~ ZHPDiag v2018.4.17.71 Par Nicolas Coolman (2018/04/17) ~ Démarré par L530 (Administrator) (2018/04/18 15:16:52) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Certificate ZHPDiag: Legal ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\L530\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\L530\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 10 Pro, 64-bit (Build 16299) =>.Microsoft Corporation ---\\ NAVIGATEURS INTERNET (3) - 0s ~ GCIE: Google Chrome v66.0.3359.117 ~ MSIE: Microsoft Edge v40 ~ MSIE: Internet Explorer v11.371.16299.0 ---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (8) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK ~ Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : 3V66T Windows License : OK ~ Windows Remaining Initializations Number : 1001 Windows Automatic Updates : OK ---\\ LOGICIELS DE PROTECTION (2) - 1s Windows Defender W10 (Deactivate) Malwarebytes version 3.3.1.2183 v3.3.1.2183 (Protection) ---\\ SURVEILLANCE LOGICIEL (1) - 1s ~ Adobe Acrobat Reader DC - Français (Surveillance) ---\\ LOGICIELS D'OPTIMISATION (1) - 1s ~ CCleaner v5.41 (Optimisation) ---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s ~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 7954.292 MB (72% free) : OK =>.RAM Value System Restore: Désactivé (Disabled) System drive C: has 204 GB (67%) free of 303 GB : OK =>.Disk Space ---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s ~ Computer Name: DOMINIQUE ~ User Name: L530 ~ Logged in as Administrator ---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (2) - 0s ~ Drive C: has 204 GB free of 303 GB (System) ~ Drive E: has 51 GB free of 60 GB ---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (7) - 0s [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (25) - 2s [MD5.A77D56422C38C1F8A00D95D2D5B1675E] - 10/02/2018 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [3904296] =>.Microsoft Windows® [MD5.731A783A36A8E69A6434D19D98B12A09] - 29/09/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [71168] =>.Microsoft Corporation [MD5.BF3E1D9B2360C6BE4CC3094CD2DDC617] - 29/09/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [359584] =>.Microsoft Windows Publisher® [MD5.4B7CC97FD920122FD6A2224A1DC83BAF] - 30/03/2018 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3334144] =>.Microsoft Corporation [MD5.C67E7F605A830AA96A204ECCDC678FBC] - 30/03/2018 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [716288] =>.Microsoft Corporation [MD5.4D487E7D2B047FB929BE00117C09F9EC] - 29/09/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414720] =>.Microsoft Corporation [MD5.51A5224C9B00B1F31C016B4B29F3DFB7] - 13/03/2018 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [739696] =>.Microsoft Windows® [MD5.CCF0DECFEB3D31F4CB733B39EFDFBAB3] - 13/03/2018 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [597160] =>.Microsoft Windows® [MD5.3B34C7B9D7E22AEF58DF0CFC4C7CC82D] - 30/09/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation [MD5.9619C0D7DB55CC3A636A24A7D82B0C8E] - 30/03/2018 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [614304] =>.Microsoft Windows® [MD5.6191B9B2EE0E8CB957C683B9B341CC86] - 29/09/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Windows® [MD5.9E82A95D77AC78C84BA75FF896B060BF] - 29/09/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation [MD5.6D83565C1652E80447EDEA6947FA89D7] - 29/09/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation [MD5.FAEC08F583CAD06D4F057DBB733A03A1] - 30/03/2018 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [151040] =>.Microsoft Corporation [MD5.99A34FD1F6431A10D8C3BB50E170D0F2] - 29/09/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation [MD5.56FF074E50F9042FD2856AB3418F4B18] - 29/09/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation [MD5.7BEC2AF23F586EFF0DB4DBF4331B0C70] - 29/09/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214016] =>.Microsoft Corporation [MD5.71729B1EE949E1B092CB5CB75CC63715] - 10/02/2018 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [494488] =>.Microsoft Windows® [MD5.E5C5E6ED3949546E2ACA79B6A3817202] - 30/03/2018 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [316928] =>.Microsoft Corporation [MD5.ADF52C1A5831EA1009382B3BE3A204B3] - 30/03/2018 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2395040] =>.Microsoft Windows® [MD5.2E07EC2C1622F5E7B535D62DCD61F3AB] - 29/09/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation [MD5.E0220BB6580D34001D4D1D133052DAA4] - 29/09/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation [MD5.39886C19FB466BBF8AEC31E3E77C034C] - 30/03/2018 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation [MD5.09125A12CAB5F8D5EAE9C83C25792FDD] - 30/03/2018 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121248] =>.Microsoft Windows® [MD5.5B27846CF4B1C21AFB3A35A8336BA02F] - 14/12/2017 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [401304] =>.Microsoft Windows® ---\\ LISTE DES SERVICES (Non Microsoft et non désactivés) (18) - 1s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® O23 - Service: Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated® O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® O23 - Service: Cobian Backup 11 Gravity (CobianBackup11) . (.Luis Cobian, CobianSoft - Cobian Backup 11 Gravity - Service.) - C:\Program Files (x86)\Cobian Backup 11\cbService.exe =>.Luis Cobian, CobianSoft O23 - Service: Connect2 Hotspot Service (connect2hotspot) . (.Lenovo - Connect2 Service.) - C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe =>.Lenovo® O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe =>.ELAN Microelectronics Corporation® O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe =>.Intel Corporation-Wireless Connectivity Solutions® O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® O23 - Service: @oem22.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) . (.Lenovo. - Lenovo Power Management Service.) - C:\WINDOWS\System32\ibmpmsvc.exe =>.Lenovo. O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel Corporation O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited O23 - Service: @oem22.inf,%Lenovo.svcDesc1%;Lenovo Platform Service (LPlatSvc) . (.Lenovo. - Lenovo Platform Service.) - C:\WINDOWS\System32\LPlatSvc.exe =>.Lenovo. O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation® O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe =>.Intel Corporation-Wireless Connectivity Solutions® O23 - Service: TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH - TeamViewer 8.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe =>.TeamViewer® O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited - ThinkPad Message Client Loader.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe =>.Intel Corporation-Wireless Connectivity Solutions® ---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (25) - 8s SR - Auto [09/02/2018] [ 83984] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® SR - Auto [05/01/2018] [ 2319848] Adobe Genuine Software Integrity Service (AGSService) . (.Adobe Systems, Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe =>.Adobe Systems Incorporated® SR - Auto [14/03/2018] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. SR - Auto [12/08/2015] [ 462096] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® SR - Auto [08/03/2013] [ 1131008] Cobian Backup 11 Gravity (CobianBackup11) . (.Luis Cobian, CobianSoft.) - C:\Program Files (x86)\Cobian Backup 11\cbService.exe =>.Luis Cobian, CobianSoft SR - Auto [23/12/2016] [ 100680] Connect2 Hotspot Service (connect2hotspot) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe =>.Lenovo® SS - Demand [04/05/2016] [ 299488] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX® SR - Auto [29/03/2016] [ 134888] Elan Service (ETDService) . (.ELAN Microelectronics Corp..) - C:\Program Files\Elantech\ETDService.exe =>.ELAN Microelectronics Corporation® SR - Auto [04/04/2016] [ 642464] Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe =>.Intel Corporation-Wireless Connectivity Solutions® SS - Auto [15/04/2018] [ 153168] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [15/04/2018] [ 153168] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SR - Auto [15/09/2017] [ 830032] @oem22.inf,%ibm.svcDesc0%;Lenovo PM Service (IBMPMSVC) . (.Lenovo..) - C:\WINDOWS\System32\ibmpmsvc.exe =>.Lenovo® SR - Auto [04/05/2016] [ 337888] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\WINDOWS\System32\igfxCUIService.exe =>.Intel(R) pGFX® SR - Demand [25/03/2018] [ 673592] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. SR - Auto [31/07/2017] [ 137016] Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited SR - Auto [15/09/2017] [ 774736] @oem22.inf,%Lenovo.svcDesc1%;Lenovo Platform Service (LPlatSvc) . (.Lenovo..) - C:\WINDOWS\System32\LPlatSvc.exe =>.Lenovo® SS - Auto [01/11/2017] [ 6234056] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation® SS - Demand [04/04/2016] [ 268704] Wireless PAN DHCP Server (MyWiFiDHCPDNS) . (.Copyright (C) 2005-2010 by Achal Dhir.) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe =>.Intel Corporation-Wireless Connectivity Solutions® SS - Demand [23/08/2016] [ 106824] Lenovo Settings Power Service (Power Manager DBC Service) . (.Lenovo.) - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe =>.LENOVO® SR - Auto [04/04/2016] [ 157600] Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe =>.Intel Corporation-Wireless Connectivity Solutions® SS - Demand [05/07/2016] [ 124744] Smart Sense Service (SSSvc) . (.Lenovo.) - C:\Program Files (x86)\SmartSense\SSSvc.exe =>.LENOVO® SR - Demand [12/12/2017] [ 23920] System Update (SUService) . (...) - C:\Program Files (x86)\Lenovo\System Update\SUService.exe =>.Lenovo® SR - Auto [24/06/2015] [ 5097232] TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe =>.TeamViewer® SR - Auto [31/07/2017] [ 154936] Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited SR - Auto [04/04/2016] [ 3833248] Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe =>.Intel Corporation-Wireless Connectivity Solutions® ---\\ TÂCHES PLANIFIÉES EN AUTOMATIQUE (Registre) (202) - 4s O38 - TASK: {0319D346-9E60-4CE2-B937-EF6C981CC0F1} [64Bits][\Microsoft\Windows\PushToInstall\Registration] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [69120] =>.Microsoft Corporation O38 - TASK: {03BAB3F3-7CFB-408A-9756-70F45BE325AC} [64Bits][\Microsoft\Windows\Autochk\Proxy] - (.Microsoft Corporation - DLL de proxy Autochk.) -- C:\Windows\System32\acproxy.dll [12800] =>.Microsoft Corporation O38 - TASK: {04E9E27D-20BA-4966-9A08-59E136EAC4E1} [64Bits][\Microsoft\Windows\SpacePort\SpaceAgentTask] - (.Microsoft Corporation - Paramètres des espaces de stockage.) -- C:\WINDOWS\system32\SpaceAgent.exe [131584] =>.Microsoft Corporation O38 - TASK: {0621FDBB-ADD5-44B7-A2AB-8288118B6295} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClient] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [102912] =>.Microsoft Corporation O38 - TASK: {08ECD6F8-3E70-482C-9F54-C96A9C1A773F} [64Bits][\Microsoft\Windows\Management\Provisioning\Logon] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [73216] =>.Microsoft Corporation O38 - TASK: {0F34E087-4941-47D6-9113-EEEC01C0AE1B} [64Bits][\OneDrive Standalone Update Task-S-1-5-21-2736131603-2182491810-2815481984-1001] - (.Microsoft Corporation - Standalone Updater.) -- C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2296992] =>.Microsoft Corporation O38 - TASK: {158D3281-FEB3-47C2-87B9-EE652382C0AB} [64Bits][\Microsoft\Windows\Application Experience\StartupAppTask] - (.Microsoft Corporation - DLL de tâche d’analyse de démarrage.) -- C:\Windows\System32\Startupscan.dll [17920] =>.Microsoft Corporation O38 - TASK: {17A68EC1-555F-454C-9497-A48240207E9F} [64Bits][\Microsoft\Windows\Workplace Join\Recovery-Check] - (.Microsoft Corporation - Outil de ligne de commande DSREG.) -- C:\WINDOWS\System32\dsregcmd.exe [730624] =>.Microsoft Corporation O38 - TASK: {1C67010D-5855-40F0-B121-0A151541EB9B} [64Bits][\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [400384] =>.Microsoft Corporation O38 - TASK: {1E94FD2D-7D6F-4BE9-A1CB-CF13B1E86C4E} [64Bits][\gaherbivore_pkpherbivore_pkp] - (. - Astra.) -- C:\Users\L530\AppData\Local\astra.exe [10752] O38 - TASK: {1F7C3609-1D07-4432-B3BE-152B3D654007} [64Bits][\Microsoft\Office\OfficeTelemetryAgentFallBack2016] - (.Microsoft Corporation - Office Telemetry Agent.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2284208] =>.Microsoft Corporation O38 - TASK: {24DEE3EF-6436-4772-A721-DC892633C824} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Maintenance Install] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [39424] =>.Microsoft Corporation O38 - TASK: {2646432D-A31A-41EC-88D5-495FF767E1ED} [64Bits][\Microsoft\Windows\Time Zone\SynchronizeTimeZone] - (.Microsoft Corporation - TimeZone Sync Task.) -- C:\WINDOWS\system32\tzsync.exe [61440] =>.Microsoft Corporation O38 - TASK: {26810429-E00E-44DC-8EB3-0F924A856085} [64Bits][\Microsoft\Windows\Shell\FamilySafetyMonitor] - (.Microsoft Corporation - Moniteur du contrôle parental.) -- C:\WINDOWS\System32\wpcmon.exe [1430760] =>.Microsoft Corporation O38 - TASK: {2C807F3D-B764-4990-BE1A-C2466CA7CF8E} [64Bits][\Microsoft\Windows\Clip\License Validation] - (.Microsoft Corporation - Client License Platform migration tool.) -- C:\WINDOWS\System32\ClipUp.exe [1263592] =>.Microsoft Corporation O38 - TASK: {32274688-6925-4C3C-AC5D-E7F3278E9F9E} [64Bits][\Microsoft\Windows\Speech\SpeechModelDownloadTask] - (.Microsoft Corporation - Speech Model Download Executable.) -- C:\Windows\System32\speech_onecore\common\SpeechModelDownload.exe [169984] =>.Microsoft Corporation O38 - TASK: {36713542-0103-4035-B316-A447E72506AC} [64Bits][\Microsoft\Windows\PushToInstall\LoginCheck] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [69120] =>.Microsoft Corporation O38 - TASK: {36EECAE1-3E34-4A61-8394-42D7F23F0455} [64Bits][\Microsoft\Windows\WwanSvc\NotificationTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [461728] =>.Microsoft Corporation O38 - TASK: {37292EA8-F458-47ED-A55C-5A3A1CCF5FD5} [64Bits][\Microsoft\Windows\WindowsUpdate\sih] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [266752] =>.Microsoft Corporation O38 - TASK: {37449A31-039E-4B1D-8F13-E8C24D7833D4} [64Bits][\Microsoft\Windows\WindowsUpdate\sihboot] - (.Microsoft Corporation - Client SIH.) -- C:\WINDOWS\System32\sihclient.exe [266752] =>.Microsoft Corporation O38 - TASK: {37E715E6-383C-4ADF-813E-10FF9F50D9F7} [64Bits][\Microsoft\Windows\Chkdsk\SyspartRepair] - (.Microsoft Corporation - Utilitaire Bcdboot.) -- C:\WINDOWS\system32\bcdboot.exe [209920] =>.Microsoft Corporation O38 - TASK: {483FAC9D-5977-47EF-80D1-80E063A3AAAB} [64Bits][\Microsoft\Windows\AppID\PolicyConverter] - (.Microsoft Corporation - AppID Policy Converter Task.) -- C:\WINDOWS\system32\appidpolicyconverter.exe [158720] =>.Microsoft Corporation O38 - TASK: {4C6461B8-4D89-4878-BAC2-C788A2DB40C3} [64Bits][\Lenovo\Lenovo Settings Power] - (.Lenovo Group Limited - Lenovo Settings Power - Background Monitor.) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [2289480] =>.Lenovo Group Limited O38 - TASK: {4E5ABFD1-DFB0-48ED-8F7C-D49859FE7F51} [64Bits][\Microsoft\Windows\Management\Provisioning\Cellular] - (.Microsoft Corporation - Provisioning package runtime processing too.) -- C:\WINDOWS\system32\ProvTool.exe [73216] =>.Microsoft Corporation O38 - TASK: {4FC5FA4E-102D-41FF-AD93-38654F2D12F2} [64Bits][\microsoft\windows\applicationdata\appuriverifierinstall] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [109056] =>.Microsoft Corporation O38 - TASK: {4FD3AFF2-D1F9-4A97-9303-17A8391E6C0D} [64Bits][\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [400384] =>.Microsoft Corporation O38 - TASK: {5267392F-5BB8-45A6-AD93-10211E2F8850} [64Bits][\Microsoft\Windows\SpacePort\SpaceManagerTask] - (.Microsoft Corporation - Storage Spaces Manager.) -- C:\WINDOWS\system32\spaceman.exe [35328] =>.Microsoft Corporation O38 - TASK: {54D8C28A-FD73-4CDE-8620-AC01D932B02C} [64Bits][\Adobe Acrobat Update Task] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1183256] =>.Adobe Systems Incorporated O38 - TASK: {568AC0B6-44BB-4D3E-B7CB-D4649085FAB7} [64Bits][\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp. O38 - TASK: {5A201377-91EE-4904-B2C6-9F7D7456A03F} [64Bits][\Microsoft\Windows\Device Information\Device] - (.Microsoft Corporation - Device Census.) -- C:\WINDOWS\system32\devicecensus.exe [35224] =>.Microsoft Corporation O38 - TASK: {5BD5C54D-C4C6-4831-8FCF-875B6598DE48} [64Bits][\Microsoft\Windows\WaaSMedic\PerformRemediation] - (.Microsoft Corporation - WaasMedic.) -- C:\WINDOWS\System32\WaaSMedic.exe [348160] =>.Microsoft Corporation O38 - TASK: {5C020530-D866-421B-B15E-7EB9C7FA4D3B} [64Bits][\Microsoft\Windows\DiskCleanup\SilentCleanup] - (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\System32\cleanmgr.exe [219648] =>.Microsoft Corporation O38 - TASK: {5D0CF7AB-F6E9-435D-9F73-4F6AC3CF0988} [64Bits][\OfficeSoftwareProtectionPlatform\SvcRestartTask] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [69120] =>.Microsoft Corporation O38 - TASK: {5EFC3AC2-610E-4917-9EBB-425379AE460A} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector] - (.Microsoft Corporation - Module de diagnostics des erreurs de disque.) -- C:\Windows\System32\dfdts.dll [45056] =>.Microsoft Corporation O38 - TASK: {5F5BF124-A1B2-4BEB-8C6B-5AD2F2D1C3DB} [64Bits][\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser] - (.Microsoft Corporation - Tâche de l’analyseur d’expérience de compte.) -- C:\WINDOWS\System32\MbaeParserTask.exe [114176] =>.Microsoft Corporation O38 - TASK: {61BAF05A-8050-481F-9368-9B62A53BC9C5} [64Bits][\microsoft\windows\applicationdata\appuriverifierdaily] - (.Microsoft Corporation - Vérificateur de l’inscription des gestionna.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [109056] =>.Microsoft Corporation O38 - TASK: {650751B8-0586-401C-95FF-65523D62D989} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Schedule Scan] - (.Microsoft Corporation - UsoClient.) -- C:\WINDOWS\System32\usoclient.exe [39424] =>.Microsoft Corporation O38 - TASK: {67889EEC-D7B4-43D3-B82C-D0DBA3522591} [64Bits][\Microsoft\Windows\WCM\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [461728] =>.Microsoft Corporation O38 - TASK: {6831246E-D3E2-469C-9079-23FA53AC7712} [64Bits][\Microsoft\Windows\Printing\EduPrintProv] - (.Microsoft Corporation - Printer Provision Utility for EDU.) -- C:\WINDOWS\system32\eduprintprov.exe [95232] =>.Microsoft Corporation O38 - TASK: {6AF2B5AF-12F7-4A18-8717-7EE7080D2E29} [64Bits][\Microsoft\Windows\ApplicationData\CleanupTemporaryState] - (.Microsoft Corporation - Windows Application Data API Server.) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll [367344] =>.Microsoft Corporation O38 - TASK: {6F0BC9E8-7975-4BBA-BA11-1B177AA4EBB4} [64Bits][\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers] - (.Microsoft Corporation - Module d’installation de pilotes.) -- C:\WINDOWS\System32\drvinst.exe [160256] =>.Microsoft Corporation O38 - TASK: {724A82BA-0CD9-4932-A8F8-AE155346DC7A} [64Bits][\Microsoft\Windows\Workplace Join\Automatic-Device-Join] - (.Microsoft Corporation - Outil de ligne de commande DSREG.) -- C:\WINDOWS\System32\dsregcmd.exe [730624] =>.Microsoft Corporation O38 - TASK: {78E99F23-65B3-41FD-AD3B-32A34CEAF41F} [64Bits][\Microsoft\Windows\Subscription\EnableLicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [136600] =>.Microsoft Corporation O38 - TASK: {7922A22A-B01F-4126-92C7-E348D524AA1C} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cleanup] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17613.18039-0\MpCmdRun.exe [464840] =>.Microsoft Corporation O38 - TASK: {823907E4-225B-4EF7-AF4B-8BD3F3493491} [64Bits][\Microsoft\Windows\Bluetooth\UninstallDeviceTask] - (.Microsoft Corporation - Tâche de désinstallation du périphérique Bl.) -- C:\Windows\System32\BthUdTask.exe [40448] =>.Microsoft Corporation O38 - TASK: {82B5AAEF-39CD-42E6-839C-D4724378C033} [64Bits][\Microsoft\Windows\UPnP\UPnPHostConfig] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [69120] =>.Microsoft Corporation O38 - TASK: {8C72FC34-489C-4747-BCC5-221A4CF51202} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Verification] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17613.18039-0\MpCmdRun.exe [464840] =>.Microsoft Corporation O38 - TASK: {8DC4F6F2-5AC8-41B5-8461-383B58804B47} [64Bits][\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask] - (.Microsoft Corporation - MDMAgent.) -- C:\WINDOWS\system32\MDMAgent.exe [108544] =>.Microsoft Corporation O38 - TASK: {9202D2AF-F1E6-4D6B-AA7E-FC0654E3635A} [64Bits][\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange] - (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\bfe.dll [841216] =>.Microsoft Corporation O38 - TASK: {94314DF9-3E96-48FC-9301-339733487458} [64Bits][\Microsoft\Office\OfficeBackgroundTaskHandlerLogon] - (.Microsoft Corporation - Background task for Office flighting system.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1442472] =>.Microsoft Corporation O38 - TASK: {9438FF84-1231-4105-98C8-E6ED7FD44F06} [64Bits][\Microsoft\Office\OfficeTelemetryAgentLogOn2016] - (.Microsoft Corporation - Office Telemetry Agent.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2284208] =>.Microsoft Corporation O38 - TASK: {95812E91-F632-41D2-BA27-1B515BFBF299} [64Bits][\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask] - (.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\System32\raserver.exe [128000] =>.Microsoft Corporation O38 - TASK: {97131002-4468-460E-B9B8-2A72FEDB9D3C} [64Bits][\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver] - (.Microsoft Corporation - Outil de résolution des défaillances disque.) -- C:\WINDOWS\system32\DFDWiz.exe [51712] =>.Microsoft Corporation O38 - TASK: {9C7D670F-D8AA-4310-B11E-79D3738AB035} [64Bits][\Microsoft\Windows\DiskFootprint\Diagnostics] - (.Microsoft Corporation - DiskSnapshot.exe.) -- C:\WINDOWS\system32\disksnapshot.exe [87040] =>.Microsoft Corporation O38 - TASK: {9EC9459A-0EEC-451E-9A8B-85DB06D212FD} [64Bits][\TVT\TVSUUpdateTask_UserLogOn] - (.Lenovo - tvsuShim Application.) -- C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758576] =>.Lenovo O38 - TASK: {9FC1E698-3FF5-4F37-901A-C43A41605C55} [64Bits][\gacommis dressier partisancommis dressier partisan] - (. - Alliums.) -- C:\Users\L530\AppData\Local\Alliums.exe [10752] O38 - TASK: {A7C57A41-D764-4AAB-BBDE-BB8DAA2BE5DD} [64Bits][\Microsoft\Windows\UNP\RunUpdateNotificationMgr] - (.Microsoft Corporation - Update Notification Pipeline Manager.) -- C:\WINDOWS\System32\UNP\UpdateNotificationMgr.exe [378264] =>.Microsoft Corporation O38 - TASK: {A8E38795-E6D5-44C1-83B8-D3D0811ACE2E} [64Bits][\Microsoft\Windows\ApplicationData\DsSvcCleanup] - (.Microsoft Corporation - Data Sharing Service Maintenance Driver.) -- C:\WINDOWS\system32\dstokenclean.exe [12800] =>.Microsoft Corporation O38 - TASK: {A9B0671A-6FF4-4B78-8137-7E1FD36057D7} [64Bits][\Lenovo\Lenovo Customer Feedback Program 64] - (.Lenovo - Lenovo.TVT.CustomerFeedback.Agent.) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [16832] =>.Lenovo O38 - TASK: {AC176FA7-E3DA-4DAF-8A95-C198CD2B0DAE} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc. O38 - TASK: {ACA8C93E-229B-48CD-BEE8-4EC0B3054637} [64Bits][\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant] - (.Microsoft Corporation - UpdateAssistant.) -- C:\Windows\UpdateAssistant\UpdateAssistant.exe [47088] =>.Microsoft Corporation O38 - TASK: {AE29E8A6-9708-4CB5-8282-D7F7291DCC34} [64Bits][\Microsoft\Windows\Location\WindowsActionDialog] - (.Microsoft Corporation - Service Broker pour la boîte de dialogue Ac.) -- C:\WINDOWS\System32\WindowsActionDialog.exe [59392] =>.Microsoft Corporation O38 - TASK: {B2B85895-09A2-4BC3-BBF9-9B74780BFE62} [64Bits][\Microsoft\Windows\SharedPC\Account Cleanup] - (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [194560] =>.Microsoft Corporation O38 - TASK: {B38EADAA-FBBE-4A90-BAE4-3F6BCC5C5BC7} [64Bits][\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [137112] =>.Microsoft Corporation O38 - TASK: {BA970AEF-70CF-4EF7-B6B7-202051CA6FCA} [64Bits][\TVT\TVSUUpdateTask] - (.Lenovo - tvsuShim Application.) -- C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1758576] =>.Lenovo O38 - TASK: {BC40FCF6-98AA-466D-98D4-D4D532C3007D} [64Bits][\Microsoft\Windows\NlaSvc\WiFiTask] - (.Microsoft Corporation - Tâche sans fil en arrière-plan.) -- C:\WINDOWS\System32\WiFiTask.exe [461728] =>.Microsoft Corporation O38 - TASK: {BC7F4B4D-0B5F-4D70-B6DC-4CFA13126F85} [64Bits][\Apple\AppleSoftwareUpdate] - (.Apple Inc. - Apple Software Update.) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320] =>.Apple Inc. O38 - TASK: {BFC0398F-A3D3-4C81-895B-59841F12D336} [64Bits][\gaupsetting luxtonupsetting luxton] - (. - gupsetting luxtonupsetting luxton.) -- C:\Program Files (x86)\Bells\astra.exe [10752] O38 - TASK: {C05A3C1D-5C3B-4596-ACB5-13F6B744CFBB} [64Bits][\CCleaner Update] - (.Piriform Ltd - CCleaner emergency updater.) -- C:\Program Files\CCleaner\CCUpdate.exe [520736] =>.Piriform Ltd O38 - TASK: {C05CF805-420D-41C7-9E13-86ED6E546B7E} [64Bits][\Microsoft\Windows\Sysmain\WsSwapAssessmentTask] - (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll [970240] =>.Microsoft Corporation O38 - TASK: {C1172CA9-309F-4B8C-981D-00A965F84D0B} [64Bits][\Microsoft\Windows\Windows Media Sharing\UpdateLibrary] - (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [69120] =>.Microsoft Corporation O38 - TASK: {C1BC90B0-6517-4236-AACF-6DB990FFACE8} [64Bits][\Microsoft\Windows\SMB\UninstallSMB1ClientTask] - (.Microsoft Corporation - Windows PowerShell.) -- C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [449024] =>.Microsoft Corporation O38 - TASK: {C55A065A-D6EC-4EE1-88A4-816DC634F6ED} [64Bits][\AdobeGCInvoker-1.0-MicrosoftAccount-dominique@tranquille.ch] - (.Adobe Systems, Incorporated - Adobe GC Invoker Utility.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [315880] =>.Adobe Systems, Incorporated O38 - TASK: {C8252966-561E-44F5-8E10-113984BF4843} [64Bits][\Microsoft\Windows\Time Synchronization\SynchronizeTime] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [69120] =>.Microsoft Corporation O38 - TASK: {C89FB80E-7881-4C3F-9506-00342D8BC3F1} [64Bits][\Microsoft\Windows\MUI\LPRemove] - (.Microsoft Corporation - MUI Language pack cleanup.) -- C:\WINDOWS\system32\lpremove.exe [58368] =>.Microsoft Corporation O38 - TASK: {CBE5BD65-6BAA-471C-A2F8-34D24F3469E0} [64Bits][\Microsoft\Windows\Subscription\LicenseAcquisition] - (.Microsoft Corporation - Acquire License From Store.) -- C:\WINDOWS\System32\ClipRenew.exe [136600] =>.Microsoft Corporation O38 - TASK: {CF842F82-5CE4-44CE-93D4-750EE07191DC} [64Bits][\Microsoft\Windows\Defrag\ScheduledDefrag] - (.Microsoft Corp. - Module de défragmenteur de disque.) -- C:\WINDOWS\system32\defrag.exe [185856] =>.Microsoft Corp. O38 - TASK: {D0218C70-9C99-4043-BF17-667E1AE5C42E} [64Bits][\Microsoft\Windows\UpdateOrchestrator\Reboot] - (.Microsoft Corporation - MusNotificationBroker.) -- C:\WINDOWS\System32\MusNotification.exe [400384] =>.Microsoft Corporation O38 - TASK: {D0A89826-6023-4661-975D-0CE62FBF194D} [64Bits][\Microsoft\Windows\Location\Notifications] - (.Microsoft Corporation - Notification d'emplacement.) -- C:\WINDOWS\System32\LocationNotificationWindows.exe [67584] =>.Microsoft Corporation O38 - TASK: {D214AED1-E0C1-4D79-9030-55BD6633922D} [64Bits][\Microsoft\XblGameSave\XblGameSaveTaskLogon] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation O38 - TASK: {D2E38DD0-019E-42DB-B34D-2CE5DC12ED7A} [64Bits][\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck] - (.Microsoft Corporation - AppID Certificate Store Verification Task.) -- C:\WINDOWS\system32\appidcertstorecheck.exe [18944] =>.Microsoft Corporation O38 - TASK: {D64780DE-3FFC-4FFE-BCDE-664A8FBA39BA} [64Bits][\User_Feed_Synchronization-{BE897529-487C-4757-8090-C0844EAB3968}] - (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [14848] =>.Microsoft Corporation O38 - TASK: {D80AA3A2-189B-4A11-8828-511E6BAE5426} [64Bits][\Microsoft\Windows\Windows Error Reporting\QueueReporting] - (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\System32\wermgr.exe [194456] =>.Microsoft Corporation O38 - TASK: {DC43FF04-FE2C-41B1-9632-45E37177F88A} [64Bits][\Microsoft\Office\Office Automatic Updates 2.0] - (.Microsoft Corporation - Microsoft Office Click-to-Run Client.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [19556016] =>.Microsoft Corporation O38 - TASK: {DC77A3FF-3A6C-4B91-B882-0A959BE83072} [64Bits][\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun] - (.Microsoft Corporation - UpdateAssistant.) -- C:\Windows\UpdateAssistant\UpdateAssistant.exe [47088] =>.Microsoft Corporation O38 - TASK: {DCA26FD8-230A-4EEC-955D-202BC77BD557} [64Bits][\System] - (. - Host32Update.) -- C:\Windows\SysWOW64\SysTsk\SystemTask.exe [7680] O38 - TASK: {DE51FC11-6C38-440A-A9D2-2A0602690914} [64Bits][\Microsoft\Windows\Application Experience\ProgramDataUpdater] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\WINDOWS\system32\compattelrunner.exe [137112] =>.Microsoft Corporation O38 - TASK: {DEA64383-B0C8-469A-9B3D-6E271201E95F} [64Bits][\Microsoft\Windows\SMB\UninstallSMB1ServerTask] - (.Microsoft Corporation - Windows PowerShell.) -- C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [449024] =>.Microsoft Corporation O38 - TASK: {E014013A-6E4C-466D-B6B9-62BE50A20BF8} [64Bits][\gamushed_dreschermushed_drescher] - (. - gmushed_dreschermushed_drescher.) -- C:\Program Files (x86)\Bells\Alliums.exe [10752] O38 - TASK: {E0D45B22-1A56-43FE-854C-DAFD1DDA1D61} [64Bits][\Microsoft\Windows\DUSM\dusmtask] - (.Microsoft Corporation - DUSM Task.) -- C:\WINDOWS\System32\dusmtask.exe [34816] =>.Microsoft Corporation O38 - TASK: {E301D651-DEEE-4BBB-9035-50E892646423} [64Bits][\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration] - (.Microsoft Corporation - Background task for Office flighting system.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1442472] =>.Microsoft Corporation O38 - TASK: {E3DBE120-A4C2-4CD4-A364-C51992B36C98} [64Bits][\Microsoft\Windows\SystemRestore\SR] - (.Microsoft Corporation - Tâches de fond de la protection du système.) -- C:\WINDOWS\system32\srtasks.exe [56832] =>.Microsoft Corporation O38 - TASK: {E5182B77-08AA-49E5-AE8E-806A8F509499} [64Bits][\Microsoft\Windows\WindowsUpdate\Scheduled Start] - (.Microsoft Corporation - Outil de configuration du Gestionnaire de c.) -- C:\Windows\System32\sc.exe [69120] =>.Microsoft Corporation O38 - TASK: {E52928DD-BCA2-4E32-9B84-FFA7606694BE} [64Bits][\Microsoft\XblGameSave\XblGameSaveTask] - (.Microsoft Corporation - XblGameSave Standby Task.