~ ZHPFix v2019.8.20.123 by Nicolas Coolman (2019/08/20) ~ Run by barro (Administrator) (10/09/2019 13:02:35) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Certificate ZHPFix: Legal ~ State version : Version OK ~ Report : C:\Users\barro\Desktop\ZHPFix.txt ~ Quarantine : HKCU\SOFTWARE\ZHP\ZHPFix\Quarantine\ ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) Windows 10 Home, 64-bit (Build 16299) ---\\ SCRIPT DE L'UTILISATEUR. (169) script zhpfix SysRestore ShortcutFix EmptyClsid Emptytemp EmptyFlash EmptyPrefetch FirewallRaz O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016] [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468] P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/ O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d HKLM\SOFTWARE\DriverSupport HKLM\SOFTWARE\Segurazo HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 HKLM\SOFTWARE\WOW6432Node\Segurazo HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKCU\SOFTWARE\DriverSupport HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424] O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632] O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344] O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112] O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112] O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376] O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584] O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService c:\program files\bytefence\ByteFenceService.exe HKLM\SYSTEM\CurrentControlSet\Services\DSAO C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC C:\ProgramData\Segurazo\SegurazoIC.exe HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD C:\Program Files (x86)\Segurazo\SegurazoKD.sys HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc C:\Program Files (x86)\Segurazo\SegurazoService.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD C:\ProgramData\Segurazo\SegurazoWD.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder C:\Program Files (x86)\BabylonToolbar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo C:\ProgramData\ByteFence C:\ProgramData\Driver Support C:\ProgramData\OneSafe PC Cleaner C:\ProgramData\PCTonics.com C:\ProgramData\Segurazo C:\Users\barro\AppData\Roaming\PC Speed Maximizer C:\Users\barro\AppData\Roaming\PCTonics.com C:\Users\barro\AppData\Roaming\segurazoclient C:\Users\barro\AppData\Roaming\SegurazoUninstaller C:\Users\barro\AppData\Local\PC_Drivers_Headquarters C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 C:\Users\barro\AppData\Roaming\inst.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.) O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.) SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.) SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.) SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.) SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.) SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.) SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.) SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.) SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.) SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.) SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.) O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0script zhpfix SysRestore ShortcutFix EmptyClsid Emptytemp EmptyFlash EmptyPrefetch FirewallRaz O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016] [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468] P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/ O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d HKLM\SOFTWARE\DriverSupport HKLM\SOFTWARE\Segurazo HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 HKLM\SOFTWARE\WOW6432Node\Segurazo HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKCU\SOFTWARE\DriverSupport HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424] O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632] O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344] O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112] O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112] O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376] O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584] O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService c:\program files\bytefence\ByteFenceService.exe HKLM\SYSTEM\CurrentControlSet\Services\DSAO C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC C:\ProgramData\Segurazo\SegurazoIC.exe HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD C:\Program Files (x86)\Segurazo\SegurazoKD.sys HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc C:\Program Files (x86)\Segurazo\SegurazoService.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD C:\ProgramData\Segurazo\SegurazoWD.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder C:\Program Files (x86)\BabylonToolbar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo C:\ProgramData\ByteFence C:\ProgramData\Driver Support C:\ProgramData\OneSafe PC Cleaner C:\ProgramData\PCTonics.com C:\ProgramData\Segurazo C:\Users\barro\AppData\Roaming\PC Speed Maximizer C:\Users\barro\AppData\Roaming\PCTonics.com C:\Users\barro\AppData\Roaming\segurazoclient C:\Users\barro\AppData\Roaming\SegurazoUninstaller C:\Users\barro\AppData\Local\PC_Drivers_Headquarters C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 C:\Users\barro\AppData\Roaming\inst.