2017 - [] D -- C:\Program Files (x86)\CSR =>.Cambridge Silicon Radio Ltd.® O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\dmpYwNbvAIE O43 - CFD: 21/11/2017 - [] D -- C:\Program Files (x86)\EaseUS =>.EaseUS Software O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\fBAefcjbU O43 - CFD: 22/01/2018 - [] D -- C:\Program Files (x86)\File Type Advisor =>.Soft Integrator Ltd O43 - CFD: 22/01/2018 - [] D -- C:\Program Files (x86)\Free M4a to MP3 Converter =>.ManiacTools O43 - CFD: 03/09/2017 - [] D -- C:\Program Files (x86)\FreeCodecPack =>.Free Codec Pack O43 - CFD: 22/01/2018 - [] D -- C:\Program Files (x86)\Freemake =>.Freemake O43 - CFD: 19/09/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\HroDwsJolcQKhkTVgGR O43 - CFD: 03/02/2018 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield O43 - CFD: 15/03/2018 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation O43 - CFD: 28/07/2017 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\LhRqTWvAWAkNC O43 - CFD: 26/07/2017 - [] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware =>.Malwarebytes® O43 - CFD: 23/08/2017 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [] D -- C:\Program Files (x86)\Microsoft Security Client =>.Microsoft Corporation O43 - CFD: 26/08/2017 - [] D -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 24/07/2017 - [] D -- C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 03/09/2017 - [0] D -- C:\Program Files (x86)\MoboLot =>.MoboLot O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla O43 - CFD: 22/07/2017 - [] D -- C:\Program Files (x86)\MP3Gain =>.Glen Sawyer O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation O43 - CFD: 23/08/2017 - [] D -- C:\Program Files (x86)\MSECache =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\nkmwovtphrr O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\nzctHtEYomUn O43 - CFD: 22/07/2017 - [] D -- C:\Program Files (x86)\PDF Architect 5 =>.pdfforge GmbH O43 - CFD: 22/07/2017 - [] D -- C:\Program Files (x86)\PDF Architect 5 Manager =>.pdfforge GmbH O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\ProxyGate =>.SUP.ProxyGate O43 - CFD: 28/07/2017 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 13/03/2018 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics O43 - CFD: 06/10/2017 - [0] D -- C:\Program Files (x86)\Sophos =>.Sophos O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation O43 - CFD: 11/12/2017 - [] D -- C:\Program Files (x86)\VMware =>.VMware, Inc.® O43 - CFD: 24/07/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 15/11/2017 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 16/03/2018 - [0] D -- C:\Program Files (x86)\Wondershare =>.Wondershare O43 - CFD: 04/02/2018 - [0] D -- C:\Program Files (x86)\WondershareUpdate =>.Wondershare O43 - CFD: 03/04/2018 - [] D -- C:\Program Files (x86)\xgpUQycTQqVU2 O43 - CFD: 23/01/2018 - [] D -- C:\Program Files (x86)\Youtube Downloader HD =>.Regensoft O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov O43 - CFD: 23/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 24/08/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 18/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google O43 - CFD: 29/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP280 series =>.Canon Inc. O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd O43 - CFD: 05/02/2018 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CD to MP3 Freeware O43 - CFD: 22/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Type Advisor =>.Soft Integrator Ltd O43 - CFD: 22/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free M4a to MP3 Converter =>.ManiacTools O43 - CFD: 24/08/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation O43 - CFD: 24/08/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation O43 - CFD: 26/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3Gain =>.Glen Sawyer O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 5 =>.pdfforge GmbH O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator =>.Philip Chinery O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoZoom Pro 5 O43 - CFD: 16/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung =>.Samsung Electronics O43 - CFD: 24/08/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 24/08/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team O43 - CFD: 23/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader HD =>.Regensoft O43 - CFD: 22/07/2017 - [] D -- C:\ProgramData\Adobe =>.Adobe O43 - CFD: 16/03/2018 - [] D -- C:\ProgramData\Apowersoft =>.Apowersoft O43 - CFD: 03/04/2018 - [] D -- C:\ProgramData\Apple =>.Apple Inc. O43 - CFD: 17/03/2018 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc. O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [] D -- C:\ProgramData\Blogging O43 - CFD: 22/07/2017 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation O43 - CFD: 30/07/2017 - [] D -- C:\ProgramData\Canneverbe Limited =>.Canneverbe Limited O43 - CFD: 22/07/2017 - [] HD -- C:\ProgramData\CanonBJ =>.Canon Inc. O43 - CFD: 08/02/2018 - [0] D -- C:\ProgramData\dbg =>.DBG O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation O43 - CFD: 03/09/2017 - [0] D -- C:\ProgramData\DigitalWave.ApplicationUpdater_files