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [31744] =>.Microsoft Corporation O38 - TASK: {EAE44DBA-F158-4EAA-8864-BCB05E36C20E} [64Bits][\Microsoft\Windows\Customer Experience Improvement Program\Consolidator] - (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\WINDOWS\System32\wsqmcons.exe [91136] =>.Microsoft Corporation O38 - TASK: {ED0C6FD0-DEA5-4FF2-A28F-FF2CE083AAE6} [64Bits][\Microsoft\Office\Office ClickToRun Service Monitor] - (.Microsoft Corporation - Microsoft Office Click-to-Run Client.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [19556016] =>.Microsoft Corporation O38 - TASK: {ED16AC8F-BF1C-4A0E-806E-5B08CDBF4A2F} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168] =>.Google Inc. O38 - TASK: {EDDDD65D-B9D5-415E-81E0-0079E6F58041} [64Bits][\CCleanerSkipUAC] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [12762872] =>.Piriform Ltd O38 - TASK: {F0A590C9-9AA0-48BB-B8D4-77D99A67BB0B} [64Bits][\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup] - (.Microsoft Corporation - DLL du client de déploiement d’AppX.) -- C:\Windows\System32\AppxDeploymentClient.dll [688064] =>.Microsoft Corporation O38 - TASK: {F6027CB3-9A58-415A-80F2-B1404204D4F5} [64Bits][\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload] - (.Microsoft Corporation - Microsoft Feedback SIUF Deployment Manager.) -- C:\WINDOWS\system32\dmclient.exe [102912] =>.Microsoft Corporation O38 - TASK: {FF8A0EDA-1700-45B9-A220-4B297B6ED771} [64Bits][\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance] - (.Microsoft Corporation - Microsoft Malware Protection Command Line U.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17613.18039-0\MpCmdRun.exe [464840] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\PushToInstall\Registration - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [pushtoinstall registration] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Autochk\Proxy - (.Microsoft Corporation.) -- C:\Windows\System32\acproxy.dll [acproxy.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - (.Microsoft Corporation.) -- C:\WINDOWS\system32\SpaceAgent.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient - (.Microsoft Corporation.) -- C:\WINDOWS\system32\dmclient.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon - (.Microsoft Corporation.) -- C:\WINDOWS\system32\ProvTool.exe [/turn 5] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2736131603-2182491810-2815481984-1001 - (.Microsoft Corporation.) -- C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask - (.Microsoft Corporation.) -- C:\Windows\System32\Startupscan.dll [Startupscan.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Workplace Join\Recovery-Check - (.Microsoft Corporation.) -- C:\WINDOWS\System32\dsregcmd.exe [/checkrecovery] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - (.Microsoft Corporation.) -- C:\WINDOWS\System32\MusNotification.exe [Display] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\gaherbivore_pkpherbivore_pkp - (..) -- C:\Users\L530\AppData\Local\astra.exe [mufyaa] C:\WINDOWS\System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [scan upload mininterval:2880] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - (.Microsoft Corporation.) -- C:\WINDOWS\System32\usoclient.exe [StartInstall] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - (.Microsoft Corporation.) -- C:\WINDOWS\system32\tzsync.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - (.Microsoft Corporation.) -- C:\WINDOWS\System32\wpcmon.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Clip\License Validation - (.Microsoft Corporation.) -- C:\WINDOWS\System32\ClipUp.exe [-p -s -o] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - (.Microsoft Corporation.) -- C:\Windows\System32\speech_onecore\common\SpeechModelDownload.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [pushtoinstall login] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask - (.Microsoft Corporation.) -- C:\WINDOWS\System32\WiFiTask.exe [wwan] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\WindowsUpdate\sih - (.Microsoft Corporation.) -- C:\WINDOWS\System32\sihclient.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot - (.Microsoft Corporation.) -- C:\WINDOWS\System32\sihclient.exe [/boot] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair - (.Microsoft Corporation.) -- C:\WINDOWS\system32\bcdboot.exe [C:\Windows] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\AppID\PolicyConverter - (.Microsoft Corporation.) -- C:\WINDOWS\system32\appidpolicyconverter.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Lenovo\Lenovo Settings Power - (.Lenovo Group Limited.) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL] =>.Lenovo Group Limited C:\WINDOWS\System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular - (.Microsoft Corporation.) -- C:\WINDOWS\system32\ProvTool.exe [/turn 7] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall - (.Microsoft Corporation.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - (.Microsoft Corporation.) -- C:\WINDOWS\System32\MusNotification.exe [Display] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - (.Microsoft Corporation.) -- C:\WINDOWS\system32\spaceman.exe [/Work] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [] =>.Adobe Systems Incorporated C:\WINDOWS\System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - (.Microsoft Corp..) -- C:\WINDOWS\system32\defrag.exe [-c -h -g -# -m 8 -i 13500] =>.Microsoft Corp. C:\WINDOWS\System32\Tasks\Microsoft\Windows\Device Information\Device - (.Microsoft Corporation.) -- C:\WINDOWS\system32\devicecensus.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation - (.Microsoft Corporation.) -- C:\WINDOWS\System32\WaaSMedic.exe [None] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - (.Microsoft Corporation.) -- C:\Windows\System32\cleanmgr.exe [/autoclean] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [osppsvc] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - (.Microsoft Corporation.) -- C:\Windows\System32\dfdts.dll [dfdts.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - (.Microsoft Corporation.) -- C:\WINDOWS\System32\MbaeParserTask.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily - (.Microsoft Corporation.) -- C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - (.Microsoft Corporation.) -- C:\WINDOWS\System32\usoclient.exe [StartScan] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\WCM\WiFiTask - (.Microsoft Corporation.) -- C:\WINDOWS\System32\WiFiTask.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Printing\EduPrintProv - (.Microsoft Corporation.) -- C:\WINDOWS\system32\eduprintprov.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - (.Microsoft Corporation.) -- C:\Windows\System32\Windows.Storage.ApplicationData.dll [Windows.Storage.ApplicationData.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - (.Microsoft Corporation.) -- C:\WINDOWS\System32\drvinst.exe [6] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - (.Microsoft Corporation.) -- C:\WINDOWS\System32\dsregcmd.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - (.Microsoft Corporation.) -- C:\WINDOWS\System32\ClipRenew.exe [-e] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - (.Microsoft Corporation.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17613.18039-0\MpCmdRun.exe [-IdleTask -TaskName WdCleanup] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - (.Microsoft Corporation.) -- C:\Windows\System32\BthUdTask.exe [$(Arg0)] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [config upnphost start= auto] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - (.Microsoft Corporation.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17613.18039-0\MpCmdRun.exe [-IdleTask -TaskName WdVerification] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - (.Microsoft Corporation.) -- C:\WINDOWS\system32\MDMAgent.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - (.Microsoft Corporation.) -- C:\Windows\System32\bfe.dll [bfe.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [scan upload] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - (.Microsoft Corporation.) -- C:\Windows\System32\raserver.exe [/offerraupdate] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - (.Microsoft Corporation.) -- C:\WINDOWS\system32\DFDWiz.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics - (.Microsoft Corporation.) -- C:\WINDOWS\system32\disksnapshot.exe [-z] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\TVT\TVSUUpdateTask_UserLogOn - (.Lenovo.) -- C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [PendingTask] =>.Lenovo C:\WINDOWS\System32\Tasks\gacommis dressier partisancommis dressier partisan - (..) -- C:\Users\L530\AppData\Local\Alliums.exe [mufyaa] C:\WINDOWS\System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - (.Microsoft Corporation.) -- C:\WINDOWS\System32\UNP\UpdateNotificationMgr.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - (.Microsoft Corporation.) -- C:\WINDOWS\system32\dstokenclean.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 - (.Lenovo.) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [] =>.Lenovo C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua] =>.Google Inc. C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant - (.Microsoft Corporation.) -- C:\Windows\UpdateAssistant\UpdateAssistant.exe [/ClientID Win10Upgrade:VNL:EosWu:{}] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog - (.Microsoft Corporation.) -- C:\WINDOWS\System32\WindowsActionDialog.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup - (.Microsoft Corporation.) -- C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll [C:\WINDOWS\System32\Windows.SharedPC.AccountManager.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - (.Microsoft Corporation.) -- C:\WINDOWS\system32\compattelrunner.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\TVT\TVSUUpdateTask - (.Lenovo.) -- C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [/CM -search C -action INSTALL -includerebootpackag] =>.Lenovo C:\WINDOWS\System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask - (.Microsoft Corporation.) -- C:\WINDOWS\System32\WiFiTask.exe [nla] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Apple\AppleSoftwareUpdate - (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [-task] =>.Apple Inc. C:\WINDOWS\System32\Tasks\gaupsetting luxtonupsetting luxton - (..) -- C:\Program Files (x86)\Bells\astra.exe [mufyaa] C:\WINDOWS\System32\Tasks\CCleaner Update - (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCUpdate.exe [] =>.Piriform Ltd C:\WINDOWS\System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - (.Microsoft Corporation.) -- C:\Windows\System32\sysmain.dll [sysmain.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\SMB\UninstallSMB1ClientTask - (.Microsoft Corporation.) -- C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [WindowsPowerShell] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-dominique@tranquille.ch - (.Adobe Systems, Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [] =>.Adobe Systems, Incorporated C:\WINDOWS\System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [w32time task_ed] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\MUI\LPRemove - (.Microsoft Corporation.) -- C:\WINDOWS\system32\lpremove.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition - (.Microsoft Corporation.) -- C:\WINDOWS\System32\ClipRenew.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag - (.Microsoft Corp..) -- C:\WINDOWS\system32\defrag.exe [-c -h -o -$] =>.Microsoft Corp. C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - (.Microsoft Corporation.) -- C:\WINDOWS\System32\MusNotification.exe [Reboot] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications - (.Microsoft Corporation.) -- C:\WINDOWS\System32\LocationNotificationWindows.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - (.Microsoft Corporation.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [logon] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - (.Microsoft Corporation.) -- C:\WINDOWS\system32\appidcertstorecheck.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BE897529-487C-4757-8090-C0844EAB3968} - (.Microsoft Corporation.) -- C:\Windows\System32\msfeedssync.exe [sync] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - (.Microsoft Corporation.) -- C:\Windows\System32\wermgr.exe [-upload] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 - (.Microsoft Corporation.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [/frequentupdate SCHEDULEDTASK displaylevel=False] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun - (.Microsoft Corporation.) -- C:\Windows\UpdateAssistant\UpdateAssistant.exe [/ClientID Win10Upgrade:VNL:EosWu:{}] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\System - (..) -- C:\Windows\SysWOW64\SysTsk\SystemTask.exe [] C:\WINDOWS\System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - (.Microsoft Corporation.) -- C:\WINDOWS\system32\compattelrunner.exe [-maintenance] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\SMB\UninstallSMB1ServerTask - (.Microsoft Corporation.) -- C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe [WindowsPowerShell] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\gamushed_dreschermushed_drescher - (..) -- C:\Program Files (x86)\Bells\Alliums.exe [mufyaa] C:\WINDOWS\System32\Tasks\Microsoft\Windows\DUSM\dusmtask - (.Microsoft Corporation.) -- C:\WINDOWS\System32\dusmtask.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - (.Microsoft Corporation.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\SystemRestore\SR - (.Microsoft Corporation.) -- C:\WINDOWS\system32\srtasks.exe [ExecuteScheduledSPPCreation] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - (.Microsoft Corporation.) -- C:\Windows\System32\sc.exe [wuauserv] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask - (.Microsoft Corporation.) -- C:\WINDOWS\System32\XblGameSaveTask.exe [standby] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - (.Microsoft Corporation.) -- C:\WINDOWS\System32\wsqmcons.exe [] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor - (.Microsoft Corporation.) -- C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [/WatchService] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google Inc. C:\WINDOWS\System32\Tasks\CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [$(Arg0)] =>.Piriform Ltd C:\WINDOWS\System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - (.Microsoft Corporation.) -- C:\Windows\System32\AppxDeploymentClient.dll [C:\Windows\System32\AppxDeploymentClient.dll] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - (.Microsoft Corporation.) -- C:\WINDOWS\system32\dmclient.exe [utcwnf] =>.Microsoft Corporation C:\WINDOWS\System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - (.Microsoft Corporation.) -- C:\ProgramData\Microsoft\Windows Defender\Platform\4.14.17613.18039-0\MpCmdRun.exe [-IdleTask -TaskName WdCacheMaintenance] =>.Microsoft Corporation ---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (26) - 2s O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows® O4 - HKLM\..\Run: [ETDCtrl] . (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe =>.ELAN Microelectronics Corporation® O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [RtHDVBg_Dolby] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [RtHDVBg_LENOVO_MICPKEY] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated® O4 - HKLM\..\Run: [AdobeGCInvoker-1.0] . (.Adobe Systems, Incorporated - Adobe GC Invoker Utility.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe =>.Adobe Systems Incorporated® O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O4 - HKLM\..