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.) O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.) SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.) SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.) SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.) SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.) SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.) SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.) SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.) SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.) SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.) SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.) O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} . (...) -- (.not file.) O4 - GS\Desktop [ASPNET]: Aquarium Lab.lnk . (.SeaApple Software - .) C:\Program Files (x86)\AquariumLab\ ---\\ LOGICIEL. (5) DESINSTALLER : BabylonToolbar DESINSTALLER : ByteFence DESINSTALLER : Segurazo DESINSTALLER : SpeedOptimizer DESINSTALLER : WarThunder ---\\ SERVICE. (24) ABSENT Service: ByteFenceService [ByteFenceService.exe] ABSENT Service: DSAO [DriverSupportAOsvc.exe] ABSENT Service: SegurazoIC [SegurazoIC.exe] ABSENT Service: SegurazoSvc [SegurazoService.exe] ABSENT Service: SEGURAZOKD [SegurazoKD.sys] ABSENT Service: SegurazoWD [SegurazoWD.exe] ABSENT Service: QHProtected [No File found] ABSENT Service: RdnaoFlSvc [No File found] ABSENT Service: ADExchange [No File found] ABSENT Service: AscFileFilter [No File found] ABSENT Service: AscRegistryFilter [No File found] ABSENT Service: cpuz145 [No File found] ABSENT Service: epp [No File found] ABSENT Service: GEARAspiWDM [No File found] ABSENT Service: GoogleChromeElevationService1d55ef55ed3f552 [No File found] ABSENT Service: IUFileFilter [No File found] ABSENT Service: IUProcessFilter [No File found] ABSENT Service: IURegistryFilter [No File found] ABSENT Service: Iviaspi [No File found] ABSENT Service: LdBoxDrv [No File found] ARRETÉ : HKLM\SYSTEM\CurrentControlSet\Services\Samsung Pen Service [No File found] ABSENT Service: SecDrv [No File found] ABSENT Service: SlimWareServices [No File found] ABSENT Service: UCBrowserSvc [No File found] ---\\ TÂCHE PLANIFIÉE. (0) ---\\ NAVIGATEUR INTERNET. (4) REMPLACÉ Donnée Internet Explorer: http://search.babylon.com/ [HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page] ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs] ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs\\Tabs] ABSENT Donnée Internet Explorer: http://search.babylon.com/ [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search\\SearchAssistant] ---\\ EXPLORATEUR ( Dossiers, Fichiers ). (60) SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{03203F1C-2B08-4764-7350-6F4C9BB8B794} SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{515E6D62-7976-151A-212E-3D32C9C6E5EA} SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A} SUPPRIMÉ Dossier EmptyCLSID: C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\stsrvl.exe SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\aria-debug-12112.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\cmdinstall.exe_19-09-09_19.49.55.log.7z DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015_000_vcRuntimeMinimum_x64.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_amd64_20190909223015_001_vcRuntimeAdditional_x64.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120_000_vcRuntimeMinimum_x86.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\dd_vcredist_x86_20190909223120_001_vcRuntimeAdditional_x86.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4c.LOG DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4d.LOG DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4e.LOG DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\MSIfca4f.LOG DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\sa.E97CB0A1.LogitechCameraController_wd885nsp30hay_1__.Public.InstallAgent.dat DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\StructuredQuery.log DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\3846C88B.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\GLC1032.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\GLC97D.tmp SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\is-085JG.tmp SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\is-EGHQP.tmp DEPLACÉ Fichier Temp*: C:\Users\barro\AppData\Local\Temp\is-N0QLH.tmp SUPPRIMÉ Redémarrage Fichier Temp^: C:\Users\barro\AppData\Local\Temp\nstC278.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL12DD.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL199D.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL21C9.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL2984.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL2B92.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL38F.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL4B52.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL5082.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL6097.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL6C5E.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL8B34.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URL9A72.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLA96E.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLAF93.