~ ZHPDiag v2019.9.30.146 Par Nicolas Coolman (2019/09/30) ~ Démarré par Admin (Administrator) (2019/10/03 13:03:18) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Certificate ZHPDiag: Legal ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\Admin\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\Admin\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 7 Professional, 32-bit (Build 7600) =>.Microsoft Corporation ---\\ NAVIGATEURS INTERNET (3) - 0s ~ GCIE: Google Chrome v75.0.3770.100 ~ MFIE: Mozilla Thunderbird 52.4.0 (x86 fr) ~ MSIE: Internet Explorer v8.0.7600.16385 ---\\ INFORMATIONS SUR LES PRODUITS WINDOWS (4) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : KO Windows Activation Technologies : KO ---\\ LOGICIELS DE PROTECTION (2) - 0s Kaspersky Internet Security v18.0.0.405 (Protection) Kaspersky Secure Connection v18.0.0.405 (Protection) ---\\ SURVEILLANCE LOGICIEL (1) - 0s ~ Adobe Reader 6.0 (Surveillance) ---\\ INFORMATIONS SUR LE SYSTÈME (6) - 0s ~ Operating System: x86 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 32-bit ~ Boot mode: Normal (Normal boot) Total RAM: 3556.7 MB (36% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 29 GB (18%) free of 155 GB : OK =>.Disk Space ---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s ~ Computer Name: ADMIN-PC ~ User Name: Admin ~ Logged in as Administrator ---\\ ÉNUMÉRATION DES UNITÉS DE STOCKAGE (4) - 0s ~ Drive C: has 29 GB free of 155 GB (System) ~ Drive D: has 0 GB free of 0 GB ~ Drive E: has 104 GB free of 154 GB ~ Drive F: has 123 GB free of 166 GB ---\\ ÉTAT DU CENTRE DE SÉCURITÉ WINDOWS (11) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ RECHERCHE PARTICULIÈRE DE FICHIERS GÉNÉRIQUES (25) - 1s [MD5.15BC38A7492BEFE831966ADB477CF76F] - 14/07/2009 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2613248] =>.Microsoft Corporation [MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation [MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation [MD5.0D874F3BC751CC2198AF2E6783FB8B35] - 14/07/2009 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [977920] =>.Microsoft Corporation [MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - 14/07/2009 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [285696] =>.Microsoft Corporation [MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - 14/07/2009 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193024] =>.Microsoft Corporation [MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [269824] =>.Microsoft Corporation [MD5.D8714A5FB3141F8226D16861F20C5AC4] - 14/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation [MD5.DDC040FDB01EF1712A6B13E52AFB104C] - 14/07/2009 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] =>.Microsoft Corporation [MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows® [MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] =>.Microsoft Corporation [MD5.BA6E70AA0E6091BC39DE29477D866A77] - 14/07/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] =>.Microsoft Corporation [MD5.8E09E52EE2E3CEB199EF3DD99CF9E3FB] - 14/07/2009 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] =>.Microsoft Corporation [MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - 14/07/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] =>.Microsoft Corporation [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] =>.Microsoft Corporation [MD5.F4A054BE78AF7F410129C4B64B07DC9B] - 14/07/2009 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123392] =>.Microsoft Corporation [MD5.DD52A733BF4CA5AF84562A5E2F963B91] - 14/07/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] =>.Microsoft Corporation [MD5.3795DCD21F740EE799FB7223234215AF] - 14/07/2009 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1210432] =>.Microsoft Windows® [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] =>.Microsoft Corporation [MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - 14/07/2009 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133120] =>.Microsoft Corporation [MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation [MD5.CB39E896A2A83702D1737BFD402B3542] - 14/07/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74240] =>.Microsoft Corporation [MD5.58DF9D2481A56EDDE167E51B334D44FD] - 14/07/2009 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245328] =>.Microsoft Windows® ---\\ LISTE DES SERVICES (Non désactivés) (71) - 8s O23 - Service: C:\Windows\System32\inetsrv\iisres.dll (AppHostSvc) . (.Microsoft Corporation - IIS Application Host Helper Service.) - C:\Windows\System32\inetsrv\apphostsvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\audiosrv.dll (AudioEndpointBuilder) . (.Microsoft Corporation - Service Audio Windows.) - C:\Windows\System32\audiosrv.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\audiosrv.dll (Audiosrv) . (.Microsoft Corporation - Service Audio Windows.) - C:\Windows\System32\audiosrv.dll =>.Microsoft Corporation O23 - Service: Kaspersky Anti-Virus Service 18.0.0 (AVP18.0.0) . (.AO Kaspersky Lab - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe =>.Kaspersky Lab® O23 - Service: C:\Windows\System32\BFE.DLL (BFE) . (.Microsoft Corporation - Moteur de filtrage de base.) - C:\Windows\System32\BFE.DLL =>.Microsoft Corporation O23 - Service: C:\Windows\System32\qmgr.dll (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) - C:\Windows\System32\qmgr.dll =>.Microsoft Corporation O23 - Service: Microsoft .NET Framework NGEN v4.0.30319_X86 (clr_optimization_v4.0.30319_32) . (.Microsoft Corporation - .NET Runtime Optimization Service.) - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe =>.Microsoft Corporation® O23 - Service: C:\Windows\System32\cryptsvc.dll (CryptSvc) . (.Microsoft Corporation - Services de chiffrement.) - C:\Windows\System32\cryptsvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\cscsvc.dll (CscService) . (.Microsoft Corporation - DLL du service CSC.) - C:\Windows\System32\cscsvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\dhcpcore.dll (Dhcp) . (.Microsoft Corporation - Service client DHCP.) - C:\Windows\System32\dhcpcore.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\dnsapi.dll (Dnscache) . (.Microsoft Corporation - Service de résolution du cache DNS.) - C:\Windows\System32\dnsrslvr.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\efssvc.dll (EFS) . (.Microsoft Corporation - Local Security Authority Process.) - C:\Windows\System32\lsass.exe =>.Microsoft Corporation O23 - Service: C:\Windows\System32\wevtsvc.dll (eventlog) . (.Microsoft Corporation - Processus hôte pour les services Windows.) - C:\Windows\System32\svchost.exe =>.Microsoft Corporation O23 - Service: @comres.dll,-2450 (EventSystem) . (.Microsoft Corporation - COM+.) - C:\Windows\System32\es.dll =>.Microsoft Corporation O23 - Service: FileZilla Server FTP server (FileZilla Server) . (.FileZilla Project - FileZilla Server.) - C:\Program Files\FileZilla Server\FileZilla Server.exe =>.Tim Kosse® O23 - Service: @gpapi.dll,-112 (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) - C:\Windows\System32\gpsvc.dll =>.Microsoft Corporation O23 - Service: Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) =>.Google Inc. O23 - Service: Sentinel LDK License Manager (hasplms) . (.SafeNet, Inc. - License Manager.) - C:\Windows\System32\hasplms.exe =>.SafeNet, Inc.® O23 - Service: hMailServer (hMailServer) . (.hMailServer - hMailServer.) - F:\hMailServer\Bin\hMailServer.exe O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX® O23 - Service: C:\Windows\System32\IKEEXT.DLL (IKEEXT) . (.Microsoft Corporation - Extension IKE.) - C:\Windows\System32\IKEEXT.DLL =>.Microsoft Corporation O23 - Service: C:\Windows\System32\IPBusEnum.dll (IPBusEnum) . (.Microsoft Corporation - DLL du service énumérateur de bus IP PnP-X.) - C:\Windows\System32\ipbusenum.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\iphlpsvc.dll (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) - C:\Windows\System32\iphlpsvc.dll =>.Microsoft Corporation O23 - Service: KMS-R@1n (KMS-R@1n) . (...) - C:\Windows\KMS-R@1n.exe O23 - Service: Kaspersky Secure Connection Service 2.0.0 (KSDE2.0.0) . (.AO Kaspersky Lab - Kaspersky Secure Connection.) - C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe =>.Kaspersky Lab® O23 - Service: C:\Windows\System32\srvsvc.dll (LanmanServer) . (.Microsoft Corporation - DLL du service Serveur.) - C:\Windows\System32\srvsvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\wkssvc.dll (LanmanWorkstation) . (.Microsoft Corporation - DLL du service Station de travail.) - C:\Windows\System32\wkssvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\lmhsvc.dll (lmhosts) . (.Microsoft Corporation - DLL des services de transport NetBIOS sur T.) - C:\Windows\System32\lmhsvc.dll =>.Microsoft Corporation O23 - Service: Main Service (Main Service) . (...) - C:\Program Files\MachinerData\507b312cfc7f630c066a467a3df97238.exe O23 - Service: Mise à jour automatique - Index Education (MajIndexEducationService) . (.Index Education - .) - C:\Program Files\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe =>.INDEX EDUCATION SASU® O23 - Service: C:\Windows\System32\mmcss.dll (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) - C:\Windows\System32\mmcss.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\FirewallAPI.dll (MpsSvc) . (.Microsoft Corporation - Service de protection Microsoft.) - C:\Windows\System32\MPSSVC.dll =>.Microsoft Corporation O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files\Nero\Update\NASvc.exe =>.Nero AG® O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) . (.Nitro PDF Software - Nitro PDF Spool Service.) - C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe =>.Nitro PDF Software® O23 - Service: C:\Windows\System32\nlasvc.dll (NlaSvc) . (.Microsoft Corporation - Connaissance des emplacements réseau 2.) - C:\Windows\System32\nlasvc.dll =>.Microsoft Corporation O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\System32\NLSSRV32.EXE =>.Nitro PDF Software® O23 - Service: C:\Windows\System32\nsisvc.dll (nsi) . (.Microsoft Corporation - Serveur RPC de l’interface du magasin résea.) - C:\Windows\System32\nsisvc.dll =>.Microsoft Corporation O23 - Service: OCS Inventory Service (OCS Inventory Service) . (.OCS Inventory NG - OCS Inventory NG Service.) - C:\Program Files\OCS Inventory Agent\OcsService.exe =>.OCS Inventory NG O23 - Service: odoo-server-8.0 8.0 (odoo-server-8.0) . (...) - C:\Program Files\Odoo 8.0-20171010\service\win32_service.exe O23 - Service: C:\Windows\System32\umpnpmgr.dll (PlugPlay) . (.Microsoft Corporation - Service mode utilisateur de Plug-and-Play.) - C:\Windows\System32\umpnpmgr.dll =>.Microsoft Corporation O23 - Service: PostgreSQL_For_Odoo - PostgreSQL Server 9.3 (PostgreSQL_For_Odoo) . (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) - C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\pg_ctl.exe =>.PostgreSQL Global Development Group O23 - Service: C:\Windows\System32\umpo.dll (Power) . (.Microsoft Corporation - Service d’alimentation en mode utilisateur.) - C:\Windows\System32\umpo.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\profsvc.dll (ProfSvc) . (.Microsoft Corporation - ProfSvc.) - C:\Windows\System32\profsvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\RpcEpMap.dll (RpcEptMapper) . (.Microsoft Corporation - Mappeur de point de terminaison RPC.) - C:\Windows\System32\RpcEpMap.dll =>.Microsoft Corporation O23 - Service: @oleres.dll,-5010 (RpcSs) . (.Microsoft Corporation - Distributed COM Services.) - C:\Windows\System32\rpcss.dll =>.Microsoft Corporation O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe =>.Realtek Semiconductor Corp.® O23 - Service: C:\Windows\System32\schedsvc.dll (Schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) - C:\Windows\System32\schedsvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\Sens.dll (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) - C:\Windows\System32\Sens.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\shsvcs.dll (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) - C:\Windows\System32\shsvcs.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\spoolsv.exe,-1 (Spooler) . (.Microsoft Corporation - Application sous-système spouleur.) - C:\Windows\System32\spoolsv.exe =>.Microsoft Corporation O23 - Service: C:\Windows\System32\sppsvc.exe,-101 (sppsvc) . (.Microsoft Corporation - Service de la plateforme de protection logi.) - C:\Windows\System32\sppsvc.exe =>.Microsoft Corporation O23 - Service: C:\Windows\System32\wiaservc.dll (StiSvc) . (.Microsoft Corporation - Service de périphériques d’images fixes.) - C:\Windows\System32\wiaservc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\sysmain.dll (SysMain) . (.Microsoft Corporation - Hôte de service Superfetch.) - C:\Windows\System32\sysmain.dll =>.Microsoft Corporation O23 - Service: TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 12.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH® O23 - Service: C:\Windows\System32\themeservice.dll (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) - C:\Windows\System32\themeservice.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\dwm.exe,-2000 (UxSms) . (.Microsoft Corporation - Microsoft User Experience Session Managemen.) - C:\Windows\System32\uxsms.dll =>.Microsoft Corporation O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc. O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\System32\vmnetdhcp.exe =>.VMware, Inc.® O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe =>.VMware, Inc.® O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\System32\vmnat.exe =>.VMware, Inc.® O23 - Service: VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.® O23 - Service: VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® O23 - Service: VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc. - VMware Converter Service.) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe =>.VMware O23 - Service: C:\Windows\System32\inetsrv\iisres.dll (W3SVC) . (.Microsoft Corporation - IIS Web Admin Service.) - C:\Windows\System32\inetsrv\iisw3adm.dll =>.Microsoft Corporation O23 - Service: WIFIService (WIFIService) . (. {6AD32BE325F129C1992E833B078BEE9F}. - .) - C:\ProgramData\WIFIService\WIFIService.exe {6AD32BE325F129C1992E833B078BEE9F}. O23 - Service: C:\Windows\System32\wbem\WMIsvc.dll (Winmgmt) . (.Microsoft Corporation - WMI.) - C:\Windows\System32\wbem\WMIsvc.dll =>.Microsoft Corporation O23 - Service: Windows Live ID Sign-in Assistant (wlidsvc) . (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE =>.Microsoft Corporation® O23 - Service: C:\Windows\System32\wscsvc.dll (wscsvc) . (.Microsoft Corporation - Service Centre de sécurité de Windows.) - C:\Windows\System32\wscsvc.dll =>.Microsoft Corporation O23 - Service: C:\Windows\System32\SearchIndexer.exe,-103 (WSearch) . (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - C:\Windows\System32\SearchIndexer.exe =>.Microsoft Corporation O23 - Service: C:\Windows\System32\WUDFSvc.dll (wudfsvc) . (.Microsoft Corporation - Windows Driver Foundation - Service d’infra.) - C:\Windows\System32\WUDFSvc.dll =>.Microsoft Corporation ---\\ SERVICES NON MICROSOFT (SR=Démarré,SS=Stoppé) (119) - 17s SR - Demand [14/07/2009] [ 422976] (adp94xx) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\adp94xx.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 297552] (adpahci) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\adpahci.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 146512] (adpu320) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\adpu320.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 70720] (aic78xx) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\djsvs.sys =>.Microsoft Windows® SR - Auto [14/09/2016] [ 450920] aksfridge (aksfridge) . (.SafeNet, Inc..) - C:\Windows\System32\drivers\aksfridge.sys =>.SafeNet, Inc.® SR - Demand [14/09/2016] [ 266056] Sentinel HASP Key (akshasp) . (.SafeNet, Inc..) - C:\Windows\System32\drivers\akshasp.sys =>.SafeNet, Inc.® SR - Demand [14/09/2016] [ 315216] Sentinel USB Key (aksusb) . (.SafeNet, Inc..) - C:\Windows\System32\drivers\aksusb.sys =>.SafeNet, Inc.® SR - Demand [14/07/2009] [ 14400] (aliide) . (.Acer Laboratories Inc..) - C:\Windows\System32\drivers\aliide.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 79952] (amdsata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdsata.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 159312] (amdsbs) . (.AMD Technologies Inc..) - C:\Windows\System32\drivers\amdsbs.sys =>.Microsoft Windows® SR - Boot [14/07/2009] [ 23616] (amdxata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdxata.sys =>.Microsoft Windows® SR - Demand [16/08/2016] [ 84144] AM USB Stroage Driver (AmUStor) . (.Alcor Micro, Corp..) - C:\Windows\System32\drivers\AmUStor.sys =>.AlcorMicro, Corp.® SR - Demand [14/07/2009] [ 76368] (arc) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\arc.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 86608] (arcsas) . (.Adaptec, Inc..) - C:\Windows\System32\drivers\arcsas.sys =>.Microsoft Windows® SR - Auto [24/01/2017] [ 354672] Kaspersky Anti-Virus Service 18.0.0 (AVP18.0.0) . (.AO Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe =>.Kaspersky Lab® SR - Demand [14/07/2009] [ 430080] Broadcom NetXtreme II VBD (b06bdrv) . (.Broadcom Corporation.) - C:\Windows\System32\drivers\bxvbdx.sys =>.Broadcom Corporation SR - Demand [14/07/2009] [ 229888] Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 (b57nd60x) . (.Broadcom Corporation.) - C:\Windows\System32\drivers\b57nd60x.sys =>.Broadcom Corporation SR - Demand [15/03/2011] [ 54384] Modified Clusters Tracking Driver (bmdrvr) . (.VMware, Inc..) - C:\Windows\System32\drivers\bmdrvr.sys =>.VMware, Inc.® SR - Demand [14/07/2009] [ 13568] Brother USB Mass-Storage Lower Filter Driver (BrFiltLo) . (.Brother Industries, Ltd..) - C:\Windows\System32\drivers\BrFiltLo.sys =>.Brother Industries, Ltd. SR - Demand [14/07/2009] [ 5248] Brother USB Mass-Storage Upper Filter Driver (BrFiltUp) . (.Brother Industries, Ltd..) - C:\Windows\System32\drivers\BrFiltUp.sys =>.Brother Industries, Ltd. SR - Demand [14/07/2009] [ 272128] Brother MFC Serial Port Interface Driver (WDM) (Brserid) . (.Brother Industries Ltd..) - C:\Windows\System32\drivers\BrSerId.sys =>.Brother Industries Ltd. SR - Demand [14/07/2009] [ 62336] Brother WDM Serial driver (BrSerWdm) . (.Brother Industries Ltd..) - C:\Windows\System32\drivers\BrSerWdm.sys =>.Brother Industries Ltd. SR - Demand [14/07/2009] [ 12160] Brother MFC USB Fax Only Modem (BrUsbMdm) . (.Brother Industries Ltd..) - C:\Windows\System32\drivers\BrUsbMdm.sys =>.Brother Industries Ltd. SR - Demand [14/07/2009] [ 11904] Brother MFC USB Serial WDM Driver (BrUsbSer) . (.Brother Industries Ltd..) - C:\Windows\System32\drivers\BrUsbSer.sys =>.Brother Industries Ltd. SS - Demand [01/04/2019] [ 73200] @C:\Program Files\Google\Chrome Remote Desktop\74.0.3729.56 (chromoting) . (.Google Inc..) - C:\Program Files\Google\Chrome Remote Desktop\74.0.3729.56\remoting_host.exe =>.Google LLC® SR - Demand [14/07/2009] [ 15952] (cmdide) . (.CMD Technology, Inc..) - C:\Windows\System32\drivers\cmdide.sys =>.Microsoft Windows® SR - Boot [26/12/2016] [ 176864] AO Kaspersky Lab Cryptographic Module x86 (56 bit) (cm_km) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\cm_km.sys =>.Kaspersky Lab® SS - Demand [12/05/2016] [ 280696] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\System32\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX® SR - Demand [00/00/0000] [ 0] cpuz134 (cpuz134) . (...) - C:\Users\Admin\AppData\Local\Temp\cpuz134\cpuz134_x32.sys (.not file.) SR - Demand [14/07/2009] [ 3100160] Broadcom NetXtreme II 10 GigE VBD (ebdrv) . (.Broadcom Corporation.) - C:\Windows\System32\drivers\evbdx.sys =>.Broadcom Corporation SR - Demand [14/07/2009] [ 453712] (elxstor) . (.Emulex.) - C:\Windows\System32\drivers\elxstor.sys =>.Microsoft Windows® SR - Auto [22/09/2016] [ 857776] FileZilla Server FTP server (FileZilla Server) . (.FileZilla Project.) - C:\Program Files\FileZilla Server\FileZilla Server.exe =>.Tim Kosse® SS - Demand [18/06/2019] [ 954352] Google Chrome Elevation Service (GoogleChromeElevationService) . (.Google LLC.) - C:\Program Files\Google\Chrome\Application\75.0.3770.100\elevation_service.exe =>.Google LLC® SR - Auto [00/00/0000] [ 0] Service Google Update (gupdate) (gupdate) . (...) - C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) =>.Google Inc. SS - Demand [00/00/0000] [ 0] Service Google Update (gupdatem) (gupdatem) . (...) - C:\Program Files\Google\Update\GoogleUpdate.exe (.not file.) =>.Google Inc. SR - Auto [14/09/2016] [ 627048] hardlock (hardlock) . (.SafeNet, Inc..) - C:\Windows\System32\drivers\hardlock.sys =>.SafeNet, Inc.® SR - Auto [14/09/2016] [ 4647248] Sentinel LDK License Manager (hasplms) . (.SafeNet, Inc..) - C:\Windows\System32\hasplms.exe =>.SafeNet, Inc.® SR - Auto [29/08/2011] [ 32496] VMware hcmon (hcmon) . (.VMware, Inc..) - C:\Windows\System32\drivers\hcmon.sys =>.VMware, Inc.® SR - Demand [14/07/2009] [ 26624] Hauppauge Consumer Infrared Receiver (hcw85cir) . (.Hauppauge Computer Works, Inc..) - C:\Windows\System32\drivers\hcw85cir.sys =>.Hauppauge Computer Works, Inc. SR - Auto [24/05/2016] [ 4519936] hMailServer (hMailServer) . (.hMailServer.) - F:\hMailServer\Bin\hMailServer.exe SR - Demand [14/07/2009] [ 67152] (HpSAMD) . (.Hewlett-Packard Company.) - C:\Windows\System32\drivers\HpSAMD.sys =>.Microsoft Windows® SR - System [17/10/2016] [ 23840] HWiNFO32/64 Kernel Driver (HWiNFO32) . (.REALiX(tm).) - C:\Windows\System32\drivers\HWiNFO32.SYS =>.Martin Malik - REALiX® SR - Boot [20/05/2011] [ 461592] Intel AHCI Controller (iaStor) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStor.sys =>.Intel Corporation® SR - Boot [29/05/2015] [ 503048] (iaStorA) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorA.sys =>.Intel Corporation - Rapid Storage Technology® SR - Boot [29/05/2015] [ 27376] (iaStorF) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorF.sys =>.Intel Corporation - Rapid Storage Technology® SR - Demand [14/07/2009] [ 332352] (iaStorV) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorV.sys =>.Microsoft Windows® SR - Demand [12/05/2016] [ 3031504] (igfx) . (.Intel Corporation.) - C:\Windows\System32\drivers\igdkmd32.sys =>.Intel(R) pGFX® SR - Auto [12/05/2016] [ 274040] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX® SR - Demand [14/07/2009] [ 41040] (iirsp) . (.Intel Corp./ICP vortex GmbH.) - C:\Windows\System32\drivers\iirsp.sys =>.Microsoft Windows® SR - Demand [25/01/2017] [ 4329984] Service for Realtek HD Audio (WDM) (IntcAzAudAddService) . (.Realtek Semiconductor Corp..) - C:\Windows\System32\drivers\RTKVHDA.sys =>.Realtek Semiconductor Corp.® SR - Boot [01/10/2016] [ 165296] kl1 (kl1) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\kl1.sys =>.Kaspersky Lab® SR - Boot [24/12/2017] [ 62184] Kaspersky Lab klbackupdisk (klbackupdisk) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klbackupdisk.sys =>.Kaspersky Lab® SR - System [24/12/2017] [ 97512] Kaspersky Lab klbackupflt (klbackupflt) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klbackupflt.sys =>.Kaspersky Lab® SR - Auto [31/05/2016] [ 69000] kldisk (kldisk) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\kldisk.sys =>.Kaspersky Lab® SR - Demand [24/12/2017] [ 164056] Kaspersky Lab Kernel DLL (klflt) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klflt.sys =>.Kaspersky Lab® SR - System [24/12/2017] [ 229592] Kaspersky Lab service driver (klhk) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klhk.sys =>.Kaspersky Lab® SR - System [24/12/2017] [ 835264] Kaspersky Lab Driver (KLIF) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klif.sys =>.Kaspersky Lab® SR - System [11/10/2016] [ 49744] Kaspersky Anti-Virus NDIS 6 Filter (KLIM6) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klim6.sys =>.Kaspersky Lab® SR - Demand [23/12/2016] [ 50400] Kaspersky Lab KLKBDFLT (klkbdflt) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klkbdflt.sys =>.Kaspersky Lab® SR - Demand [07/12/2016] [ 51424] Kaspersky Lab KLMOUFLT (klmouflt) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klmouflt.sys =>.Kaspersky Lab® SR - System [24/12/2017] [ 45552] Kaspersky Lab format recognizer driver (klpd) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klpd.sys =>.Kaspersky Lab® SR - Demand [07/06/2016] [ 48056] Kaspersky Security Data Escort Adapter (kltap) . (.The OpenVPN Project.) - C:\Windows\System32\drivers\kltap.sys =>.AnchorFree Inc® SR - System [24/12/2017] [ 75760] kltdi (kltdi) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\kltdi.sys =>.Kaspersky Lab® SR - System [24/12/2017] [ 120544] KLwtp - WFP callout traffic inspector (Klwtp) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\klwtp.sys =>.Kaspersky Lab® SR - Auto [11/12/2018] [ 23040] KMS-R@1n (KMS-R@1n) . (...) - C:\Windows\KMS-R@1n.exe SR - System [24/12/2017] [ 165088] kneps (kneps) . (.AO Kaspersky Lab.) - C:\Windows\System32\drivers\kneps.sys =>.Kaspersky Lab® SR - Auto [24/01/2017] [ 354672] Kaspersky Secure Connection Service 2.0.0 (KSDE2.0.0) . (.AO Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe =>.Kaspersky Lab® SR - Demand [14/07/2009] [ 95824] (LSI_FC) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_fc.