O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation O43 - CFD: 22/01/2018 - [0] D -- C:\ProgramData\Freemake =>.Freemake O43 - CFD: 16/03/2018 - [] D -- C:\ProgramData\FreeRIP MP3 Converter O43 - CFD: 04/02/2018 - [] D -- C:\ProgramData\GraphicsType O43 - CFD: 26/07/2017 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes O43 - CFD: 03/10/2017 - [0] D -- C:\ProgramData\Malwarebytes' Anti-Malware (portable) =>.Malwarebytes O43 - CFD: 22/07/2017 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation O43 - CFD: 26/08/2017 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation O43 - CFD: 22/01/2018 - [] D -- C:\ProgramData\Movavi =>.Movavi O43 - CFD: 22/01/2018 - [] D -- C:\ProgramData\Movavi Video Converter 18 =>.Movavi O43 - CFD: 05/02/2018 - [] D -- C:\ProgramData\NCH Software =>.NCH Software O43 - CFD: 26/08/2017 - [] D -- C:\ProgramData\Office Genuine Advantage =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle O43 - CFD: 11/12/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 07/08/2017 - [] D -- C:\ProgramData\PDF Architect 5 =>.pdfforge GmbH O43 - CFD: 03/04/2018 - [] D -- C:\ProgramData\Pitachok O43 - CFD: 03/04/2018 - [] D -- C:\ProgramData\Pitachoks O43 - CFD: 21/10/2017 - [0] D -- C:\ProgramData\ProxyCommander O43 - CFD: 25/08/2017 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software O43 - CFD: 16/03/2018 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics O43 - CFD: 03/10/2017 - [] D -- C:\ProgramData\Skype =>.Skype O43 - CFD: 03/04/2018 - [] D -- C:\ProgramData\Spybot - Search & Destroy =>.SaferNetworking O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation O43 - CFD: 23/08/2017 - [0] D -- C:\ProgramData\TEMP =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation O43 - CFD: 11/12/2017 - [] D -- C:\ProgramData\VMware =>.VMware O43 - CFD: 17/11/2017 - [] D -- C:\ProgramData\VS Revo Group =>.VS Revo Group O43 - CFD: 04/02/2018 - [] D -- C:\ProgramData\Wondershare =>.Wondershare O43 - CFD: 08/08/2017 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe O43 - CFD: 03/04/2018 - [0] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc. O43 - CFD: 28/07/2017 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared =>.Borland O43 - CFD: 23/08/2017 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer O43 - CFD: 23/08/2017 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [] D -- C:\Program Files (x86)\Common Files\PDF Software =>.PDF Software O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation O43 - CFD: 03/10/2017 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation O43 - CFD: 24/07/2017 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation O43 - CFD: 11/12/2017 - [] D -- C:\Program Files (x86)\Common Files\ThinPrint =>.ThinPrint O43 - CFD: 11/12/2017 - [] D -- C:\Program Files (x86)\Common Files\VMware =>.VMware O43 - CFD: 22/01/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\ActiveState =>.ActiveState O43 - CFD: 23/01/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 16/03/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Apowersoft =>.Apowersoft O43 - CFD: 17/03/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\audacity =>.Audacity O43 - CFD: 02/10/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Burnaware =>.BurnAware O43 - CFD: 18/12/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\BurpSuite O43 - CFD: 22/07/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Canneverbe Limited =>.Canneverbe Limited O43 - CFD: 07/02/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Convertisseur MP3 =>.Legitimate O43 - CFD: 28/08/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\DeepBurner =>.Astonsoft Ltd O43 - CFD: 05/02/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 22/08/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Eusing =>.Eusing O43 - CFD: 03/04/2018 - [0] D -- C:\Users\HD - ND\AppData\Roaming\FileAdvisor =>.Soft Integrator Ltd O43 - CFD: 22/08/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Free Audio Converter 4dots O43 - CFD: 07/02/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Free M4a to MP3 Converter =>.ManiacTools O43 - CFD: 07/02/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Free Music Converter O43 - CFD: 22/07/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Identities =>.Microsoft Corporation O43 - CFD: 25/08/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\InfraRecorder =>.Christian Kindahl O43 - CFD: 03/04/2018 - [0] D -- C:\Users\HD - ND\AppData\Roaming\iy0h4odq3su O43 - CFD: 07/02/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\KastorFreeAudioConverter =>.KastorSoft O43 - CFD: 03/04/2018 - [0] D -- C:\Users\HD - ND\AppData\Roaming\lb5vdr4h5n0 O43 - CFD: 22/07/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 26/07/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Malwarebytes =>.Malwarebytes O43 - CFD: 14/07/2009 - [0] D -- C:\Users\HD - ND\AppData\Roaming\Media Center Programs =>.Microsoft Corporation O43 - CFD: 19/03/2018 - [] SD -- C:\Users\HD - ND\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 03/09/2017 - [0] D -- C:\Users\HD - ND\AppData\Roaming\MoboPlay O43 - CFD: 15/11/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Mozilla =>.Mozilla Corporation O43 - CFD: 