\Run: [coogancoogan] . (...) -- C:\Program Files (x86)\Bells\Alliums.exe O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - HKCU\..\Run: [iCloudServices] . (.Apple Inc. - iCloud Services.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O4 - HKCU\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photo Stream.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O4 - HKCU\..\Run: [BatteryCare] . (.Filipe Lourenço - BatteryCare.) -- C:\Users\L530\Downloads\BatteryCarePortable\BatteryCare.exe =>.Filipe Lourenço O4 - HKCU\..\Run: [lansburylansbury] . (...) -- C:\Program Files (x86)\Bells\Alliums.exe O4 - HKCU\..\Run: [betteringbettering] . (...) -- C:\Program Files (x86)\Bells\Alliums.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKLM\..\Wow6432Node\Run: [huronhuron] . (...) -- C:\Program Files (x86)\Bells\Alliums.exe O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows® O4 - HKUS\S-1-5-21-2736131603-2182491810-2815481984-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-2736131603-2182491810-2815481984-1001\..\Run: [iCloudServices] . (.Apple Inc. - iCloud Services.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O4 - HKUS\S-1-5-21-2736131603-2182491810-2815481984-1001\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photo Stream.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O4 - HKUS\S-1-5-21-2736131603-2182491810-2815481984-1001\..\Run: [BatteryCare] . (.Filipe Lourenço - BatteryCare.) -- C:\Users\L530\Downloads\BatteryCarePortable\BatteryCare.exe =>.Filipe Lourenço O4 - HKUS\S-1-5-21-2736131603-2182491810-2815481984-1001\..\Run: [lansburylansbury] . (...) -- C:\Program Files (x86)\Bells\Alliums.exe O4 - HKUS\S-1-5-21-2736131603-2182491810-2815481984-1001\..\Run: [betteringbettering] . (...) -- C:\Program Files (x86)\Bells\Alliums.exe O4 - HKUS\S-1-5-21-2736131603-2182491810-2815481984-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® ---\\ PROCESSUS LANCÉS (49) - 4s [MD5.00000000000000000000000000000000] - (.Lenovo. - Lenovo Power Management Service.) -- C:\WINDOWS\system32\ibmpmsvc.exe [0] [PID.1764] =>.Lenovo. [MD5.00000000000000000000000000000000] - (.Lenovo. - Lenovo Platform Service.) -- C:\WINDOWS\system32\LPlatSvc.exe [0] [PID.1772] =>.Lenovo. [MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxCUIService Module.) -- C:\WINDOWS\system32\igfxCUIService.exe [0] [PID.2176] =>.Intel Corporation [MD5.CA805DA983594B01F3554464B2E5158F] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [83984] [PID.3224] =>.Adobe Systems, Incorporated® [MD5.DDF2E7F83AD7E03984EED3FE47BD8EC5] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.3232] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.3244] =>.Apple Inc.® [MD5.A16BBACB6C815C34BDBF023792DA9978] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [642464] [PID.3252] =>.Intel Corporation-Wireless Connectivity Solutions® [MD5.7EA8AC41A2E8426EC7079C44DBA1D254] - (.Luis Cobian, CobianSoft - Cobian Backup 11 Gravity - Service.) -- C:\Program Files (x86)\Cobian Backup 11\cbService.exe [1131008] [PID.3260] =>.Luis Cobian, CobianSoft [MD5.FB824381C36B812FE01403F86049B0D3] - (.ELAN Microelectronics Corp. - Elan Service.) -- C:\Program Files\Elantech\ETDService.exe [134888] [PID.3268] =>.ELAN Microelectronics Corporation® [MD5.58A5D48F16E89575C21C0B14A15D4383] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) -- C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2319848] [PID.3288] =>.Adobe Systems Incorporated® [MD5.0075DDA9A23D6D9F3DAA9AD7663EC2EC] - (.Lenovo - Connect2 Service.) -- C:\Program Files (x86)\Lenovo\Connect2\Connect2.Service.exe [100680] [PID.3296] =>.Lenovo® [MD5.7F872E76252E958917E1C76A55F5F0FE] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [157600] [PID.3472] =>.Intel Corporation-Wireless Connectivity Solutions® [MD5.19DB2C822B1E6E4FE50661F4C08BBEF0] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [5097232] [PID.3576] =>.TeamViewer® [MD5.9CBE780B1C8C04A8C6489A263C7924AF] - (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3833248] [PID.3600] =>.Intel Corporation-Wireless Connectivity Solutions® [MD5.B41A7C93428A5C655CE69DE7D0573BF1] - (.Lenovo Group Limited - ThinkPad Message Client Loader.) -- C:\Program Files\Lenovo\HOTKEY\tphkload.exe [154936] [PID.3776] {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited [MD5.EF848FCCCD0D530900735F6AC913EFA6] - (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe [137016] [PID.3792] {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited [MD5.900236357482B00944826354EEC6B93F] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe [288848] [PID.836] =>.Google Inc® [MD5.F107219B133E7E574DA052C5C88FFBF3] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe [366672] [PID.5624] =>.Google Inc® [MD5.00000000000000000000000000000000] - (.Lenovo. - Lenovo Platform Service.) -- C:\WINDOWS\system32\LPlatSvc.exe [0] [PID.2872] =>.Lenovo. [MD5.801E27EEE0E831AE18958E7EC1DA53CB] - (.Lenovo Group Limited - NumLock on screen display for ThinkPad.) -- C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe [222576] [PID.5760] {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited [MD5.D680D431CCEFD3DDFFFE20B0C97ACAE8] - (.Lenovo Group Limited - On screen display drawer.) -- C:\Program Files\Lenovo\HOTKEY\tposd.exe [1047352] [PID.6708] {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited [MD5.9601814B98AE3F0BDD10078A27E9E8E6] - (.Lenovo Group Limited - ThinkPad Message Receiver for Shortcut Hot.) -- C:\Program Files\Lenovo\HOTKEY\shtctky.exe [185688] [PID.7016] {093110109012B72D9635ECC428016524} =>.Lenovo Group Limited [MD5.CF6E636AB227C7830F0C194FF9D294F7] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [3745000] [PID.6944] =>.ELAN Microelectronics Corporation® [MD5.D4D2D4EE651411078F30B8F99B839104] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe [12713232] [PID.5964] =>.TeamViewer® [MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxEM Module.) -- C:\WINDOWS\system32\igfxEM.exe [0] [PID.4436] =>.Intel Corporation [MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxHK Module.) -- C:\WINDOWS\system32\igfxHK.exe [0] [PID.1428] =>.Intel Corporation [MD5.00000000000000000000000000000000] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxTray.exe [0] [PID.4684] =>.Intel Corporation [MD5.3B967C34FCB70FDEA504F812D68D6DA6] - (.ELAN Microelectronics Corp. - ETD Control Center Helper.) -- C:\Program Files\Elantech\ETDCtrlHelper.exe [2654432] [PID.7464] =>.ELAN Microelectronics Corporation® [MD5.188C13CA5ED8DDD7F476B832A16DEA94] - (.ELAN Microelectronics Corp. - ETDIntelligent.) -- C:\Program Files\Elantech\ETDIntelligent.exe [2267368] [PID.7488] =>.ELAN Microelectronics Corporation® [MD5.92001B6A4936E14D1878528797890D29] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe [195856] [PID.7560] =>.TeamViewer® [MD5.CCC97FB17945A103C8B58BCE8D0C3A12] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe [232720] [PID.7576] =>.TeamViewer® [MD5.EADA81DD4F0AF896FE9D4F0D1EB51861] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1811.248.1000_x64__kzf8qxf38zg5c\SkypeHost.exe [86528] [PID.8516] =>.Skype Technologies [MD5.6FA4B32A2E0ADE2372A66E5CA8851E6B] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16184608] [PID.9828] =>.Realtek Semiconductor Corp® [MD5.9C10BD0AA10BF6BE1F8611FC9CC508A3] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1422112] [PID.9884] =>.Realtek Semiconductor Corp® [MD5.9C10BD0AA10BF6BE1F8611FC9CC508A3] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1422112] [PID.9952] =>.Realtek Semiconductor Corp® [MD5.36FFF81F9F88FD189F5C13D1735D3A55] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [298296] [PID.10148] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.B306E6D61881B167A5A35ED25717168E] - (.Apple Inc. - iCloud Services.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384] [PID.10168] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.29D4E90F030E6FE41C8E7991CFABDB35] - (.Apple Inc. - iCloud Photo Stream.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896] [PID.10192] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.7FBDBCD54DCF13C7BDF2523CDD54B7C7] - (.Apple Inc. - iCloud Drive.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392] [PID.10200] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.BADB1B614AA6CE736DB95E421B40D79C] - (.Apple Inc. - iCloud Photo Library.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664] [PID.10208] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.05F9B41C6199C811DAA6454AA4BBB155] - (.Apple Inc. - iPod Service.) -- C:\Program Files\iPod\bin\iPodService.exe [673592] [PID.10008] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.2DA3E59990F924A958037D86B4F608B8] - (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67896] [PID.4008] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. [MD5.D11D4B1BC4B8CEEC5EF28A8DDE1199B3] - (. - Astra.) -- C:\Users\L530\AppData\Local\astra.exe [10752] [PID.8172] [MD5.D4F5B8FFC2D0660224ABA23B75EA10D3] - (. - Alliums.) -- C:\Users\L530\AppData\Local\Alliums.exe [10752] [PID.4800] [MD5.22126862DE70FDAF777DE2895EA5F3A0] - (.Apple, Inc. - Apple Security Manager.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe [1340216] [PID.10752] {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple, Inc. [MD5.BA68FC5BC6FDA76CACEF2C2498EE6BF7] - (. - Lenovo System Update Service.) -- C:\Program Files (x86)\Lenovo\System Update\SUService.exe [23920] [PID.6756] =>.Lenovo® [MD5.3E7637E6AF7119C770E097E804B95EB1] - (.Filipe Lourenço - BatteryCare.) -- C:\Users\L530\Downloads\BatteryCarePortable\BatteryCare.exe [827904] [PID.11212] =>.Filipe Lourenço [MD5.19966BC7915B8A853A1673B59849EFEA] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\L530\AppData\Roaming\ZHP\ZHPDiag3.exe [3069312] [PID.11840] =>.Nicolas Coolman [MD5.C5D7F23DA93992E94B300DA84EBA7C5D] - (.Lenovo - Lenovo Settings Power Service.) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe [106824] [PID.12128] =>.LENOVO® ---\\ CHROME, Démarrage, Recherche, Extensions (30) - 0s G0 - GCSP: Preferences [User Data\Default][HomePage] http://actu.pcastuces.com =>.Legitimate G0 - GCSP: Preferences [User Data\Default][HomePage] http://consent.google.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://divers.pcastuces.com =>.Legitimate G0 - GCSP: Preferences [User Data\Default][HomePage] http://images.pcastuces.com =>.Legitimate G0 - GCSP: Preferences [User Data\Default][HomePage] http://pagead2.googlesyndication.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://prix.pcastuces.com =>.Legitimate G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.pcastuces.com =>.Legitimate G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc. G2 - GCE: Preference [L530][User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides} G2 - GCE: Preference [L530][User Data\Default] [acbokjkdobbboamnnfehlboekicdhcog] http://w2mo.logivations.com G2 - GCE: Preference [L530][User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs} G2 - GCE: Preference [L530][User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive} G2 - GCE: Preference [L530][User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube} G2 - GCE: Preference [L530][User Data\Default] [efaidnbmnnnibpcajpcglclefindmkaj] =>.Adobe Inc. {Acrobat} G2 - GCE: Preference [L530][User Data\Default] [fahmaaghhglfmonjliepjlchgpgfmobi] next track =>.Google Inc. G2 - GCE: Preference [L530][User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets} G2 - GCE: Preference [L530][User Data\Default] [fjkkongamjdfggeifeicejegagbhhjlf] Cinémur =>.Cinémur G2 - GCE: Preference [L530][User Data\Default] [fkepacicchenbjecpbpbclokcabebhah] G2 - GCE: Preference [L530][User Data\Default] [gbchcmhmhahfdphkhkmpfmihenigjmpp] =>.Google Inc. {Bureau à distance} G2 - GCE: Preference [L530][User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion} G2 - GCE: Preference [L530][User Data\Default] [hehijbfgiekmjfkfjpbkbammjbdenadd] IE Tab =>.ietab.net G2 - GCE: Preference [L530][User Data\Default] [jnbkeigkjcncjkbmkiibjgbhbnbanmfi] Download Helper G2 - GCE: Preference [L530][User Data\Default] [mkodjoohamdfedlibbkppjpbniakjjnf] Voir les codes promos =>.SUP.BrowserExtension G2 - GCE: Preference [L530][User Data\Default] [nflhfcjfjkohgcgpldeffhlgeooejomn] Zoho Docs G2 - GCE: Preference [L530][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet} G2 - GCE: Preference [L530][User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail} G2 - GCE: Preference [L530][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc. ---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (2) - 1s P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.1] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll =>.VideoLAN P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.2.4] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll =>.VideoLAN ---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (15) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.16299.371 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation ---\\ INTERNET EXPLORER, Site de confiance et site sensible (2) - 0s ~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad) ~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 0(Good) / 0(Bad) ---\\ INTERNET EXPLORER,Proxy Management (2) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value ---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ ÉTUDE DU FICHIER HOSTS (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (121) ---\\ BROWSER HELPER OBJECT DE NAVIGATEUR (BHO) (4) - 0s O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation® O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll =>.Adobe Systems, Incorporated® O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll =>.Adobe Systems, Incorporated® ---\\ RACCOURCIS GLOBAL STARTUP (113) - 9s O4 - GS\Desktop [Administrateur]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\L530\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\L530\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Administrateur]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation® O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [Administrateur]: Adobe Acrobat XI Pro.lnk . (.Adobe Systems Incorporated - Adobe Acrobat.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated® O4 - GS\TaskBar [Administrateur]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\TaskBar [Administrateur]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\TaskBar [Administrateur]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [Administrateur]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation® O4 - GS\Startup [Administrateur]: silica.lnk . (...) C:\Program Files (x86)\Sao\Alliums.exe mufyaa O4 - GS\Startup [Administrateur]: silicasilica.lnk . (...) C:\Program Files (x86)\roelofs\astra.exe mufyaa O4 - GS\Programs [Administrateur]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Desktop [defaultuser0]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\L530\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Desktop [defaultuser0]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\L530\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [defaultuser0]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [defaultuser0]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation® O4 - GS\sendTo [defaultuser0]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [defaultuser0]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [defaultuser0]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [defaultuser0]: Adobe Acrobat XI Pro.lnk . (.Adobe Systems Incorporated - Adobe Acrobat.