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 89168] (LSI_SAS) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 54864] (LSI_SAS2) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas2.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 96848] (LSI_SCSI) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_scsi.sys =>.Microsoft Windows® SR - Auto [24/06/2019] [ 2981176] Main Service (Main Service) . (...) - C:\Program Files\MachinerData\507b312cfc7f630c066a467a3df97238.exe SR - Auto [30/07/2019] [ 3241064] Mise à jour automatique - Index Education (MajIndexEducationService) . (.Index Education.) - C:\Program Files\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe =>.INDEX EDUCATION SASU® SR - Demand [14/07/2009] [ 30800] (megasas) . (.LSI Corporation.) - C:\Windows\System32\drivers\megasas.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 235584] (MegaSR) . (.LSI Corporation, Inc..) - C:\Windows\System32\drivers\MegaSR.sys =>.Microsoft Windows® SR - Demand [29/03/2016] [ 157752] Intel(R) Management Engine Interface (MEI) . (.Intel Corporation.) - C:\Windows\System32\drivers\TeeDriver.sys =>.Intel Corporation® SS - Demand [15/07/2019] [ 217552] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [15/07/2014] [ 786256] @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) . (.Nero AG.) - C:\Program Files\Nero\Update\NASvc.exe =>.Nero AG® SR - Demand [14/07/2009] [ 44624] (nfrd960) . (.IBM Corporation.) - C:\Windows\System32\drivers\nfrd960.sys =>.Microsoft Windows® SR - Auto [19/12/2012] [ 196616] NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) . (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe =>.Nitro PDF Software® SR - Auto [19/12/2012] [ 70152] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\System32\NLSSRV32.EXE =>.Nitro PDF Software® SR - Demand [14/07/2009] [ 117312] (nvraid) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvraid.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 142416] (nvstor) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvstor.sys =>.Microsoft Windows® SR - Auto [08/01/2014] [ 38912] OCS Inventory Service (OCS Inventory Service) . (.OCS Inventory NG.) - C:\Program Files\OCS Inventory Agent\OcsService.exe =>.OCS Inventory NG SR - Auto [10/10/2017] [ 23552] odoo-server-8.0 8.0 (odoo-server-8.0) . (...) - C:\Program Files\Odoo 8.0-20171010\service\win32_service.exe SR - Auto [22/07/2014] [ 76800] PostgreSQL_For_Odoo - PostgreSQL Server 9.3 (PostgreSQL_For_Odoo) . (.PostgreSQL Global Development Group.) - C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\pg_ctl.exe =>.PostgreSQL Global Development Group SR - Demand [14/07/2009] [ 1383488] (ql2300) . (.QLogic Corporation.) - C:\Windows\System32\drivers\ql2300.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 106064] (ql40xx) . (.QLogic Corporation.) - C:\Windows\System32\drivers\ql40xx.sys =>.Microsoft Windows® SR - Auto [25/01/2017] [ 276992] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe =>.Realtek Semiconductor Corp.® SR - Demand [17/01/2017] [ 783360] Realtek 8167 NT Driver (RTL8167) . (.Realtek.) - C:\Windows\System32\drivers\Rt86win7.sys =>.Realtek Semiconductor Corp.® SR - Demand [08/09/2011] [ 363112] Realtek 8169 NT Driver (RTL8169) . (.Realtek.) - C:\Windows\System32\drivers\Rtlh86.sys =>.Realtek Semiconductor Corp® SR - Demand [14/07/2009] [ 40016] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\Windows\System32\drivers\sisraid2.sys =>.Microsoft Windows® SR - Demand [14/07/2009] [ 77888] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\Windows\System32\drivers\sisraid4.sys =>.Microsoft Windows® SR - Auto [05/04/2011] [ 5120] SSPORT (SSPORT) . (.Samsung Electronics.) - C:\Windows\System32\drivers\SSPORT.SYS =>.SAMSUNG Electronics SR - Demand [14/07/2009] [ 21072] (stexstor) . (.Promise Technology.) - C:\Windows\System32\drivers\stexstor.sys =>.Microsoft Windows® SR - Auto [28/09/2018] [10803440] TeamViewer 12 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH® SR - System [18/10/2016] [ 787232] VirtualBox Service (VBoxDrv) . (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxDrv.sys =>.Oracle Corporation® SR - System [18/10/2016] [ 113904] VirtualBox NDIS 6.0 Miniport Service (VBoxNetAdp) . (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxNetAdp6.sys =>.Oracle Corporation® SR - System [18/10/2016] [ 178352] VirtualBox NDIS6 Bridged Networking Service (VBoxNetLwf) . (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxNetLwf.sys =>.Oracle Corporation® SR - System [18/10/2016] [ 124320] VirtualBox USB Monitor Driver (VBoxUSBMon) . (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxUSBMon.sys =>.Oracle Corporation® SR - Demand [14/07/2009] [ 16976] (viaide) . (.VIA Technologies, Inc..) - C:\Windows\System32\drivers\viaide.sys =>.Microsoft Windows® SR - Auto [13/11/2011] [ 79872] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc. SR - Boot [08/08/2011] [ 98928] VMware VMCI Bus Driver (vmci) . (.VMware, Inc..) - C:\Windows\System32\drivers\vmci.sys =>.VMware, Inc.® SR - Demand [13/11/2011] [ 16624] VMware Virtual Ethernet Adapter Driver (VMnetAdapter) . (.VMware, Inc..) - C:\Windows\System32\drivers\vmnetadapter.sys =>.VMware, Inc.® SR - Auto [13/11/2011] [ 36464] VMware Bridge Protocol (VMnetBridge) . (.VMware, Inc..) - C:\Windows\System32\drivers\vmnetbridge.sys =>.VMware, Inc.® SR - Auto [14/11/2011] [ 354416] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\System32\vmnetdhcp.exe =>.VMware, Inc.® SR - Auto [14/11/2011] [ 25712] VMware Network Application Interface (VMnetuserif) . (.VMware, Inc..) - C:\Windows\System32\drivers\vmnetuserif.sys =>.VMware, Inc.® SR - Demand [29/08/2011] [ 31280] VMware USB Client Driver (vmusb) . (.VMware, Inc..) - C:\Windows\System32\drivers\vmusb.sys =>.VMware, Inc.® SR - Auto [29/08/2011] [ 665200] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe =>.VMware, Inc.® SR - Auto [14/11/2011] [ 433264] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\System32\vmnat.exe =>.VMware, Inc.® SR - Auto [19/08/2011] [ 423536] VMware vCenter Converter Standalone Agent (vmware-converter-agent) . (.VMware, Inc..) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc.® SR - Auto [19/08/2011] [ 423536] VMware vCenter Converter Standalone Server (vmware-converter-server) . (.VMware, Inc..) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® SR - Auto [19/08/2011] [ 423536] VMware vCenter Converter Standalone Worker (vmware-converter-worker) . (.VMware, Inc..) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc.® SR - Auto [13/11/2011] [11839488] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe =>.VMware SR - Auto [14/11/2011] [ 55664] VMware vmx86 (vmx86) . (.VMware, Inc..) - C:\Windows\System32\drivers\vmx86.sys =>.VMware, Inc.® SR - Demand [14/07/2009] [ 141904] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\Windows\System32\drivers\vsmraid.sys =>.Microsoft Windows® SR - Auto [12/07/2011] [ 22768] Vstor2 MntApi 1.0 Driver (shared) (vstor2-mntapi10-shared) . (.VMware, Inc..) - C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys =>.VMware, Inc.® SR - Auto [30/01/2010] [ 17280] Virtual Usb Bus Enumerator (vusbbus) . (.DumpTeam 2010.) - C:\Windows\System32\drivers\vusbbus.sys =>.DumpTeam 2010 SR - Auto [24/06/2019] [ 243416] WIFIService (WIFIService) . (. {6AD32BE325F129C1992E833B078BEE9F}..) - C:\ProgramData\WIFIService\WIFIService.exe {6AD32BE325F129C1992E833B078BEE9F}. ---\\ TÂCHES PLANIFIÉES EN AUTOMATIQUE (Registre) (18) - 4s O38 - TASK: {46709E55-DF1D-433B-9DE3-CE3444E344E1}[\R@1n-KMS\Office15ProPlus] - (...) -- wmic [0] =>HackTool.WinActivator O38 - TASK: {4D041FD3-A64B-497D-837B-DA4B1180BCDF}[\DRPNPS] - (...) -- SCHTASKS [0] O38 - TASK: {5F446B46-F249-485A-92EF-98CF4164EDE7}[\{569ABCCA-5263-42A5-B9E2-D959FA37CBEC}] - (.PC SOFT - INSTALL.EXE (Amorce d'installation).) -- C:\WinDev 17\Exemples\Exemples complets\WD Gestion de commandes\Install_Windows 32\INSTALL.EXE [208896] =>.PC SOFT O38 - TASK: {7254913D-F05B-4C7B-8E52-FE8E7C28FE6C}[\{1A85693D-B362-4828-9760-740A26CBC687}] - (.TeamViewer - .) -- C:\Users\Admin\Downloads\Blizz_Setup (1).exe [14391424] =>.TeamViewer O38 - TASK: {9B1364ED-C3C8-409E-A833-20E957A71C1F}[\Canon\OIPPESP\Canon OIP Product Extended Survey Program] - (.CANON INC. - PESPController.) -- C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1257608] =>.Canon Inc. O38 - TASK: {A1E89ABA-C423-4AE2-8C82-53A5449EB905}[\8776m8189m6623M3737] - (...) -- C:\ProgramData\8776m8189m6623M3737\8776m8189m6623M3737.dll [3149312] O38 - TASK: {C3BD5253-3D80-4B95-8768-0EEC5EFDC859}[\{E2604710-702B-4DC1-B142-CA9E32432D8A}] - (.PC SOFT - WinDev17.exe (WinDev 17).) -- C:\WinDev 17\Programmes\WinDev17.exe [4253696] =>.PC SOFT O38 - TASK: {DE4160D7-BF2F-4D9D-A281-42A88AAEB6CC}[\Nero\Nero Info] - (.Nero AG - Nero Info.) -- C:\Program Files\Common Files\Nero\Nero Info\NeroInfo.exe [3684176] =>.Nero AG O38 - TASK: {E463E543-A06E-48CA-877C-A8434A93FDC5}[\DriverPack Notifier] - (.Driver PackSolution - Software and Drivers.) -- C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe [258560] =>.Driver PackSolution C:\Windows\System32\Tasks\R@1n-KMS\Office15ProPlus - (...) -- wmic [path OfficeSoftwareProtectionProduct where (ID="b3] =>HackTool.WinActivator C:\Windows\System32\Tasks\DRPNPS - (...) -- SCHTASKS [/Delete ./Delete] C:\Windows\System32\Tasks\{569ABCCA-5263-42A5-B9E2-D959FA37CBEC} - (.PC SOFT.) -- C:\WinDev 17\Exemples\Exemples complets\WD Gestion de commandes\Install_Windows 32\INSTALL.EXE [C:\WinDev 17\Exemples\Exemples complets\WD Gestion de commandes\Install_Windows 32\INSTALL.EXE] =>.PC SOFT C:\Windows\System32\Tasks\{1A85693D-B362-4828-9760-740A26CBC687} - (.TeamViewer.) -- C:\Users\Admin\Downloads\Blizz_Setup (1).exe [C:\Users\Admin\Downloads\Blizz_Setup (1).exe] =>.TeamViewer C:\Windows\System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program - (.CANON INC..) -- C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [/Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml] =>.Canon Inc. C:\Windows\System32\Tasks\8776m8189m6623M3737 - (...) -- C:\ProgramData\8776m8189m6623M3737\8776m8189m6623M3737.dll [C:\ProgramData\8776m8189m6623M3737\8776m8189m6623M3737.dll] C:\Windows\System32\Tasks\{E2604710-702B-4DC1-B142-CA9E32432D8A} - (.PC SOFT.) -- C:\WinDev 17\Programmes\WinDev17.exe [C:\WinDev 17\Programmes\WinDev17.exe] =>.PC SOFT C:\Windows\System32\Tasks\Nero\Nero Info - (.Nero AG.) -- C:\Program Files\Common Files\Nero\Nero Info\NeroInfo.exe [-shedul] =>.Nero AG C:\Windows\System32\Tasks\DriverPack Notifier - (.Driver PackSolution.) -- C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe [] =>.Driver PackSolution ---\\ APPLICATIONS LANCÉES AU DÉMARRAGE DU SYSTÈME (26) - 5s O4 - HKLM\..\Run: [SunJavaUpdateSched] . (. - .) -- C:\Program Files\Java\jre1.8.0_45\bin\jusched.exe (.Not File.) =>.SUP.Orphan O4 - HKLM\..\Run: [CNAP3 Launcher] . (.CANON INC. - Canon Printer Status Window Launcher.) -- C:\Windows\System32\spool\drivers\w32x86\3\CNAP3LAK.exe =>.CANON INC.® O4 - HKLM\..\Run: [vmware-tray] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.® O4 - HKLM\..\Run: [FileZilla Server Interface] . (.FileZilla Project - FileZilla Server.) -- C:\Program Files\FileZilla Server\FileZilla Server Interface.exe =>.Tim Kosse® O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.® O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe =>Riskware.QuickTime O4 - HKLM\..\Run: [Canon Toner Status] . (.CANON INC. - .) -- C:\Program Files\Canon\OIPTonerStatus\CnTnrStsTask.exe =>.CANON INC.® O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated® O4 - HKLM\..\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe =>.Adobe Systems Incorporated® O4 - HKLM\..\Run: [Multitimer] . (.2017 - MutliTimer.) -- C:\Program Files\Multitimer\Multitimer.exe O4 - HKCU\..\Run: [OfficeSyncProcess] . (. - .) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (.Not File.) =>.SUP.Orphan O4 - HKCU\..\Run: [GrooveMonitor] . (. - .) -- C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE (.Not File.) =>.SUP.Orphan O4 - HKCU\..\Run: [Viber] . (.Viber Media S.à r.l. - Viber.) -- C:\Users\Admin\AppData\Local\Viber\Viber.exe =>.Viber Media S.à r.l.® O4 - HKCU\..\Run: [Lync] . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe =>.Microsoft Corporation® O4 - HKCU\..\Run: [ApowersoftScreenCapture] . (. - .) -- C:\Program Files\Apowersoft\Apowersoft Screen Capture Pro\Apowersoft Screen Capture Pro.exe (.Not File.) =>.SUP.Orphan O4 - HKCU\..\Run: [5676096] . (.Bomm - Dollars Setup.) -- C:\Users\Admin\AppData\Local\Temp\is-H4RAP.tmp\systmCnam.exe O4 - HKCU\..\Run: [Blizz] . (.TeamViewer GmbH - Blizz 14.) -- C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-234023727-2096472289-1681642753-1000\..\Run: [OfficeSyncProcess] . (. - .) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-21-234023727-2096472289-1681642753-1000\..\Run: [GrooveMonitor] . (. - .) -- C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-21-234023727-2096472289-1681642753-1000\..\Run: [Viber] . (.Viber Media S.à r.l. - Viber.) -- C:\Users\Admin\AppData\Local\Viber\Viber.exe =>.Viber Media S.à r.l.® O4 - HKUS\S-1-5-21-234023727-2096472289-1681642753-1000\..\Run: [Lync] . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-234023727-2096472289-1681642753-1000\..\Run: [ApowersoftScreenCapture] . (. - .) -- C:\Program Files\Apowersoft\Apowersoft Screen Capture Pro\Apowersoft Screen Capture Pro.exe (.Not File.) =>.SUP.Orphan O4 - HKUS\S-1-5-21-234023727-2096472289-1681642753-1000\..\Run: [5676096] . (.Bomm - Dollars Setup.) -- C:\Users\Admin\AppData\Local\Temp\is-H4RAP.tmp\systmCnam.exe O4 - HKUS\S-1-5-21-234023727-2096472289-1681642753-1000\..\Run: [Blizz] . (.TeamViewer GmbH - Blizz 14.) -- C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® ---\\ PROCESSUS LANCÉS (79) - 5s [MD5.80054B40083DA39A1A7AC93D1DFB37D7] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [274040] [PID.1400] =>.Intel Corporation - pGFX® [MD5.1F09EE1A16B528E1B8E58CFA891AD633] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [276992] [PID.1448] =>.Realtek Semiconductor Corp.® [MD5.83E49D3914AA6989B9F00A3F436BDCAC] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1070592] [PID.1508] =>.Realtek Semiconductor Corp.® [MD5.E8CE8DB256C504EA704D126228D9F40F] - (.Index Education - .) -- C:\Program Files\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe [3241064] [PID.1904] =>.INDEX EDUCATION SASU® [MD5.24B91DEBF94F19292C32DB76190036C9] - (.AO Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe [354672] [PID.1976] =>.Kaspersky Lab® [MD5.64BC57EDED0800B016E216BC43FF30E4] - (.FileZilla Project - FileZilla Server.) -- C:\Program Files\FileZilla Server\FileZilla Server.exe [857776] [PID.124] =>.Tim Kosse® [MD5.B01D4C22D952403B93610739BEF52592] - (.SafeNet, Inc. - License Manager.) -- C:\Windows\System32\hasplms.exe [4647248] [PID.656] =>.SafeNet, Inc.® [MD5.A3D6AFCF4C5F3B4994A3662B18910AE7] - (.hMailServer - hMailServer.) -- F:\hMailServer\Bin\hMailServer.exe [4519936] [PID.812] [MD5.45CC0A256BED89A997725A6B264CC3EC] - (...) -- C:\Windows\KMS-R@1n.exe [23040] [PID.1868] =>Adware.Suspect [MD5.83D7FE220A625F7F8E9DD95CB0DD4F9E] - (.CANON INC. - Canon Advanced Printing Technology RPC Serv.) -- C:\Windows\System32\CNAC4RPK.EXE [113856] [PID.2172] =>.CANON INC.® [MD5.4C68CDC823C6DFDB25845AA6969E5EDE] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [15009280] [PID.2384] =>.Realtek Semiconductor Corp.® [MD5.A31405AD6B114355DD3C62C6399E37AA] - (.2010. All rights reserved. - CDA Server.) -- C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [332288] [PID.2464] [MD5.4B808F7A14F481734CB828E04E9F1A58] - (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [103536] [PID.2592] =>.VMware, Inc.® [MD5.4A6C5E00930169AA50BF03AC149C37AE] - (.Bomm - Dollars Setup.) -- C:\Users\Admin\AppData\Local\Temp\is-H4RAP.tmp\systmCnam.exe [828191] [PID.3108] [MD5.B2C66B6611C1094718D14249FC1FF23C] - (. - Setup/Uninstall.) -- C:\Users\Admin\AppData\Local\Temp\is-VFK4I.tmp\systmCnam.tmp [880128] [PID.3216] [MD5.CA204BB6AB08E7D7B590617DA656F6AE] - (.Nitro PDF Software - Nitro PDF Spool Service.) -- C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe [196616] [PID.3420] =>.Nitro PDF Software® [MD5.D95A2E317E55C0A4321154049B3AF109] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\Windows\System32\NLSSRV32.EXE [70152] [PID.3512] =>.Nitro PDF Software® [MD5.479AC5E68524C5F40F195C6E956C2D8E] - (...) -- C:\Program Files\Odoo 8.0-20171010\service\win32_service.exe [23552] [PID.3532] [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.3584] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.3608] =>.Google LLC® [MD5.11481570F396AF5D196F16E64DF3AAB8] - (.AO Kaspersky Lab - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avpui.exe [334632] [PID.3620] =>.Kaspersky Lab® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.3668] =>.Google LLC® [MD5.751903686A6C93D82547DBA4E77DD0D4] - (...) -- C:\Program Files\Odoo 8.0-20171010\server\openerp-server.exe [20992] [PID.3760] [MD5.E666F7887E2C76320E149212797444D4] - (.PostgreSQL Global Development Group - pg_ctl - starts/stops/restarts the PostgreS.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\pg_ctl.exe [76800] [PID.3836] =>.PostgreSQL Global Development Group [MD5.5F91EAB16B9BCFFECD58202FBD48F518] - (.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe [10803440] [PID.3944] =>.TeamViewer GmbH® [MD5.3891D62C0EBE1E0F6AF27B8F1D288E6E] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\postgres.exe [4292608] [PID.3960] =>.PostgreSQL Global Development Group [MD5.AF76C6D3F5053459E18E4C519FB496C8] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [665200] [PID.4088] =>.VMware, Inc.® [MD5.3891D62C0EBE1E0F6AF27B8F1D288E6E] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\postgres.exe [4292608] [PID.2084] =>.PostgreSQL Global Development Group [MD5.B6107FD15E6E2BC8B0EF0D90D95848EB] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\System32\vmnat.exe [433264] [PID.1496] =>.VMware, Inc.® [MD5.75BC28F58C95B90DFFA5367310BC82EB] - (.VMware, Inc. - VMware Converter Service.) -- C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [423536] [PID.2924] =>.VMware, Inc.® [MD5.3891D62C0EBE1E0F6AF27B8F1D288E6E] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\postgres.exe [4292608] [PID.3092] =>.PostgreSQL Global Development Group [MD5.3891D62C0EBE1E0F6AF27B8F1D288E6E] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\postgres.exe [4292608] [PID.2648] =>.PostgreSQL Global Development Group [MD5.3891D62C0EBE1E0F6AF27B8F1D288E6E] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\postgres.exe [4292608] [PID.3356] =>.PostgreSQL Global Development Group [MD5.3891D62C0EBE1E0F6AF27B8F1D288E6E] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\postgres.exe [4292608] [PID.2364] =>.PostgreSQL Global Development Group [MD5.3891D62C0EBE1E0F6AF27B8F1D288E6E] - (.PostgreSQL Global Development Group - PostgreSQL Server.) -- C:\Program Files\Odoo 8.0-20171010\PostgreSQL\bin\postgres.exe [4292608] [PID.1728] =>.PostgreSQL Global Development Group [MD5.3B7FF15F4F50D3AA3983A3D41FBE2835] - (.VMware, Inc. - VMware Converter Service.) -- C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [423536] [PID.1600] =>.VMware, Inc.® [MD5.3B7FF15F4F50D3AA3983A3D41FBE2835] - (.VMware, Inc. - VMware Converter Service.) -- C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [423536] [PID.3124] =>.VMware, Inc.® [MD5.10A0FC4114DCF15D5A241D4893E70789] - (...) -- C:\ProgramData\WIFIService\WIFIService.exe [243416] [PID.4132] {6AD32BE325F129C1992E833B078BEE9F}. [MD5.5E7C103F8475C4289847D15E129C20F7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713904] [PID.4188] =>.Microsoft Corporation® [MD5.9CB0DBB13997BA2E57E64715B345A6FA] - (.OCS Inventory NG - OCS Inventory NG Service.) -- C:\Program Files\OCS Inventory Agent\OcsService.exe [38912] [PID.4344] =>.OCS Inventory NG [MD5.DAF0C7D1F4E9B057C8151D0B92A6BDA5] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [194304] [PID.4364] =>.Microsoft Corporation® [MD5.16073F2BC424558EBD277A15188D329E] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [79872] [PID.4464] =>.VMware, Inc. [MD5.EB5CABDFEC44627B2DFBE7140DB22D9E] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\System32\vmnetdhcp.exe [354416] [PID.4492] =>.VMware, Inc.® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.5984] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.6044] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.5012] =>.Google LLC® [MD5.433682E4424C2C1841D6C20C99739D39] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [415864] [PID.6212] =>.Intel Corporation - pGFX® [MD5.2B17118651FBC362B417C1E2858855D1] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [209528] [PID.6224] =>.Intel Corporation - pGFX® [MD5.A74836C41D2DE804F9708C6A791ADEF6] - (...) -- C:\Windows\KMS-R@1nhook.exe [4096] [PID.6656] =>HackTool.AutoKMS [MD5.988CDC4DAE2186F3A5ED6EE7D3E6B5CA] - (.Nero AG - NeroUpdate.) -- C:\Program Files\Nero\Update\NASvc.exe [786256] [PID.4664] =>.Nero AG® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.7052] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.6460] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.5208] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.6980] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.7296] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.3396] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.8020] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.6072] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.5764] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.5224] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.8152] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.7164] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.2032] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.3872] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.5344] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.3332] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.2832] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.3236] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.2020] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.7124] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.6124] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.7536] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.2968] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.6268] =>.Google LLC® [MD5.9F8C6F9AC6BF133B6CA79185017868C6] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Admin\Downloads\ZHPDiag3.exe [3249024] [PID.5892] =>.Nicolas Coolman [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.5924] =>.Google LLC® [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.8016] =>.Google LLC® [MD5.A74836C41D2DE804F9708C6A791ADEF6] - (...) -- C:\Windows\KMS-R@1nhook.exe [4096] [PID.4668] =>HackTool.AutoKMS [MD5.B1C4426C58D6FFFEF441DD036EEC4F08] - (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1448432] [PID.2024] =>.Google LLC® ---\\ CHROME, Démarrage, Recherche, Extensions (11) - 1s G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.oursurfing.com/ =>PUP.Optional.OurSurfing G2 - GCE: Preference [Admin][User Data\Default\Extensions] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive} G2 - GCE: Preference [Admin][User Data\Default\Extensions] [bclbclclgmmigcadnicnjimilaoenlgn] LibreOffice Calc on rollApp G2 - GCE: Preference [Admin][User Data\Default\Extensions] [bgikopmemebmoikndmhapkhaaboapige] Zoho Assist - Free Remote Access Software G2 - GCE: Preference [Admin][User Data\Default\Extensions] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube} G2 - GCE: Preference [Admin][User Data\Default\Extensions] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet} G2 - GCE: Preference [Admin][User Data\Default\Extensions] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail} G2 - GCE: Preference [Admin][User Data\Default\Extensions] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc. G2 - GCE: Preference [Admin][User Data\Default\Extensions] [pklibogneflnpoockljemkeoakinnfof] Ecount ERP G2 - GCE: Preference [Admin][User Data\Default\Sync Extension Settings] [bihmplhobchoageeokmgbdihknkjbknd] =>.northghost.com {Free Proxy} G2 - GCE: Preference [Admin][User Data\Default\Sync Extension Settings] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] =>.Google Inc. {Chrome Media Router} ---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (19) - 2s M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} P2 - EXT FILE: (...) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\extensions\{e0b2abc9-feee-4d46-8dea-1ea488412ca8}.xpi P2 - EXT FILE: (.Microsoft Corporation - The plugin allows you to have a better expe.) -- C:\Program Files\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll =>.Microsoft Corporation® P2 - EXT: (.Mozilla Official - Mozilla Official extension.) -- C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\extensions\{14553439-2741-4e9d-b474-784f336f58c9} C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\bookmarkbackups =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\browser-extension-data =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\crashes =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\datareporting =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\extensions =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\features =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\gmp =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\gmp-gmpopenh264 =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\gmp-widevinecdm =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\minidumps =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\saved-telemetry-pings =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\sessionstore-backups =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\storage =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\weave =>Mozilla Corporation C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\43zzlnj5.default-1547130376549\browser-extension-data\fxmonitor@mozilla.org =>Firefox Monitor ---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (10) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation ---\\ INTERNET EXPLORER, Site de confiance et site sensible (2) - 0s ~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad) ~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 0(Good) / 0(Bad) ---\\ INTERNET EXPLORER,Proxy Management (5) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 =>.Default.Value R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft ---\\ INTERNET EXPLORER,IniFiles, Autoloading Programs (3) - 0s F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation ---\\ ÉTUDE DU FICHIER HOSTS (6) - 0s O1 - Hosts: 104.27.204.89 t411.ch www.t411.ch forum.t411.ch api.t411.ch tracker.t411.ch =>Hijacker.Hosts O1 - Hosts: 104.27.203.89 t411.ch www.t411.ch forum.t411.ch api.t411.ch tracker.t411.ch =>Hijacker.Hosts O1 - Hosts: 88.198.168.163 irc.t411.ch =>Hijacker.Hosts O1 - Hosts: 104.27.196.89 t411.download =>Hijacker.Hosts O1 - Hosts: 104.27.195.89 t411.download =>Hijacker.Hosts ~ Nombre lignes détournées ou corrompues 5/41 (Hosts file redirected or corrupted) ---\\ BROWSER HELPER OBJECT DE NAVIGATEUR (BHO) (8) - 0s O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 6.0 for Act.) -- C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll =>.Adobe Systems, Incorporated® O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {0E2877D3-2641-4970-B794-A553E295428D} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\ieext\ie_plugin.dll =>.Kaspersky Lab® O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\OCHelper.dll =>.Microsoft Corporation® O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll =>.Oracle America, Inc.® O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation® O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL =>.Microsoft Corporation® O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll =>.Oracle America, Inc.® ---\\ RACCOURCIS GLOBAL STARTUP (182) - 21s O4 - GS\Desktop [___VMware_Conv_SA___]: AAA Logo 2010.lnk . (.SWGSOFT.COM - AAA Logo: Logo Design Software.) C:\Program Files\AAALOGO2010\alogo.exe =>.SWGSoft.com O4 - GS\Desktop [___VMware_Conv_SA___]: Access 2013.lnk . (...) C:\Windows\Installer\{90150000-0011-0000-0000-0000000FF1CE}\accicons.exe =>.Microsoft Corporation® O4 - GS\Desktop [___VMware_Conv_SA___]: ArgoUML.lnk . (.Oracle Corporation - Java(TM) Platform SE binary.) C:\Program Files\Java\jre1.8.0_45\bin\javaw.exe -Xms64m -Xmx512m -jar "C:\Program Files\ArgoUML\argouml.jar" =>.Oracle America, Inc.® O4 - GS\Desktop [___VMware_Conv_SA___]: Blizz.lnk . (.TeamViewer GmbH - Blizz 14.) C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - GS\Desktop [___VMware_Conv_SA___]: EasyPHP Devserver 16.1.1.lnk . (...) C:\Program Files\EasyPHP-Devserver-16.1\run-easyphp-devserver.exe O4 - GS\Desktop [___VMware_Conv_SA___]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Desktop [___VMware_Conv_SA___]: Eduanat2.lnk . (.Remi AGIER - Eduanat2.) C:\Users\Admin\AppData\Local\Programs\Eduanat2\Eduanat2.exe O4 - GS\Desktop [___VMware_Conv_SA___]: Flash Decompiler.lnk . (.Eltima Software - Flash Decompiler.) C:\Program Files\Eltima Software\Flash Decompiler\FDec.exe =>.ELTIMA Software O4 - GS\Desktop [___VMware_Conv_SA___]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd. O4 - GS\Desktop [___VMware_Conv_SA___]: MiraScan 6.1 (5000).lnk . (.Copyright (C) 1999 - EXE Application.) C:\Program Files\ScanDrv6\5000\ScanDrv.exe O4 - GS\Desktop [___VMware_Conv_SA___]: Rapla, le planificateur intelligent.lnk . (.Oracle Corporation - Java(TM) Web Start Launcher.) C:\Program Files\Java\jre1.8.0_45\bin\javaws.exe -localfile -J-Djnlp.application.href=http://127.0.0.1:8051/rapla/raplaclient.jnlp "C:\Users\Admin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\163646d9-4b6a5e3b" =>.Oracle Corporation O4 - GS\Desktop [___VMware_Conv_SA___]: start.bat - Raccourci.lnk . (...) C:\Program Files\Odoo 8.0-20171010\service\start.bat O4 - GS\Desktop [___VMware_Conv_SA___]: Sweet Home 3D.lnk . (.eTeks - Sweet Home 3D.) C:\Program Files\Sweet Home 3D\SweetHome3D.exe {390A5F7A22D49D3195E93B83A9A76971}. =>.eTeks O4 - GS\Desktop [___VMware_Conv_SA___]: Viber.lnk . (.Viber Media S.à r.l. - Viber.) C:\Users\Admin\AppData\Local\Viber\Viber.exe =>.Viber Media S.à r.l.® O4 - GS\Desktop [___VMware_Conv_SA___]: Word 2013.lnk . (...) C:\Windows\Installer\{90150000-0011-0000-0000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [___VMware_Conv_SA___]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Admin\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [___VMware_Conv_SA___]: AAA Logo 2010.lnk . (.SWGSOFT.COM - AAA Logo: Logo Design Software.) C:\Program Files\AAALOGO2010\alogo.exe =>.SWGSoft.com O4 - GS\Quicklaunch [___VMware_Conv_SA___]: e-Spreader.lnk . (.ICS-Informatique - Gestionnaire d'e-mailings.) C:\Program Files\E-Spreader\e-Spreader.exe O4 - GS\Quicklaunch [___VMware_Conv_SA___]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Flash Decompiler.lnk . (.Eltima Software - Flash Decompiler.) C:\Program Files\Eltima Software\Flash Decompiler\FDec.exe =>.ELTIMA Software O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Quicklaunch [___VMware_Conv_SA___]: IBM SPSS Statistics 20.lnk . (.IBM Corp. - IBM SPSS Statistics 20.) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe =>.IBM Corp. O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Quicklaunch [___VMware_Conv_SA___]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE /recycle =>.Microsoft Corporation® O4 - GS\Quicklaunch [___VMware_Conv_SA___]: VideoDVDMaker FREE.lnk . (...) C:\Program Files\Video DVD Maker\dvd.exe O4 - GS\Quicklaunch [___VMware_Conv_SA___]: VMware Workstation.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.® O4 - GS\sendTo [___VMware_Conv_SA___]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [___VMware_Conv_SA___]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd. O4 - GS\sendTo [___VMware_Conv_SA___]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH® O4 - GS\sendTo [___VMware_Conv_SA___]: Viber.lnk . (.Viber Media S.à r.l. - Viber.) C:\Users\Admin\AppData\Local\Viber\Viber.exe ShareFiles =>.Viber Media S.à r.l.® O4 - GS\Programs [___VMware_Conv_SA___]: Blizz.lnk . (.TeamViewer GmbH - Blizz 14.) C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - GS\Programs [___VMware_Conv_SA___]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Programs [___VMware_Conv_SA___]: Eduanat2.lnk . (.Remi AGIER - Eduanat2.) C:\Users\Admin\AppData\Local\Programs\Eduanat2\Eduanat2.exe O4 - GS\Programs [___VMware_Conv_SA___]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Desktop [Admin]: AAA Logo 2010.lnk . (.SWGSOFT.COM - AAA Logo: Logo Design Software.) C:\Program Files\AAALOGO2010\alogo.exe =>.SWGSoft.com O4 - GS\Desktop [Admin]: Access 2013.lnk . (...) C:\Windows\Installer\{90150000-0011-0000-0000-0000000FF1CE}\accicons.exe =>.Microsoft Corporation® O4 - GS\Desktop [Admin]: ArgoUML.lnk . (.Oracle Corporation - Java(TM) Platform SE binary.) C:\Program Files\Java\jre1.8.0_45\bin\javaw.exe -Xms64m -Xmx512m -jar "C:\Program Files\ArgoUML\argouml.jar" =>.Oracle America, Inc.® O4 - GS\Desktop [Admin]: Blizz.lnk . (.TeamViewer GmbH - Blizz 14.) C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - GS\Desktop [Admin]: EasyPHP Devserver 16.1.1.lnk . (...) C:\Program Files\EasyPHP-Devserver-16.1\run-easyphp-devserver.exe O4 - GS\Desktop [Admin]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Desktop [Admin]: Eduanat2.lnk . (.Remi AGIER - Eduanat2.) C:\Users\Admin\AppData\Local\Programs\Eduanat2\Eduanat2.exe O4 - GS\Desktop [Admin]: Flash Decompiler.lnk . (.Eltima Software - Flash Decompiler.) C:\Program Files\Eltima Software\Flash Decompiler\FDec.exe =>.ELTIMA Software O4 - GS\Desktop [Admin]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd. O4 - GS\Desktop [Admin]: MiraScan 6.1 (5000).lnk . (.Copyright (C) 1999 - EXE Application.) C:\Program Files\ScanDrv6\5000\ScanDrv.exe O4 - GS\Desktop [Admin]: Rapla, le planificateur intelligent.lnk . (.Oracle Corporation - Java(TM) Web Start Launcher.) C:\Program Files\Java\jre1.8.0_45\bin\javaws.exe -localfile -J-Djnlp.application.href=http://127.0.0.1:8051/rapla/raplaclient.jnlp "C:\Users\Admin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\163646d9-4b6a5e3b" =>.Oracle Corporation O4 - GS\Desktop [Admin]: start.bat - Raccourci.lnk . (...) C:\Program Files\Odoo 8.0-20171010\service\start.bat O4 - GS\Desktop [Admin]: Sweet Home 3D.lnk . (.eTeks - Sweet Home 3D.) C:\Program Files\Sweet Home 3D\SweetHome3D.exe {390A5F7A22D49D3195E93B83A9A76971}. =>.eTeks O4 - GS\Desktop [Admin]: Viber.lnk . (.Viber Media S.à r.l. - Viber.) C:\Users\Admin\AppData\Local\Viber\Viber.exe =>.Viber Media S.à r.l.® O4 - GS\Desktop [Admin]: Word 2013.lnk . (...) C:\Windows\Installer\{90150000-0011-0000-0000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [Admin]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Admin\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Admin]: AAA Logo 2010.lnk . (.SWGSOFT.COM - AAA Logo: Logo Design Software.) C:\Program Files\AAALOGO2010\alogo.exe =>.SWGSoft.com O4 - GS\Quicklaunch [Admin]: e-Spreader.lnk . (.ICS-Informatique - Gestionnaire d'e-mailings.) C:\Program Files\E-Spreader\e-Spreader.exe O4 - GS\Quicklaunch [Admin]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Quicklaunch [Admin]: Flash Decompiler.lnk . (.Eltima Software - Flash Decompiler.) C:\Program Files\Eltima Software\Flash Decompiler\FDec.exe =>.ELTIMA Software O4 - GS\Quicklaunch [Admin]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Quicklaunch [Admin]: IBM SPSS Statistics 20.lnk . (.IBM Corp. - IBM SPSS Statistics 20.) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe =>.IBM Corp. O4 - GS\Quicklaunch [Admin]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Quicklaunch [Admin]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE /recycle =>.Microsoft Corporation® O4 - GS\Quicklaunch [Admin]: VideoDVDMaker FREE.lnk . (...) C:\Program Files\Video DVD Maker\dvd.exe O4 - GS\Quicklaunch [Admin]: VMware Workstation.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.® O4 - GS\sendTo [Admin]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Admin]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd. O4 - GS\sendTo [Admin]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH® O4 - GS\sendTo [Admin]: Viber.lnk . (.Viber Media S.à r.l. - Viber.) C:\Users\Admin\AppData\Local\Viber\Viber.exe ShareFiles =>.Viber Media S.à r.l.® O4 - GS\Programs [Admin]: Blizz.lnk . (.TeamViewer GmbH - Blizz 14.) C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - GS\Programs [Admin]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Programs [Admin]: Eduanat2.lnk . (.Remi AGIER - Eduanat2.) C:\Users\Admin\AppData\Local\Programs\Eduanat2\Eduanat2.exe O4 - GS\Programs [Admin]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Desktop [openpgsvc]: AAA Logo 2010.lnk . (.SWGSOFT.COM - AAA Logo: Logo Design Software.) C:\Program Files\AAALOGO2010\alogo.exe =>.SWGSoft.com O4 - GS\Desktop [openpgsvc]: Access 2013.lnk . (...) C:\Windows\Installer\{90150000-0011-0000-0000-0000000FF1CE}\accicons.exe =>.Microsoft Corporation® O4 - GS\Desktop [openpgsvc]: ArgoUML.lnk . (.Oracle Corporation - Java(TM) Platform SE binary.) C:\Program Files\Java\jre1.8.0_45\bin\javaw.exe -Xms64m -Xmx512m -jar "C:\Program Files\ArgoUML\argouml.jar" =>.Oracle America, Inc.® O4 - GS\Desktop [openpgsvc]: Blizz.lnk . (.TeamViewer GmbH - Blizz 14.) C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - GS\Desktop [openpgsvc]: EasyPHP Devserver 16.1.1.lnk . (...) C:\Program Files\EasyPHP-Devserver-16.1\run-easyphp-devserver.exe O4 - GS\Desktop [openpgsvc]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Desktop [openpgsvc]: Eduanat2.lnk . (.Remi AGIER - Eduanat2.) C:\Users\Admin\AppData\Local\Programs\Eduanat2\Eduanat2.exe O4 - GS\Desktop [openpgsvc]: Flash Decompiler.lnk . (.Eltima Software - Flash Decompiler.) C:\Program Files\Eltima Software\Flash Decompiler\FDec.exe =>.ELTIMA Software O4 - GS\Desktop [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd. O4 - GS\Desktop [openpgsvc]: MiraScan 6.1 (5000).lnk . (.Copyright (C) 1999 - EXE Application.) C:\Program Files\ScanDrv6\5000\ScanDrv.exe O4 - GS\Desktop [openpgsvc]: Rapla, le planificateur intelligent.lnk . (.Oracle Corporation - Java(TM) Web Start Launcher.) C:\Program Files\Java\jre1.8.0_45\bin\javaws.exe -localfile -J-Djnlp.application.href=http://127.0.0.1:8051/rapla/raplaclient.jnlp "C:\Users\Admin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\163646d9-4b6a5e3b" =>.Oracle Corporation O4 - GS\Desktop [openpgsvc]: start.bat - Raccourci.lnk . (...) C:\Program Files\Odoo 8.0-20171010\service\start.bat O4 - GS\Desktop [openpgsvc]: Sweet Home 3D.lnk . (.eTeks - Sweet Home 3D.) C:\Program Files\Sweet Home 3D\SweetHome3D.exe {390A5F7A22D49D3195E93B83A9A76971}. =>.eTeks O4 - GS\Desktop [openpgsvc]: Viber.lnk . (.Viber Media S.à r.l. - Viber.) C:\Users\Admin\AppData\Local\Viber\Viber.exe =>.Viber Media S.à r.l.® O4 - GS\Desktop [openpgsvc]: Word 2013.lnk . (...) C:\Windows\Installer\{90150000-0011-0000-0000-0000000FF1CE}\wordicon.exe =>.Microsoft Corporation® O4 - GS\Desktop [openpgsvc]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Admin\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [openpgsvc]: AAA Logo 2010.lnk . (.SWGSOFT.COM - AAA Logo: Logo Design Software.) C:\Program Files\AAALOGO2010\alogo.exe =>.SWGSoft.com O4 - GS\Quicklaunch [openpgsvc]: e-Spreader.lnk . (.ICS-Informatique - Gestionnaire d'e-mailings.) C:\Program Files\E-Spreader\e-Spreader.exe O4 - GS\Quicklaunch [openpgsvc]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Quicklaunch [openpgsvc]: Flash Decompiler.lnk . (.Eltima Software - Flash Decompiler.) C:\Program Files\Eltima Software\Flash Decompiler\FDec.exe =>.ELTIMA Software O4 - GS\Quicklaunch [openpgsvc]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\Quicklaunch [openpgsvc]: IBM SPSS Statistics 20.lnk . (.IBM Corp. - IBM SPSS Statistics 20.) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe =>.IBM Corp. O4 - GS\Quicklaunch [openpgsvc]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Quicklaunch [openpgsvc]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE /recycle =>.Microsoft Corporation® O4 - GS\Quicklaunch [openpgsvc]: VideoDVDMaker FREE.lnk . (...) C:\Program Files\Video DVD Maker\dvd.exe O4 - GS\Quicklaunch [openpgsvc]: VMware Workstation.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.® O4 - GS\sendTo [openpgsvc]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [openpgsvc]: Format Factory.lnk . (.Free Time Co., Ltd. - FormatFactory.) C:\Program Files\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd. O4 - GS\sendTo [openpgsvc]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer GmbH® O4 - GS\sendTo [openpgsvc]: Viber.lnk . (.Viber Media S.à r.l. - Viber.) C:\Users\Admin\AppData\Local\Viber\Viber.exe ShareFiles =>.Viber Media S.à r.l.® O4 - GS\Programs [openpgsvc]: Blizz.lnk . (.TeamViewer GmbH - Blizz 14.) C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - GS\Programs [openpgsvc]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Programs [openpgsvc]: Eduanat2.lnk . (.Remi AGIER - Eduanat2.) C:\Users\Admin\AppData\Local\Programs\Eduanat2\Eduanat2.exe O4 - GS\Programs [openpgsvc]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\CommonDesktop [Public]: Adobe Reader 6.0.lnk . (.Adobe Systems Incorporated - Adobe Reader 6.0.) C:\Program Files\Adobe\Acrobat 6.0\Reader\AcroRd32.exe =>.Adobe Systems Incorporated O4 - GS\CommonDesktop [Public]: Canon MF Toolbox 4.9.lnk . (.CANON INC. - MF Toolbox Application.) C:\Program Files\Canon\MF Toolbox Ver4.9\MFTBOX.exe =>.CANON INC.® O4 - GS\CommonDesktop [Public]: DDR - Pen Drive Recovery(Demo).lnk . (.2005-2009, Pro Data Doctor Pvt. Ltd. - DDR - Pen Drive Recovery(Demo) MFC Applicat.) C:\Program Files\DDR - Pen Drive Recovery(Demo)\DDR - Pen Drive Recovery(Demo).exe =>.Pro Data Doctor Pvt. Ltd.® O4 - GS\CommonDesktop [Public]: Debut - Logiciel de capture vidéo.lnk . (.NCH Software - Debut - Logiciel de capture vidéo.) C:\Program Files\NCH Software\Debut\debut.exe {0572F6D5E559563497F353315B4E8147}. =>.NCH Software O4 - GS\CommonDesktop [Public]: e-Spreader.lnk . (.ICS-Informatique - Gestionnaire d'e-mailings.) C:\Program Files\E-Spreader\e-Spreader.exe O4 - GS\CommonDesktop [Public]: FileZilla Client.lnk . (.FileZilla Project - FileZilla FTP Client.) C:\Program Files\FileZilla FTP Client\filezilla.exe =>.Tim Kosse® O4 - GS\CommonDesktop [Public]: FileZilla Server Interface.lnk . (.FileZilla Project - FileZilla Server.) C:\Program Files\FileZilla Server\FileZilla Server Interface.exe =>.Tim Kosse® O4 - GS\CommonDesktop [Public]: Free Video Joiner.lnk . (...) C:\Program Files\Free Video Joiner\FreeVideoJoiner.exe O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\CommonDesktop [Public]: Google Docs.lnk . (...) C:\Program Files\Google\Drive\googledrivesync.exe --new_document =>.Google LLC® O4 - GS\CommonDesktop [Public]: Google Sheets.lnk . (...) C:\Program Files\Google\Drive\googledrivesync.exe --new_spreadsheet =>.Google LLC® O4 - GS\CommonDesktop [Public]: Google Slides.lnk . (...) C:\Program Files\Google\Drive\googledrivesync.exe --new_presentation =>.Google LLC® O4 - GS\CommonDesktop [Public]: Google Web Designer.lnk . (.Google LLC. - Google Web Designer.) C:\Program Files\Google\Google Web Designer\webdesigner.exe =>.Google LLC® O4 - GS\CommonDesktop [Public]: IBM SPSS Statistics 20.lnk . (.IBM Corp. - IBM SPSS Statistics 20.) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe =>.IBM Corp. O4 - GS\CommonDesktop [Public]: Kaspersky Internet Security.lnk . (.AO Kaspersky Lab - Kaspersky Anti-Virus.) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avpui.exe =>.Kaspersky Lab® O4 - GS\CommonDesktop [Public]: Nitro Pro 8.lnk . (.NITRO PDF Pty Ltd. All rights reserved. - .) C:\Program Files\Nitro\Pro 8\NitroPDF.exe =>.Nitro PDF Software® O4 - GS\CommonDesktop [Public]: Nuxeo.lnk . (...) F:\Nuxeo\bin\Start Nuxeo.bat O4 - GS\CommonDesktop [Public]: Oracle VM VirtualBox.lnk . (.Oracle Corporation - VirtualBox Manager.) C:\Program Files\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation® O4 - GS\CommonDesktop [Public]: Protection bancaire.lnk . (.AO Kaspersky Lab - Kaspersky Anti-Virus.) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avpui.exe -safebanking =>.Kaspersky Lab® O4 - GS\CommonDesktop [Public]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) C:\Program Files\QuickTime\QuickTimePlayer.exe =>.Apple Inc.® O4 - GS\CommonDesktop [Public]: Recuva.lnk . (.Piriform Ltd - Recuva.) C:\Program Files\Recuva\Recuva.exe =>.Piriform Ltd® O4 - GS\CommonDesktop [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH® O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN® O4 - GS\CommonDesktop [Public]: VMware vCenter Converter Standalone Client.lnk . (.VMware, Inc. - Converter Standalone Application.) C:\Program Files\VMware\VMware vCenter Converter Standalone\converter.exe =>.VMware, Inc.® O4 - GS\CommonDesktop [Public]: VMware Workstation.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.® O4 - GS\CommonDesktop [Public]: WinDev 17.lnk . (.PC SOFT - WinDev17.exe (WinDev 17).) C:\WinDev 17\Programmes\WinDev17.exe =>.PC SOFT O4 - GS\CommonDesktop [Public]: Wirecast.lnk . (.Telestream Inc. - Wirecast Application.) C:\Program Files\Telestream\Wirecast\Wirecast.exe =>.Telestream Inc.® O4 - GS\Programs [Public]: Blizz.lnk . (.TeamViewer GmbH - Blizz 14.) C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH® O4 - GS\Programs [Public]: easyQuizzy.lnk . (...) C:\Users\Admin\AppData\Local\easyQuizzy\easyQuizzy.exe O4 - GS\Programs [Public]: Eduanat2.lnk . (.Remi AGIER - Eduanat2.) C:\Users\Admin\AppData\Local\Programs\Eduanat2\Eduanat2.exe O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe -extoff =>.Microsoft Corporation® O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\Startup [Public]: Canon LBP5000 Fenêtre d'état.lnk . (.CANON INC. - Canon Advanced Printing Technology Printer.) C:\Windows\System32\spool\drivers\w32x86\3\CNAC4LAK.EXE =>.CANON INC.® O4 - GS\Startup [Public]: OCS Inventory NG Systray.lnk . (.OCS Inventory NG - OCS Inventory NG Systray applet.) C:\Program Files\OCS Inventory Agent\OcsSystray.exe =>.OCS Inventory NG O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>..Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: ABBYY FineReader 5.0 Sprint.lnk . (.ABBYY (BIT Software) - FineReader Shell.) C:\Program Files\ABBYY FineReader 5.0 Sprint\Sprint.exe =>.ABBYY (BIT Software) O4 - GS\ProgramsCommon [Public]: Adobe Dreamweaver CS6.lnk . (.Adobe Systems, Inc. - Adobe Dreamweaver CS6.) C:\Program Files\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe =>.Adobe Systems Incorporated® O4 - GS\ProgramsCommon [Public]: Adobe ExtendScript Toolkit CS6.lnk . (.Adobe Systems Incorporated - ExtendScript Toolkit CS6 and Debugger (32 b.) C:\Program Files\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe =>.Adobe Systems Incorporated® O4 - GS\ProgramsCommon [Public]: Adobe Extension Manager CS6.lnk . (.Adobe Systems Incorporated - Adobe Extension Manager CS6.) C:\Program Files\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe =>.Adobe Systems Incorporated® O4 - GS\ProgramsCommon [Public]: Adobe Reader 6.0.lnk . (...) C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\SC_Reader_PM.ico O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc. O4 - GS\ProgramsCommon [Public]: Debut - Logiciel de capture vidéo.lnk . (.NCH Software - Debut - Logiciel de capture vidéo.) C:\Program Files\NCH Software\Debut\debut.exe {0572F6D5E559563497F353315B4E8147}. =>.NCH Software O4 - GS\ProgramsCommon [Public]: FileMaker Pro Advanced.lnk . (.Acresso Software Inc. - InstallShield.) C:\Windows\Installer\{EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B}\ARPPRODUCTICON.exe =>.Acresso Software Inc. O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Mozilla Thunderbird.lnk . (.Mozilla Corporation - Thunderbird.) C:\Program Files\Mozilla Thunderbird\thunderbird.exe =>.Mozilla Corporation® O4 - GS\ProgramsCommon [Public]: Nitro Pro 8.lnk . (...) C:\Windows\Installer\{36CD3AFA-0913-47C2-B177-C5EE5F63EBC9}\Professional.ico O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: TeamViewer 12.lnk . (.TeamViewer GmbH - TeamViewer 12.) C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH® O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - Création de DVD Windows.) C:\Program Files\DVD Maker\DVDMaker.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Movie Maker 2.6.lnk . (.Microsoft Corporation - Windows Movie Maker.) C:\Windows\Installer\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}\MOVIEMK.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation ---\\ MODIFICATION DOMAINE/ADRESSES (DNS) (4) - 0s O17 - HKLM\System\CCS\Services\Tcpip\..\{E376EDF5-4C03-4DA5-A098-0D8A4D44F79D}: NameServer = 172.17.1.11,172.17.1.12,192.168.175.137 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{3D07A9E6-CA26-455A-9730-1A8C588A5A50}: DhcpNameServer = 172.17.1.11 172.17.1.12 O17 - HKLM\System\CCS\Services\Tcpip\..\{D416675C-6271-441C-BCD6-CED0C1884653}: DhcpNameServer = 192.168.42.129 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{3D07A9E6-CA26-455A-9730-1A8C588A5A50}: DhcpDomain = univ-bejaia.dz ---\\ PROTOCOLE ADDITIONNEL (25) - 1s O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation® O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation O18 - Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ REGISTRE AppInit_DLLs et Winlogon Notify (1) - 0s O20 - Winlogon : UserInit . (.Microsoft Corporation - Application d’ouverture de session Userinit.