08/10/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Nero =>.Ahead Corporation O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Opera Software =>.Opera Software O43 - CFD: 07/08/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\PDF Architect 5 =>.pdfforge GmbH O43 - CFD: 21/10/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\ProxyCommander O43 - CFD: 15/11/2017 - [0] D -- C:\Users\HD - ND\AppData\Roaming\PWGen O43 - CFD: 04/02/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Samsung =>.Samsung Electronics O43 - CFD: 03/10/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Skype =>.Skype O43 - CFD: 30/07/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\TeamViewer =>.TeamViewer GmbH O43 - CFD: 03/04/2018 - [0] D -- C:\Users\HD - ND\AppData\Roaming\tiu5cbk2gwh O43 - CFD: 27/10/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Vive O43 - CFD: 27/03/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\vlc =>.VideoLan Team O43 - CFD: 13/12/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\VMware =>.VMware O43 - CFD: 05/10/2017 - [0] D -- C:\Users\HD - ND\AppData\Roaming\Vso =>.VSO Software O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\WidModule O43 - CFD: 22/07/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\WinBatch =>.winbatch.com O43 - CFD: 02/09/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\wincy O43 - CFD: 04/02/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Wondershare =>.Wondershare O43 - CFD: 22/01/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\Youtube Downloader HD =>.Regensoft O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 22/08/2017 - [] D -- C:\Users\HD - ND\AppData\Local\A O43 - CFD: 20/10/2017 - [] D -- C:\Users\HD - ND\AppData\Local\ActiveState =>.ActiveState O43 - CFD: 10/02/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Adobe =>.Adobe O43 - CFD: 16/03/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Apowersoft =>.Apowersoft O43 - CFD: 17/03/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Apple =>.Apple Inc. O43 - CFD: 17/03/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Apple Computer =>.Apple Inc. O43 - CFD: 22/07/2017 - [0] SHD -- C:\Users\HD - ND\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 24/07/2017 - [] D -- C:\Users\HD - ND\AppData\Local\Audacity =>.Audacity O43 - CFD: 25/02/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Bluestacks =>.BlueStack Systems, Inc. O43 - CFD: 24/07/2017 - [] D -- C:\Users\HD - ND\AppData\Local\CEF =>.CEF O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Chromium =>.Chromium O43 - CFD: 22/01/2018 - [] D -- C:\Users\HD - ND\AppData\Local\converter =>.CocoonSoftware O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\CrashDumps =>.Microsoft Corporation O43 - CFD: 26/08/2017 - [] D -- C:\Users\HD - ND\AppData\Local\Diagnostics =>.Microsoft Corporation O43 - CFD: 03/02/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Downloaded Installations =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\FonePaw =>.FonePaw O43 - CFD: 21/09/2017 - [] D -- C:\Users\HD - ND\AppData\Local\FreemakeVideoConverter =>.Freemake O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Google =>.Google O43 - CFD: 22/07/2017 - [0] SHD -- C:\Users\HD - ND\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [] D -- C:\Users\HD - ND\AppData\Local\Macromedia =>.Macromedia O43 - CFD: 19/03/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 24/07/2017 - [] D -- C:\Users\HD - ND\AppData\Local\Microsoft Corporation =>.Microsoft Corporation O43 - CFD: 22/01/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Movavi =>.Movavi O43 - CFD: 22/07/2017 - [] D -- C:\Users\HD - ND\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 03/04/2018 - [0] D -- C:\Users\HD - ND\AppData\Local\Opera Software =>.Opera Software O43 - CFD: 22/07/2017 - [0] D -- C:\Users\HD - ND\AppData\Local\PDFCreator =>.Philip Chinery O43 - CFD: 21/10/2017 - [] D -- C:\Users\HD - ND\AppData\Local\pip =>.Python O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 03/02/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Samsung =>.Samsung Electronics O43 - CFD: 26/08/2017 - [] D -- C:\Users\HD - ND\AppData\Local\Skype =>.Skype O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [0] SHD -- C:\Users\HD - ND\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 07/02/2018 - [] D -- C:\Users\HD - ND\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 13/12/2017 - [] D -- C:\Users\HD - ND\AppData\Local\VMware =>.VMware O43 - CFD: 04/02/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Wondershare =>.Wondershare O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 22/07/2017 - [0] D -- C:\Users\HD - ND\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\Local\Programs\Opera =>.Opera Software O43 - CFD: 24/07/2017 - [] D -- C:\Users\HD - ND\AppData\LocalLow\Adobe =>.Adobe O43 - CFD: 26/08/2017 - [] SD -- C:\Users\HD - ND\AppData\LocalLow\Microsoft =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [0] D -- C:\Users\HD - ND\AppData\LocalLow\Mozilla =>.Mozilla Corporation O43 - CFD: 03/04/2018 - [] D -- C:\Users\HD - ND\AppData\LocalLow\yQvJhxdeQJQrX O43 - CFD: 22/10/2017 - [] D -- C:\Users\HD - ND\Desktop\a garder O43 - CFD: 08/02/2018 - [] D -- C:\Users\HD - ND\Desktop\Auto Painter 2.6.0 Portable O43 - CFD: 17/03/2018 - [] D -- C:\Users\HD - ND\Desktop\Bouchnack O43 - CFD: 04/02/2018 - [] D -- C:\Users\HD - ND\Desktop\bouchnack - copie O43 - CFD: 07/02/2018 - [] D -- C:\Users\HD - ND\Desktop\bouchnack2 O43 - CFD: 02/10/2017 - [] D -- C:\Users\HD - ND\Desktop\Cheb Kamel O43 - CFD: 25/02/2018 - [] D -- C:\Users\HD - ND\Desktop\cm O43 - CFD: 15/12/2017 - [] D -- C:\Users\HD - ND\Desktop\copie FB O43 - CFD: 04/01/2018 - [] D -- C:\Users\HD - ND\Desktop\Jimmy Oihid O43 - CFD: 16/01/2018 - [] D -- C:\Users\HD - ND\Desktop\Ma messagerie Invalidité O43 - CFD: 13/12/2017 - [] D -- C:\Users\HD - ND\Desktop\MAROCAN'ROCK O43 - CFD: 10/03/2018 - [] D -- C:\Users\HD - ND\Desktop\nono O43 - CFD: 21/11/2017 - [] D -- C:\Users\HD - ND\Desktop\Nouveau dossier O43 - CFD: 11/01/2018 - [] D -- C:\Users\HD - ND\Desktop\pieces jointes_11_01_2018 O43 - CFD: 27/03/2018 - [] D -- C:\Users\HD - ND\Desktop\pieces jointes_24_03_2018 O43 - CFD: 07/02/2018 - [] D -- C:\Users\HD - ND\Desktop\Pornhub O43 - CFD: 13/03/2018 - [] D -- C:\Users\HD - ND\Desktop\Société de Services à la Personne O43 - CFD: 19/03/2018 - [] D -- C:\Users\HD - ND\Desktop\sonnerie S7 O43 - CFD: 11/02/2018 - [] D -- C:\Users\HD - ND\Desktop\Tukif O43 - CFD: 19/03/2018 - [] D -- C:\Users\HD - ND\Desktop\X-Trème O43 - CFD: 16/03/2018 - [] D -- C:\Users\HD - ND\Desktop\zic bureau O43 - CFD: 14/07/2009 - [] RD -- C:\Users\HD - ND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 11/01/2018 - [] RD -- C:\Users\HD - ND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 14/07/2009 - [] RD -- C:\Users\HD - ND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [0] D -- C:\Users\HD - ND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MP3Gain =>.Glen Sawyer O43 - CFD: 11/01/2018 - [] RD -- C:\Users\HD - ND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 22/07/2017 - [] D -- C:\Users\HD - ND\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supercopier =>.SFX Team O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 15/09/2017 - [] D -- C:\Users\Default\AppData\Local\Google =>.Google O43 - CFD: 22/07/2017 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 15/09/2017 - [] D -- C:\Users\Default User\AppData\Local\Google =>.Google O43 - CFD: 22/07/2017 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 03/04/2018 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation O43 - CFD: 23/07/2017 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 02/10/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 11/10/2017 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 14/07/2009 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 11/12/2017 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware ---\\ ShellIconOverlayIdentifiers (SIOI) (6) - 0s O106 - SIOI: [ GoogleDriveBlacklisted] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}. (.Google - Google Drive shell extension.) -- C:\Program Files (x86)\Google\Drive\googledrivesync64.dll =>.Google Inc® O106 - SIOI: [ GoogleDriveSynced] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}. (.Google - Google Drive shell extension.) -- C:\Program Files (x86)\Google\Drive\googledrivesync64.dll =>.Google Inc® O106 - SIOI: [ GoogleDriveSyncing] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}. (.Google - Google Drive shell extension.) -- C:\Program Files (x86)\Google\Drive\googledrivesync64.dll =>.Google Inc® O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (4) - 0s O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation ---\\ ÉNUMÉRATION DES CLÉS StartupReg (11) - 1s O53 - SMSR:HKLM\...\startupreg\CCleaner Monitoring [Key] [64Bits] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd O53 - SMSR:HKLM\...\startupreg\CsrAudioguiCtrl [Key] [64Bits] . (.Cambridge Silicon Radio Limited - CSR Headset Control.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe =>.Cambridge Silicon Radio Limited O53 - SMSR:HKLM\...\startupreg\CSRHarmonySkypePlugin [Key] [64Bits] . (.Cambridge Silicon Radio Limited - HFP Skype Application.) -- C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe =>.Cambridge Silicon Radio Limited O53 - SMSR:HKLM\...\startupreg\CsrHCRPServer [Key] [64Bits] . (.Cambridge Silicon Radio Limited - Csr HCRP Server.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe =>.Cambridge Silicon Radio Limited O53 - SMSR:HKLM\...\startupreg\CsrSyncMLServer [Key] [64Bits] . (...) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe O53 - SMSR:HKLM\...\startupreg\HarmonyUserStartup [Key] [64Bits] . (.Cambridge Silicon Radio Limited - Csr Harmony User Startup Application.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe =>.Cambridge Silicon Radio Limited O53 - SMSR:HKLM\...\startupreg\Malwarebytes' Anti-Malware [Key] [64Bits] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe =>.Malwarebytes Corporation O53 - SMSR:HKLM\...\startupreg\TrayApplication [Key] [64Bits] . (.Cambridge Silicon Radio Limited - Csr Bluetooth TrayApplication.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe =>.Cambridge Silicon Radio Limited O53 - SMSR:HKLM\...\startupreg\ultracopier [Key] [64Bits] . (.ultracopier.first-world.info - Supercopier under GPL3.) -- C:\Program Files\Supercopier\supercopier.exe =>.ultracopier.first-world.info O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] [64Bits] . (...) -- C:\Users\HD - ND\AppData\Roaming\uTorrent\uTorrent.