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated® O4 - GS\TaskBar [defaultuser0]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\TaskBar [defaultuser0]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [defaultuser0]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [defaultuser0]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\TaskBar [defaultuser0]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [defaultuser0]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation® O4 - GS\Startup [defaultuser0]: silica.lnk . (...) C:\Program Files (x86)\Sao\Alliums.exe mufyaa O4 - GS\Startup [defaultuser0]: silicasilica.lnk . (...) C:\Program Files (x86)\roelofs\astra.exe mufyaa O4 - GS\Programs [defaultuser0]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [defaultuser0]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Desktop [L530]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\L530\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Desktop [L530]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\L530\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [L530]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [L530]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation® O4 - GS\sendTo [L530]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [L530]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [L530]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [L530]: Adobe Acrobat XI Pro.lnk . (.Adobe Systems Incorporated - Adobe Acrobat.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated® O4 - GS\TaskBar [L530]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\TaskBar [L530]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [L530]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [L530]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\TaskBar [L530]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [L530]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation® O4 - GS\Startup [L530]: silica.lnk . (...) C:\Program Files (x86)\Sao\Alliums.exe mufyaa O4 - GS\Startup [L530]: silicasilica.lnk . (...) C:\Program Files (x86)\roelofs\astra.exe mufyaa O4 - GS\Programs [L530]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [L530]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Desktop [WDAGUtilityAccount]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\L530\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman O4 - GS\Desktop [WDAGUtilityAccount]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\L530\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [WDAGUtilityAccount]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE /recycle =>.Microsoft Corporation® O4 - GS\sendTo [WDAGUtilityAccount]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [WDAGUtilityAccount]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe =>.Microsoft Corporation O4 - GS\TaskBar [WDAGUtilityAccount]: Adobe Acrobat XI Pro.lnk . (.Adobe Systems Incorporated - Adobe Acrobat.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated® O4 - GS\TaskBar [WDAGUtilityAccount]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\TaskBar [WDAGUtilityAccount]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [WDAGUtilityAccount]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\TaskBar [WDAGUtilityAccount]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation® O4 - GS\TaskBar [WDAGUtilityAccount]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation® O4 - GS\Startup [WDAGUtilityAccount]: silica.lnk . (...) C:\Program Files (x86)\Sao\Alliums.exe mufyaa O4 - GS\Startup [WDAGUtilityAccount]: silicasilica.lnk . (...) C:\Program Files (x86)\roelofs\astra.exe mufyaa O4 - GS\Programs [WDAGUtilityAccount]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [WDAGUtilityAccount]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc. O4 - GS\CommonDesktop [Public]: Revo Uninstaller.lnk . (.VS Revo Group - Revo Uninstaller.) C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe =>.VS Revo Group® O4 - GS\CommonDesktop [Public]: VueScan x64.lnk . (.Hamrick Software - .) C:\Program Files (x86)\VueScan\vuescan.exe =>.Hamrick Software O4 - GS\Programs [Public]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\L530\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\L530\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Access.lnk . (.Microsoft Corporation - Microsoft Access.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC O4 - GS\ProgramsCommon [Public]: Adobe Acrobat Distiller XI.lnk . (.Adobe Systems Incorporated. - Acrobat Distiller.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrodist.exe =>.Adobe Systems, Incorporated® O4 - GS\ProgramsCommon [Public]: Adobe Acrobat XI Pro.lnk . (...) C:\WINDOWS\Installer\{AC76BA86-1033-FFFF-7760-000000000006}\_SC_Acrobat.ico O4 - GS\ProgramsCommon [Public]: Adobe FormsCentral.lnk . (...) C:\Program Files (x86)\Adobe\Acrobat 11.0\FormsCentral\FormsCentralForAcrobat.exe =>.Adobe Systems, Incorporated® O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\WINDOWS\Installer\{A30EA700-5515-48F0-88B0-9E99DC356B88}\AppleSoftwareUpdateIco.exe =>.Apple Inc. O4 - GS\ProgramsCommon [Public]: Assistant Mise à jour de Windows 10.lnk . (.Microsoft Corporation - Windows 10 Update Assistant.) C:\Windows10Upgrade\Windows10UpgraderApp.exe /ClientID "Win10Upgrade:VNL:EosWu:{}" =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited® O4 - GS\ProgramsCommon [Public]: Citrix Receiver.lnk . (.Citrix Systems, Inc. - Citrix Receiver.) C:\Program Files (x86)\Citrix\ICA Client\SelfServicePlugin\SelfService.exe -showAppPicker {0DEE2BEBFC03CBDB2294380C9988E152} =>.Citrix Systems, Inc. O4 - GS\ProgramsCommon [Public]: Excel.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: OneDrive Entreprise.lnk . (.Microsoft Corporation - Microsoft OneDrive for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVE.EXE =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (.Microsoft Corporation - Microsoft OneNote.) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: PowerPoint.lnk . (.Microsoft Corporation - Microsoft PowerPoint.) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Publisher.lnk . (.Microsoft Corporation - Microsoft Publisher.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Skype Entreprise.lnk . (.Microsoft Corporation - Skype for Business.) C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: TeamViewer 8.lnk . (.TeamViewer GmbH - TeamViewer 8.) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe =>.TeamViewer® O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Word.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation® ---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{248d3634-2153-4858-87ab-1059498f74db}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress ---\\ PROTOCOLE ADDITIONNEL (23) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation ---\\ COMPOSANTS ACTIVESETUP INSTALLÉS (ASIC) (5) - 0s O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe =>.Microsoft Corporation O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft Corporation® O40 - ASIC: Google Chrome [64Bits] - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.117\Installer\chrmstp.exe =>.Google Inc® ---\\ LOGICIELS INSTALLÉS (55) - 8s O42 - Logiciel: 7-Zip 18.01 - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2701-1801-000001000000} =>.Igor Pavlov O42 - Logiciel: 7-Zip 9.20 - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824265200} =>.Adobe Systems Incorporated O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {543F829B-4591-4B2F-AF63-6E6E6AE59EB2} =>.Apple Inc. O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {0ECA3BB5-4410-414B-B226-241FF1C12CD0} =>.Apple Inc. O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {A05FDFEC-4377-49E0-82CB-B6D1386E89DA} =>.Apple Inc. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {A30EA700-5515-48F0-88B0-9E99DC356B88} =>.Apple Inc. O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc. O42 - Logiciel: Canon ScanGear Toolbox 3.0 - (..) [HKLM][64Bits] -- Canon ScanGear Toolbox 3.0 O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd® O42 - Logiciel: CDBurnerXP - (.CDBurnerXP.) [HKLM][64Bits] -- {7E265513-8CDA-4631-B696-F40D983F3B07}_is1 =>.CDBurnerXP O42 - Logiciel: Chromium - (.Chromium.) [HKCU][64Bits] -- Chromium =>.Chromium O42 - Logiciel: Citrix Authentication Manager - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {B97F3FF1-1030-4EE6-8F93-659AD0809EE2} =>.Citrix Systems, Inc. O42 - Logiciel: Citrix Receiver (DV) - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {D4442280-D50D-4EE8-A96F-E850435F98B7} =>.Citrix Systems, Inc. O42 - Logiciel: Citrix Receiver (Redirection Flash HDX) - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {BE9357E7-E4DD-4222-9295-2C0E1C208111} =>.Citrix Systems, Inc. O42 - Logiciel: Citrix Receiver (USB) - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {03E2940F-E514-4C30-A7AA-D33895C5889F} =>.Citrix Systems, Inc. O42 - Logiciel: Citrix Receiver 4.11 - (.Citrix Systems, Inc..) [HKLM][64Bits] -- CitrixOnlinePluginPackWeb {0D2CFE073788E270391A9DD7662DEF85} =>.Citrix Systems, Inc. O42 - Logiciel: Citrix Receiver Inside - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {7755A4D9-470D-484B-A6B2-E411F48DD400} =>.Citrix Systems, Inc. O42 - Logiciel: Citrix Receiver(Aero) - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {815415B1-24B4-49D3-B4F5-0EA6A7BC41F1} =>.Citrix Systems, Inc. O42 - Logiciel: Citrix Web Helper - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {1569360E-5C05-46EF-BFC3-A368F25D17E1} =>.Citrix Systems, Inc. O42 - Logiciel: Cobian Backup 11 Gravity - (.CobianSoft, Luis Cobian.) [HKLM][64Bits] -- CobBackup11 =>.CobianSoft, Luis Cobian O42 - Logiciel: Connect2 - (.Lenovo.) [HKLM][64Bits] -- Connect2_is1 =>.Lenovo® O42 - Logiciel: Dolby Digital Plus Advanced Audio - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2} =>.Dolby Laboratories Inc O42 - Logiciel: ELAN Pointing Driver - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation® O42 - Logiciel: Epic Pen - (.Brian Hoary.) [HKLM][64Bits] -- Epic Pen_is1 =>.Brian Hoary O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc® O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM][64Bits] -- {5BD11939-D2C2-4F1B-AAAF-5ECE19A801F7} =>.Apple Inc. O42 - Logiciel: Intel(R) PRO/Wireless Driver - (.Intel Corporation.) [HKLM][64Bits] -- {22fb2048-ca56-427a-8b27-4cb93a48becb} =>.Intel Corporation O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {8762FBFE-7E22-4D5B-AA33-8680C681ABD6} =>.Intel Corporation O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {D9F2859F-0703-4B9A-B52D-2B2D49B8E5F0} =>.Apple Inc. O42 - Logiciel: Lenovo Active Protection System - (.Lenovo.) [HKLM][64Bits] -- {46A84694-59EC-48F0-964C-7E76E9F8A2ED} =>.Lenovo O42 - Logiciel: Lenovo Power Management Driver - (.Lenovo.) [HKLM][64Bits] -- Power Management Driver =>.Lenovo O42 - Logiciel: Lenovo System Update - (.Lenovo.) [HKLM][64Bits] -- TVSU_is1 =>.Lenovo® O42 - Logiciel: Logiciel Intel® PROSet/Wireless - (.Intel Corporation.) [HKLM][64Bits] -- {88540041-fd0c-4588-9b2f-251e29f7c5a1} =>.Intel Corporation-Wireless Connectivity Solutions® O42 - Logiciel: Malwarebytes version 3.3.1.2183 - (.Malwarebytes.) [HKLM][64Bits] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation® O42 - Logiciel: Metric Collection SDK - (.Lenovo Group Limited.) [HKLM][64Bits] -- {DDAA788F-52E6-44EA-ADB8-92837B11BF26} =>.Lenovo Group Limited O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation® O42 - Logiciel: Microsoft Visio Premium 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.VISIO =>.Microsoft Corporation® O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Extensibility Component 64-bit Registration - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00DD-0000-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Online Plug-in - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {796E07BC-0434-42BA-8A53-A65882562CB9} =>.Citrix Systems, Inc. O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp® O42 - Logiciel: Revo Uninstaller 2.0.5 - (.VS Revo Group, Ltd..) [HKLM][64Bits] -- {A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1 =>.VS Revo Group, Ltd. O42 - Logiciel: Self-Service Plug-in - (.Citrix Systems, Inc..) [HKLM][64Bits] -- {CB2DE5E8-30AB-44AB-B3F5-4B6F2B06E11C} =>.Citrix Systems, Inc. O42 - Logiciel: TeamViewer 8 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 8 =>.TeamViewer® O42 - Logiciel: ThinkPad Settings Dependency - (.Lenovo.) [HKLM][64Bits] -- {08515684-CE49-47EF-B509-326A2E91BC5C}_is1 =>.Lenovo O42 - Logiciel: Update for Windows 10 for x64-based Systems (KB4023057) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F3E59DD-7DCE-4103-9528-57DA43134312} =>.Microsoft Corporation O42 - Logiciel: UpdateAssistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {B7AFAF92-D1C8-49A0-B34A-B5DAF9C9D5C6} =>.Microsoft Corporation O42 - Logiciel: VueScan x64 - (.Tufts University.) [HKLM][64Bits] -- VueScan x64 =>.Hamrick Software® O42 - Logiciel: Windows 10 Update Assistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {D5C69738-B486-402E-85AC-2456D98A64E4} =>.Microsoft Corporation® ---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (101) - 8s HKLM\SOFTWARE\7-Zip =>.Igor Pavlov HKLM\SOFTWARE\Adobe =>.Adobe HKLM\SOFTWARE\Apple Inc. =>.Apple Inc. HKLM\SOFTWARE\AVAST Software =>.AVAST Software HKLM\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited HKLM\SOFTWARE\Canon =>.Canon HKLM\SOFTWARE\Citrix =>.Citrix HKLM\SOFTWARE\CobianSoft =>.CobianSoft, Luis Cobian HKLM\SOFTWARE\Google =>.Google HKLM\SOFTWARE\GuidGuid13 HKLM\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard HKLM\SOFTWARE\i4Tool HKLM\SOFTWARE\IBM =>.IBM HKLM\SOFTWARE\IM Providers =>.IM Providers HKLM\SOFTWARE\Intel =>.Intel HKLM\SOFTWARE\JreMetrics =>.JreMetrics HKLM\SOFTWARE\Khronos =>.Khronos HKLM\SOFTWARE\Lenovo =>.Lenovo HKLM\SOFTWARE\Macromedia =>.Macromedia HKLM\SOFTWARE\MAXSOFT-OCRON =>.Maxsoft-Ocron, Inc HKLM\SOFTWARE\Mozilla =>.Mozilla HKLM\SOFTWARE\mozilla.org =>.mozilla.org HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\Nuance =>.Nuance HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\TeamViewer =>.TeamViewer HKLM\SOFTWARE\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node =>.Microsoft Corporation HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\7-Zip =>.Igor Pavlov HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe HKLM\SOFTWARE\WOW6432Node\Apple Inc. =>.Apple Inc. HKLM\SOFTWARE\WOW6432Node\AVAST Software =>.AVAST Software HKLM\SOFTWARE\WOW6432Node\Canneverbe Limited =>.Canneverbe Limited HKLM\SOFTWARE\WOW6432Node\Canon =>.Canon HKLM\SOFTWARE\WOW6432Node\Citrix =>.Citrix HKLM\SOFTWARE\WOW6432Node\CobianSoft =>.CobianSoft, Luis Cobian HKLM\SOFTWARE\WOW6432Node\Google =>.Google HKLM\SOFTWARE\WOW6432Node\GuidGuid13 HKLM\SOFTWARE\WOW6432Node\Hewlett-Packard =>.Hewlett-Packard HKLM\SOFTWARE\WOW6432Node\i4Tool HKLM\SOFTWARE\WOW6432Node\IBM =>.IBM HKLM\SOFTWARE\WOW6432Node\IM Providers =>.IM Providers HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel HKLM\SOFTWARE\WOW6432Node\JreMetrics =>.JreMetrics HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos HKLM\SOFTWARE\WOW6432Node\Lenovo =>.Lenovo HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia HKLM\SOFTWARE\WOW6432Node\MAXSOFT-OCRON =>.Maxsoft-Ocron, Inc HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\WOW6432Node\Nuance =>.Nuance HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\WOW6432Node\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\WOW6432Node\TeamViewer =>.TeamViewer HKLM\SOFTWARE\WOW6432Node\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\WOW6432Node =>.Microsoft Corporation HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\7-Zip =>.Igor Pavlov HKCU\SOFTWARE\Adobe =>.Adobe HKCU\SOFTWARE\Aiseesoft Studio =>.Aiseesoft Studio HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. =>.Apple Inc. HKCU\SOFTWARE\Artem Izmaylov =>.Artem Izmaylov HKCU\SOFTWARE\AvastAdSDK =>.Avast Software s.r.o HKCU\SOFTWARE\Browser Cleanup =>.Avast Software s.r.o HKCU\SOFTWARE\Canneverbe Limited =>.Canneverbe Limited HKCU\SOFTWARE\Canon =>.Canon HKCU\SOFTWARE\Chromium =>.Chromium HKCU\SOFTWARE\Citrix =>.Citrix HKCU\SOFTWARE\cks =>.Legitimate HKCU\SOFTWARE\DMGR1.25 HKCU\SOFTWARE\Elantech =>.Elantech Inc. HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard HKCU\SOFTWARE\IBM =>.IBM HKCU\SOFTWARE\IM Providers =>.IM Providers HKCU\SOFTWARE\Intel =>.Intel HKCU\SOFTWARE\JavaSoft =>.JavaSoft HKCU\SOFTWARE\Lenovo =>.Lenovo HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\Netscape =>.Netscape HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions HKCU\SOFTWARE\Piriform =>.Piriform HKCU\SOFTWARE\QtProject =>.QtProject HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation HKCU\SOFTWARE\SYNCJM =>.SYNCJM HKCU\SOFTWARE\TeamViewer =>.TeamViewer HKCU\SOFTWARE\VB and VBA Program Settings =>.Microsoft Corporation HKCU\SOFTWARE\Visan =>.Visan Software HKCU\SOFTWARE\VS Revo Group =>.VS Revo Group HKCU\SOFTWARE\VueScan =>.Hamrick Software HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation ---\\ CONTENU DES DOSSIERS PROGRAMMES (230) - 5s O43 - CFD: 19/01/2018 - [] D -- C:\Program Files\Bonjour =>.Apple Inc. O43 - CFD: 16/04/2018 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd O43 - CFD: 16/04/2018 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Dolby Digital Plus =>.Dolby Laboratories Inc O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Elantech =>.ELAN Microelectronics Corporation® O43 - CFD: 04/12/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Intel =>.Intel Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files\internet explorer =>.Microsoft Corporation O43 - CFD: 04/04/2018 - [] D -- C:\Program Files\iPod {31B1B08C8899CA883CE1B0F17D56403B} O43 - CFD: 04/04/2018 - [] D -- C:\Program Files\iTunes =>.Apple Inc. O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Lenovo =>.Lenovo O43 - CFD: 19/02/2018 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes O43 - CFD: 19/01/2018 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Realtek =>.Realtek O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] AD -- C:\Program Files\rempl =>.Microsoft Corporation® O43 - CFD: 23/11/2017 - [] D -- C:\Program Files\ThinkPad =>.Lenovo® O43 - CFD: 04/12/2016 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] AD -- C:\Program Files\UNP =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files\VS Revo Group =>.VS Revo Group O43 - CFD: 05/03/2018 - [] D -- C:\Program Files\VueScan =>.Tufts University O43 - CFD: 16/04/2018 - [] RD -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files\Windows Defender Advanced Threat Protection =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files\windows nt =>.Microsoft Corporation O43 - CFD: 30/09/2017 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\Windows Security =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 18/04/2018 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation O43 - CFD: 17/04/2018 - [] D -- C:\Program Files (x86)\7-Zip =>.Igor Pavlov O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated® O43 - CFD: 20/03/2018 - [] D -- C:\Program Files (x86)\AIMP Classic =>.Artem Izmaylov O43 - CFD: 04/04/2018 - [] D -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc. O43 - CFD: 16/04/2018 - [] HD -- C:\Program Files (x86)\Bells O43 - CFD: 19/01/2018 - [] D -- C:\Program Files (x86)\Bonjour =>.Apple Inc. O43 - CFD: 05/03/2018 - [] D -- C:\Program Files (x86)\Canon =>.Microsoft Corporation® O43 - CFD: 04/12/2016 - [] AD -- C:\Program Files (x86)\CDBurnerXP =>.Stefan Haglund O43 - CFD: 04/12/2016 - [] AD -- C:\Program Files (x86)\Cisco =>.Cisco Systems, Inc. O43 - CFD: 20/03/2018 - [] D -- C:\Program Files (x86)\Citrix =>.Citrix O43 - CFD: 04/12/2016 - [] D -- C:\Program Files (x86)\Cobian Backup 11 =>.CobianSoft, Luis Cobian O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation O43 - CFD: 19/01/2018 - [] D -- C:\Program Files (x86)\Epic Pen O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard O43 - CFD: 05/05/2017 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield O43 - CFD: 04/12/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation O43 - CFD: 19/02/2018 - [] D -- C:\Program Files (x86)\iTunesPatch2 O43 - CFD: 06/02/2018 - [] D -- C:\Program Files (x86)\Lenovo =>.Lenovo O43 - CFD: 19/01/2018 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek O43 - CFD: 18/01/2018 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 08/02/2018 - [] D -- C:\Program Files (x86)\ReiBoot O43 - CFD: 16/04/2018 - [0] D -- C:\Program Files (x86)\roelofs O43 - CFD: 16/04/2018 - [0] D -- C:\Program Files (x86)\Sao O43 - CFD: 04/12/2016 - [] AD -- C:\Program Files (x86)\SmartSense =>.LENOVO® O43 - CFD: 14/02/2018 - [] D -- C:\Program Files (x86)\TeamViewer =>.TeamViewer GmbH O43 - CFD: 04/12/2016 - [] D -- C:\Program Files (x86)\ThinkPad =>.LENOVO® O43 - CFD: 05/12/2016 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team O43 - CFD: 30/09/2017 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\windows nt =>.Microsoft Corporation O43 - CFD: 30/09/2017 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation O43 - CFD: 17/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip =>.Igor Pavlov O43 - CFD: 29/09/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 14/02/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 05/03/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon ScanGear Toolbox 3.0 O43 - CFD: 16/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner =>.Piriform Ltd O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cobian Backup 11 =>.CobianSoft, Luis Cobian O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connect2 O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby =>.Dolby O43 - CFD: 19/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Pen O43 - CFD: 04/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud =>.Apple Inc. O43 - CFD: 05/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMobie =>.iMobie Inc O43 - CFD: 05/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iMyFone O43 - CFD: 04/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc. O43 - CFD: 06/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\lenovo =>.Lenovo O43 - CFD: 29/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 19/02/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes =>.Malwarebytes O43 - CFD: 19/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation O43 - CFD: 04/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 =>.Microsoft Corporation O43 - CFD: 18/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller =>.VS Revo Group O43 - CFD: 18/04/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation O43 - CFD: 14/02/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\ProgramData\Adobe =>.Adobe O43 - CFD: 19/01/2018 - [] D -- C:\ProgramData\Apple =>.Apple Inc. O43 - CFD: 19/01/2018 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc. O43 - CFD: 18/01/2018 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 18/04/2018 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software O43 - CFD: 04/12/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [] D -- C:\ProgramData\Canneverbe Limited =>.Canneverbe Limited O43 - CFD: 28/03/2018 - [] D -- C:\ProgramData\Citrix =>.Citrix O43 - CFD: 16/07/2016 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\ProgramData\HP =>.Hewlett-Packard O43 - CFD: 04/12/2016 - [] D -- C:\ProgramData\Intel =>.Intel Corporation O43 - CFD: 13/02/2018 - [] D -- C:\ProgramData\Lenovo =>.Lenovo O43 - CFD: 19/02/2018 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes O43 - CFD: 15/04/2018 - [] D -- C:\ProgramData\McAfee =>.McAfee O43 - CFD: 04/12/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 11/04/2018 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation O43 - CFD: 05/05/2017 - [] D -- C:\ProgramData\Oracle =>.Oracle O43 - CFD: 18/02/2018 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [0] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc. O43 - CFD: 15/04/2018 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [] D -- C:\ProgramData\Roaming =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software O43 - CFD: 29/09/2017 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation O43 - CFD: 13/02/2018 - [] D -- C:\ProgramData\Thunder Network =>.Thunder Network O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation O43 - CFD: 10/03/2018 - [] D -- C:\ProgramData\Visan =>.Visan Industries O43 - CFD: 30/09/2017 - [] D -- C:\ProgramData\WindowsHolographicDevices =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] AD -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe O43 - CFD: 19/01/2018 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc. O43 - CFD: 20/03/2018 - [] D -- C:\Program Files (x86)\Common Files\Citrix =>.Citrix O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer O43 - CFD: 18/01/2018 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation O43 - CFD: 30/09/2017 - [] D -- C:\Program Files (x86)\Common Files\system =>.Microsoft Corporation O43 - CFD: 07/03/2018 - [] D -- C:\Users\L530\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 07/03/2018 - [] D -- C:\Users\L530\AppData\Roaming\BatteryCare O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Roaming\Canneverbe Limited =>.Canneverbe Limited O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Roaming\Epic_Pen O43 - CFD: 18/01/2018 - [] D -- C:\Users\L530\AppData\Roaming\Google =>.Google O43 - CFD: 16/04/2018 - [] D -- C:\Users\L530\AppData\Roaming\Host32 O43 - CFD: 17/03/2018 - [] D -- C:\Users\L530\AppData\Roaming\HpUpdate =>.Hewlett-Packard O43 - CFD: 20/03/2018 - [] D -- C:\Users\L530\AppData\Roaming\ICAClient =>.Citrix O43 - CFD: 05/02/2018 - [] D -- C:\Users\L530\AppData\Roaming\iMobie =>.iMobie Inc O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Roaming\Intel =>.Intel Corporation O43 - CFD: 05/12/2016 - [] D -- C:\Users\L530\AppData\Roaming\LibreOffice =>.LibreOffice O43 - CFD: 22/01/2018 - [] D -- C:\Users\L530\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 09/02/2018 - [] SD -- C:\Users\L530\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Roaming\Mozilla =>.Mozilla Corporation O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Roaming\Skype =>.Skype O43 - CFD: 25/01/2018 - [] D -- C:\Users\L530\AppData\Roaming\SolidDocuments =>.SolidDocuments O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Roaming\Sun =>.Oracle O43 - CFD: 16/04/2018 - [] D -- C:\Users\L530\AppData\Roaming\TeamViewer =>.TeamViewer GmbH O43 - CFD: 05/02/2018 - [] D -- C:\Users\L530\AppData\Roaming\Tenorshare =>.Tenorshare O43 - CFD: 18/04/2018 - [] D -- C:\Users\L530\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Local\Adobe =>.Adobe O43 - CFD: 05/02/2018 - [] D -- C:\Users\L530\AppData\Local\Aiseesoft Studio =>.Aiseesoft Studio O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Local\Apple =>.Apple Inc. O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Local\Apple Computer =>.Apple Inc. O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Local\Apple Inc =>.Apple Inc. O43 - CFD: 18/01/2018 - [0] SHD -- C:\Users\L530\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Users\L530\AppData\Local\Apps =>.Microsoft Corporation O43 - CFD: 17/04/2018 - [] D -- C:\Users\L530\AppData\Local\AVAST Software =>.AVAST Software O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Local\CEF =>.CEF O43 - CFD: 21/01/2018 - [] D -- C:\Users\L530\AppData\Local\Chromium =>.Chromium O43 - CFD: 28/03/2018 - [] D -- C:\Users\L530\AppData\Local\Citrix =>.Citrix O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Local\Comms =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Users\L530\AppData\Local\ConnectedDevicesPlatform =>.Microsoft Corporation O43 - CFD: 19/01/2018 - [0] D -- C:\Users\L530\AppData\Local\DBG =>.DBG O43 - CFD: 15/04/2018 - [0] D -- C:\Users\L530\AppData\Local\Deployment =>.Microsoft Corporation O43 - CFD: 18/04/2018 - [] D -- C:\Users\L530\AppData\Local\E8B9CB54-18AC-4EF7-A151-9E60A6C60408.aplzod O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Local\Google =>.Google O43 - CFD: 18/01/2018 - [0] SHD -- C:\Users\L530\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 10/03/2018 - [] D -- C:\Users\L530\AppData\Local\HP =>.Hewlett-Packard O43 - CFD: 05/02/2018 - [] D -- C:\Users\L530\AppData\Local\iMobie_Inc =>.iMobie Inc O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Local\Lenovo =>.Lenovo O43 - CFD: 16/04/2018 - [] D -- C:\Users\L530\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 19/01/2018 - [0] D -- C:\Users\L530\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Users\L530\AppData\Local\MicrosoftEdge =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Users\L530\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 04/12/2016 - [0] D -- C:\Users\L530\AppData\Local\NetworkTiles =>.NetworkTiles O43 - CFD: 12/04/2018 - [] D -- C:\Users\L530\AppData\Local\Packages =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Users\L530\AppData\Local\PackageStaging =>.Apcera O43 - CFD: 04/12/2016 - [0] D -- C:\Users\L530\AppData\Local\PeerDistRepub =>.Microsoft Corporation O43 - CFD: 01/03/2018 - [0] D -- C:\Users\L530\AppData\Local\PlaceholderTileLogoFolder O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\Local\Publishers =>.Microsoft Corporation O43 - CFD: 18/04/2018 - [] D -- C:\Users\L530\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [0] SHD -- C:\Users\L530\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] D -- C:\Users\L530\AppData\Local\TileDataLayer =>.Microsoft Corporation O43 - CFD: 11/09/2017 - [] D -- C:\Users\L530\AppData\Local\UNP =>.Microsoft Corporation O43 - CFD: 20/03/2018 - [] D -- C:\Users\L530\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 22/02/2018 - [] D -- C:\Users\L530\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 04/12/2016 - [0] D -- C:\Users\L530\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [] D -- C:\Users\L530\AppData\LocalLow\Adobe =>.Adobe O43 - CFD: 16/04/2018 - [] SD -- C:\Users\L530\AppData\LocalLow\Microsoft =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Users\L530\AppData\LocalLow\Sun =>.Oracle O43 - CFD: 14/03/2018 - [] D -- C:\Users\L530\Desktop\AD50 BRI O43 - CFD: 16/04/2018 - [] D -- C:\Users\L530\Desktop\pc EN PANNE O43 - CFD: 16/03/2018 - [] D -- C:\Users\L530\Desktop\Stats Ant 11 O43 - CFD: 29/09/2017 - [] RD -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [] RD -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] RD -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome =>.Google Inc. O43 - CFD: 19/01/2018 - [] D -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iCloud =>.Apple Inc. O43 - CFD: 29/09/2017 - [] D -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] RD -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] RD -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [] RD -- C:\Users\L530\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 30/09/2017 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 19/01/2018 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 04/12/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 30/09/2017 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 19/01/2018 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 29/09/2017 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 18/01/2018 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 15/04/2018 - [] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\AVAST Software =>.AVAST Software O43 - CFD: 19/01/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 06/02/2018 - [0] -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\PeerDistRepub =>.Microsoft Corporation O43 - CFD: 14/02/2018 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation ---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation ---\\ RACCOURCIS DES MENUS CONCEPTUELS (SCMH) (24) - 2s O108 - CMH1: Adobe.Acrobat.ContextMenu [64Bits] - {A6595CD1-BF77-430A-A452-18696685F7C7} . (.Adobe Systems Inc. - Adobe Acrobat Context Menu.