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation ---\\ COMPOSANTS ACTIVESETUP INSTALLÉS (ASIC) (8) - 1s O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - Microsoft(C) Register Server.) -- C:\Windows\System32\regsvr32.exe =>.Microsoft Corporation O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Utilitaire d’installation du Lecteur Window.) -- C:\Windows\System32\unregmp2.exe =>.Microsoft Corporation O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft Corporation® O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google LLC - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe =>.Google LLC® ---\\ LOGICIELS INSTALLÉS (160) - 43s O42 - Logiciel: AAA Logo 1.2 - (.SWGSoft.com.) [HKLM] -- AAA Logo_is1 =>.SWGSoft.com O42 - Logiciel: AAA Logo Business Edition 3.10 - (.SWGSoft.com.) [HKLM] -- AAA Logo 3.10 Business_is1 =>.SWGSoft.com O42 - Logiciel: ABBYY FineReader 5.0 Sprint - (.ABBYY Software House.) [HKLM] -- {D1696920-9794-4BBC-8A30-7A88763DE5A2} =>.ABBYY Software House O42 - Logiciel: Adobe Dreamweaver CS6 - (.Adobe Systems Incorporated.) [HKLM] -- {A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Reader 6.0 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-000000000001} =>.Adobe Systems Incorporated O42 - Logiciel: Ametys Demo 4.1.1 - (..) [HKLM] -- Ametys Demo 4.1.1 =>.Oracle America, Inc.® O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} =>.Apple Inc. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc. O42 - Logiciel: ArgoUML 0.34 - (.Jason Robbins.) [HKLM] -- ArgoUML =>.Jason Robbins O42 - Logiciel: Backup and Sync from Google - (.Google, Inc..) [HKLM] -- {E057C6FF-F403-40C7-AC96-CB2B08D88378} =>.Google, Inc. O42 - Logiciel: Bigasoft Total Video Converter 5.0.10.5862 - (.Bigasoft Corporation.) [HKLM] -- {A72CE741-1F32-4D79-BFFB-A714375C6750}_is1 =>.Bigasoft Corporation O42 - Logiciel: Blizz - (.TeamViewer.) [HKCU] -- Blizz =>.TeamViewer GmbH® O42 - Logiciel: Canon Laser Printer/Scanner/Fax Extended Survey Program - (.CANON INC..) [HKLM] -- {4D7B6C53-B3E7-4D93-B27C-B7A50A9627C9} =>.Canon Inc. (Hidden) O42 - Logiciel: Canon Laser Printer/Scanner/Fax Extended Survey Program - (.CANON INC..) [HKLM] -- Canon Laser Printer/Scanner/Fax Extended Survey Program =>.Canon Inc. O42 - Logiciel: Canon LBP5000 - (..) [HKLM] -- Canon LBP5000 =>.CANON INC.® O42 - Logiciel: Canon MF Toolbox 4.9.1.1.mf17 - (.CANON INC..) [HKLM] -- {6767DFEE-8909-453A-B553-C7693912B2EB} =>.CANON INC.® O42 - Logiciel: Canon MF220 Series - (.CANON INC..) [HKLM] -- {33A079E0-BF49-4E97-9293-3EDDA6D130A4} =>.CANON INC.® O42 - Logiciel: Chrome Remote Desktop Host - (.Google Inc..) [HKLM] -- {786E64DA-CDC1-432B-BCAB-5912C73A72E9} =>.Google Inc. O42 - Logiciel: Cisco Jabber Video for TelePresence - (.Cisco Systems, Inc..) [HKLM] -- {083E119D-B926-4F0E-9FDA-FF0035D09CA1} =>.Cisco Systems, Inc. O42 - Logiciel: Classe Manager 2.0 - (..) [HKLM] -- {A19F03EA-7D0F-4EA9-AACA-0D3DA31DF923} O42 - Logiciel: Common Desktop Agent - (.OEM.) [HKLM] -- {031A0E14-0413-4C97-9772-2639B782F46F} =>.OEM (Hidden) O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft (Hidden) O42 - Logiciel: DDR - Pen Drive Recovery(Demo) 4.0.1.6 - (..) [HKLM] -- DDR - Pen Drive Recovery(Demo) =>.Just Great Software® O42 - Logiciel: Debut - Logiciel de capture vidéo - (.NCH Software.) [HKLM] -- Debut {0572F6D5E559563497F353315B4E8147}. =>.NCH Software O42 - Logiciel: DriverPack Notifier - (.DriverPack Solution.) [HKLM] -- DriverPack Notifier =>.DriverPack Solution O42 - Logiciel: DriverPack Solution Updater - (.DriverPack Solution.) [HKCU] -- DRPSu Updater =>.DriverPack Solution O42 - Logiciel: easyQuizzy 2.0.442 - (.easyQuizzy.) [HKCU] -- easyQuizzy_is1 O42 - Logiciel: EdrawMax(Build 9.0.0.0) - (.EdrawSoft Co.,Ltd..) [HKLM] -- {037BAB81-3DF7-4381-A72C-A26B57C03548}_is1 O42 - Logiciel: Eduanat2 2.0.0 - (.Remi AGIER.) [HKCU] -- 3f6f6000-c95b-5848-8119-26077330b6e5 O42 - Logiciel: E-Spreader - (.ICS-Informatique.) [HKLM] -- E-SpreaderE-Spreader 32 bits O42 - Logiciel: FileMaker Pro 12 Advanced - (.FileMaker, Inc..) [HKLM] -- {EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B} =>.FileMaker, Inc. (Hidden) O42 - Logiciel: FileMaker Pro 12 Advanced - (.FileMaker, Inc..) [HKLM] -- {EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B}_FileMaker =>.FileMaker, Inc® O42 - Logiciel: FileZilla Client 3.22.1 - (.Tim Kosse.) [HKLM] -- FileZilla Client =>.Tim Kosse O42 - Logiciel: FileZilla Server - (.FileZilla Project.) [HKLM] -- FileZilla Server =>.FileZilla Project O42 - Logiciel: Flash Decompiler - (.Eltima Software.) [HKLM] -- Flash Decompiler_is1 =>.ELTIMA Software O42 - Logiciel: FormatFactory 4.5.5.0 - (.Free Time.) [HKLM] -- FormatFactory =>.Free Time O42 - Logiciel: Free Video Joiner - (.FreeVideoJoiner.com.) [HKLM] -- {14FA6DD9-92ED-493D-A937-81A78870E08A}_is1 =>.FreeVideoJoiner.com O42 - Logiciel: GetDataBack Simple - (.Runtime Software.) [HKLM] -- {D06B8000-52B4-4D0B-A003-DA83ED982B51} =>.Runtime Software O42 - Logiciel: Google Chrome - (.Google LLC.) [HKLM] -- Google Chrome =>.Google LLC® O42 - Logiciel: Google Update Helper - (.Google LLC.) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google LLC (Hidden) O42 - Logiciel: Google Web Designer - (.Google LLC..) [HKLM] -- {811767F4-C586-4673-A41F-E9D767497222} =>.Google LLC® O42 - Logiciel: hMailServer 5.6.5-B2367 - (..) [HKLM] -- hMailServer_is1 O42 - Logiciel: IBM SPSS Statistics 20 - (.IBM.) [HKLM] -- {F4247229-CCB7-4CA5-A700-4A0057F67CF4}_is1 =>.IBM O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX® O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} =>.Oracle Corporation O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation (Hidden) O42 - Logiciel: Java(TM) 6 Update 2 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160020} =>.Sun Microsystems, Inc. O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM] -- {5AAE61FF-858E-453E-B8F3-944618149975} =>.Kaspersky Lab (Hidden) O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975} =>.Kaspersky Lab O42 - Logiciel: Kaspersky Secure Connection - (.Kaspersky Lab.) [HKLM] -- {F33C0717-8E04-4EB5-90C8-47221287DB4F} =>.Kaspersky Lab (Hidden) O42 - Logiciel: Kaspersky Secure Connection - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F} =>.Kaspersky Lab O42 - Logiciel: LibreOffice 5.1.5.2 - (.The Document Foundation.) [HKLM] -- {03E3A5F6-2B2C-4CF6-9C18-FBB28AFA512B} =>.The Document Foundation O42 - Logiciel: Main service - (..) [HKLM] -- {EF758C50-5FA2-4B0A-86D3-8B65B176BC53} O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile =>.Microsoft Corporation® O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- {0A0CADCF-78DA-33C4-A350-CD51849B9702} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft .NET Framework 4 Extended - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended =>.Microsoft Corporation® O42 - Logiciel: Microsoft .NET Framework 4 Extended FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {043F86B7-EE12-3399-B2CA-D0B603D87963} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-0015-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM] -- {95120000-00B9-0409-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-0090-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-0016-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-00BA-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-0044-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-012B-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Korrekturhilfen 2013 - Deutsch - (.Microsoft Corporation.) [HKLM] -- {90150000-001F-0407-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office OSM MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-00E1-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office OSM UX MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-00E2-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Professional Plus 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-0011-0000-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Professionnel Plus 2013 - (.Microsoft Corporation.) [HKLM] -- Office15.PROPLUS =>.Microsoft Corporation® O42 - Logiciel: Microsoft Office Proofing (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-002C-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Proofing Tools 2013 - English - (.Microsoft Corporation.) [HKLM] -- {90150000-001F-0409-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Proofing Tools 2013 - Español - (.Microsoft Corporation.) [HKLM] -- {90150000-001F-0C0A-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Proofing Tools 2013 - Nederlands - (.Microsoft Corporation.) [HKLM] -- {90150000-001F-0413-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Proofing Tools 2013 - اللغة العربية - (.Microsoft Corporation.) [HKLM] -- {90150000-001F-0401-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Office Shared MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-006E-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-00A1-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-001A-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-0018-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-0019-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft SQL Server Compact 3.5 ENU - (.Microsoft Corporation.) [HKLM] -- {BCC899FE-2DAA-460C-A5FB-60291E73D9C3} =>.Microsoft Corporation O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2} =>.Microsoft Corporation O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - (.Microsoft Corporation.) [HKLM] -- {9A25302D-30C0-39D9-BD6F-21E6EC160475} =>.Microsoft Corporation O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989} =>.Microsoft Corporation O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} =>.Microsoft Corporation O42 - Logiciel: Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 - (.Microsoft Corporation.) [HKLM] -- {ce085a78-074e-4823-8dc1-8a721b94b76d} =>.Microsoft Corporation® O42 - Logiciel: Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 - (.Microsoft Corporation.) [HKLM] -- {F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 - (.Microsoft Corporation.) [HKLM] -- {13A4EE12-23EA-3371-91EE-EFB36DDFFF3E} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM] -- {90150000-001B-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: mini-KMS Activator 1.0.5.2 - (..) [HKLM] -- mini-KMS Activator 1.0.5.2 =>Hacktool.Office O42 - Logiciel: MiraScan 6.1 (5000) - (.Benq Scan.) [HKLM] -- {EA2E8D6D-EE50-4689-B7ED-1E580BC04CC1} =>.InstallShield Software Corporation® O42 - Logiciel: Mise à jour automatique - (.Index Education.) [HKLM] -- {498D8130-B871-4D94-9ADC-C1F99E188F3A} =>.Index Education O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack =>.Microsoft Corporation® O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Extended FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Extended FRA Language Pack =>.Microsoft Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: Mozilla Thunderbird 52.4.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird 52.4.0 (x86 fr) =>.Mozilla Corporation® O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft (Hidden) O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft (Hidden) O42 - Logiciel: Multitimer version 1.0 - (..) [HKLM] -- Multitimer_is1 O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {ABC88553-8770-4B97-B43E-5A90647A5B63} =>.Nero AG (Hidden) O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM] -- {CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C} =>.Nero AG (Hidden) O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263} =>.Nero AG (Hidden) O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM] -- {6F4B3CA0-8872-4F68-B972-E9D5306DCDD3} =>.Nero AG O42 - Logiciel: Nero CoverDesigner - (.Nero AG.) [HKLM] -- {A822DC32-7625-411B-ABAC-BAE7CE0D816D} =>.Nero AG (Hidden) O42 - Logiciel: Nero CoverDesigner Help (CHM) - (.Nero AG.) [HKLM] -- {9C7C04AB-4B97-49DB-88A0-454795349008} =>.Nero AG (Hidden) O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM] -- {B791E0AB-87A9-41A4-8D98-D13C2E37D928} =>.Nero AG O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A} =>.Nero AG (Hidden) O42 - Logiciel: Nitro Pro 8 - (.Nitro.) [HKLM] -- {36CD3AFA-0913-47C2-B177-C5EE5F63EBC9} =>.Nitro O42 - Logiciel: Nuxeo - (.Nuxeo.) [HKLM] -- Nuxeo =>.Nuxeo O42 - Logiciel: OCS Inventory NG Agent 2.1.0.3 - (.OCS Inventory NG Team.) [HKLM] -- OCS Inventory NG Agent =>.OCS Inventory NG Team O42 - Logiciel: Odoo 8.0 - (.OpenERP S.A..) [HKLM] -- Odoo 8.0 =>.OpenERP S.A. O42 - Logiciel: Oracle VM VirtualBox 5.1.8 - (.Oracle Corporation.) [HKLM] -- {75914BB8-FDD7-44D7-BEAA-0E5208638566} =>.Oracle Corporation O42 - Logiciel: Orb Runtime libraries - (.Orb Networks, Inc..) [HKLM] -- {2133CB3F-F891-4081-8681-FEE2B2419FF4} =>.Orb Networks, Inc. (Hidden) O42 - Logiciel: Outils de vérification linguistique 2013 de Microsoft Office - Français - (.Microsoft Corporation.) [HKLM] -- {90150000-001F-040C-0000-0000000FF1CE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Photo Common - (.Microsoft Corporation.) [HKLM] -- {3751BF9B-5F23-4976-AA62-1BF4D791DCFE} =>.Microsoft Corporation (Hidden) O42 - Logiciel: PostgreSQL 9.3 - (.PostgreSQL Global Development Group.) [HKLM] -- PostgreSQL 9.3 =>.PostgreSQL Global Development Group O42 - Logiciel: Prerequisite installer - (.Nero AG.) [HKLM] -- {3AAB08A3-F129-4BD5-B409-AE674F93759D} =>.Nero AG (Hidden) O42 - Logiciel: Programme de désinstallation Canon LBP6030 6040 6018L - (.Canon Inc..) [HKLM] -- Canon LBP6030 6040 6018L =>.CANON INC.® O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM] -- {80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} =>Riskware.QuickTime O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.® O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva =>.Piriform Ltd® O42 - Logiciel: Samsung Easy Printer Manager - (.Samsung Electronics Co., Ltd..) [HKLM] -- Samsung Easy Printer Manager =>.Samsung Electronics CO., LTD.® O42 - Logiciel: Samsung ML-2540 Series - (.Samsung Electronics Co., Ltd..) [HKLM] -- Samsung ML-2540 Series =>.Samsung Electronics CO., LTD.® O42 - Logiciel: Samsung Printer Live Update - (.Samsung Electronics Co., Ltd..) [HKLM] -- Samsung Printer Live Update =>.Samsung Electronics Co., Ltd. O42 - Logiciel: Sentinel Runtime - (.Gemalto.) [HKLM] -- {39FA0B7C-B7DB-41F4-9169-AEFB61913B36} =>.Gemalto O42 - Logiciel: Sweet Home 3D version 6.0 - (.eTeks.) [HKLM] -- Sweet Home 3D_is1 {390A5F7A22D49D3195E93B83A9A76971}. =>.eTeks O42 - Logiciel: TeamViewer 12 - (.TeamViewer.) [HKLM] -- TeamViewer =>.TeamViewer GmbH® O42 - Logiciel: Toner Status - (.CANON INC..) [HKLM] -- {6E9A516A-6189-4502-80FD-51BE28989CEB} =>.CANON INC.® O42 - Logiciel: tools-freebsd - (.VMware, Inc..) [HKLM] -- {003BFBBD-6C67-419E-A24D-0DCAFC3A5249} =>.VMware, Inc. (Hidden) O42 - Logiciel: tools-linux - (.VMware, Inc..) [HKLM] -- {D102611A-6466-4101-A51D-51069303AC65} =>.VMware, Inc. (Hidden) O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM] -- {197597A7-AD33-4898-9D8E-73066818B464} =>.VMware, Inc. (Hidden) O42 - Logiciel: tools-solaris - (.VMware, Inc..) [HKLM] -- {AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4} =>.VMware, Inc. (Hidden) O42 - Logiciel: tools-windows - (.VMware, Inc..) [HKLM] -- {FFD9383C-01D5-4897-A954-43AF599AED30} =>.VMware, Inc. (Hidden) O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D} =>.VMware, Inc. (Hidden) O42 - Logiciel: Total Video Converter 3.71 100812 - (.EffectMatrix Inc..) [HKLM] -- Total Video Converter 3.71_is1 =>.EffectMatrix Inc. O42 - Logiciel: Version (32 bits ) - (..) [HKCU] -- Version (32 bits ) O42 - Logiciel: Viber - (.Viber Media Inc..) [HKCU] -- {445dc168-71e3-405e-820c-d2d95a0633e7} =>.Viber Media S.à r.l.® O42 - Logiciel: Viber - (.Viber Media Inc..) [HKLM] -- {161C703C-CEEB-45B0-A472-7791BE43A9E6} =>.Viber Media Inc. (Hidden) O42 - Logiciel: Video DVD Maker v3.1.0.3 - (..) [HKLM] -- {1A3E23D7-7A1E-43EC-B35D-EB2A31BED943} O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN O42 - Logiciel: VmciSockets - (.VMware, Inc..) [HKLM] -- {4B26E060-5BC9-4B45-BD20-882E94CADFCF} =>.VMware, Inc. (Hidden) O42 - Logiciel: VMware vCenter Converter Standalone - (.VMware, Inc..) [HKLM] -- {EDF0C1D5-D980-48F9-BA19-0ECEDEF8C5D4} =>.VMware, Inc. O42 - Logiciel: VMware Workstation - (.VMware, Inc.) [HKLM] -- VMware_Workstation =>.VMware, Inc O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM] -- {0D94F75A-0EA6-4951-B3AF-B145FA9E05C6} =>.VMware, Inc. (Hidden) O42 - Logiciel: WinDev 17 - (.PC SOFT.) [HKCU] -- WinDev17 =>.PC SOFT INFORMATIQUE® O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- {B99F248C-B4B3-4D61-9FFC-AE59A1F13723} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite =>.Microsoft Corporation® O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {41C61308-6CFD-4D54-AB6A-7136ED08A18E} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live ID Sign-in Assistant - (.Microsoft Corporation.) [HKLM] -- {8256F87F-8554-4457-8C3D-3F3324697D9F} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live Installer - (.Microsoft Corporation.) [HKLM] -- {659CB81C-B54E-4DF1-B618-F35777393A54} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live Photo Common - (.Microsoft Corporation.) [HKLM] -- {1D6432B4-E24D-405E-A4AB-D7E6D088CBC9} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live PIMT Platform - (.Microsoft Corporation.) [HKLM] -- {B2611F8A-EFE7-4E88-875D-19F0EFAE87E4} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live SOXE - (.Microsoft Corporation.) [HKLM] -- {CDC1AB00-01FF-4FC7-816A-16C67F0923C0} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live SOXE Definitions - (.Microsoft Corporation.) [HKLM] -- {D1893000-EA77-493C-8DDD-E262436E959B} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live UX Platform - (.Microsoft Corporation.) [HKLM] -- {00F9DB8C-65D7-4D47-AB5F-F698EE38580D} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Live UX Platform Language Pack - (.Microsoft Corporation.) [HKLM] -- {33B992ED-B59B-4E25-9F3F-CF2D79BBA914} =>.Microsoft Corporation (Hidden) O42 - Logiciel: Windows Movie Maker 2.6 - (.Microsoft Corporation.) [HKLM] -- {B3DAF54F-DB25-4586-9EF1-96D24BB14088} =>.Microsoft Corporation O42 - Logiciel: WinRAR 5.30 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: Wirecast - (.Telestream, Inc..) [HKLM] -- {1703A9AA-9C5D-414F-9B00-12C07B7F0DA4} =>.Telestream, Inc. ---\\ CLÉ DE REGISTRE SOFTWARE HKCU & HKLM (293) - 44s HKU\S-1-5-21-234023727-2096472289-1681642753-1000\Software\csastats =>Adware.InstallCore HKU\S-1-5-21-234023727-2096472289-1681642753-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\drp.su =>.SUP.DriverPack HKCU\Software\drpsu =>.SUP.DriverPack HKCU\Software\csastats =>Adware.InstallCore HKCU\Software\ProductSetup =>Adware.InstallCore HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\drp.su =>.SUP.DriverPack HKLM\SOFTWARE\drpsu =>.SUP.DriverPack HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe =>SUP.Optional.ByteFence HKLM\System\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence =>SUP.Optional.ByteFence HKLM\SOFTWARE\ABBYY =>.ABBYY Software HKLM\SOFTWARE\Adobe =>.Adobe HKLM\SOFTWARE\AeroAdmin HKLM\SOFTWARE\Aladdin Knowledge Systems =>.Aladdin Knowledge Systems HKLM\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKLM\SOFTWARE\Apple Inc. =>.Apple Inc. HKLM\SOFTWARE\ArgoUML =>.Jason Robbins HKLM\SOFTWARE\ATI Technologies =>.ATI Technologies HKLM\SOFTWARE\Benq Scan HKLM\SOFTWARE\Bigasoft =>.Bigasoft Corporation HKLM\SOFTWARE\Borland =>.Borland HKLM\SOFTWARE\Canon =>.Canon HKLM\SOFTWARE\Cisco =>.Cisco Systems, Inc. HKLM\SOFTWARE\Common Desktop Agent =>.Samsung Electronics HKLM\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions HKLM\SOFTWARE\Cygwin =>.Cygwin HKLM\SOFTWARE\Debug =>.Legitimate HKLM\SOFTWARE\DVDVideoSoft =>.DVDVideoSoft HKLM\SOFTWARE\Edraw HKLM\SOFTWARE\eSellerate =>.eSellerate HKLM\SOFTWARE\FileMaker =>.FileMaker Inc HKLM\SOFTWARE\FileZilla 3 =>.FileZilla HKLM\SOFTWARE\FileZilla Client =>.Tim Kosse HKLM\SOFTWARE\FileZilla Server =>.FileZilla HKLM\SOFTWARE\Fortemedia =>.Lugert Europe HKLM\SOFTWARE\Google =>.Google HKLM\SOFTWARE\HaaliMkx =>.Haali Media HKLM\SOFTWARE\hMailServer HKLM\SOFTWARE\IM Providers =>.IM Providers HKLM\SOFTWARE\Index Education =>.Index Education HKLM\SOFTWARE\Intel =>.Intel HKLM\SOFTWARE\IObit =>.IObit HKLM\SOFTWARE\iTinySoft =>.iTinySoft HKLM\SOFTWARE\JavaSoft =>.JavaSoft HKLM\SOFTWARE\JGsoft =>.JGsoft HKLM\SOFTWARE\JreMetrics =>.JreMetrics HKLM\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKLM\SOFTWARE\Khronos =>.Khronos HKLM\SOFTWARE\LexmarkLaser =>.Lexmark HKLM\SOFTWARE\LibreOffice =>.LibreOffice HKLM\SOFTWARE\Machiner HKLM\SOFTWARE\Macromedia =>.Macromedia HKLM\SOFTWARE\Mozilla =>.Mozilla HKLM\SOFTWARE\mozilla.org =>.mozilla.org HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\Nalpeiron =>.Nalpeiron HKLM\SOFTWARE\NCH Software =>.NCH Software HKLM\SOFTWARE\NCH Swift Sound =>.NCH Swift Sound HKLM\SOFTWARE\Nero =>.Ahead Corporation HKLM\SOFTWARE\Netscape =>.Netscape HKLM\SOFTWARE\Nitro =>.Nitro HKLM\SOFTWARE\Nuance =>.Nuance HKLM\SOFTWARE\Nuxeo =>.Nuxeo HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\OpenERP All In One HKLM\SOFTWARE\Opera Software =>.Opera Software HKLM\SOFTWARE\Oracle =>.Oracle HKLM\SOFTWARE\Orb Networks HKLM\SOFTWARE\Piriform =>.Piriform HKLM\SOFTWARE\PostgreSQL =>.PostgreSQL HKLM\SOFTWARE\PostgreSQL Global Development Group =>.PostgreSQL Global Development Group HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKLM\SOFTWARE\Runtime Software =>.Runtime Software HKLM\SOFTWARE\Samsung =>.Samsung Electronics HKLM\SOFTWARE\Scanner_bot HKLM\SOFTWARE\Sonic =>.Sonic HKLM\SOFTWARE\SRS Labs =>.SRS Labs HKLM\SOFTWARE\SSPrint =>.Sprint Software HKLM\SOFTWARE\TeamViewer =>.TeamViewer GmbH HKLM\SOFTWARE\The Document Foundation =>.The Document Foundation HKLM\SOFTWARE\ThinPrint =>.ThinPrint HKLM\SOFTWARE\TVInstallTemp =>.TeamViewer GmbH HKLM\SOFTWARE\VideoLAN =>.VideoLan Team HKLM\SOFTWARE\VMware, Inc. =>.VMware, Inc. HKLM\SOFTWARE\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\WafCX =>.WafCX HKLM\SOFTWARE\Waves Audio =>.Waves Audio HKLM\SOFTWARE\WIFIService HKLM\SOFTWARE\WinRAR =>.WinRAR HKCU\SOFTWARE\3DFA HKCU\SOFTWARE\3f6f6000-c95b-5848-8119-26077330b6e5 =>Adware.CrossRider HKCU\SOFTWARE\AAA_LOGO =>.SWGSoft HKCU\SOFTWARE\ABBYY =>.ABBYY Software HKCU\SOFTWARE\Adobe =>.Adobe HKCU\SOFTWARE\Akeo Consulting =>.Akeo Consulting HKCU\SOFTWARE\Anvsoft =>.AnvSoft Inc HKCU\SOFTWARE\Apowersoft =>.Apowersoft HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. =>.Apple Inc. HKCU\SOFTWARE\Applications WinDev =>.WinDev HKCU\SOFTWARE\ATROUCHE Abdelghani HKCU\SOFTWARE\BART HKCU\SOFTWARE\Bigasoft =>.Bigasoft Corporation HKCU\SOFTWARE\Blizz HKCU\SOFTWARE\BugSplat =>.Bugsplat Game HKCU\SOFTWARE\Canon =>.Canon HKCU\SOFTWARE\Chromium =>.Chromium HKCU\SOFTWARE\Cisco =>.Cisco Systems, Inc. HKCU\SOFTWARE\Common Desktop Agent =>.Samsung Electronics HKCU\SOFTWARE\CRM HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions HKCU\SOFTWARE\Cygwin =>.Cygwin HKCU\SOFTWARE\DRPSu Updater =>.SUP.DriverPack HKCU\SOFTWARE\DVDVideoSoft =>.DVDVideoSoft HKCU\SOFTWARE\Edraw HKCU\SOFTWARE\Eltima =>.Eltima HKCU\SOFTWARE\EPSON =>.EPSON HKCU\SOFTWARE\eSellerate =>.eSellerate HKCU\SOFTWARE\Fac Med HKCU\SOFTWARE\Faculeté de médecine HKCU\SOFTWARE\FileMaker =>.FileMaker Inc HKCU\SOFTWARE\FileOpen =>.FileOpen Systems Inc. HKCU\SOFTWARE\FileZilla Server =>.FileZilla HKCU\SOFTWARE\FreeTime =>.FreeTime Inc HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\Haali =>.Haali Media HKCU\SOFTWARE\hMailServer HKCU\SOFTWARE\ICS-Informatique =>.ICS-Informatique HKCU\SOFTWARE\IM Providers =>.IM Providers HKCU\SOFTWARE\Imaging Solutions HKCU\SOFTWARE\Index Education =>.Index Education HKCU\SOFTWARE\Intel =>.Intel HKCU\SOFTWARE\JavaSoft =>.JavaSoft HKCU\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKCU\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs HKCU\SOFTWARE\LAV =>.LAV Inc HKCU\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD HKCU\SOFTWARE\Macromedia =>.Macromedia HKCU\SOFTWARE\MediaBurner HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\MPC-HC =>.MPC-HC Team HKCU\SOFTWARE\NCH Software =>.NCH Software HKCU\SOFTWARE\NCH Swift Sound =>.NCH Swift Sound HKCU\SOFTWARE\Nero =>.Ahead Corporation HKCU\SOFTWARE\NetCrate Software =>.NetCrate Software HKCU\SOFTWARE\Netscape =>.Netscape HKCU\SOFTWARE\Nitro =>.Nitro HKCU\SOFTWARE\Nitro PDF =>.Nitro PDF HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions HKCU\SOFTWARE\Opera Software =>.Opera Software HKCU\SOFTWARE\Oracle =>.Oracle HKCU\SOFTWARE\PC SOFT =>.PC SOFT HKCU\SOFTWARE\pgAdmin III =>.pgAdmin Team HKCU\SOFTWARE\Picture HKCU\SOFTWARE\Piece détachée HKCU\SOFTWARE\Piriform =>.Piriform HKCU\SOFTWARE\PostgreSQL =>.PostgreSQL HKCU\SOFTWARE\QtProject =>.QtProject HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKCU\SOFTWARE\Samsung =>.Samsung Electronics HKCU\SOFTWARE\SEIKO EPSON =>.Epson/Seico HKCU\SOFTWARE\SimonTatham =>.Simon Tatham HKCU\SOFTWARE\Sony Corporation =>.Sony Corporation HKCU\SOFTWARE\SourceTec =>.SourceTec HKCU\SOFTWARE\SSPrint =>.Sprint Software HKCU\SOFTWARE\SWiSHzone.com =>.SWiSHzone.com HKCU\SOFTWARE\Sylvain LE GOFF EIRL HKCU\SOFTWARE\Sysinternals =>.Sysinternals HKCU\SOFTWARE\TeamViewer =>.TeamViewer GmbH HKCU\SOFTWARE\Telestream =>.Telestream HKCU\SOFTWARE\Telestream, Inc. =>.Telestream, Inc. HKCU\SOFTWARE\The Document Foundation =>.The Document Foundation HKCU\SOFTWARE\Trolltech =>.Trolltech HKCU\SOFTWARE\tvp HKCU\SOFTWARE\Viber =>.Viber HKCU\SOFTWARE\Viber Media S.