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\vksts [Key] [64Bits] . (.Cambridge Silicon Radio Limited - Csr Bluetooth OSD Settings.) -- C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe =>.Cambridge Silicon Radio Limited ---\\ LISTE DES PILOTES DU SYSTÈME (76) - 63s O58 - SDL:2018/04/02 20:15:16 A . (...) -- C:\Windows\System32\drivers\8d566a22435fd3d391f7fe43ce759011.sys [135920] =>PUP.Optional.Wajam O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows® O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows® O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows® O58 - SDL:2016/04/01 02:31:20 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtihdW76.sys [104976] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2009/08/18 03:48:48 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [6037504] =>.ATI Technologies Inc. O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd. O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows® O58 - SDL:2012/03/22 21:08:16 A . (.Cambridge Silicon Radio Limited - Csr Bluetooth Remote Control Driver.) -- C:\Windows\System32\drivers\csravrcp.sys [26304] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:18 A . (.Cambridge Silicon Radio Limited - CSR Bluetooth Hands-free Audio Device Drive.) -- C:\Windows\System32\drivers\CsrBthAudioHF.sys [39120] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:20 A . (.Cambridge Silicon Radio Limited - Csr Bluetooth A2DP Driver.) -- C:\Windows\System32\drivers\csrbthav.sys [99520] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:22 A . (.Cambridge Silicon Radio Limited - Csr Bluetooth Port Driver.) -- C:\Windows\System32\drivers\CsrBtPort.sys [2784968] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:26 A . (.Cambridge Silicon Radio Limited - CSR Bluetooth HFG Call Control Driver.) -- C:\Windows\System32\drivers\csrhfgcc.sys [38080] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:30 A . (.Cambridge Silicon Radio Limited - Csr Bluetooth PANU Driver.) -- C:\Windows\System32\drivers\csrpan.sys [39616] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:32 A . (.Cambridge Silicon Radio Limited - Csr Bluetooth Serial Port Driver.) -- C:\Windows\System32\drivers\csrserial.sys [61128] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:34 A . (.Cambridge Silicon Radio Limited - Csr Bluetooth USB Driver.) -- C:\Windows\System32\drivers\csrusb.sys [47296] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2012/03/22 21:08:36 A . (.Cambridge Silicon Radio Limited - Csr Bluetooth USB Driver filter.) -- C:\Windows\System32\drivers\csrusbfilter.sys [23752] =>.Cambridge Silicon Radio Ltd.® O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows® O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation O58 - SDL:2017/02/20 09:02:44 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [83008] =>.VMware, Inc.® O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc. O58 - SDL:2009/09/17 19:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation® O58 - SDL:2010/11/20 15:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows® O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows® O58 - SDL:2017/10/03 09:31:19 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation® O58 - SDL:2017/10/03 09:32:01 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows® O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows® O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows® O58 - SDL:2017/10/05 22:02:06 A . (.VSO Software - low level access layer for CD/DVD/BD device.) -- C:\Windows\System32\drivers\pcouffin.sys [82816] =>.VSO Software O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows® O58 - SDL:2017/07/28 12:01:48 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [1048576] =>.Realtek Semiconductor Corp.® O58 - SDL:2011/06/20 09:07:08 A . (.Realtek Semiconductor Corporation - Realtek RTL81892SE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8192se.sys [1225832] =>.Realtek Semiconductor Corp® O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Rovi Corporation O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows® O58 - SDL:2017/05/18 22:17:28 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\Windows\System32\drivers\ssudbus.sys [131984] =>.Samsung Electronics Co., Ltd.® O58 - SDL:2017/05/18 22:17:30 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\Windows\System32\drivers\ssudmdm.sys [166288] =>.Samsung Electronics Co., Ltd.® O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows® O58 - SDL:2018/04/03 22:46:25 A . (...) -- C:\Windows\System32\drivers\TrueSight.sys [28272] =>.Adlice® O58 - SDL:2007/11/09 05:00:30 A . (.TOSHIBA Corporation - TOSHIBA ACPI-Based Value Added Logical and.) -- C:\Windows\System32\drivers\TVALZ_O.SYS [26968] =>.TOSHIBA CORPORATION® O58 - SDL:2016/08/16 03:18:34 A . (.MBB - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\usb2ser.sys [159936] =>.NGO® O58 - SDL:2017/10/18 08:25:54 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [199808] =>.Oracle Corporation® O58 - SDL:2017/10/18 08:25:54 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [210680] =>.Oracle Corporation® O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows® O58 - SDL:2016/09/30 02:11:50 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [106560] =>.VMware, Inc.