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLB935.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLC8BE.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\URLD846.tmp DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF150A718454FDFD40.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF19D6620DF65EC19E.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF3530E6BBD94F102A.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF3E6AE98B295A387A.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF4F265249F7994524.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF5B7786E92D2DDDC5.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF65FA0227E610971B.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF6FC6218E7FF6B1B3.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF7B2C3C354860A166.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DF80513810B21ABCC5.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFAB05A86285693293.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFB5528BFED3112CC6.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFBEA6AE2DE780B680.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFD6CAE07974EE5BCF.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFF1D6392E386A115D.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\~DFF2C8895335128003.TMP DEPLACÉ Fichier Temp: C:\Users\barro\AppData\Local\Temp\wimboot.txt ---\\ REGISTRE ( Clés, Valeurs, Données ). (46) ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe] ABSENT Clé: HKLM\SOFTWARE\dtc-pr ABSENT Clé: HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan ABSENT Clé: HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan ABSENT Clé: HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} ABSENT Clé: HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe ABSENT Clé: HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService ABSENT Clé: HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d ABSENT Clé: HKLM\SOFTWARE\DriverSupport ABSENT Clé: HKLM\SOFTWARE\Segurazo ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 ABSENT Clé: HKLM\SOFTWARE\WOW6432Node\Segurazo ABSENT Clé: HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 ABSENT Clé: HKCU\SOFTWARE\DriverSupport ABSENT Clé: HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 ABSENT Clé: HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport ABSENT Clé CMH: HKLM64\Software\Classes\*\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\CLSID\BFD98515-CD74-48A4-98E2-13D209E3EE4F} ABSENT Clé CMH: HKLM64\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt ABSENT Clé CMH: HKLM64\Software\Classes\Directory\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt ABSENT Clé CMH: HKLM64\Software\Classes\Folder\ShellEx\ContextMenuHandlers\SegurazoShellExtension.FileContextMenuExt ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS ABSENT Clé Tracing: HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\DSAO ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc ABSENT Clé: HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer ABSENT Clé: HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder ABSENT Clé: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS ABSENT Clé Tracing: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 ABSENT Valeur Run: HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\ [C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.)] ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\Intel(R) TPM Provisioning Service ABSENT Clé Service: HKLM\SYSTEM\CurrentControlSet\Services\Samsung Pen Service SUPPRIMÉ Valeur: babylontoolbar [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32] ---\\ COMMANDE. (4) ~ EmptyCSID: Dossiers CLSID vides supprimés (4) ~ EmptyTemp: Dossier Local temp partiellement vidé (56) ~ EmptyFlash: Dossier FlashPlayer vide. ~ EmptyPrefetch: Fichiers Prefetcher supprimés (261) ---\\ NON TRAITÉ. (7) script zhpfix SysRestore ShortcutFix EmptyClsid Emptytemp EmptyFlash EmptyPrefetch FirewallRaz O23 - Service: ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC - ByteFence Anti-Malware.) - c:\program files\bytefence\ByteFenceService.exe O23 - Service: Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP - Driver Support Active Optimization Service.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe O23 - Service: SegurazoIC (SegurazoIC) . (.Digital Communications Inc - Segurazo Engine.) - C:\ProgramData\Segurazo\SegurazoIC.exe O23 - Service: SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc - Segurazo Service.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Auto [05/03/2019] [ 161608] ByteFence Anti-Malware Service (ByteFenceService) . (.Byte Technologies LLC.) - c:\program files\bytefence\ByteFenceService.exe SR - Auto [22/10/2016] [ 2033104] Driver Support AO Service (DSAO) . (.PC Drivers HeadQuarters LP.) - C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe SR - Auto [18/03/2019] [ 542120] SegurazoIC (SegurazoIC) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoIC.exe SR - System [18/03/2019] [ 81648] Segurazo Kernel Driver (SEGURAZOKD) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoKD.sys SR - Auto [18/03/2019] [ 179624] SegurazoSvc (SegurazoSvc) . (.Digital Communications Inc.) - C:\Program Files (x86)\Segurazo\SegurazoService.exe SR - Disabl [18/03/2019] [ 38312] SegurazoWD (SegurazoWD) . (.Digital Communications Inc.) - C:\ProgramData\Segurazo\SegurazoWD.exe O4 - HKLM\..