à r.l =>.Viber Media HKCU\SOFTWARE\Video DVD Maker FREE HKCU\SOFTWARE\VideoGrabber HKCU\SOFTWARE\VMware, Inc. =>.VMware, Inc. HKCU\SOFTWARE\WinRAR =>.WinRAR HKCU\SOFTWARE\WinRAR SFX =>.RarLab HKCU\SOFTWARE\WireCastSupportAssistant HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft HKCU\SOFTWARE\AppDataLow\Software\ThinPrint =>.ThinPrint HKU\.DEFAULT\SOFTWARE\AeroAdmin HKU\.DEFAULT\SOFTWARE\ej-technologies =>.ej-technologies HKU\.DEFAULT\SOFTWARE\Google =>.Google HKU\.DEFAULT\SOFTWARE\Imaging Solutions HKU\.DEFAULT\SOFTWARE\JavaSoft =>.JavaSoft HKU\.DEFAULT\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKU\.DEFAULT\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs HKU\.DEFAULT\SOFTWARE\Opera Software =>.Opera Software HKU\.DEFAULT\SOFTWARE\SSPrint =>.Sprint Software HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\3DFA HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\3f6f6000-c95b-5848-8119-26077330b6e5 =>Adware.CrossRider HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\AAA_LOGO =>.SWGSoft HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\ABBYY =>.ABBYY Software HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Adobe =>.Adobe HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Akeo Consulting =>.Akeo Consulting HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Anvsoft =>.AnvSoft Inc HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Apowersoft =>.Apowersoft HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\AppDataLow =>.Microsoft Corporation HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Apple Inc. =>.Apple Inc. HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Applications WinDev =>.WinDev HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\ATROUCHE Abdelghani HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\BART HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Bigasoft =>.Bigasoft Corporation HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Blizz HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\BugSplat =>.Bugsplat Game HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Canon =>.Canon HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Chromium =>.Chromium HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Cisco =>.Cisco Systems, Inc. HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Common Desktop Agent =>.Samsung Electronics HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\CRM HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Cygwin =>.Cygwin HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\drpsu =>.SUP.DriverPack HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\DRPSu Updater =>.SUP.DriverPack HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\DVDVideoSoft =>.DVDVideoSoft HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Edraw HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Eltima =>.Eltima HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\EPSON =>.EPSON HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\eSellerate =>.eSellerate HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Fac Med HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Faculeté de médecine HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\FileMaker =>.FileMaker Inc HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\FileOpen =>.FileOpen Systems Inc. HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\FileZilla Server =>.FileZilla HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\FreeTime =>.FreeTime Inc HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Google =>.Google HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Haali =>.Haali Media HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\hMailServer HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\ICS-Informatique =>.ICS-Informatique HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\IM Providers =>.IM Providers HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Imaging Solutions HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Index Education =>.Index Education HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Intel =>.Intel HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\JavaSoft =>.JavaSoft HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\KasperskyLab =>.Kaspersky Labs HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\KasperskyLabSetup =>.Kaspersky Labs HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\LAV =>.LAV Inc HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Local AppWizard-Generated Applications =>.ZWCAD HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Macromedia =>.Macromedia HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\MediaBurner HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Mozilla =>.Mozilla HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\MPC-HC =>.MPC-HC Team HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\NCH Software =>.NCH Software HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\NCH Swift Sound =>.NCH Swift Sound HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Nero =>.Ahead Corporation HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\NetCrate Software =>.NetCrate Software HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Netscape =>.Netscape HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Nitro =>.Nitro HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Nitro PDF =>.Nitro PDF HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\ODBC =>.DB Connectivity Solutions HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Opera Software =>.Opera Software HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Oracle =>.Oracle HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\PC SOFT =>.PC SOFT HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\pgAdmin III =>.pgAdmin Team HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Picture HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Piece détachée HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Piriform =>.Piriform HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\PostgreSQL =>.PostgreSQL HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\ProductSetup =>Adware.InstallCore HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\QtProject =>.QtProject HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Realtek =>.Realtek Semiconductor Corp. HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Samsung =>.Samsung Electronics HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\SEIKO EPSON =>.Epson/Seico HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\SimonTatham =>.Simon Tatham HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Sony Corporation =>.Sony Corporation HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\SourceTec =>.SourceTec HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\SSPrint =>.Sprint Software HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\SWiSHzone.com =>.SWiSHzone.com HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Sylvain LE GOFF EIRL HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Sysinternals =>.Sysinternals HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\TeamViewer =>.TeamViewer GmbH HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Telestream =>.Telestream HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Telestream, Inc. =>.Telestream, Inc. HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\The Document Foundation =>.The Document Foundation HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Trolltech =>.Trolltech HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\tvp HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Viber =>.Viber HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Viber Media S.à r.l =>.Viber Media HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\Video DVD Maker FREE HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\VideoGrabber HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\VMware, Inc. =>.VMware, Inc. HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\WinRAR =>.WinRAR HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\WinRAR SFX =>.RarLab HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\WireCastSupportAssistant HKU\S-1-5-21-234023727-2096472289-1681642753-1000\SOFTWARE\ZHP =>.Nicolas Coolman ---\\ CONTENU DES DOSSIERS PROGRAMMES (352) - 157s O43 - CFD: 19/12/2018 - [] D -- C:\Program Files\3D Flash Animator 4.9.8.7 O43 - CFD: 08/02/2017 - [] D -- C:\Program Files\AAALOGO =>.SWGSoft O43 - CFD: 08/02/2017 - [] D -- C:\Program Files\AAALOGO2010 O43 - CFD: 11/10/2016 - [] D -- C:\Program Files\ABBYY FineReader 5.0 Sprint =>.ABBYY Software O43 - CFD: 18/03/2019 - [] D -- C:\Program Files\Adobe =>.Adobe Systems Incorporated® O43 - CFD: 20/03/2019 - [0] D -- C:\Program Files\Anvsoft =>.AnvSoft Inc O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\Apple Software Update =>.Apple Inc. O43 - CFD: 23/01/2017 - [] D -- C:\Program Files\ArgoUML O43 - CFD: 31/10/2016 - [] D -- C:\Program Files\Bigasoft =>.Bigasoft Corporation O43 - CFD: 22/12/2016 - [] D -- C:\Program Files\ByteFence =>SUP.Optional.ByteFence O43 - CFD: 28/09/2017 - [] D -- C:\Program Files\Canon =>.CANON INC.® O43 - CFD: 13/02/2017 - [] D -- C:\Program Files\Cisco =>.Cisco Systems, Inc. O43 - CFD: 14/12/2017 - [] D -- C:\Program Files\Classe Manager 2.0 O43 - CFD: 18/03/2019 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 17/10/2018 - [] D -- C:\Program Files\DDR - Pen Drive Recovery(Demo) =>.Pro Data Doctor Pvt. Ltd.® O43 - CFD: 02/11/2016 - [] D -- C:\Program Files\DriverPack Notifier =>.SUP.DriverPack O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\DVD Maker =>.Aone Software O43 - CFD: 07/11/2018 - [] D -- C:\Program Files\E-Spreader O43 - CFD: 23/09/2019 - [] D -- C:\Program Files\EasyPHP-5.3.9 =>.Emmanuel Faivre O43 - CFD: 23/01/2017 - [] D -- C:\Program Files\EasyPHP-Devserver-16.1 =>.Emmanuel Faivre O43 - CFD: 24/06/2019 - [] D -- C:\Program Files\Edraw {49C8B878580D02C17A6016651581371E}. O43 - CFD: 10/06/2019 - [] D -- C:\Program Files\Eltima Software =>.ELTIMA Software O43 - CFD: 10/10/2016 - [0] SHD -- C:\Program Files\Fichiers communs =>.Microsoft Corporation O43 - CFD: 14/02/2017 - [] D -- C:\Program Files\FileMaker =>.FileMaker, Inc® O43 - CFD: 19/10/2016 - [] D -- C:\Program Files\FileZilla FTP Client =>.Tim Kosse O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\FileZilla Server =>.FileZilla O43 - CFD: 10/02/2019 - [] D -- C:\Program Files\FormatFactory =>.FormatFactory O43 - CFD: 27/10/2016 - [] D -- C:\Program Files\Free Video Joiner =>.FreeVideoJoiner.com O43 - CFD: 26/10/2016 - [] D -- C:\Program Files\FreeCodecPack =>.Free Codec Pack O43 - CFD: 08/04/2019 - [] D -- C:\Program Files\Google =>.Google LLC® O43 - CFD: 23/01/2018 - [] D -- C:\Program Files\hMailServer O43 - CFD: 11/11/2018 - [] D -- C:\Program Files\IBM =>.IBM O43 - CFD: 02/09/2019 - [] D -- C:\Program Files\Index Education =>.INDEX EDUCATION SASU® O43 - CFD: 19/12/2018 - [] HD -- C:\Program Files\InstallShield Installation Information =>.InstallShield O43 - CFD: 19/10/2016 - [] D -- C:\Program Files\Intel =>.Intel Corporation O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation O43 - CFD: 23/01/2017 - [] D -- C:\Program Files\Java =>.Oracle O43 - CFD: 14/05/2018 - [] D -- C:\Program Files\Kaspersky Lab =>.Kaspersky Lab O43 - CFD: 08/05/2017 - [] D -- C:\Program Files\Lexmark =>.Lexmark O43 - CFD: 16/10/2016 - [] D -- C:\Program Files\LibreOffice 5 =>.LibreOffice O43 - CFD: 23/09/2019 - [] D -- C:\Program Files\MachinerData =>Trojan.CrthRazy O43 - CFD: 02/09/2019 - [] D -- C:\Program Files\Marouk O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\Microsoft Analysis Services =>.Microsoft Corporation O43 - CFD: 12/03/2017 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation O43 - CFD: 07/03/2017 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition =>.Microsoft Corporation O43 - CFD: 14/11/2017 - [] D -- C:\Program Files\Microsoft Synchronization Services =>.Microsoft Corporation O43 - CFD: 07/03/2017 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 27/10/2016 - [] D -- C:\Program Files\Movie Maker 2.6 =>.Microsoft Corporation O43 - CFD: 08/09/2019 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla O43 - CFD: 02/09/2019 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla O43 - CFD: 09/11/2017 - [] D -- C:\Program Files\Mozilla Thunderbird =>.Mozilla O43 - CFD: 07/03/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 24/06/2019 - [] D -- C:\Program Files\Multitimer O43 - CFD: 11/12/2016 - [] D -- C:\Program Files\MusicMp3Downloader =>.Music MP3 Search Inc. O43 - CFD: 10/01/2019 - [] D -- C:\Program Files\NCH Software =>.NCH Software O43 - CFD: 19/02/2019 - [] D -- C:\Program Files\Nero =>.Ahead Corporation O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\Nitro =>.Nitro O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\Nuxeo =>.Nuxeo O43 - CFD: 30/09/2018 - [] D -- C:\Program Files\OCS Inventory Agent =>.OCS Inventory Team O43 - CFD: 17/06/2019 - [] D -- C:\Program Files\Odoo 8.0-20171010 O43 - CFD: 04/07/2019 - [] D -- C:\Program Files\Opera =>.Opera Software O43 - CFD: 17/11/2016 - [] D -- C:\Program Files\Oracle =>.Oracle O43 - CFD: 13/02/2017 - [0] D -- C:\Program Files\Orb Networks O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\PostgreSQL =>.PostgreSQL O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\QuickTime =>Riskware.QuickTime O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\Realtek =>.Realtek O43 - CFD: 20/11/2016 - [] D -- C:\Program Files\Recuva =>.Piriform O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 14/11/2016 - [] D -- C:\Program Files\Runtime Software =>.Runtime Software, LLC® O43 - CFD: 03/11/2016 - [] D -- C:\Program Files\Samsung =>.Samsung Electronics O43 - CFD: 03/11/2016 - [] D -- C:\Program Files\SamsungPrinterLiveUpdate =>.Samsung Electronics O43 - CFD: 03/11/2016 - [] D -- C:\Program Files\SamsungPrinterLiveUpdateInstaller =>.Samsung Electronics O43 - CFD: 11/10/2016 - [] D -- C:\Program Files\ScanDrv6 O43 - CFD: 27/11/2018 - [] D -- C:\Program Files\Sweet Home 3D =>.eTeks O43 - CFD: 08/09/2019 - [] D -- C:\Program Files\TeamViewer =>.TeamViewer GmbH O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\Telestream =>.Telestream O43 - CFD: 30/10/2016 - [] D -- C:\Program Files\Total Video Converter O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 26/10/2016 - [] D -- C:\Program Files\Video DVD Maker O43 - CFD: 24/10/2016 - [] D -- C:\Program Files\VideoLAN =>.VideoLan Team O43 - CFD: 17/11/2016 - [] D -- C:\Program Files\VMware =>.VMware, Inc.® O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation O43 - CFD: 26/10/2016 - [] D -- C:\Program Files\Windows Live =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 19/10/2016 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH® O43 - CFD: 08/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AAA Logo O43 - CFD: 08/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AAA Logo 2010 O43 - CFD: 11/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader Tools =>.ABBYY Software O43 - CFD: 10/10/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 18/05/2017 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 23/01/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArgoUML O43 - CFD: 17/06/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google O43 - CFD: 28/09/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon =>.Canon O43 - CFD: 13/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco =>.Cisco Systems, Inc. O43 - CFD: 14/12/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classe Manager 2.0 O43 - CFD: 17/10/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DDR - Pen Drive Recovery(Demo) O43 - CFD: 07/11/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\e-Spreader O43 - CFD: 19/10/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP 5.3.9 =>.Emmanuel Faivre O43 - CFD: 24/06/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EdrawSoft =>.EdrawSoft O43 - CFD: 10/06/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eltima Software =>.ELTIMA Software O43 - CFD: 27/11/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTeks Sweet Home 3D =>.eTeks O43 - CFD: 19/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client =>.Tim Kosse O43 - CFD: 28/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla Server =>.FileZilla O43 - CFD: 27/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Video Joiner =>.FreeVideoJoiner.com O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation O43 - CFD: 28/11/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Web Designer O43 - CFD: 23/01/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hMailServer O43 - CFD: 11/11/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics =>.IBM Corporation O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle O43 - CFD: 14/05/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security =>.Kaspersky Lab O43 - CFD: 28/04/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection =>.Kaspersky Lab O43 - CFD: 16/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1 =>.LibreOffice O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 07/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 =>.Microsoft Corporation O43 - CFD: 11/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiraScan V6.1 (5000) O43 - CFD: 19/02/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero =>.Ahead Corporation O43 - CFD: 14/03/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuxeo =>.Nuxeo O43 - CFD: 16/10/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 9.3 O43 - CFD: 09/07/2018 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrintMe Internet Printing O43 - CFD: 22/12/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programme de désinstallation de l'imprimante Canon O43 - CFD: 10/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de vidéo O43 - CFD: 06/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime =>Riskware.QuickTime O43 - CFD: 20/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva =>.Piriform O43 - CFD: 14/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Runtime Software =>.Runtime Software O43 - CFD: 03/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers =>.Samsung Electronics O43 - CFD: 30/09/2018 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 10/01/2019 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software =>.NCH Software O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology O43 - CFD: 06/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telestream =>.Telestream O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter O43 - CFD: 20/03/2019 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Triade O43 - CFD: 26/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video DVD Maker O43 - CFD: 24/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team O43 - CFD: 17/11/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware =>.VMware O43 - CFD: 19/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 11/12/2018 - [] HD -- C:\ProgramData\3788m5682m7954M698 O43 - CFD: 17/06/2018 - [] HD -- C:\ProgramData\8776m8189m6623M3737 O43 - CFD: 18/03/2019 - [] D -- C:\ProgramData\Adobe =>.Adobe O43 - CFD: 10/07/2019 - [] D -- C:\ProgramData\Aeroadmin O43 - CFD: 06/02/2017 - [] D -- C:\ProgramData\Apple =>.Apple Inc. O43 - CFD: 06/02/2017 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc. O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 10/10/2016 - [0] SHD -- C:\ProgramData\Bureau =>.Microsoft Corporation O43 - CFD: 28/09/2017 - [] D -- C:\ProgramData\Canon =>.Canon O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 07/11/2018 - [] D -- C:\ProgramData\E-SPREADER O43 - CFD: 24/06/2019 - [] D -- C:\ProgramData\EdrawSoft =>.EdrawSoft O43 - CFD: 06/02/2017 - [] D -- C:\ProgramData\eSellerate =>.eSellerate O43 - CFD: 10/10/2016 - [0] SHD -- C:\ProgramData\Favoris =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation O43 - CFD: 14/02/2017 - [] D -- C:\ProgramData\FileMaker O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\FileOpen =>.FileOpen Systems Inc. O43 - CFD: 02/09/2018 - [] D -- C:\ProgramData\IndexEducation =>.ION O43 - CFD: 17/10/2016 - [] D -- C:\ProgramData\IObit =>.IObit O43 - CFD: 03/10/2019 - [] D -- C:\ProgramData\Kaspersky Lab =>.Kaspersky Lab O43 - CFD: 20/05/2019 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files =>.Kaspersky Lab O43 - CFD: 10/10/2016 - [0] SHD -- C:\ProgramData\Menu Démarrer =>.Microsoft Corporation O43 - CFD: 16/10/2018 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 13/03/2017 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation O43 - CFD: 10/10/2016 - [0] SHD -- C:\ProgramData\Modèles =>.Microsoft Corporation O43 - CFD: 15/07/2019 - [] D -- C:\ProgramData\Mozilla =>.Mozilla Corporation O43 - CFD: 10/01/2019 - [] D -- C:\ProgramData\NCH Software =>.NCH Software O43 - CFD: 19/02/2019 - [] D -- C:\ProgramData\Nero =>.Ahead Corporation O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\Nitro =>.Nitro O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\Nuxeo =>.Nuxeo O43 - CFD: 30/09/2018 - [] D -- C:\ProgramData\OCS Inventory NG =>.OCS Inventory NG O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\Oracle =>.Oracle O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 03/11/2016 - [] D -- C:\ProgramData\ProductData =>.Microsoft Corporation O43 - CFD: 18/03/2019 - [] D -- C:\ProgramData\regid.1986-12.com.adobe =>.Adobe Inc. O43 - CFD: 07/03/2017 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation O43 - CFD: 31/10/2016 - [] D -- C:\ProgramData\SafeNet Sentinel =>.SafeNet O43 - CFD: 03/11/2016 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation O43 - CFD: 10/10/2016 - [] D -- C:\ProgramData\Sun =>.Oracle O43 - CFD: 06/02/2017 - [0] D -- C:\ProgramData\Telestream =>.Telestream O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation O43 - CFD: 03/10/2019 - [] D -- C:\ProgramData\VMware =>.VMware O43 - CFD: 24/06/2019 - [] D -- C:\ProgramData\WIFIService O43 - CFD: 18/03/2019 - [] D -- C:\Program Files\Common Files\Adobe =>.Adobe O43 - CFD: 02/11/2016 - [] D -- C:\Program Files\Common Files\Aladdin Shared =>.Aladdin Knowledge Systems O43 - CFD: 06/02/2017 - [] D -- C:\Program Files\Common Files\Apple =>.Apple Inc. O43 - CFD: 14/05/2018 - [] D -- C:\Program Files\Common Files\AV =>.Avast O43 - CFD: 17/12/2017 - [] D -- C:\Program Files\Common Files\Borland Shared =>.Borland O43 - CFD: 03/11/2016 - [] D -- C:\Program Files\Common Files\Common Desktop Agent =>.OEM O43 - CFD: 12/03/2017 - [] D -- C:\Program Files\Common Files\DESIGNER =>.Designer O43 - CFD: 27/10/2016 - [] D -- C:\Program Files\Common Files\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 06/11/2016 - [0] D -- C:\Program Files\Common Files\EPSON =>.EPSON O43 - CFD: 14/12/2017 - [] D -- C:\Program Files\Common Files\InstallShield =>.InstallShield O43 - CFD: 19/10/2016 - [] D -- C:\Program Files\Common Files\Intel =>.Intel Corporation O43 - CFD: 23/01/2017 - [] D -- C:\Program Files\Common Files\Java =>.Oracle O43 - CFD: 12/03/2017 - [] D -- C:\Program Files\Common Files\microsoft shared =>.Microsoft Corporation O43 - CFD: 19/02/2019 - [] D -- C:\Program Files\Common Files\Nero =>.Ahead Corporation O43 - CFD: 10/10/2016 - [] D -- C:\Program Files\Common Files\Nitro =>.Nitro O43 - CFD: 07/11/2018 - [] D -- C:\Program Files\Common Files\PC SOFT =>.PC Soft O43 - CFD: 20/11/2016 - [] D -- C:\Program Files\Common Files\SafeNet Sentinel =>.SafeNet O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines =>.Microsoft Corporation O43 - CFD: 07/03/2017 - [] D -- C:\Program Files\Common Files\System =>.Microsoft Corporation O43 - CFD: 17/11/2016 - [] D -- C:\Program Files\Common Files\VMware =>.VMware O43 - CFD: 26/10/2016 - [] D -- C:\Program Files\Common Files\Windows Live =>.Microsoft Corporation O43 - CFD: 27/10/2016 - [0] D -- C:\Users\Admin\AppData\Roaming\3DFA O43 - CFD: 18/03/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 11/10/2016 - [0] D -- C:\Users\Admin\AppData\Roaming\AdobeUM =>.Adobe Inc. O43 - CFD: 05/02/2017 - [] D -- C:\Users\Admin\AppData\Roaming\Anvsoft =>.AnvSoft Inc O43 - CFD: 10/01/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Apowersoft =>.Apowersoft O43 - CFD: 12/02/2017 - [] D -- C:\Users\Admin\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 15/01/2018 - [] D -- C:\Users\Admin\AppData\Roaming\Applications WinDev =>.WinDev O43 - CFD: 31/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Bigasoft Total Video Converter 5 =>.Bigasoft Corporation O43 - CFD: 03/10/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Blizz O43 - CFD: 04/10/2017 - [] D -- C:\Users\Admin\AppData\Roaming\Canon =>.Canon O43 - CFD: 14/02/2017 - [] D -- C:\Users\Admin\AppData\Roaming\Cisco =>.Cisco Systems, Inc. O43 - CFD: 11/12/2018 - [] D -- C:\Users\Admin\AppData\Roaming\DataRecommendations =>.Unknown O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Downloaded Installations =>.Microsoft Corporation O43 - CFD: 02/11/2016 - [] AD -- C:\Users\Admin\AppData\Roaming\DriverPack Notifier =>.SUP.DriverPack O43 - CFD: 20/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\DRPNPS =>.SUP.DriverPack O43 - CFD: 12/02/2017 - [] D -- C:\Users\Admin\AppData\Roaming\DRPSu =>.SUP.DriverPack O43 - CFD: 21/02/2019 - [] D -- C:\Users\Admin\AppData\Roaming\dvdcss =>.VideoLan Team O43 - CFD: 27/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\DVDVideoSoft =>.DVDVideoSoft O43 - CFD: 07/11/2018 - [] D -- C:\Users\Admin\AppData\Roaming\E-SPREADER O43 - CFD: 16/12/2018 - [] D -- C:\Users\Admin\AppData\Roaming\Eduanat2 O43 - CFD: 27/11/2018 - [] D -- C:\Users\Admin\AppData\Roaming\eTeks =>.eTeks O43 - CFD: 14/02/2017 - [] D -- C:\Users\Admin\AppData\Roaming\FileMaker O43 - CFD: 14/02/2017 - [0] D -- C:\Users\Admin\AppData\Roaming\FileMaker Pro Advanced O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\FileOpen =>.FileOpen Systems Inc. O43 - CFD: 15/09/2019 - [] D -- C:\Users\Admin\AppData\Roaming\FileZilla =>.FileZilla O43 - CFD: 03/10/2018 - [] D -- C:\Users\Admin\AppData\Roaming\Google =>.Google O43 - CFD: 25/04/2018 - [] D -- C:\Users\Admin\AppData\Roaming\gtk-2.0 =>.GTK Project O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Identities =>.Microsoft Corporation O43 - CFD: 17/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\IObit =>.IObit O43 - CFD: 16/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\LibreOffice =>.LibreOffice O43 - CFD: 18/03/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Admin\AppData\Roaming\Media Center Programs =>.Microsoft Corporation O43 - CFD: 27/12/2018 - [] SD -- C:\Users\Admin\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 10/01/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Mozilla =>.Mozilla Corporation O43 - CFD: 10/01/2019 - [] D -- C:\Users\Admin\AppData\Roaming\NCH Software =>.NCH Software O43 - CFD: 26/05/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Nitro =>.Nitro O43 - CFD: 29/09/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Nitro PDF =>.Nitro PDF O43 - CFD: 14/03/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Nuxeo =>.Nuxeo O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Opera =>.Opera Software O43 - CFD: 04/07/2019 - [0] D -- C:\Users\Admin\AppData\Roaming\Opera Software =>.Opera Software O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\postgresql =>.PostgreSQL O43 - CFD: 03/11/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Samsung =>.Samsung Electronics O43 - CFD: 06/02/2017 - [] D -- C:\Users\Admin\AppData\Roaming\Serviio-Console-Wrapper =>.Serviio O43 - CFD: 03/06/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Sony Corporation =>.Sony Corporation O43 - CFD: 10/06/2019 - [] D -- C:\Users\Admin\AppData\Roaming\TeamViewer =>.TeamViewer GmbH O43 - CFD: 09/11/2017 - [] D -- C:\Users\Admin\AppData\Roaming\Thunderbird =>.Thunderbird O43 - CFD: 06/02/2017 - [0] D -- C:\Users\Admin\AppData\Roaming\Vara Software O43 - CFD: 03/10/2019 - [] D -- C:\Users\Admin\AppData\Roaming\ViberPC =>.Viber O43 - CFD: 26/10/2016 - [0] D -- C:\Users\Admin\AppData\Roaming\Video DVD Maker FREE O43 - CFD: 09/06/2019 - [] D -- C:\Users\Admin\AppData\Roaming\vlc =>.VideoLan Team O43 - CFD: 23/09/2019 - [] D -- C:\Users\Admin\AppData\Roaming\VMware =>.VMware O43 - CFD: 10/10/2017 - [] D -- C:\Users\Admin\AppData\Roaming\WD MotDePasse O43 - CFD: 19/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\WinRAR =>.WinRAR O43 - CFD: 16/05/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Wirecast =>.Telestream LLC O43 - CFD: 03/10/2019 - [] D -- C:\Users\Admin\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 02/10/2017 - [] D -- C:\Users\Admin\AppData\Local\ABBYY =>.ABBYY Software O43 - CFD: 21/03/2019 - [] D -- C:\Users\Admin\AppData\Local\Adobe =>.Adobe O43 - CFD: 06/02/2017 - [] D -- C:\Users\Admin\AppData\Local\Apple =>.Apple Inc. O43 - CFD: 18/02/2019 - [] D -- C:\Users\Admin\AppData\Local\Apple Computer =>.Apple Inc. O43 - CFD: 10/10/2016 - [0] SHD -- C:\Users\Admin\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 14/12/2017 - [] D -- C:\Users\Admin\AppData\Local\Blizz O43 - CFD: 25/09/2017 - [] D -- C:\Users\Admin\AppData\Local\cache =>.Legitimate O43 - CFD: 13/02/2017 - [] D -- C:\Users\Admin\AppData\Local\Cisco =>.Cisco Systems, Inc. O43 - CFD: 19/09/2019 - [] D -- C:\Users\Admin\AppData\Local\CrashDumps =>.Microsoft Corporation O43 - CFD: 11/12/2018 - [] D -- C:\Users\Admin\AppData\Local\DataRecommendation =>.Unknown O43 - CFD: 19/06/2019 - [0] D -- C:\Users\Admin\AppData\Local\Diagnostics =>.Microsoft Corporation O43 - CFD: 13/02/2017 - [] D -- C:\Users\Admin\AppData\Local\Downloaded Installations =>.Microsoft Corporation O43 - CFD: 26/03/2019 - [] D -- C:\Users\Admin\AppData\Local\easyQuizzy O43 - CFD: 24/06/2019 - [] D -- C:\Users\Admin\AppData\Local\Edraw O43 - CFD: 04/09/2019 - [0] D -- C:\Users\Admin\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation O43 - CFD: 14/02/2017 - [] D -- C:\Users\Admin\AppData\Local\FileMaker O43 - CFD: 10/02/2019 - [] D -- C:\Users\Admin\AppData\Local\fontconfig =>.Portable Apps O43 - CFD: 23/10/2018 - [] D -- C:\Users\Admin\AppData\Local\Google =>.Google O43 - CFD: 14/11/2017 - [] D -- C:\Users\Admin\AppData\Local\Halvar Information O43 - CFD: 07/11/2018 - [] D -- C:\Users\Admin\AppData\Local\Hewlett-Packard =>.Hewlett-Packard O43 - CFD: 10/10/2016 - [0] SHD -- C:\Users\Admin\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 31/10/2016 - [] D -- C:\Users\Admin\AppData\Local\IBM =>.IBM O43 - CFD: 31/10/2016 - [] D -- C:\Users\Admin\AppData\Local\javasharedresources =>.Legitimate O43 - CFD: 16/05/2019 - [] D -- C:\Users\Admin\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/12/2017 - [] D -- C:\Users\Admin\AppData\Local\Microsoft Help =>.Microsoft Corporation O43 - CFD: 18/12/2017 - [] D -- C:\Users\Admin\AppData\Local\Microsoft_Corporation =>.Microsoft Corporation O43 - CFD: 13/02/2017 - [] D -- C:\Users\Admin\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 17/06/2018 - [] D -- C:\Users\Admin\AppData\Local\mpress =>.MPress O43 - CFD: 14/12/2017 - [] D -- C:\Users\Admin\AppData\Local\OpenERP S.A O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\Local\Opera =>.Opera Software O43 - CFD: 04/07/2019 - [0] D -- C:\Users\Admin\AppData\Local\Opera Software =>.Opera Software O43 - CFD: 20/12/2016 - [] D -- C:\Users\Admin\AppData\Local\Package Cache =>.Microsoft Corporation O43 - CFD: 28/11/2016 - [] D -- C:\Users\Admin\AppData\Local\PC SOFT =>.PC Soft O43 - CFD: 16/12/2018 - [] D -- C:\Users\Admin\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 19/10/2016 - [] D -- C:\Users\Admin\AppData\Local\TeamViewer =>.TeamViewer GmbH O43 - CFD: 03/10/2019 - [] D -- C:\Users\Admin\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 10/10/2016 - [0] SHD -- C:\Users\Admin\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 09/11/2017 - [] D -- C:\Users\Admin\AppData\Local\Thunderbird =>.Thunderbird O43 - CFD: 02/10/2019 - [] D -- C:\Users\Admin\AppData\Local\Viber =>.Viber O43 - CFD: 11/09/2017 - [] D -- C:\Users\Admin\AppData\Local\Viber Media S.à r.l =>.Viber Media S.à r.l O43 - CFD: 28/11/2016 - [] D -- C:\Users\Admin\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 12/09/2019 - [] D -- C:\Users\Admin\AppData\Local\VMware =>.VMware O43 - CFD: 10/10/2017 - [] D -- C:\Users\Admin\AppData\Local\WD Proxy HTTP O43 - CFD: 07/11/2018 - [] D -- C:\Users\Admin\AppData\Local\WDSetup =>.WDSetup O43 - CFD: 26/10/2016 - [] D -- C:\Users\Admin\AppData\Local\Windows Live =>.Microsoft Corporation O43 - CFD: 09/06/2019 - [0] D -- C:\Users\Admin\AppData\Local\WMTools Downloaded Files =>.WMTools O43 - CFD: 03/10/2019 - [] D -- C:\Users\Admin\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 17/10/2016 - [0] D -- C:\Users\Admin\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 16/12/2018 - [] D -- C:\Users\Admin\AppData\Local\Programs\Eduanat2 O43 - CFD: 18/03/2019 - [] D -- C:\Users\Admin\AppData\LocalLow\Adobe =>.Adobe O43 - CFD: 06/02/2017 - [] D -- C:\Users\Admin\AppData\LocalLow\Apple Computer =>.Apple Inc. O43 - CFD: 17/10/2016 - [] D -- C:\Users\Admin\AppData\LocalLow\IObit =>.IObit O43 - CFD: 26/10/2016 - [] SHD -- C:\Users\Admin\AppData\LocalLow\Microsoft =>.Microsoft Corporation O43 - CFD: 04/09/2019 - [0] D -- C:\Users\Admin\AppData\LocalLow\Mozilla =>.Mozilla Corporation O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\LocalLow\Oracle =>.Oracle O43 - CFD: 10/10/2016 - [] D -- C:\Users\Admin\AppData\LocalLow\Sun =>.Oracle O43 - CFD: 02/03/2017 - [] D -- C:\Users\Admin\AppData\LocalLow\Temp =>.Microsoft Corporation O43 - CFD: 16/04/2018 - [] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 10/10/2016 - [] RD -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 23/01/2017 - [0] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ArgoUML O43 - CFD: 31/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bigasoft =>.Bigasoft Corporation O43 - CFD: 10/02/2019 - [] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory =>.FormatFactory O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 11/10/2016 - [0] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MiraScan V6.1 (5000) O43 - CFD: 04/10/2018 - [] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rapla, le planificateur intelligent O43 - CFD: 12/03/2017 - [] RD -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 20/12/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber =>.Viber O43 - CFD: 19/10/2016 - [] D -- C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 06/01/2019 - [] D -- C:\Users\Default\AppData\Local\Google =>.Google O43 - CFD: 10/10/2016 - [0] SHD -- C:\Users\Default\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 06/01/2019 - [] D -- C:\Users\Default User\AppData\Local\Google =>.Google O43 - CFD: 10/10/2016 - [0] SHD -- C:\Users\Default User\AppData\Local\Historique =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 19/09/2019 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\CrashDumps =>.Microsoft Corporation O43 - CFD: 26/10/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 17/11/2016 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\VMware =>.VMware O43 - CFD: 25/12/2016 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 19/09/2018 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Opera Software =>.Opera Software O43 - CFD: 03/10/2019 - [0] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\VMware =>.VMware ---\\ DERNIERS FICHIERS CRÉÉS DANS WINDOWS Prefetcher (1) - 7s O45 - LFCP:[MD5.D620988AA2364EA32295AD47A27F0061] 03/10/2019 A -- C:\Windows\Prefetch\KMS-R@1NHOOK.EXE-95CFB3BC.pf =>HackTool.AutoKMS ---\\ ShellIconOverlayIdentifiers (SIOI) (9) - 1s O106 - SIOI: Google Drive Shell extension [ GoogleDriveBlacklisted] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll =>.Google LLC® O106 - SIOI: Google Drive Shell extension [ GoogleDriveSynced] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll =>.Google LLC® O106 - SIOI: Google Drive Shell extension [ GoogleDriveSyncing] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll =>.Google LLC® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ RACCOURCIS DES MENUS CONTEXTUELS (SCMH) (33) - 2s O108 - CMH1: BriefcaseMenu - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation O108 - CMH1: FormatFactoryShell - {A3888923-CFD3-4A6B-89BF-08E6B95716E8} . (.Free Time - FormatFactory Shell Menu Module.) -- C:\Program Files\FormatFactory\ShellEx_105.dll =>.Free Time O108 - CMH1: GDContextMenu - {BB02B294-8425-42E5-983F-41A1FA970CD6} . (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\contextmenu32.dll =>.Google LLC® O108 - CMH1: Kaspersky Anti-Virus 18.0.0 - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\shellex.dll =>.Kaspersky Lab® O108 - CMH1: NPShellExtension - {9C4B85B8-956C-49BF-9BA5-101384E562B2} . (.Nitro PDF - Nitro Pro ShellExtension.) -- C:\Program Files\Nitro\Pro 8\NPShellExtension.dll =>.Nitro PDF Software® O108 - CMH1: Open With - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH1: Open With EncryptionMenu - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH1: Sharing - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH1: TVCShellExt - {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} . (. - TVCShellExt Module.) -- C:\Program Files\Total Video Converter\TVCShellExt.dll O108 - CMH1: WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH® O108 - CMH2: Compatibility - {1d27f844-3a1f-4410-85ac-14651078412d} . (.Microsoft Corporation - Bibliothèque d’extension de l’onglet Compat.) -- C:\Windows\System32\acppage.dll =>.Microsoft Corporation O108 - CMH2: GDContextMenu - {BB02B294-8425-42E5-983F-41A1FA970CD6} . (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\contextmenu32.dll =>.Google LLC® O108 - CMH2: OpenContainingFolderMenu - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH3: CopyAsPathMenu - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH3: SendTo - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH4: EncryptionMenu - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH4: FormatFactoryShell - {A3888923-CFD3-4A6B-89BF-08E6B95716E8} . (.Free Time - FormatFactory Shell Menu Module.) -- C:\Program Files\FormatFactory\ShellEx_105.dll =>.Free Time O108 - CMH4: GDContextMenu - {BB02B294-8425-42E5-983F-41A1FA970CD6} . (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\contextmenu32.dll =>.Google LLC® O108 - CMH4: Kaspersky Anti-Virus 18.0.0 - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\shellex.dll =>.Kaspersky Lab® O108 - CMH4: Offline Files - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation O108 - CMH4: Sharing - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH5: Gadgets - {6B9228DA-9C15-419e-856C-19E768A13BDC} . (.Microsoft Corporation - Zone de déposé du Volet Windows.) -- C:\Program Files\Windows Sidebar\sbdrop.dll =>.Microsoft Corporation O108 - CMH5: igfxDTCM - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\Windows\System32\igfxDTCM.dll =>.Intel Corporation O108 - CMH5: New - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH5: Sharing - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation O108 - CMH6: BriefcaseMenu - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Porte-documents Windows.) -- C:\Windows\System32\syncui.dll =>.Microsoft Corporation O108 - CMH6: Kaspersky Anti-Virus 18.0.0 - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\shellex.dll =>.Kaspersky Lab® O108 - CMH6: Library Location - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll =>.Microsoft Corporation O108 - CMH6: Offline Files - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll =>.Microsoft Corporation O108 - CMH6: WinRAR - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH® O108 - CMH7: EnhancedStorageShell - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O108 - CMH7: Kaspersky Anti-Virus 18.0.0 - {FF48AD48-74C7-4260-B385-FAEB80947450} . (.AO Kaspersky Lab - Shell Extension.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\shellex.dll =>.Kaspersky Lab® O108 - CMH7: Sharing - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ IMAGE FILE EXECUTION OPTIONS (IFEO) (1) - 0s O50 - IFEO:C:\Windows\System32\sppsvc.exe - (.Microsoft Corporation - Service de la plateforme de protection logi.) [Debugger\\KMS-R@1nhook.exe] =>.Microsoft Corporation ---\\ LISTE DES PILOTES DU SYSTÈME (351) - 18s O58 - SDL:2009/07/14 01:51:21 A . (.Microsoft Corporation - 1394 Bus Device Driver.) -- C:\Windows\System32\drivers\1394bus.sys [54784] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:52:00 A . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\drivers\1394ohci.sys [163328] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\drivers\acpi.sys [274496] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:16:36 A . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\drivers\acpipmi.sys [9728] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:12:38 A . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\afd.sys [338944] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:55:00 A . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\drivers\agilevpn.sys [49152] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\drivers\AGP440.sys [53312] =>.Microsoft Windows® O58 - SDL:2016/09/14 05:51:38 A . (.SafeNet, Inc. - Sentinel Class Driver.) -- C:\Windows\System32\drivers\aksclass.sys [36688] =>.SafeNet, Inc.® O58 - SDL:2016/09/14 05:51:38 A . (.SafeNet, Inc. - Ancillary Function Driver.) -- C:\Windows\System32\drivers\aksfridge.sys [450920] =>.SafeNet, Inc.® O58 - SDL:2016/09/14 05:51:34 A . (.SafeNet, Inc. - AKSHASP Device Driver.) -- C:\Windows\System32\drivers\akshasp.sys [266056] =>.SafeNet, Inc.® O58 - SDL:2016/09/14 05:51:40 A . (.SafeNet, Inc. - Sentinel HL Device Driver.) -- C:\Windows\System32\drivers\akshhl.sys [69456] =>.SafeNet, Inc.® O58 - SDL:2016/09/14 05:51:34 A . (.SafeNet, Inc. - Sentinel USB Key Driver.) -- C:\Windows\System32\drivers\aksusb.sys [315216] =>.SafeNet, Inc.® O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - Filtre AGP AMD NT.) -- C:\Windows\System32\drivers\AMDAGP.SYS [53312] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - Pilote IDE AMD.) -- C:\Windows\System32\drivers\amdide.sys [14912] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:11:04 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\amdk8.sys [55296] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:11:04 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\amdppm.sys [52736] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [79952] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [23616] =>.Microsoft Windows® O58 - SDL:2016/08/16 13:59:58 A . (.Alcor Micro, Corp. - Alocr Micro USB Mass Storage Driver.) -- C:\Windows\System32\drivers\AmUStor.sys [84144] =>.AlcorMicro, Corp.® O58 - SDL:2009/07/14 01:36:52 A . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\drivers\appid.sys [50176] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:54:46 A . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\drivers\asyncmac.sys [17920] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\drivers\ataport.sys [133200] =>.Microsoft Windows® O58 - SDL:2009/07/14 00:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888] =>.Broadcom Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\drivers\battc.sys [25168] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:01 A . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\drivers\beep.sys [6144] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:23:04 A . (.Microsoft Corporation - BLB Drive Driver.) -- C:\Windows\System32\drivers\blbdrive.sys [35328] =>.Microsoft Corporation O58 - SDL:2011/03/15 02:38:14 A . (.VMware, Inc. - VMware Modified Clusters Tracking Driver.) -- C:\Windows\System32\drivers\bmdrvr.sys [54384] =>.VMware, Inc.® O58 - SDL:2009/07/14 01:14:22 A . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\drivers\bowser.sys [69632] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 02:41:26 A . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\drivers\bridge.sys [78336] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] =>.Brother Industries Ltd. O58 - SDL:2009/07/14 01:51:34 A . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\drivers\bthmodem.sys [56320] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] =>.Broadcom Corporation O58 - SDL:2009/07/14 01:11:15 A . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\cdfs.sys [70656] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:11:26 A . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\cdrom.sys [108544] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:17 A . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\drivers\circlass.sys [37888] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:15 A . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\drivers\Classpnp.sys [140864] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:19:18 A . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\drivers\CmBatt.sys [14080] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] =>.Microsoft Windows® O58 - SDL:2016/12/26 20:27:10 A . (.AO Kaspersky Lab - Cryptographic Module Driver x86 (56 bit).) -- C:\Windows\System32\drivers\cm_km.sys [176864] =>.Kaspersky Lab® O58 - SDL:2009/07/14 03:17:54 A . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\drivers\cng.sys [369568] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:26:21 A . (.Microsoft Corporation - Composite Battery Driver.) -- C:\Windows\System32\drivers\compbatt.sys [19024] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:26 A . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\drivers\CompositeBus.sys [31232] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\drivers\crashdmp.sys [35408] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - Disk Block Verification Filter Driver.) -- C:\Windows\System32\drivers\crcdisk.sys [22096] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:15:13 A . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\System32\drivers\csc.sys [387584] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:17 A . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\dfsc.sys [78336] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:24:05 A . (.Microsoft Corporation - System Indexer/Cache Driver.) -- C:\Windows\System32\drivers\discache.sys [32256] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:27 A . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\drivers\disk.sys [57424] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\drivers\Diskdump.sys [26688] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:41:37 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\drivers\drmk.sys [80896] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:50:57 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\drivers\drmkaud.sys [5120] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\drivers\Dumpata.sys [26704] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:17:54 A . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\drivers\dumpfve.sys [55584] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:25:26 A . (.Microsoft Corporation - DirectX API Driver.) -- C:\Windows\System32\drivers\dxapi.sys [13312] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:25:25 A . (.Microsoft Corporation - DirectX Graphics Driver.) -- C:\Windows\System32\drivers\dxg.sys [76288] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:26:23 A . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\drivers\dxgkrnl.sys [720896] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:25:35 A . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\drivers\dxgmms1.sys [211968] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:19:19 A . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\drivers\errdev.sys [7168] =>.Microsoft Corporation O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] =>.Broadcom Corporation O58 - SDL:2009/07/14 01:14:03 A . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\drivers\exfat.sys [142336] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:02 A . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\drivers\fastfat.sys [148480] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:45 A . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\drivers\fdc.sys [25088] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\drivers\fileinfo.sys [58448] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:15:29 A . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\drivers\filetrace.sys [28160] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:45 A . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\drivers\flpydisk.sys [19968] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) -- C:\Windows\System32\drivers\fltMgr.sys [198208] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - File System Dependency Manager Mini Filter.) -- C:\Windows\System32\drivers\fsdepends.sys [46160] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\drivers\fs_rec.sys [19536] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:17:54 A . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\drivers\fvevol.sys [194488] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\drivers\FWPKCLNT.SYS [187472] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:28 A . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour pla.) -- C:\Windows\System32\drivers\GAGP30KX.SYS [57936] =>.Microsoft Windows® O58 - SDL:2016/09/14 05:51:34 A . (.SafeNet, Inc. - Sentinel Hardlock Device Driver for Windows.) -- C:\Windows\System32\drivers\hardlock.sys [627048] =>.SafeNet, Inc.® O58 - SDL:2011/08/29 23:11:00 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [32496] =>.VMware, Inc.