® O58 - SDL:2017/11/07 23:36:32 A . (.VMware, Inc. - VMware VMware Input Filter and Injection Dr.) -- C:\Windows\System32\drivers\vmkbd.sys [52288] =>.VMware, Inc.® O58 - SDL:2017/11/07 23:24:28 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [46032] =>.VMware, Inc.® O58 - SDL:2017/11/07 23:24:28 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [46040] =>.VMware, Inc.® O58 - SDL:2017/11/07 23:24:28 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [66520] =>.VMware, Inc.® O58 - SDL:2017/11/07 23:24:28 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [43992] =>.VMware, Inc.® O58 - SDL:2017/02/20 09:02:44 A . (.VMware, Inc. - VMware USB driver.) -- C:\Windows\System32\drivers\vmusb.sys [60480] =>.VMware, Inc.® O58 - SDL:2017/11/07 23:36:30 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [88504] =>.VMware, Inc.® O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows® O58 - SDL:2016/09/30 02:11:50 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [93248] =>.VMware, Inc.® ---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (5) - 30s O61 - LFC: 2018/04/02 09:03:31 A . (..) -- C:\ProgramData\Blogging\Blogging.exe [354191] O61 - LFC: 2018/04/03 17:50:17 A . (..) -- C:\Users\HD - ND\AppData\Local\Baming.exe [1814528] O61 - LFC: 2018/03/29 14:10:40 A . (.tmcdqcvrebegt.) -- C:\Users\HD - ND\AppData\Roaming\command.dll [123392] O61 - LFC: 2018/04/03 17:51:38 A . (..) -- C:\Users\HD - ND\AppData\Roaming\WidModule\unins000.exe [1202385] O61 - LFC: 2018/04/03 23:13:07 A . (..) -- C:\Users\HD - ND\Desktop\CKScanner.exe [468480] ---\\ ASSOCIATION Shell Spawning (11) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® ---\\ MENU DE DÉMARRAGE INTERNET (12) - 0s O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (...) -- iexplore.exe O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (.not file.) O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ RECHERCHE D'INFECTION SUR LES NAVIGATEURS (3) - 10s O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKCU] [64Bits]{2211d4a5-48d0-47f5-a7cd-81e861470f7f} - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKLM] [64Bits]{2211d4a5-48d0-47f5-a7cd-81e861470f7f} - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (33) - 2s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [794624] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [863232] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [680448] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2651136] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [30720] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] =>.Microsoft Corporation O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110528] =>.Microsoft Corporation O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [90624] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation ---\\ LISTE DES EXCEPTIONS DU PAREFEU WINDOWS (2) - 0s O87 - FAEL: "{42E9C434-82C5-4E69-9F84-E76B24C1EAA5}" [In-None-P6-TRUE] .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O87 - FAEL: "{2BDEBF3F-2408-4836-8981-FE9881B87921}" [In-None-P17-TRUE] .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® ---\\ PACKAGES WINDOWS INSTALLER (87) - 81s [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\12a5d70.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\16a75.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\1cf29ae.msi [52121600] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\1f527.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\23760ef8.msi [52121600] =>.Google, Inc. [MD5.E1752DEEE5C5948270E05392142211E1] [WIS][2017/10/09 19:04:26] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\24ccfd8.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\2524a372.msi [52121600] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\28a4a07.msi [52121600] =>.Google, Inc. [MD5.1504667BA3C10D841C0B76B6412FAFB5] [WIS][2015/03/17 10:41:29] (.Adobe Systems Incorporated.) -- C:\Windows\Installer\2a9774.msi [2805760] =>.Adobe Systems Incorporated [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\2afdde.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\2cefbb.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\31cb3.msi [52121600] =>.Google, Inc. [MD5.E9936FB4F4D79EC88B2B2E80733B5091] [WIS][2017/12/11 15:04:25] (.VMware, Inc. - VMware Player.) -- C:\Windows\Installer\33c6ec.msi [66924544] =>.VMware, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\38258.msi [52121600] =>.Google, Inc. [MD5.F03BF2AFC405A9875099A838646032A1] [WIS][2018/03/13 19:03:58] (.Samsung Electronics Co., Ltd..) -- C:\Windows\Installer\3a1b1.msi [38498304] =>.Samsung Electronics Co., Ltd. [MD5.7F9BBDB60B98B6AB6A09446AFADA65CB] [WIS][2018/03/13 19:13:58] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\Windows\Installer\3a1c1.msi [884736] =>.Adobe Systems Incorporated [MD5.F0628F319D7AAE11286B944829E9C9D6] [WIS][2018/03/13 19:21:21] (.Samsung Electronics Co., Ltd..) -- C:\Windows\Installer\3a1e0.msi [70320640] =>.Samsung Electronics Co., Ltd. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\50ad21.