\Wow6432Node\Run: [babylontoolbar] . (.Babylon Ltd. - .) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [542120] [PID.13016] [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe [179624] [PID.13468] P2 - EXT: (.Babylon - Babylon.) -- C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://search.babylon.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/ O4 - GS\Desktop [ASPNET]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [ASPNET]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [ASPNET]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [ASPNET]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\Desktop [barro]: ByteFence Anti-Malware.lnk . (.Byte Technologies LLC - ByteFence Anti-Malware.) C:\Program Files (x86)\ByteFence\ByteFence.exe O4 - GS\Desktop [barro]: Clean My Registry.lnk . (.Smart PC Solutions - Clean My Registry software keeps Windows Re.) C:\Program Files (x86)\Smart PC Solutions\Clean My Registry\CleanMyRegistry.exe O4 - GS\Desktop [barro]: Fix My Registry.lnk . (.Smart PC Solutions - Fix My Registry software keeps Windows Regi.) C:\Program Files (x86)\Smart PC Solutions\Fix My Registry\FixMyRegistry.exe O4 - GS\Desktop [barro]: SpeedOptimizer.lnk . (.SpeedBit Ltd - SpeedOptimizer 3.) C:\Program Files (x86)\SpeedOptimizer\SPO.exe O4 - GS\CommonDesktop [Public]: Driver Tonic.lnk . (.drivertonics.com - .) C:\Program Files (x86)\Driver Tonic\dtn.exe O4 - GS\CommonDesktop [Public]: FL Studio 20.lnk . (...) C:\PC Speed Maximizer\FL Studio 20\FL64.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]:babylontoolbar O42 - Logiciel: Babylon toolbar - (..) [HKLM][64Bits] -- BabylonToolbar O42 - Logiciel: ByteFence Anti-Malware - (.Byte Technologies LLC.) [HKLM][64Bits] -- ByteFence O42 - Logiciel: Segurazo Antivirus - (.Digital Communications Inc.) [HKLM][64Bits] -- Segurazo O42 - Logiciel: SpeedOptimizer - (.SpeedBit Ltd..) [HKLM][64Bits] -- SpeedOptimizer O42 - Logiciel: WarThunder - (..) [HKLM][64Bits] -- WarThunder HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService HKLM\SOFTWARE\3830b8f7-b576-56dd-bf74-62045c78f20d HKLM\SOFTWARE\DriverSupport HKLM\SOFTWARE\Segurazo HKLM\SOFTWARE\WOW6432Node\74960ee0-e8d2-5963-b927-5dc66c4cc8e8 HKLM\SOFTWARE\WOW6432Node\Segurazo HKCU\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKCU\SOFTWARE\DriverSupport HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\59079acb-34a2-5644-8b18-af99c519c5e8 HKU\S-1-5-21-1299005772-1972386348-4184414552-1001\SOFTWARE\DriverSupport O43 - CFD: 07/09/2019 - [] D -- C:\Program Files\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\BabylonToolbar O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\Smart PC Solutions O43 - CFD: 06/09/2019 - [] D -- C:\Program Files (x86)\SpeedOptimizer O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\ByteFence O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\Driver Support O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\OneSafe PC Cleaner O43 - CFD: 07/09/2019 - [] D -- C:\ProgramData\PCTonics.com O43 - CFD: 05/09/2019 - [] D -- C:\ProgramData\Segurazo O43 - CFD: 06/09/2019 - [] D -- C:\ProgramData\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PC Speed Maximizer O43 - CFD: 07/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\PCTonics.com O43 - CFD: 05/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\segurazoclient O43 - CFD: 05/09/2019 - [0] DC -- C:\Users\barro\AppData\Roaming\SegurazoUninstaller O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\SpeedBit O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Local\PC_Drivers_Headquarters O43 - CFD: 06/09/2019 - [] DC -- C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support O108 - CMH1: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH2: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH4: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O108 - CMH6: SegurazoShellExtension.FileContextMenuExt [64Bits] - {BFD98515-CD74-48A4-98E2-13D209E3EE4F} . (.Digital Communications Inc - Segurazo Shell Extension.) -- C:\Program Files (x86)\Segurazo\SegurazoShell64_v1069.dll O61 - LFC: 2019/09/06 08:31:25 A . (..) -- C:\ProgramData\Driver Support\Driver Support\DDRM\dca58b32999d40cdbd65db766adaccfc.exe [15837424] O61 - LFC: 2019/09/06 08:30:32 AC . (.Byte Technologies LLC.) -- C:\Users\barro\Downloads\bytefence-installer-needle-5.4.1.18.exe [14885632] O61 - LFC: 2019/09/06 11:20:54 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\cleanregistry.exe [2711344] O61 - LFC: 2019/09/06 11:20:19 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry (1).exe [2463112] O61 - LFC: 2019/09/06 11:19:27 AC . (.Smart PC Solutions.) -- C:\Users\barro\Downloads\fixregistry.exe [2463112] O61 - LFC: 2019/09/05 21:58:04 AC . (.Digital Communications Inc ©.) -- C:\Users\barro\Downloads\SegurazoSetup.exe [18389376] O61 - LFC: 2019/09/06 11:10:30 AC . (..) -- C:\Users\barro\Downloads\spo3.exe [2492584] O69 - SBI: SearchScopes [HKCU] [64Bits]{1F096B29-E9DA-4D64-8D63-936BE7762CC5} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com/ HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Microsoft\Tracing\SegurazoWD_RASAPI32 HKLM\SYSTEM\CurrentControlSet\Services\ByteFenceService c:\program files\bytefence\ByteFenceService.exe HKLM\SYSTEM\CurrentControlSet\Services\DSAO C:\Program Files (x86)\driver support\svc\DriverSupportAOsvc.