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll =>.Adobe Systems, Incorporated® O108 - CMH1: ModernSharing [64Bits] - {e2bf9676-5f8f-435c-97eb-11607a5bedf7} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH1: PhotoStreamsExt [64Bits] - {89D984B3-813B-406A-8298-118AFA3A22AE} . (.Apple Inc. - ShellStreams.) -- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH3: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation® O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\WINDOWS\system32\igfxDTCM.dll =>.Intel Corporation O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkfoldersShell.dll =>.Microsoft Corporation O108 - CMH6: Adobe.Acrobat.ContextMenu [64Bits] - {A6595CD1-BF77-430A-A452-18696685F7C7} . (.Adobe Systems Inc. - Adobe Acrobat Context Menu.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll =>.Adobe Systems, Incorporated® O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows® O108 - CMH6: MBAMShlExt [64Bits] - {57CE581A-0CB6-4266-9CA0-19364C90A0B3} . (.Malwarebytes - Malwarebytes.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll =>.Malwarebytes Corporation® O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll =>.Microsoft Corporation O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Programme de résolution d’applications.) -- C:\Windows\System32\appresolver.dll =>.Microsoft Windows® O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (18) - 0s O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft Windows® O50 - IFEO:C:\WINDOWS\System32\drvinst.exe - (.Microsoft Corporation - Module d’installation de pilotes.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\ie4uinit.exe - (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\MRT.exe - (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) [CFGOptions\\1] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation O50 - IFEO:C:\WINDOWS\System32\spoolsv.exe - (.Microsoft Corporation - Application sous-système spouleur.) [MitigationOptions\\2097152] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MinimumStackCommitInBytes\\32768] =>.Microsoft Windows Publisher® O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Processus hôte pour les services Windows.) [MitigationAuditOptions\\17660905521152] =>.Microsoft Windows Publisher® O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] =>.Microsoft Corporation ---\\ LISTE DES PILOTES DU SYSTÈME (69) - 11s O58 - SDL:2017/09/29 15:41:02 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107416] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135512] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83352] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [258592] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [27032] =>.Microsoft Windows® O58 - SDL:2017/03/20 22:31:12 A . (.Lenovo. - ThinkVantage Active Protection System HID D.) -- C:\WINDOWS\System32\drivers\ApsHM64.sys [46040] =>.Lenovo® O58 - SDL:2017/03/20 22:31:12 A . (.Lenovo. - Shockproof Disk Driver.) -- C:\WINDOWS\System32\drivers\ApsX64.sys [173024] =>.Lenovo® O58 - SDL:2017/09/29 15:41:02 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131992] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (. - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Broadcom Corporation O58 - SDL:2017/09/29 15:41:01 A . (.QLogic Corporation - QLogic Gigabit Ethernet VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [533912] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [141208] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Chelsio Communications - Chelsio iSCSI VMiniport Driver.) -- C:\WINDOWS\System32\drivers\cht4sx64.sys [357272] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1723288] =>.Microsoft Windows® O58 - SDL:2018/02/22 10:42:28 A . (.Citrix Systems, Inc. - Citrix USB Filter Driver.) -- C:\WINDOWS\System32\drivers\ctxusbm.sys [139888] {7E597B6342E02F9C89185480D5AD1694} =>.Citrix Systems, Inc. O58 - SDL:2016/03/29 18:39:34 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\WINDOWS\System32\drivers\ETD.sys [463448] =>.ELAN MICROELECTRONICS CORPORATION® O58 - SDL:2017/09/29 15:41:01 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [63520] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] =>.Intel(R) Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [91648] =>.Intel(R) Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] =>.Intel Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] =>.Intel Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [174592] =>.Intel Corporation O58 - SDL:2017/09/29 15:41:01 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2012/07/09 14:43:12 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [645952] =>.Intel Corporation® O58 - SDL:2017/09/29 15:41:03 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [674200] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:03 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412056] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [526232] =>.Microsoft Windows® O58 - SDL:2017/09/15 01:55:54 A . (.Lenovo. - Lenovo Power Management Driver.) -- C:\WINDOWS\System32\drivers\ibmpmdrv.sys [86912] =>.Lenovo® O58 - SDL:2016/05/04 00:30:46 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3811288] =>.Intel(R) pGFX® O58 - SDL:2015/08/21 12:50:48 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/12/01 21:46:03 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [38896] =>.Intel(R) Wireless Display® O58 - SDL:2018/04/17 15:05:58 A . (...) -- C:\WINDOWS\System32\drivers\lpsport.sys [61304] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2017/09/29 15:41:02 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108064] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [123800] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103320] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82840] =>.Microsoft Windows® O58 - SDL:2007/10/12 02:56:34 A . (.Logitech Inc. - Logitech Video Driver.) -- C:\WINDOWS\System32\drivers\LV561V64.sys [582680] =>.Logitech Inc® O58 - SDL:2007/10/12 03:00:22 A . (.Logitech Inc. - USB Statistic Driver.) -- C:\WINDOWS\System32\drivers\LVUSBS64.sys [50072] =>.Logitech Inc® O58 - SDL:2017/11/29 10:11:26 A . (...) -- C:\WINDOWS\System32\drivers\mbae64.sys [77432] =>.Malwarebytes Corporation® O58 - SDL:2017/09/29 15:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\MegaSas2i.sys [63520] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [842648] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63896] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows® O58 - SDL:2017/11/27 15:50:22 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\System32\drivers\netaapl64.sys [23040] =>.Apple Inc. O58 - SDL:2015/05/04 18:23:46 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETwew00.sys [3352336] =>.Intel Corporation-Wireless Connectivity Solutions® O58 - SDL:2017/09/29 15:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150424] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166296] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58776] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows® O58 - SDL:2015/06/18 16:54:00 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [895256] =>.Realtek Semiconductor Corp® O58 - SDL:2017/09/29 15:41:14 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rteth.sys [59904] =>.Realtek O58 - SDL:2015/08/18 12:38:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4596000] =>.Realtek Semiconductor Corp® O58 - SDL:2015/06/29 08:01:34 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsP2Stor.sys [310528] =>.Realtek Semiconductor Corp® O58 - SDL:2017/09/29 15:41:02 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44952] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31128] =>.Microsoft Windows® O58 - SDL:2016/01/19 23:50:38 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [202032] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group® O58 - SDL:2016/08/23 09:02:00 A . (.Lenovo Group Limited - Power Manager.) -- C:\WINDOWS\System32\drivers\TPPWR64V.SYS [37696] =>.LENOVO® O58 - SDL:2018/04/18 10:45:49 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [28272] =>.Adlice® O58 - SDL:2017/11/27 15:50:32 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc. O58 - SDL:2017/09/29 15:41:02 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166808] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305560] =>.Microsoft Windows® O58 - SDL:2015/11/12 23:50:10 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312® O58 - SDL:2017/09/29 15:41:02 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [32152] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [64920] =>.Microsoft Windows® ---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (2) - 12s O61 - LFC: 2018/04/15 13:55:00 A . (..) -- C:\Users\L530\AppData\Local\Alliums.exe [10752] O61 - LFC: 2018/04/15 13:55:02 A . (..) -- C:\Users\L530\AppData\Local\astra.exe [10752] ---\\ ASSOCIATION Shell Spawning (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value ---\\ MENU DE DÉMARRAGE INTERNET (8) - 0s O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ RECHERCHE D'INFECTION SUR LES NAVIGATEURS (2) - 3s O69 - SBI: SearchScopes [HKCU] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (49) - 1s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [188928] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [188928] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [270848] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1275904] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [984064] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [820224] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [30720] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [144896] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [109056] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [880640] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220160] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [407040] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [387584] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [108544] =>.Microsoft Corporation O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [254976] =>.Microsoft Corporation O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [194560] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1272320] =>.Microsoft Corporation O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [795136] =>.Microsoft Corporation O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\Windows\System32\TokenBroker.dll [1228800] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [46080] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1107968] =>.Microsoft Corporation O83 - Search Svchost Services: Irmon (Irmon) . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [24576] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104960] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [930816] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [491520] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [73216] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [601088] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [307200] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2784256] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1346560] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [613376] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [702464] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57856] =>.Microsoft Corporation O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [779264] =>.Microsoft Corporation O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [284672] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1143808] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [1298944] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [951808] =>.Microsoft Corporation O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [1313792] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [69632] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [387072] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [238080] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [308224] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [170496] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2222592] =>.Microsoft Corporation O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [57856] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [196096] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [132608] =>.Microsoft Corporation ---\\ LISTE DES EXCEPTIONS DU PAREFEU WINDOWS (11) - 3s O87 - FAEL: "TCP Query User{6FD55F79-FCCB-4228-975B-2FCA36F5CE5E}C:\program files\itunes\itunes.exe" [In-None-P6-TRUE] .(.Apple Inc. - iTunes.) -- C:\program files\itunes\itunes.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O87 - FAEL: "UDP Query User{58D85E0B-8A27-4C6F-9668-D5B3F3F9B466}C:\program files\itunes\itunes.exe" [In-None-P17-TRUE] .(.Apple Inc. - iTunes.) -- C:\program files\itunes\itunes.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O87 - FAEL: "{55D6D57F-8B2A-4BFE-B5AD-07BAABB772AB}" [Out-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Lenovo\System Update\uncserver.exe =>.Lenovo® O87 - FAEL: "{72A23BFC-46A8-4DAE-8D1C-C25F9FFF571F}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Lenovo\System Update\uncserver.exe =>.Lenovo® O87 - FAEL: "TCP Query User{9DBBB178-FFEF-4C87-A4EC-FBF0EECAB485}C:\program files\itunes\itunes.exe" [In-None-P6-TRUE] .(.Apple Inc. - iTunes.) -- C:\program files\itunes\itunes.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O87 - FAEL: "UDP Query User{17537A96-089F-4057-92F6-628159901306}C:\program files\itunes\itunes.exe" [In-None-P17-TRUE] .(.Apple Inc. - iTunes.) -- C:\program files\itunes\itunes.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O87 - FAEL: "{7853ED6E-F831-456A-BBE4-28973EC3EE9D}" [In-None-P17-TRUE] .(.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O87 - FAEL: "{95A998AA-F636-44DE-B892-A66BE74FDDF0}" [In-None-P17-TRUE] .(.Apple Inc. - iTunes.) -- C:\Program Files\iTunes\iTunes.exe {31B1B08C8899CA883CE1B0F17D56403B} =>.Apple Inc. O87 - FAEL: "{6493AB32-AE6C-408F-9F4C-82DE5353296C}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Bells\Alliums.exe O87 - FAEL: "{3A821D18-7107-4868-946D-C1E5546381DF}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Bells\astra.exe O87 - FAEL: "{FDFC94D9-CCF7-46B9-A0FE-ADABDE95E1F7}" [In-None-P17-TRUE] .