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\58b15.msi [51421184] =>.Google, Inc. [MD5.50196967FF54F0FC582A6C1F643CB1D5] [WIS][2017/07/22 17:01:48] (.pdfforge GmbH - PDF Architect 5 View Module.) -- C:\Windows\Installer\6ce3c.msi [41426944] =>.pdfforge GmbH [MD5.D88B05279868542B505B059A99821D36] [WIS][2017/07/22 17:02:12] (.pdfforge GmbH - PDF Architect 5 Edit Module.) -- C:\Windows\Installer\6ce43.msi [1961984] =>.pdfforge GmbH [MD5.B492126A2F4E75A1621B9B5C6FDC2AEB] [WIS][2017/07/22 17:02:36] (.pdfforge GmbH - PDF Architect 5 Create Module.) -- C:\Windows\Installer\6ce4a.msi [11776000] =>.pdfforge GmbH [MD5.00603AB4AADB78C1C077A7716CC0629D] [WIS][2017/07/22 17:02:57] (.2017 pdfforge GmbH. All rights reserved - Manager.) -- C:\Windows\Installer\6ce51.msi [2166784] =>.2017 pdfforge GmbH. All rights reserved [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\70a3b0.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\78201f.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\955dc.msi [52121600] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\9b338.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\9e6a6.msi [52121600] =>.Google, Inc. [MD5.4EFFB94BBC6324D72ADA023104DCA829] [WIS][2017/09/23 16:04:14] (.Cambridge Silicon Radio Limited. - CSR Bluetooth Stack.) -- C:\Windows\Installer\9fe109b.msi [176445952] =>.Cambridge Silicon Radio Limited. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\a2a4a.msi [52121600] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\a5a70b.msi [51421184] =>.Google, Inc. [MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2017/11/14 17:34:09] (.Google Inc. - Google Update Helper.) -- C:\Windows\Installer\a7f93.msi [40960] =>.Google Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\a7f94.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\aaf51.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\ad835.msi [52121600] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\ae34c.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\b6e9a.msi [52121600] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\c5456.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\ce0486.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\da7236.msi [51421184] =>.Google, Inc. [MD5.9C9DDB0728807754EDBA66D8AA9E2EFE] [WIS][2018/01/30 20:57:50] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\e3a5d4.msi [52121600] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\e9e8a74.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\eb128b.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\ec9763.msi [51421184] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\f824e3.msi [51421184] =>.Google, Inc. [MD5.F6D96BD797A8B8009E1969807A41096B] [WIS][2017/11/21 20:34:26] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\f894079.msi [52084736] =>.Google, Inc. [MD5.3501C57A4361310E3EC727CC5CF5A88C] [WIS][2017/11/01 15:53:36] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\ff63b6.msi [51421184] =>.Google, Inc. [MD5.BCC43969BE02109C8AC7141C7C3CB9CA] [WIS][2017/08/11 12:04:59] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\14ed0489.msp [2031616] =>.Adobe Systems, Incorporated [MD5.A58EAEAA86B7D4FA1891CA2EEDDCA3DD] [WIS][2018/02/12 16:26:08] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\23760ef7.msp [103362560] =>.Adobe Systems, Incorporated [MD5.B5B294D6E8CF1D6C89EC5F6CC580C8CE] [WIS][2017/04/05 04:14:24] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\2a9775.msp [92508160] =>.Adobe Systems, Incorporated [MD5.82F476D2A7125BB7EBF5A2A657BAB293] [WIS][2017/11/13 06:26:16] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\2f8fa.msp [23506944] =>.Adobe Systems, Incorporated [MD5.6388E4343B5EAA29FB52E1E67A3D67C2] [WIS][2007/07/27 09:30:28] (..) -- C:\Windows\Installer\39c4b.msp [135083008] [MD5.A9095FC652E0273E10F1D9481C59067D] [WIS][2018/02/23 15:25:19] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\3a1d9.msp [1343488] =>.Adobe Systems, Incorporated [MD5.593AC9C9A460D308281F68FE2C47C823] [WIS][2017/06/03 00:35:02] (..) -- C:\Windows\Installer\683add.msp [6668288] [MD5.71821E08746137362033EA234EC9CED4] [WIS][2010/03/30 12:34:48] (..) -- C:\Windows\Installer\683afc.msp [3826688] [MD5.90367B9C8AA86A7B19F4D70CE5A49C7B] [WIS][2010/08/25 17:06:30] (..) -- C:\Windows\Installer\683b1b.msp [6479360] [MD5.F1C8682370B1874EDB939A70C5CBE5EB] [WIS][2010/11/12 11:42:32] (..) -- C:\Windows\Installer\683b3d.msp [879616] [MD5.75ACB931545D85C00626EABDE1C3E7CF] [WIS][2008/07/28 15:09:10] (..) -- C:\Windows\Installer\683b5b.msp [160768] [MD5.BB17F518915D3EFD3CB0281A58E23172] [WIS][2014/03/13 16:26:22] (..) -- C:\Windows\Installer\683b7d.msp [3982848] [MD5.DCDE7D9C5FE199A7BB04CA8C68B7F1F6] [WIS][2011/05/23 14:15:48] (..) -- C:\Windows\Installer\683b9c.msp [3617792] [MD5.39281BD1CACF16B1BD6676212AC27597] [WIS][2013/05/29 14:19:46] (..) -- C:\Windows\Installer\683bbb.msp [6832640] [MD5.4E3BED37901306A7E79B96609DB39E89] [WIS][2007/10/06 08:42:44] (..) -- C:\Windows\Installer\683bd9.msp [203264] [MD5.885E0E3A4EC858FDEF6A5298266FE0B3] [WIS][2009/12/16 22:58:22] (..) -- C:\Windows\Installer\683bfb.msp [5382144] [MD5.0762EDB0E4C8D62A4328C3360BC7AD2C] [WIS][2017/07/11 06:57:12] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\6ce73.msp [1732608] =>.Adobe Systems, Incorporated [MD5.8D41631C6A7145FD9A803E3F18FCC022] [WIS][2011/04/29 13:04:54] (..) -- C:\Windows\Installer\7608a9.msp [5053440] [MD5.07384B09C4CA81F9BBBFBF3ADF14A04F] [WIS][2013/08/14 13:11:04] (..) -- C:\Windows\Installer\7608c8.msp [6743040] [MD5.3240D2D3AB5B0F136D42823210FEC96C] [WIS][2011/05/17 18:28:52] (..) -- C:\Windows\Installer\7608e7.msp [6862848] [MD5.152E6EC0B1AFBF0E74C533C46B08CF50] [WIS][2013/10/08 14:59:22] (..) -- C:\Windows\Installer\760907.msp [627200] [MD5.B070DC6F478165ADEFB308008987FA2C] [WIS][2008/01/14 16:53:34] (..) -- C:\Windows\Installer\76092c.msp [5213696] [MD5.4089D7EE9B04BB9EB586A8AF27FB3198] [WIS][2012/12/12 10:40:24] (..) -- C:\Windows\Installer\76094b.msp [6141440] [MD5.DE22BB56B351E2015121E10E7E35267A] [WIS][2013/08/06 09:55:42] (..) -- C:\Windows\Installer\76096a.msp [10988032] [MD5.55DDC5AA8B2C0D6120540BACD2401E7F] [WIS][2009/07/01 13:21:28] (..) -- C:\Windows\Installer\76099c.msp [8891904] [MD5.E8F7E8FF5EAE5E626AC1266BB4850F5F] [WIS][2009/07/01 13:19:52] (..) -- C:\Windows\Installer\76099d.msp [10607104] [MD5.23ECC2EB4B5A0061020049741AB987AB] [WIS][2012/09/26 14:03:58] (..) -- C:\Windows\Installer\7609bc.msp [6063616] [MD5.80B1190D0A468ED60D08D021E85D251D] [WIS][2010/06/11 17:55:00] (..) -- C:\Windows\Installer\7609ee.msp [1827328] [MD5.CBF9CBE9463AF73F789874F208C3C6EF] [WIS][2010/06/11 17:52:10] (..) -- C:\Windows\Installer\7609ef.msp [45542912] [MD5.74D6B9D3123A336BD27B6D4FEA6E887F] [WIS][2009/08/20 05:02:38] (..) -- C:\Windows\Installer\760a0e.msp [5204992] [MD5.FFFFEF207D38A5303EE3DC578E3495EA] [WIS][2010/10/22 15:45:16] (..) -- C:\Windows\Installer\760a37.msp [8444928] [MD5.3BF62476CE1C841D9DACC3B5BEC8780F] [WIS][2014/03/20 11:47:22] (..) -- C:\Windows\Installer\760a56.msp [7678464] [MD5.CD519BAA86DC7E2E35A7433A5FE4B0E6] [WIS][2010/08/05 12:03:52] (..) -- C:\Windows\Installer\760a81.msp [4043776] [MD5.3D7E66F66C099A2210A45DF056DAED62] [WIS][2012/11/15 12:44:38] (..) -- C:\Windows\Installer\760aa0.msp [43956736] [MD5.4A1DBEB5EA6A8912B8E01460D66D7DAA] [WIS][2011/05/24 16:27:26] (..) -- C:\Windows\Installer\9dd70.msp [60928] [MD5.7B845AB08977EC096C5B16D388E759B8] [WIS][2005/10/26 14:59:54] (..) -- C:\Windows\Installer\9dd8d.msp [2883072] [MD5.66227B208B38027C783CD0DD8C5E6734] [WIS][2013/11/27 09:33:20] (..) -- C:\Windows\Installer\9ddab.msp [5518848] [MD5.3617A09ABC822D955214EBE86A991CF3] [WIS][2017/11/29 12:42:28] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\bfc40.msp [1355776] =>.Adobe Systems, Incorporated [MD5.2BF0093E60C2D00175DD9F550D900CB7] [WIS][2017/08/07 10:20:05] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\ceaeca.msp [70610944] =>.Adobe Systems, Incorporated [MD5.77AB51250501ADDD4D491DECDB6121FD] [WIS][2017/08/28 18:40:46] (.Adobe Systems, Incorporated.) -- C:\Windows\Installer\fd787e5.msp [2424832] =>.Adobe Systems, Incorporated ---\\ SCAN ADDITIONNEL (24) - 2s C:\Users\HD - ND\AppData\Roaming\qAcGTgyIuWEy.exe =>Adware.TasksRedirect C:\Windows\System32\Tasks\{71C033AE-8399-8AD0-4AA5-DAF9B9208AF2} =>Adware.TasksRedirect C:\Users\HD - ND\jOyWoxFBcyAoA.exe =>Adware.TasksRedirect C:\Windows\System32\Tasks\{75E5E88B-DE2D-17E0-DD24-4BB862CFB542} =>Adware.TasksRedirect C:\Program Files (x86)\Mozilla Firefox\browser\features\{A5FD4672-4D73-4F90-A1C0-2ABD39DB2565}.xpi =>PUP.Optional.YouTubeAdBlock HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A =>PUP.Optional.YouTubeAdBlock HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\E3605470-291B-44EB-8648-745EE356599A =>PUP.Optional.YouTubeAdBlock C:\Windows\System32\drivers\8d566a22435fd3d391f7fe43ce759011.sys =>PUP.Optional.Wajam C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3B21UM6G =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4LIR4YF8 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4M4V7NK8 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6QNXPDSN =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7HHTHOI8 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8GRJMAX6 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AEG4SWGF =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EP51AND1 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KKKV8LPU =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LJPIGL3N =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N6703OKS =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RF9UH776 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T63KLK08 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V36KOODU =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VOWLNWT5 =>Temporary.InternetFiles C:\Users\HD - ND\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYQNNFV0 =>Temporary.InternetFiles ---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (5) - 0s https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan https://nicolascoolman.eu/2017/10/13/adware-tasksredirect/ =>Adware.TasksRedirect https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.YouTubeAdBlock https://nicolascoolman.eu/2017/09/07/pup-optional-salus/ =>.SUP.Linkury https://nicolascoolman.eu/2017/02/24/pup-optional-wajam/ =>PUP.Optional.Wajam ~ Unselected Options: O108, O82, ~ End of the scan, 6544 items in 04mn54s (1284)(0)