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoIC C:\ProgramData\Segurazo\SegurazoIC.exe HKLM\SYSTEM\CurrentControlSet\Services\SEGURAZOKD C:\Program Files (x86)\Segurazo\SegurazoKD.sys HKLM\SYSTEM\CurrentControlSet\Services\SegurazoSvc C:\Program Files (x86)\Segurazo\SegurazoService.exe HKLM\SYSTEM\CurrentControlSet\Services\SegurazoWD C:\ProgramData\Segurazo\SegurazoWD.exe C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe C:\Users\barro\AppData\Roaming\Mozilla\Firefox\Profiles\xa5m2t1t.default-release\extensions\ffxtlbr@babylon.com HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpeedOptimizer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WarThunder C:\Program Files (x86)\BabylonToolbar C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Tonic C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Segurazo C:\ProgramData\ByteFence C:\ProgramData\Driver Support C:\ProgramData\OneSafe PC Cleaner C:\ProgramData\PCTonics.com C:\ProgramData\Segurazo C:\Users\barro\AppData\Roaming\PC Speed Maximizer C:\Users\barro\AppData\Roaming\PCTonics.com C:\Users\barro\AppData\Roaming\segurazoclient C:\Users\barro\AppData\Roaming\SegurazoUninstaller C:\Users\barro\AppData\Local\PC_Drivers_Headquarters C:\Users\barro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Driver Support HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5} HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFenceService_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\DriverSupport_RASMANCS HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SegurazoWD_RASAPI32 C:\Users\barro\AppData\Roaming\inst.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. HKLM\SOFTWARE\dtc-pr HKLM\SOFTWARE\Classes\*\shell\ByteFence File Scan HKLM\SOFTWARE\Classes\Directory\Shell\ByteFence Folder Scan HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe HKLM\System\CurrentControlSet\Services\EventLog\Application\ByteFenceService O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (. - .) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe (.Not File.) O23 - Service: QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) O23 - Service: (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] ArcSoft Exchange Service (ADExchange) . (...) - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe (.not file.) SR - Demand [00/00/0000] [ 0] AscFileFilter (AscFileFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] AscRegistryFilter (AscRegistryFilter) . (...) - C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] cpuz145 (cpuz145) . (...) - C:\Windows\temp\cpuz145\cpuz145_x64.sys (.not file.) SR - System [00/00/0000] [ 0] epp (epp) . (...) - \E:\idées cuvion 8 - usb safely remove (aka zentimo basic) portable + placard objets confisqués musées, a le brulog, etc\confiscation emsisoft caus' wa miss dessert de widen 5\bin64\epp.sys (.not file.) SR - Demand [00/00/0000] [ 0] GEAR ASPI Filter Driver (GEARAspiWDM) . (...) - C:\Windows\System32\DRIVERS\GEARAspiWDM.sys (.not file.) SS - Demand [00/00/0000] [ 0] Google Chrome Elevation Service (GoogleChromeElevationService1d55ef55ed3f552) . (...) - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Intel(R) TPM Provisioning Service (Intel(R) TPM Provisioning Service) . (...) - C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe (.not file.) SR - Demand [00/00/0000] [ 0] IUFileFilter (IUFileFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IUProcessFilter (IUProcessFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUProcessFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IURegistryFilter (IURegistryFilter) . (...) - C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegistryFilter.sys (.not file.) SR - Demand [00/00/0000] [ 0] IVI ASPI Shell (Iviaspi) . (...) - C:\Windows\System32\drivers\iviaspi.sys (.not file.) SR - Auto [00/00/0000] [ 0] (LdBoxDrv) . (...) - C:\Program Files\dnplayerext2\LdBoxDrv.sys (.not file.) SR - Auto [00/00/0000] [ 0] QHProtected (QHProtected) . (...) - C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe (.not file.) SR - Auto [00/00/0000] [ 0] (RdnaoFlSvc) . (...) - C:\Program Files (x86)\rnamfler\naofsvc.exe (.not file.) SR - Disabl [00/00/0000] [ 0] Samsung Pen Service (Samsung Pen Service) . (...) - C:\Windows\SysWOW64\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe (.not file.) SR - Auto [00/00/0000] [ 0] SecDrv (SecDrv) . (...) - C:\Windows\System32\drivers\SECDRV.SYS (.not file.) SS - Demand [00/00/0000] [ 0] SlimWare Services (SlimWareServices) . (...) - C:\Program Files\SlimWare Utilities\Services\SlimWare.Services.exe (.not file.) SR - Disabl [00/00/0000] [ 0] UC Browser Service (UCBrowserSvc) . (...) - G:\WinThruster\UCBrowser\Application\UCService.exe (.not file.) O3 - Toolbar: 0x07000000EE0300007E69791EC59CD111A83F00C04FC99D612001000000000000EF0300007E69791EC59CD111A83F00C04FC99D612101000000000000 - [HKCU]{710EB7A1-45ED-11D0-924A-0script zhpfix SysRestore ShortcutFix FirewallRaz [MD5.63A49B2EEDD9708688527E67AD47241B] - (.Digital Communications Inc - Segurazo Engine.) -- C:\ProgramData\Segurazo\SegurazoIC.exe [MD5.EC24D9EAB14C2121DBA18E02D18A5FAF] - (.Digital Communications Inc - Segurazo Service.) -- C:\Program Files (x86)\Segurazo\SegurazoService.exe NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. ***** ~ Fin de rapport terminé en 00h00mn21s