(.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® ---\\ CODES PRODUITS LOGICIELS (57) - 0s O90 - PUC: "000041094500C0400000000000F01FEC" [HKLM] . (.Microsoft Office Visio MUI (French) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109750000000000000000F01FEC" [HKLM] . (.Microsoft Office Visio 2010.) =>.Microsoft Corporation O90 - PUC: "00004109A20000000100000000F01FEC" [HKLM] . (.Microsoft Office Office 64-bit Components 2010.) =>.Microsoft Corporation O90 - PUC: "00004109A200C0400100000000F01FEC" [HKLM] . (.Microsoft Office Shared 64-bit MUI (French) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109C200C0400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing (French) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109E600C0400000000000F01FEC" [HKLM] . (.Microsoft Office Shared MUI (French) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F10010400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Arabic) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F10031400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Dutch) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F10070400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (German) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F10090400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (English) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F100A0C00000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Spanish) 2010.) =>.Microsoft Corporation O90 - PUC: "00004109F100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (French) 2010.) =>.Microsoft Corporation O90 - PUC: "00006109C80000000000000000F01FEC" [HKLM] . (.Office 16 Click-to-Run Extensibility Component.) =>.Microsoft Corporation O90 - PUC: "00006109C800C0400000000000F01FEC" [HKLM] . (.Office 16 Click-to-Run Localization Component.) =>.Microsoft Corporation O90 - PUC: "00006109DD0000000100000000F01FEC" [HKLM] . (.Office 16 Click-to-Run Extensibility Component 64-bit Registration.) =>.Microsoft Corporation O90 - PUC: "00006109F80000000100000000F01FEC" [HKLM] . (.Office 16 Click-to-Run Licensing Component.) =>.Microsoft Corporation O90 - PUC: "007AE03A51550F84880BE999CD53B688" [HKLM] . (.Apple Software Update.) -- C:\WINDOWS\Installer\{A30EA700-5515-48F0-88B0-9E99DC356B88}\Installer.ico =>.Apple Inc. O90 - PUC: "0822444DD05D8EE49AF68E0534F5897B" [HKLM] . (.Citrix Receiver (DV).) O90 - PUC: "1926E8D15D0BCE53481466615F760A7F" [HKLM] . (.Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219.) =>.Microsoft Corporation O90 - PUC: "1B5145184B423D944B5FE06A7ACB141F" [HKLM] . (.Citrix Receiver(Aero).) O90 - PUC: "1D5E3C0FEDA1E123187686FED06E995A" [HKLM] . (.Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.) =>.Microsoft Corporation O90 - PUC: "1FF3F79B03016EE4F83956A90D08E92E" [HKLM] . (.Citrix Authentication Manager.) -- C:\WINDOWS\Installer\{B97F3FF1-1030-4EE6-8F93-659AD0809EE2}\ARPIcon O90 - PUC: "21EE4A31AE32173319EEFE3BD6FDFFE3" [HKLM] . (.Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005.) =>.Microsoft Corporation O90 - PUC: "22BEFC8F7E2A1793E9ADB411DEFE1C58" [HKLM] . (.Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005.) =>.Microsoft Corporation O90 - PUC: "29FAFA7B8C1D0A943BA45BAD9F9C5D6C" [HKLM] . (.UpdateAssistant.) O90 - PUC: "2CF5F3901C5B6054FA2B8D211246E44B" [HKLM] . (..) -- C:\Windows\Installer\{093F5FC2-B5C1-4506-AFB2-D81221644EB4}\ARPPRODUCTICON.exe O90 - PUC: "32BD33F51DD39AF4394025B30870CE4F" [HKLM] . (.Runtime x86 for Power Manager.) -- C:\Windows\Installer\{5F33DB23-3DD1-4FA9-9304-523B8007ECF4}\ARPPRODUCTICON.exe O90 - PUC: "49648A64CE950F8469C4E7679E8F2ADE" [HKLM] . (.Lenovo Active Protection System.) O90 - PUC: "4BEA594979BAED93C82408E6FE57CE7A" [HKLM] . (.Microsoft Visual Studio 2010 Tools for Office Runtime (x64).) =>.Microsoft Corporation O90 - PUC: "55E3652ACEB38283D8765E8E9B8E6B57" [HKLM] . (.Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23026.) =>.Microsoft Corporation O90 - PUC: "5BB3ACE00144B4142B6242F11F1CC20D" [HKLM] . (.Apple Application Support (64 bits).) -- C:\WINDOWS\Installer\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}\WinInstall.ico =>.Apple Inc. O90 - PUC: "68AB67CA3301FFFF7706000000000060" [HKLM] . (.Adobe Acrobat XI Pro.) -- C:\WINDOWS\Installer\{AC76BA86-1033-FFFF-7760-000000000006}\_SC_Acrobat.ico =>.Adobe Inc. O90 - PUC: "68AB67CA408033019195008142622500" [HKLM] . (.Adobe Refresh Manager.) -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824265200}\ARPPRODUCTICON.exe =>.Adobe Inc. O90 - PUC: "68AB67CA7DA76301B744CAF070E41400" [HKLM] . (.Adobe Acrobat Reader DC - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Adobe Inc. O90 - PUC: "6CE0A0D8C3A9F453B9CF6AE169EB8164" [HKLM] . (.Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA.) =>.Microsoft Corporation O90 - PUC: "7E7539EBDD4E22242959C2E0C1021811" [HKLM] . (.Citrix Receiver (Redirection Flash HDX).) O90 - PUC: "8402BF2265ACA724B872C49BA384EBBC" [HKLM] . (.Intel(R) PRO/Wireless Driver.) -- C:\Windows\Installer\{22FB2048-CA56-427A-8B27-4CB93A48BECB}\ARPPRODUCTICON.exe =>.Intel Corporation O90 - PUC: "8BFDDD6597F70844985D521E5FA22BF8" [HKLM] . (.Bonjour.) -- C:\WINDOWS\Installer\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}\Bonjour.ico =>.Microsoft Corporation O90 - PUC: "8E5ED2BCBA03BA443B5FB4F6B2601EC1" [HKLM] . (.Self-Service Plug-in.) -- C:\WINDOWS\Installer\{CB2DE5E8-30AB-44AB-B3F5-4B6F2B06E11C}\plugin.ico O90 - PUC: "93911DB52C2DB1F4AAFAE5EC918A107F" [HKLM] . (.iCloud.) -- C:\WINDOWS\Installer\{5BD11939-D2C2-4F1B-AAAF-5ECE19A801F7}\ARP.ico =>.Apple Inc. O90 - PUC: "94A442ECEA62A3D4CB457DB6FCDFEB2A" [HKLM] . (.Runtime x64 for Power Manager.) O90 - PUC: "96F071321C0410728110000010000000" [HKLM] . (.7-Zip 18.01.) =>.Igor Pavlov O90 - PUC: "99E80CA9B0328e74791254777B1F42AE" [HKLM] . (..) O90 - PUC: "9D4A5577D074B4846A2B4E114FD84D00" [HKLM] . (.Citrix Receiver Inside.) O90 - PUC: "A089CE062ADB6BC44A720BA745894BAC" [HKLM] . (.Google Update Helper.) =>.Google Inc. O90 - PUC: "B928F3451954F2B4FA36E6E6A65EE92B" [HKLM] . (.Apple Application Support (32 bits).) -- C:\WINDOWS\Installer\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}\WinInstall.ico =>.Apple Inc. O90 - PUC: "C1C069EBDAB76ED3B8A16261EF358254" [HKLM] . (.Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23026.) =>.Microsoft Corporation O90 - PUC: "C9335768C821DD4438FBA0D5A6DB2879" [HKLM] . (.Lenovo System Update.) -- C:\Program Files (x86)\Lenovo\System Update\Tvsu.exe O90 - PUC: "CB70E6974340AB24A8356A852865C29B" [HKLM] . (.Online Plug-in.) O90 - PUC: "CEFDF50A77340E9428BC6B1D83E698AD" [HKLM] . (.Apple Mobile Device Support.) -- C:\WINDOWS\Installer\{A05FDFEC-4377-49E0-82CB-B6D1386E89DA}\Installer.ico =>.Apple Inc. O90 - PUC: "DD95E3F1ECD73014598275AD34313421" [HKLM] . (.Update for Windows 10 for x64-based Systems (KB4023057).) =>.Microsoft Corporation O90 - PUC: "E063965150C5FE64FB3C3A862FD5711E" [HKLM] . (.Citrix Web Helper.) -- C:\WINDOWS\Installer\{1569360E-5C05-46EF-BFC3-A368F25D17E1}\ARPIcon O90 - PUC: "EFBF267822E7B5D4AA3368086C18BA6D" [HKLM] . (.Intel® PROSet/Wireless WiFi Software.) -- C:\Windows\Installer\{8762FBFE-7E22-4D5B-AA33-8680C681ABD6}\ARPPRODUCTICON.exe =>.Intel Corporation O90 - PUC: "F0492E30415E03C47AAA3D83595C88F9" [HKLM] . (.Citrix Receiver (USB).) -- C:\WINDOWS\Installer\{03E2940F-E514-4C30-A7AA-D33895C5889F}\ProductIcon O90 - PUC: "F36CFB0B70AEE91469B0F32BDED50D2B" [HKLM] . (.Dolby Digital Plus Advanced Audio.) -- C:\WINDOWS\Installer\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}\DolbyBlue.exe O90 - PUC: "F887AADD6E25AE44DA8B2938B711FB62" [HKLM] . (.Metric Collection SDK.) O90 - PUC: "F9582F9D3070A9B45BD2B2D2948B5E0F" [HKLM] . (.iTunes.) -- C:\WINDOWS\Installer\{D9F2859F-0703-4B9A-B52D-2B2D49B8E5F0}\Installer.ico =>.Apple Inc. ---\\ PACKAGES WINDOWS INSTALLER (39) - 28s [MD5.57E3A5060DB51FCC59EFC98777D97C07] [WIS][2018/04/17 15:16:39] (.Igor Pavlov - 7-Zip Package.) -- C:\WINDOWS\Installer\125975.msi [1320448] =>.Igor Pavlov [MD5.F0EE2E7F283866A2A0FEA9BE2D12A979] [WIS][2018/04/15 20:05:38] (.Google Inc. - Google Update Helper.) -- C:\WINDOWS\Installer\218a31.msi [40960] =>.Google Inc. [MD5.7F9BBDB60B98B6AB6A09446AFADA65CB] [WIS][2018/03/01 13:57:06] (.Adobe Systems Incorporated - Adobe ARM Installer.) -- C:\WINDOWS\Installer\233d5c0c.msi [884736] =>.Adobe Systems Incorporated [MD5.FB261C151ECD4FCF50CC16EC15680514] [WIS][2018/04/04 11:16:01] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\24356c9d.msi [53149696] =>.Apple Inc. [MD5.56733A7CCD955F7BCD161521C6F03B93] [WIS][2018/04/04 11:16:40] (.Apple Inc. - Apple Application Support Installer.) -- C:\WINDOWS\Installer\2435711f.msi [48005120] =>.Apple Inc. [MD5.0D54B7E528B43CAFA7860F6752745234] [WIS][2018/04/04 11:16:41] (.Apple Inc. - Apple Software Update Installer.) -- C:\WINDOWS\Installer\2435730a.msi [3612672] =>.Apple Inc. [MD5.7BA18C679924A77872090F595273896B] [WIS][2018/04/04 11:19:57] (.Apple Inc. - Apple Mobile Device Support Installer.) -- C:\WINDOWS\Installer\24357345.msi [14045184] =>.Apple Inc. [MD5.B24BF4FAACAEC1E123873F1DA675404F] [WIS][2018/04/04 11:22:12] (.Apple Inc. - iTunes Installer.) -- C:\WINDOWS\Installer\243589c1.msi [165818368] =>.Apple Inc. [MD5.3583CF14A107D01760225532538CE334] [WIS][2018/04/04 11:44:38] (.Apple Inc. - iCloud for Windows installer.) -- C:\WINDOWS\Installer\24358ab1.msi [42807296] =>.Apple Inc. [MD5.86E2B390629665FBC20E06DFBF01A48F] [WIS][2017/08/28 15:35:10] (.Apple Inc. - [ProductName] Installer.) -- C:\WINDOWS\Installer\2b61ca3.msi [2732032] =>.Apple Inc. [MD5.BD379D9BD326AEE35A3A8D23E0B56896] [WIS][2013/02/10 12:47:26] (.Adobe Systems Incorporated - Installers.) -- C:\WINDOWS\Installer\33edbbb.msi [9826304] =>.Adobe Systems Incorporated [MD5.FA661588F6F7CA82A5A7D7934CBD9833] [WIS][2015/08/18 12:12:26] (.Dolby Laboratories Inc - Dolby Digital Plus Advanced Audio.) -- C:\WINDOWS\Installer\34289.msi [33976320] =>.Dolby Laboratories Inc [MD5.F8A6730069A9503A351B548131944DEC] [WIS][2016/12/04 22:58:57] (.Lenovo Group Limited - Metric Collection SDK Redistributable.) -- C:\WINDOWS\Installer\39cd3ce.msi [2157568] =>.Lenovo Group Limited [MD5.4A1E591F073597EB70D45DACA4BE2EC5] [WIS][2016/05/11 12:39:08] (.InstallShield.) -- C:\WINDOWS\Installer\39cd3d9.msi [5964800] =>.InstallShield [MD5.B67027D43A53E5BEA9027D9763758303] [WIS][2016/05/11 12:39:08] (.InstallShield.) -- C:\WINDOWS\Installer\39cd3dd.msi [6565376] =>.InstallShield [MD5.81232803D2CB30D66A7CAE247D88F15F] [WIS][2016/12/04 22:59:27] (.Lenovo - Intelligent Sensing.) -- C:\WINDOWS\Installer\39cd3e2.msi [8044544] =>.Lenovo [MD5.3A76A98A7145592E68946769824BC041] [WIS][2016/06/06 16:43:22] (.Intel Corporation - Intel® WiFi.) -- C:\WINDOWS\Installer\39cd3e6.msi [27205632] =>.Intel Corporation [MD5.8C769BA7582D8C6DFE58DC630480940B] [WIS][2016/04/05 05:19:24] (.Intel Corporation - Intel® WiFi.) -- C:\WINDOWS\Installer\39cd3ea.msi [49684480] =>.Intel Corporation [MD5.1DB97E9257D3EBF92186A05C6D4B783C] [WIS][2018/02/22 09:39:38] (.Citrix Systems, Inc. - Citrix Receiver Inside.) -- C:\WINDOWS\Installer\55c981b.msi [3489792] =>.Citrix Systems, Inc. [MD5.E6D01FD87FABFBA7EAD6FAE18E08827E] [WIS][2018/02/22 11:15:52] (.Citrix Systems, Inc. - Online Plug-in.) -- C:\WINDOWS\Installer\55c9820.msi [19890176] =>.Citrix Systems, Inc. [MD5.BB35AF2A4322C97550AA1A8789BF10F8] [WIS][2018/02/22 11:17:54] (.Citrix Systems, Inc. - Citrix Receiver(USB).) -- C:\WINDOWS\Installer\55c9824.msi [4681728] =>.Citrix Systems, Inc. [MD5.0073A4665558CB9B3AAA98061226B44C] [WIS][2018/02/22 11:08:40] (.Citrix Systems, Inc. - Citrix Desktop Viewer Installer.) -- C:\WINDOWS\Installer\55c9828.msi [1859584] =>.Citrix Systems, Inc. [MD5.0AB1740597D36B6E5818B2FAFC815F0B] [WIS][2018/02/22 11:03:58] (.Citrix Systems, Inc. - Citrix Receiver (HDX Flash Redirection).) -- C:\WINDOWS\Installer\55c982c.msi [2326528] =>.Citrix Systems, Inc. [MD5.F775FFD72B1FD38D1B968AE1C8786EA7] [WIS][2018/02/22 11:18:00] (.Citrix Systems, Inc. - Citrix Receiver(Aero).) -- C:\WINDOWS\Installer\55c9830.msi [946176] =>.Citrix Systems, Inc. [MD5.8B6825B86371BB581A6B459EF629776F] [WIS][2018/02/22 09:12:50] (.Citrix Systems, Inc. - Citrix Authentication Manager for Windows.) -- C:\WINDOWS\Installer\55c9834.msi [4890624] =>.Citrix Systems, Inc. [MD5.988102C54514ECF51E36F220A707707A] [WIS][2018/02/22 09:48:06] (.Citrix Systems, Inc. - Self-service Plug-in.) -- C:\WINDOWS\Installer\55c9838.msi [5840896] =>.Citrix Systems, Inc. [MD5.97534FD984CEFE01E165B0B23118D99A] [WIS][2018/02/22 09:48:10] (.Citrix Systems, Inc. - Citrix Web Helper.) -- C:\WINDOWS\Installer\55c983c.msi [385024] =>.Citrix Systems, Inc. [MD5.F395E5FBC3417E9419CF622AD2E8B4BE] [WIS][2017/11/23 18:14:33] (.Lenovo - Active Protection System.) -- C:\WINDOWS\Installer\5c22c.msi [13586944] =>.Lenovo [MD5.1504667BA3C10D841C0B76B6412FAFB5] [WIS][2015/03/17 10:41:29] (.Adobe Systems Incorporated.) -- C:\WINDOWS\Installer\b4291.msi [2805760] =>.Adobe Systems Incorporated [MD5.F767152C881F505C5BBAC71A825C1263] [WIS][2017/02/21 14:33:51] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\12b271.msp [12845056] =>.Adobe Systems, Incorporated [MD5.4B436CCB79A1D51BF61E44378C2F5DAB] [WIS][2017/08/28 18:41:00] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\20f63.msp [100036608] =>.Adobe Systems, Incorporated [MD5.1804509512CA08400FBF29C502540400] [WIS][2017/08/07 10:20:42] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\230bef.msp [100061184] =>.Adobe Systems, Incorporated [MD5.4BBEA0BE6385A9829864B8904A30B95F] [WIS][2017/01/19 12:29:04] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\28e36d.msp [75456512] =>.Adobe Systems, Incorporated [MD5.3617A09ABC822D955214EBE86A991CF3] [WIS][2017/11/29 12:42:28] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\a433f25.msp [1355776] =>.Adobe Systems, Incorporated [MD5.CECF2A7991F74C858965EA972A43CE3F] [WIS][2017/04/10 07:34:32] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\bd505.msp [57815040] =>.Adobe Systems, Incorporated [MD5.82F476D2A7125BB7EBF5A2A657BAB293] [WIS][2017/11/13 06:26:16] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\da06d.msp [23506944] =>.Adobe Systems, Incorporated [MD5.972530C7A778C1D06998DCC02CE480DA] [WIS][2017/11/13 06:23:50] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\f3c2646.msp [259031040] =>.Adobe Systems, Incorporated [MD5.A9095FC652E0273E10F1D9481C59067D] [WIS][2018/02/23 15:25:19] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\f4fab6f.msp [1343488] =>.Adobe Systems, Incorporated [MD5.A58EAEAA86B7D4FA1891CA2EEDDCA3DD] [WIS][2018/02/12 16:26:08] (.Adobe Systems, Incorporated.) -- C:\WINDOWS\Installer\f5a003.msp [103362560] =>.Adobe Systems, Incorporated ---\\ FEATURE CONTROLE. (3) - 0s [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:Alliums.exe [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:astra.exe [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:CCleaner64.exe ---\\ SCAN ADDITIONNEL (2) - 1s C:\Users\L530\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mkodjoohamdfedlibbkppjpbniakjjnf =>.SUP.BrowserExtension C:\Users\L530\AppData\Local\Google\Chrome\User Data\Default\File System\000 =>.SUP.Temporary.Chrome ---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (2) - 0s https://nicolascoolman.eu/2017/10/05/sup-browserextension/ =>.SUP.BrowserExtension https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Chrome ~ Unselected Options: ~ End of the scan, 8294 items in 02mn03s (1376)(0)