® O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] =>.Hauppauge Computer Works, Inc. O58 - SDL:2009/07/14 01:50:56 A . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\hdaudbus.sys [108544] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:47 A . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\HdAudio.sys [304128] =>.Microsoft Corporation O58 - SDL:2011/09/22 10:38:36 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys [41216] =>.Intel Corporation O58 - SDL:2009/07/14 01:19:21 A . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\drivers\hidbatt.sys [21504] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:33 A . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périp.) -- C:\Windows\System32\drivers\hidbth.sys [91136] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:01 A . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\drivers\hidclass.sys [55808] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:05 A . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\drivers\hidir.sys [37888] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:00 A . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\drivers\hidparse.sys [25728] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:04 A . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\drivers\hidusb.sys [24064] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:12:59 A . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\drivers\http.sys [513024] =>.Microsoft Corporation O58 - SDL:2016/10/17 12:51:02 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840] =>.Martin Malik - REALiX® O58 - SDL:2009/07/14 03:20:36 A . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\drivers\hwpolicy.sys [13904] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:11:24 A . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] =>.Microsoft Corporation O58 - SDL:2011/05/20 10:43:02 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\drivers\iaStor.sys [461592] =>.Intel Corporation® O58 - SDL:2015/05/29 17:05:32 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\drivers\iaStorA.sys [503048] =>.Intel Corporation - Rapid Storage Technology® O58 - SDL:2015/05/29 17:05:32 A . (.Intel Corporation - Intel Rapid Storage Technology Filter drive.) -- C:\Windows\System32\drivers\iaStorF.sys [27376] =>.Intel Corporation - Rapid Storage Technology® O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332352] =>.Microsoft Windows® O58 - SDL:2016/05/12 18:14:04 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [3031504] =>.Intel(R) pGFX® O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\drivers\intelide.sys [15424] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:11:04 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\intelppm.sys [53760] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:29 A . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\drivers\ipfltdrv.sys [58880] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:30:59 A . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\drivers\IPMIDrv.sys [65536] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:29 A . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\ipnat.sys [101888] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:53:32 A . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\drivers\irda.sys [96768] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:53:27 A . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\drivers\irenum.sys [13824] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:36 A . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\drivers\isapnp.sys [46656] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\drivers\kbdclass.sys [42576] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:09 A . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\drivers\kbdhid.sys [28160] =>.Microsoft Corporation O58 - SDL:2016/10/01 02:26:00 A . (.AO Kaspersky Lab - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [165296] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - Backup Disk Filter [fre_wnet_x86].) -- C:\Windows\System32\drivers\klbackupdisk.sys [62184] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - Backup File Filter [fre_wlh_x86].) -- C:\Windows\System32\drivers\klbackupflt.sys [97512] =>.Kaspersky Lab® O58 - SDL:2016/05/31 23:24:04 A . (.AO Kaspersky Lab - Virtual Disk [fre_wnet_x86].) -- C:\Windows\System32\drivers\kldisk.sys [69000] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - Filter Core [fre_wlh_x86].) -- C:\Windows\System32\drivers\klflt.sys [164056] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - klhk [fre_wlh_x86].) -- C:\Windows\System32\drivers\klhk.sys [229592] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - Core System Interceptors [fre_wlh_x86].) -- C:\Windows\System32\drivers\klif.sys [835264] =>.Kaspersky Lab® O58 - SDL:2016/10/11 14:14:26 A . (.AO Kaspersky Lab - Packet Network Filter [fre_wlh_x86].) -- C:\Windows\System32\drivers\klim6.sys [49744] =>.Kaspersky Lab® O58 - SDL:2016/12/23 09:19:26 A . (.AO Kaspersky Lab - Keyboard Device Filter [fre_wlh_x86].) -- C:\Windows\System32\drivers\klkbdflt.sys [50400] =>.Kaspersky Lab® O58 - SDL:2016/12/07 09:38:44 A . (.AO Kaspersky Lab - Mouse Device Filter [fre_wlh_x86].) -- C:\Windows\System32\drivers\klmouflt.sys [51424] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x86].) -- C:\Windows\System32\drivers\klpd.sys [45552] =>.Kaspersky Lab® O58 - SDL:2016/06/07 01:31:04 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\Windows\System32\drivers\kltap.sys [48056] =>.AnchorFree Inc® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - Legacy Network Filter [fre_wnet_x86].) -- C:\Windows\System32\drivers\kltdi.sys [75760] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - WFP Network Connection Filter Driver [fre_w.) -- C:\Windows\System32\drivers\klwtp.sys [120544] =>.Kaspersky Lab® O58 - SDL:2017/12/24 21:18:00 A . (.AO Kaspersky Lab - Network Processor [fre_wnet_x86].) -- C:\Windows\System32\drivers\kneps.sys [165088] =>.Kaspersky Lab® O58 - SDL:2009/07/14 01:45:15 A . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\drivers\ks.sys [190976] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:36 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\drivers\ksecdd.sys [67664] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\drivers\ksecpkg.sys [133200] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:53:19 A . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\drivers\lltdio.sys [48128] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:15:45 A . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) -- C:\Windows\System32\drivers\luafv.sys [86528] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:57 A . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\drivers\mcd.sys [18432] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:55:24 A . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\drivers\modem.sys [31744] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:25:59 A . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\drivers\monitor.sys [23552] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\drivers\mouclass.sys [41552] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:08 A . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\drivers\mouhid.sys [26112] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\drivers\mountmgr.sys [78416] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Pilote du bus de prise en charge des chemin.) -- C:\Windows\System32\drivers\mpio.sys [130624] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:52:53 A . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\drivers\mpsdrv.sys [60416] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:26 A . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\drivers\mrxdav.sys [115712] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:26 A . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\mrxsmb.sys [123392] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:37 A . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\drivers\mrxsmb10.sys [221184] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:31 A . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\drivers\mrxsmb20.sys [95744] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) -- C:\Windows\System32\drivers\msahci.sys [27712] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Module spécifique de périphériques Microsof.) -- C:\Windows\System32\drivers\msdsm.sys [115792] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:11:26 A . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\drivers\msfs.sys [22528] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:08 A . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\drivers\mshidkmdf.sys [4096] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:43 A . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\drivers\msisadrv.sys [13888] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\drivers\msiscsi.sys [186960] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:08 A . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\drivers\mskssrv.sys [8320] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:08 A . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\drivers\mspclock.sys [5888] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:07 A . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\drivers\mspqm.sys [5504] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\drivers\msrpc.sys [162896] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\drivers\mssmbios.sys [28240] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:08 A . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\drivers\mstee.sys [6144] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:46:55 A . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\drivers\MTConfig.sys [12288] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\drivers\mup.sys [49728] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Pilote NDIS 6.20.) -- C:\Windows\System32\drivers\ndis.sys [710720] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:52:44 A . (.Microsoft Corporation - NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\drivers\ndiscap.sys [27136] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:24 A . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\drivers\ndistapi.sys [20992] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:53:51 A . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\drivers\ndisuio.sys [45568] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:35 A . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\drivers\ndiswan.sys [118784] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:27 A . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\drivers\ndproxy.sys [48128] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:53:54 A . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\drivers\netbios.sys [36352] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:12:21 A . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netbt.sys [187904] =>.Microsoft Corporation O58 - SDL:2010/04/09 09:24:46 A . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\drivers\netio.sys [240008] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:11:32 A . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\drivers\npfs.sys [35328] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:12:08 A . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\drivers\nsiproxy.sys [16896] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1210432] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:11:12 A . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\drivers\null.sys [4608] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117312] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [142416] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\drivers\NV_AGP.SYS [105024] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:52:03 A . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\drivers\nwifi.sys [267264] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:29 A . (.Microsoft Corporation - 1394 OpenHCI Port Driver.) -- C:\Windows\System32\drivers\ohci1394.sys [62464] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:53:58 A . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\drivers\pacer.sys [104448] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:35 A . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\parport.sys [79360] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:44 A . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\drivers\partmgr.sys [56912] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:29 A . (.Microsoft Corporation - Pilote parallèle VDM.) -- C:\Windows\System32\drivers\parvdm.sys [8704] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:20:45 A . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\drivers\pci.sys [153680] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:45 A . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\pciide.sys [12368] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:03 A . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\drivers\pciidex.sys [42560] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:03 A . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\drivers\pcmcia.sys [180288] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:04 A . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\drivers\pcw.sys [43088] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:41:15 A . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\System32\drivers\PEAuth.sys [586752] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:02 A . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\Windows\System32\drivers\portcls.sys [177152] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:11:04 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\processr.sys [52224] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:54:13 A . (.Microsoft Corporation - Pilote du support de Microsoft Quality Wind.) -- C:\Windows\System32\drivers\qwavedrv.sys [31744] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:40 A . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\drivers\rasacd.sys [11776] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:34 A . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\rasl2tp.sys [78848] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:53 A . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\drivers\raspppoe.sys [77824] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:48 A . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\drivers\raspptp.sys [73728] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:58 A . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\drivers\rassstp.sys [75264] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:29 A . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) -- C:\Windows\System32\drivers\rdbss.sys [241664] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:02:41 A . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\drivers\rdpbus.sys [18944] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:01:40 A . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\System32\drivers\RDPCDD.sys [6656] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:02:58 A . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133120] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:01:39 A . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\drivers\RDPENCDD.sys [6656] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:01:41 A . (.Microsoft Corporation - RDP Reflector Driver Miniport.) -- C:\Windows\System32\drivers\RDPREFMP.sys [7168] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:01:55 A . (.Microsoft Corporation - RDP Terminal Stack Driver.) -- C:\Windows\System32\drivers\rdpwd.sys [177152] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:04 A . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\drivers\rdyboost.sys [173648] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:53:40 A . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\drivers\rmcast.sys [117248] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:09 A . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\drivers\RNDISMP.sys [33280] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:10 A . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\drivers\rndismpx.sys [33280] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:55:21 A . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\drivers\rootmdm.sys [8192] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:53:20 A . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) -- C:\Windows\System32\drivers\rspndr.sys [60928] =>.Microsoft Corporation O58 - SDL:2017/01/17 08:04:24 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\drivers\Rt86win7.sys [783360] =>.Realtek Semiconductor Corp.® O58 - SDL:2017/01/25 14:10:36 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [4329984] =>.Realtek Semiconductor Corp.® O58 - SDL:2011/09/08 17:40:24 A . (.Realtek - Realtek 8136/8168/8169 NDIS6 32-bit Driver.) -- C:\Windows\System32\drivers\Rtlh86.sys [363112] =>.Realtek Semiconductor Corp® O58 - SDL:2009/07/14 03:19:04 A . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\drivers\sbp2port.sys [85568] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:33:50 A . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce.) -- C:\Windows\System32\drivers\scfilter.sys [26624] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:04 A . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\drivers\scsiport.sys [140368] =>.Microsoft Windows® O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] =>.Rovi Corporation O58 - SDL:2009/07/14 01:45:28 A . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\drivers\serenum.sys [17920] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:33 A . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\drivers\serial.sys [83456] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:08 A . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\drivers\sermouse.sys [19968] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:52 A . (.Microsoft Corporation - Small Form Factor Disk Driver.) -- C:\Windows\System32\drivers\sffdisk.sys [11264] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:52 A . (.Microsoft Corporation - Small Form Factor MMC Protocol Driver.) -- C:\Windows\System32\drivers\sffp_mmc.sys [12288] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:52 A . (.Microsoft Corporation - Small Form Factor SD Protocol Driver.) -- C:\Windows\System32\drivers\sffp_sd.sys [12800] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:52 A . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\drivers\sfloppy.sys [13824] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:03 A . (.Microsoft Corporation - Filtre SIS NT AGP.) -- C:\Windows\System32\drivers\SISAGP.SYS [52304] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:53:41 A . (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:45:28 A . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\drivers\smclib.sys [17408] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:03 A . (.Microsoft Corporation - loader for security processor.) -- C:\Windows\System32\drivers\spldr.sys [17472] =>.Microsoft Windows® O58 - SDL:2009/07/13 22:34:43 A . (.Microsoft Corporation - security processor.) -- C:\Windows\System32\drivers\spsys.sys [405504] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:15:13 A . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\drivers\srv.sys [309760] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:55 A . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\drivers\srv2.sys [306688] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:14:47 A . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\drivers\srvnet.sys [113664] =>.Microsoft Corporation O58 - SDL:2011/04/05 13:31:50 A . (.Samsung Electronics - 32bit Port Contention Driver.) -- C:\Windows\System32\drivers\SSPORT.SYS [5120] =>.SAMSUNG Electronics O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:04 A . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\drivers\storport.sys [144960] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\drivers\storvsc.sys [28224] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:50:57 A . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\drivers\stream.sys [53632] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\drivers\swenum.sys [12240] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:45:53 A . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\drivers\tape.sys [24576] =>.Microsoft Corporation O58 - SDL:2010/04/09 09:24:54 A . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\drivers\tcpip.sys [1285000] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:54:14 A . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\drivers\tcpipreg.sys [34816] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:12:12 A . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\drivers\tdi.sys [20992] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:01:37 A . (.Microsoft Corporation - Named Pipe Transport Driver.) -- C:\Windows\System32\drivers\tdpipe.sys [17920] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:01:37 A . (.Microsoft Corporation - TCP Transport Driver.) -- C:\Windows\System32\drivers\tdtcp.sys [24064] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:12:11 A . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74240] =>.Microsoft Corporation O58 - SDL:2016/03/29 08:01:42 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriver.sys [157752] =>.Intel Corporation® O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Remote Desktop Server Driver.) -- C:\Windows\System32\drivers\termdd.sys [51776] =>.Microsoft Windows® O58 - SDL:2009/07/14 02:01:51 A . (.Microsoft Corporation - TS Security Filter Driver.) -- C:\Windows\System32\drivers\tssecsrv.sys [30208] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:03 A . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\drivers\tunnel.sys [108544] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\drivers\UAGP35.SYS [55888] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:14:09 A . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\drivers\udfs.sys [246784] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:11 A . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à proce.) -- C:\Windows\System32\drivers\ULIAGPKX.SYS [57424] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:51:39 A . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\drivers\umbus.sys [39936] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:35 A . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\drivers\umpass.sys [8192] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:16 A . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\drivers\usb8023.sys [15872] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:54:15 A . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\drivers\usb8023x.sys [15872] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:15 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\drivers\USBCAMD.sys [25856] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:16 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\drivers\USBCAMD2.sys [25856] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:31 A . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\drivers\usbccgp.sys [75264] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:18 A . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\drivers\usbcir.sys [86016] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:05 A . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\drivers\usbd.sys [5888] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:14 A . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\drivers\usbehci.sys [41472] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:52:09 A . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\drivers\usbhub.sys [258560] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:14 A . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\drivers\usbohci.sys [20480] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:15 A . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\drivers\usbport.sys [284160] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:17:06 A . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\drivers\usbprint.sys [19968] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:14:30 A . (.Microsoft Corporation - Gestionnaire de stratégie de redirection US.) -- C:\Windows\System32\drivers\usbrpm.sys [26112] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:14:44 A . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\drivers\usbscan.sys [35840] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:19 A . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\drivers\USBSTOR.SYS [74752] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:10 A . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\drivers\usbuhci.sys [24064] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:51:53 A . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\drivers\usbvideo.sys [146176] =>.Microsoft Corporation O58 - SDL:2016/10/18 17:10:28 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [787232] =>.Oracle Corporation® O58 - SDL:2016/10/18 17:09:42 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [113904] =>.Oracle Corporation® O58 - SDL:2016/10/18 17:09:42 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [178352] =>.Oracle Corporation® O58 - SDL:2016/10/18 17:09:42 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [124320] =>.Oracle Corporation® O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Énumérateur racine de lecteur virtuel.) -- C:\Windows\System32\drivers\vdrvroot.sys [32832] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:25:51 A . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vga.sys [25088] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:25:49 A . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\drivers\vgapnp.sys [26112] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\drivers\vhdmp.sys [159824] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Filtre VIA NT AGP.) -- C:\Windows\System32\drivers\VIAAGP.SYS [53328] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:11:04 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\viac7.sys [52736] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:25:51 A . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\drivers\videoprt.sys [111616] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Virtual Machine Bus.) -- C:\Windows\System32\drivers\vmbus.sys [175824] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:28:45 A . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\drivers\VMBusHID.sys [17920] =>.Microsoft Corporation O58 - SDL:2011/08/08 15:58:56 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [98928] =>.VMware, Inc.® O58 - SDL:2011/11/13 22:33:56 A . (.VMware, Inc. - VMware virtual network driver (32-bit).) -- C:\Windows\System32\drivers\vmnet.sys [19568] =>.VMware, Inc.® O58 - SDL:2011/11/13 22:33:56 A . (.VMware, Inc. - VMware virtual network adapter driver (32-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [16624] =>.VMware, Inc.® O58 - SDL:2011/11/13 22:33:56 A . (.VMware, Inc. - VMware bridge driver (32-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [36464] =>.VMware, Inc.® O58 - SDL:2011/11/14 00:26:24 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [25712] =>.VMware, Inc.® O58 - SDL:2009/07/14 01:28:47 A . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\drivers\vms3cap.sys [5632] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\drivers\vmstorfl.sys [40896] =>.Microsoft Windows® O58 - SDL:2011/08/29 23:01:10 A . (.VMware, Inc. - VMware USB driver.) -- C:\Windows\System32\drivers\vmusb.sys [31280] =>.VMware, Inc.® O58 - SDL:2011/11/14 00:28:04 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [55664] =>.VMware, Inc.® O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\drivers\volmgr.sys [53312] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:11 A . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) -- C:\Windows\System32\drivers\volmgrx.sys [297040] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245328] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] =>.Microsoft Windows® O58 - SDL:2011/07/12 10:36:28 A . (.VMware, Inc. - VMware Virtual Storage Volume Driver.) -- C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys [22768] =>.VMware, Inc.® O58 - SDL:2010/01/30 19:07:46 A . (.DumpTeam 2010 - Virtual USB bus driver.) -- C:\Windows\System32\drivers\vusbbus.sys [17280] =>.DumpTeam 2010 O58 - SDL:2009/07/14 01:52:02 A . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\drivers\vwifibus.sys [19968] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:52:04 A . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\drivers\vwififlt.sys [48128] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:52:10 A . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\drivers\vwifimp.sys [14336] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:46:53 A . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\drivers\wacompen.sys [21632] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:55:02 A . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\drivers\wanarp.sys [63488] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:24:11 A . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\drivers\watchdog.sys [35328] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:11 A . (.Microsoft Corporation - Microsoft Watchdog Timer Driver.) -- C:\Windows\System32\drivers\wd.sys [19024] =>.Microsoft Windows® O58 - SDL:2012/07/26 05:39:21 A . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) -- C:\Windows\System32\drivers\Wdf01000.sys [526952] =>.Microsoft Windows® O58 - SDL:2012/07/26 05:39:21 A . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\drivers\WdfLdr.sys [47720] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:53:51 A . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) -- C:\Windows\System32\drivers\wfplwf.sys [9728] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\drivers\wimmount.sys [19008] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:20:52 A . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\drivers\winhv.sys [43600] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:51:11 A . (.Microsoft Corporation - Windows USB Class Driver BETA.) -- C:\Windows\System32\drivers\winusb.sys [34944] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:19:17 A . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\drivers\wmiacpi.sys [11264] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:19:10 A . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\drivers\wmilib.sys [14912] =>.Microsoft Windows® O58 - SDL:2009/07/14 01:55:02 A . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\drivers\ws2ifsl.sys [16384] =>.Microsoft Corporation O58 - SDL:2009/07/14 02:18:07 A . (.Microsoft Corporation - Web Services Print Device Driver.) -- C:\Windows\System32\drivers\WSDPrint.sys [17920] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:50:17 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\drivers\WUDFPf.sys [92672] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:50:45 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\drivers\WUDFRd.sys [132224] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029] =>.Microsoft Corporation O58 - SDL:2009/07/14 03:26:21 A . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\clfs.sys [249408] =>.Microsoft Windows® O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\Windows\System32\country.sys [27097] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536] =>.Microsoft Corporation O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672] =>.Microsoft Corporation O58 - SDL:2009/07/14 01:26:52 A . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2326528] =>.Microsoft Corporation ---\\ DERNIERS FICHIERS MODIFIÉS OU CRÉÉS (Utilisateur) (1) - 201s O61 - LFC: 2019/10/03 12:49:53 A . (..) -- C:\ProgramData\Kaspersky Lab\KSDE2.0.0\Temp\Setup\avp_7D65C94A-2E46-4ABA-A075-8DB61D2FD6CD.exe [0] ---\\ ASSOCIATION Shell Spawning (9) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- %SystemRoot%\System32\WScript.exe "%1" %* =>.Default.Value O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value ---\\ MENU DE DÉMARRAGE INTERNET (12) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Opera\Opera.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.) O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d’initialisation d’Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Opera\Opera.exe (.not file.) ---\\ RECHERCHE D'INFECTION SUR LES NAVIGATEURS (2) - 4s O69 - SBI: SearchScopes [HKCU]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ =>.Bing.com O69 - SBI: SearchScopes [HKLM]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (33) - 2s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168448] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [591360] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [667136] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [473088] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [285184] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [241664] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [543232] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1933848] =>.Microsoft Windows Component Publisher® O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [589312] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [497152] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [46592] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688] =>.Microsoft Corporation O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [162816] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [743424] =>.Microsoft Corporation O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [99328] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102400] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [149504] =>.Microsoft Corporation ---\\ LISTE DES EXCEPTIONS DU PAREFEU WINDOWS (58) - 6s O87 - FAEL: "{9765A9CB-1384-4671-ACBA-E2B13E689ACF}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Opera\opera.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{38271AB3-E011-404E-B56E-BBC10499E3D5}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Opera\opera.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "TCP Query User{BBB97A12-283C-4F7C-8923-2D039DA1FC39}C:\program files\java\jre1.8.0_45\bin\java.exe" [In-None-P6-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre1.8.0_45\bin\java.exe =>.Oracle America, Inc.® O87 - FAEL: "UDP Query User{D218EB8A-E39F-472B-BCDD-E7EF4FA6F344}C:\program files\java\jre1.8.0_45\bin\java.exe" [In-None-P17-TRUE] .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files\java\jre1.8.0_45\bin\java.exe =>.Oracle America, Inc.® O87 - FAEL: "TCP Query User{F19EC14B-BCF7-41D1-85E0-37458724BDBE}C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe" [In-None-P6-TRUE] .(.IBM - Java(TM) Platform SE binary.) -- C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe {340EDFDE125E67CB26577AF2C7691E60}. =>.IBM O87 - FAEL: "UDP Query User{CD14D927-E3E2-4C48-9E6B-CB601572914E}C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe" [In-None-P17-TRUE] .(.IBM - Java(TM) Platform SE binary.) -- C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe {340EDFDE125E67CB26577AF2C7691E60}. =>.IBM O87 - FAEL: "TCP Query User{F64C1A85-87BE-4C8A-97B8-FED4FAD0FDB9}C:\program files\ibm\spss\statistics\20\stats.exe" [In-None-P6-TRUE] .(.IBM Corp. - IBM SPSS Statistics 20.) -- C:\program files\ibm\spss\statistics\20\stats.exe =>.IBM Corp. O87 - FAEL: "UDP Query User{B26B6084-68BB-4F27-B264-15676DE42545}C:\program files\ibm\spss\statistics\20\stats.exe" [In-None-P17-TRUE] .(.IBM Corp. - IBM SPSS Statistics 20.) -- C:\program files\ibm\spss\statistics\20\stats.exe =>.IBM Corp. O87 - FAEL: "{E6CB4443-A5B7-48FB-9A8A-9448F0C65EF3}" [In-None-P6-TRUE] .(.SafeNet, Inc. - License Manager.) -- C:\Windows\System32\hasplms.exe =>.SafeNet, Inc.® O87 - FAEL: "{DD5564F0-238D-4978-8C49-C6A0E69A2D57}" [In-None-P17-TRUE] .(.SafeNet, Inc. - License Manager.) -- C:\Windows\System32\hasplms.exe =>.SafeNet, Inc.® O87 - FAEL: "{2C48F999-A7A5-4EFA-899C-5AA6192EA925}" [In-None-P6-TRUE] .(.2010. All rights reserved. - CDA Server.) -- C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe O87 - FAEL: "{0FD9EFC3-AC48-4473-A8A3-CB2DC239726F}" [In-None-P17-TRUE] .(.2010. All rights reserved. - CDA Server.) -- C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe O87 - FAEL: "{340033DE-62BD-4D17-9290-0F9B2C8241EA}" [In-None-P6-TRUE] .(.Samsung Electronics Co., Ltd. - IDS.Application.) -- C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe =>.Samsung Electronics Co., Ltd. O87 - FAEL: "{68A0A9A6-761E-4FFE-B14B-0C627E70F82C}" [In-None-P17-TRUE] .(.Samsung Electronics Co., Ltd. - IDS.Application.) -- C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe =>.Samsung Electronics Co., Ltd. O87 - FAEL: "{DB40CEBD-353E-4591-AC03-1CE94E16DF1C}" [In-None-P6-TRUE] .(.Samsung Electronics Co., Ltd. - IDS.Application.) -- C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe =>.Samsung Electronics Co., Ltd. O87 - FAEL: "{7D234E1C-9596-4F4D-A992-2A8EE8DE51AF}" [In-None-P17-TRUE] .(.Samsung Electronics Co., Ltd. - IDS.Application.) -- C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe =>.Samsung Electronics Co., Ltd. O87 - FAEL: "{5AAAE8A0-CEE3-4066-94F5-656D0615D3E5}" [In-None-P6-TRUE] .(.Samsung Electronics Co., Ltd. - IDSAlert Application.) -- C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe =>.Samsung Electronics Co., Ltd. O87 - FAEL: "{FF050144-A3BB-4F13-8959-365E8AEBEC25}" [In-None-P17-TRUE] .(.Samsung Electronics Co., Ltd. - IDSAlert Application.) -- C:\Program Files\Samsung\Easy Printer Manager\IDSAlert.exe =>.Samsung Electronics Co., Ltd. O87 - FAEL: "{42543DEC-E65B-47D6-9359-B469F0421187}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe O87 - FAEL: "{5DD011A6-E296-422C-9AF3-436E90EB9CFF}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe O87 - FAEL: "{7E711270-149C-48F2-8DD5-B366CA2AEEB3}" [In-None-P17-TRUE] .(.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc. O87 - FAEL: "{679AD923-217D-4795-B0CA-AC538FE08F02}" [In-None-P17-TRUE] .(.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc. O87 - FAEL: "{9569698E-13E4-4306-AF57-162A52682E72}" [In-None-P17-TRUE] .(...) -- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe O87 - FAEL: "{13F4FA61-1584-49A6-BC35-CBFA6B7B8899}" [In-None-P17-TRUE] .(...) -- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe O87 - FAEL: "{8A240D77-9036-4AD4-AD59-9365A0521483}" [In-None-P17-TRUE] .(.SafeNet, Inc. - License Manager.) -- C:\Windows\system32\hasplms.exe =>.SafeNet, Inc.® O87 - FAEL: "{3AB5CC4A-2D84-417D-B198-7095E829041B}" [In-None-P17-TRUE] .(.SafeNet, Inc. - License Manager.) -- C:\Windows\system32\hasplms.exe =>.SafeNet, Inc.® O87 - FAEL: "{99190BE4-D765-4E3F-BDF7-5DB8E67CDA9F}" [In-None-P6-TRUE] .(.CANON INC. - Canon Advanced Printing Technology RPC Serv.) -- C:\Windows\System32\CNAC4RPK.EXE =>.CANON INC.® O87 - FAEL: "{959CAD68-72E3-4B35-9CA4-170EEA73A06F}" [In-None-P17-TRUE] .(.CANON INC. - Canon Advanced Printing Technology RPC Serv.) -- C:\Windows\System32\CNAC4RPK.EXE =>.CANON INC.® O87 - FAEL: "{5C639C63-BF2C-41F0-809F-393C60E0171B}" [In-None-P17-TRUE] .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe =>.Apple Inc.® O87 - FAEL: "{A69672DD-927B-4FDE-B0D1-FD8A9761C8ED}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbjetManager.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{96866D15-D0D1-4C94-90CA-30FBB501ABFC}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbjetManager.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{DDF0D108-11BC-42D6-AA79-78E61CE2BD9F}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\Orb.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{A116FEBD-C20B-4ACA-8F55-12A595609AA9}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\Orb.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{D5658B80-0E9E-4271-829B-0EC4FA021142}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbLauncher.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{C2576BD2-69D2-41EF-B7B7-DB0C20F5625B}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbLauncher.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{B25D287F-4CB7-486E-8DB6-624A2A4A3CD6}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbSetupWizard.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{E3F40EF4-0786-4CD4-A7D5-50C4BA728E47}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbSetupWizard.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{CE16B0A5-E355-41B8-A1D6-6BC04C6DE833}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbControlPanel.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{4195AAE9-CAC5-45EA-9086-EBA7092921E0}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbControlPanel.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{AD5B19D6-16DA-4254-B733-073191F530A9}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbIR.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{D3A58C4E-3099-448B-AFB6-584D41FAF9BC}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbIR.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{A5F3E056-BE91-4DA9-885D-0702CC593548}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbStreamerClient.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{0A989723-2DDD-42FD-9381-392671B87F78}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Orb Networks\Orb\bin\OrbStreamerClient.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{3C2A2118-CF16-4B51-BD3F-8A2DCD969B2E}" [In-None-P17-TRUE] .(.Cisco - Jabber Video.) -- C:\Program Files\Cisco\JabberVideo\JabberVideo.exe {774A92D24364DD551CF8DFD072287151}. =>.Cisco O87 - FAEL: "{C66A1039-9783-4498-9826-1C0C00EBB2C9}" [In-None-P6-TRUE] .(...) -- C:\Windows\KMS-R@1n.exe =>Adware.Suspect O87 - FAEL: "{A7EBA21F-478C-43C6-A9EA-1BDCEA0AE471}" [Out-None-P6-TRUE] .(...) -- C:\Windows\KMS-R@1n.exe =>Adware.Suspect O87 - FAEL: "{38965526-5248-4283-AA56-5492561E4532}" [In-None-P6-TRUE] .(.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH® O87 - FAEL: "{22077136-F3DD-4776-BC8B-04DFD0C4EE45}" [In-None-P17-TRUE] .(.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH® O87 - FAEL: "{F9F24A3F-8F9E-43E3-9E38-D3ECAA24601A}" [In-None-P6-TRUE] .(.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH® O87 - FAEL: "{F999366A-ABAA-4502-9D50-859F635E3477}" [In-None-P17-TRUE] .(.TeamViewer GmbH - TeamViewer 12.) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH® O87 - FAEL: "{34FC6F9B-AF74-435E-BD0C-EFE6F910E371}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Apowersoft Screen Capture Pro\Apowersoft Screen Capture Pro.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{C813B43E-2318-488B-BE1E-2A0B36605221}" [Out-None-P17-TRUE] .(...) -- C:\Program Files\Apowersoft\Apowersoft Screen Capture Pro\Apowersoft Screen Capture Pro.exe (.not file.) =>.SUP.Orphan O87 - FAEL: "{06C7204E-20E1-4F86-B865-E1292AC61254}" [In-None-P17-TRUE] .(.Free Time Co., Ltd. - FormatFactory.) -- C:\Program Files\FormatFactory\FormatFactory.exe =>.Free Time Co., Ltd. O87 - FAEL: "{6988640B-CC7A-402F-AF18-9E1417AD8ACA}" [In-None-P17-TRUE] .(.Free Time Co., Ltd. - Format Factory EBook Codec Online Installer.) -- C:\Program Files\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe =>.Free Time Co., Ltd.® O87 - FAEL: "{A3B89D16-D214-487C-8BF6-1D3E56D23E2C}" [In-None-P17-TRUE] .(.Google Inc. - Processus relatif à l'hôte.) -- C:\Program Files\Google\Chrome Remote Desktop\74.0.3729.56\remoting_host.exe =>.Google LLC® O87 - FAEL: "{AA5D7B96-D408-4409-886F-A53EA7E24A83}" [In-None-P17-TRUE] .(.Google LLC - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC® O87 - FAEL: "{93F1E482-D716-4FD0-82AD-25B799F880C8}" [In-None-P6-TRUE] .(.Aero Admin Inc. - Aero Admin.) -- C:\Users\Admin\Downloads\AeroAdmin.exe {61C4954295FC68AB2A6BC4D7}. O87 - FAEL: "{C54B401E-E5CE-4FD7-9CC9-BAF1F9439ECF}" [In-None-P17-TRUE] .(.Aero Admin Inc. - Aero Admin.) -- C:\Users\Admin\Downloads\AeroAdmin.exe {61C4954295FC68AB2A6BC4D7}. ---\\ CODES PRODUITS LOGICIELS (94) - 2s O90 - PUC: "000021599B0090400000000000F01FEC" [HKLM] . (.Microsoft Application Error Reporting.) =>.Microsoft Corporation O90 - PUC: "000051090900C0400000000000F01FEC" [HKLM] . (.Microsoft DCF MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "00005109110000000000000000F01FEC" [HKLM] . (.Microsoft Office Professional Plus 2013.) =>.Microsoft Corporation O90 - PUC: "000051091A00C0400000000000F01FEC" [HKLM] . (.Microsoft OneNote MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "000051091E00C0400000000000F01FEC" [HKLM] . (.Microsoft Office OSM MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "000051092E00C0400000000000F01FEC" [HKLM] . (.Microsoft Office OSM UX MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "000051094400C0400000000000F01FEC" [HKLM] . (.Microsoft InfoPath MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "000051095100C0400000000000F01FEC" [HKLM] . (.Microsoft Access MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "000051096100C0400000000000F01FEC" [HKLM] . (.Microsoft Excel MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "000051098100C0400000000000F01FEC" [HKLM] . (.Microsoft PowerPoint MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "000051099100C0400000000000F01FEC" [HKLM] . (.Microsoft Publisher MUI (French) 2013.) =>.bl.org O90 - PUC: "00005109A100C0400000000000F01FEC" [HKLM] . (.Microsoft Outlook MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "00005109AB00C0400000000000F01FEC" [HKLM] . (.Microsoft Groove MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "00005109B100C0400000000000F01FEC" [HKLM] . (.Microsoft Word MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "00005109B210C0400000000000F01FEC" [HKLM] . (.Microsoft Lync MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "00005109C200C0400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing (French) 2013.) =>.Microsoft Corporation O90 - PUC: "00005109E600C0400000000000F01FEC" [HKLM] . (.Microsoft Office Shared MUI (French) 2013.) =>.Microsoft Corporation O90 - PUC: "00005109F10010400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing Tools 2013 - اللغة العربية.) -- C:\Windows\Installer\{90150000-001F-0401-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation O90 - PUC: "00005109F10031400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing Tools 2013 - Nederlands.) -- C:\Windows\Installer\{90150000-001F-0413-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation O90 - PUC: "00005109F10070400000000000F01FEC" [HKLM] . (.Microsoft Office Korrekturhilfen 2013 - Deutsch.) -- C:\Windows\Installer\{90150000-001F-0407-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation O90 - PUC: "00005109F10090400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing Tools 2013 - English.) -- C:\Windows\Installer\{90150000-001F-0409-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation O90 - PUC: "00005109F100A0C00000000000F01FEC" [HKLM] . (.Microsoft Office Proofing Tools 2013 - Español.) -- C:\Windows\Installer\{90150000-001F-0C0A-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation O90 - PUC: "00005109F100C0400000000000F01FEC" [HKLM] . (.Outils de vérification linguistique 2013 de Microsoft Office - Français.) -- C:\Windows\Installer\{90150000-001F-040C-0000-0000000FF1CE}\misc.exe,6 =>.Microsoft Corporation O90 - PUC: "0003981D77AEC394D8DD2E2634E659B9" [HKLM] . (.Windows Live SOXE Definitions.) =>.Microsoft Corporation O90 - PUC: "00BA1CDCFF107CF418A6616CF790320C" [HKLM] . (.Windows Live SOXE.) =>.Microsoft Corporation O90 - PUC: "0296961D4979CBB4A803A78867D35E2A" [HKLM] . (.ABBYY FineReader 5.0 Sprint.) -- C:\Windows\Installer\{D1696920-9794-4BBC-8A30-7A88763DE5A2}\Fine5.exe =>.ABBYY Software O90 - PUC: "0318D894178B49D4A9CD1C9FE981F8A3" [HKLM] . (.INDEX EDUCATION - Mise à jour automatique.) -- C:\Windows\Installer\{498D8130-B871-4D94-9ADC-C1F99E188F3A}\ARPPRODUCTICON.exe O90 - PUC: "060E62B49CB554B4DB0288E249ACFDFC" [HKLM] . (.VmciSockets.) O90 - PUC: "0AC3B4F6278886F49B279E5D03D6DC3D" [HKLM] . (.Nero CoverDesigner.) -- C:\Windows\Installer\{6F4B3CA0-8872-4F68-B972-E9D5306DCDD3}\ARPPRODUCTICON.exe =>.Ahead Corporation O90 - PUC: "1D5E3C0FEDA1E123187686FED06E995A" [HKLM] . (.Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.) =>.bl.org O90 - PUC: "21EE4A31AE32173319EEFE3BD6FDFFE3" [HKLM] . (.Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005.) =>.Microsoft Corporation O90 - PUC: "22BEFC8F7E2A1793E9ADB411DEFE1C58" [HKLM] . (.Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005.) =>.Microsoft Corporation O90 - PUC: "23CD228A5267B114BACAAB7EECD018D6" [HKLM] . (.Nero CoverDesigner.) -- C:\Windows\Installer\{A822DC32-7625-411B-ABAC-BAE7CE0D816D}\ARPPRODUCTICON.exe =>.Ahead Corporation O90 - PUC: "28A4B5F0FAD931D3C88BEA2BE5A416E4" [HKLM] . (.Microsoft .NET Framework 4 Client Profile FRA Language Pack.) =>.Microsoft Corporation O90 - PUC: "35588CBA077879B44BE3A50946A7B536" [HKLM] . (.Nero ControlCenter.) -- C:\Windows\Installer\{ABC88553-8770-4B97-B43E-5A90647A5B63}\ARPPRODUCTICON.exe =>.Ahead Corporation O90 - PUC: "35C6B7D47E3B39D42BC77B5AA069729C" [HKLM] . (.Canon Laser Printer/Scanner/Fax Extended Survey Program.) O90 - PUC: "3A80BAA3921F5DB44B90EA76F43957D9" [HKLM] . (.Prerequisite installer.) -- C:\Windows\Installer\{3AAB08A3-F129-4BD5-B409-AE674F93759D}\ARPPRODUCTICON.exe =>.Legitimate O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" [HKLM] . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc. O90 - PUC: "4B2346D1D42EE5044ABA7D6E0D88BC9C" [HKLM] . (.Windows Live Photo Common.) =>.CyberLink Corporation O90 - PUC: "4EA42A62D9304AC4784BF2381208540F" [HKLM] . (.Java 8 Update 45.) =>.Sun Microsystems O90 - PUC: "4F3B12CEB5A677D47A69BBF4A146C6B8" [HKLM] . (.FileMaker Pro 12 Advanced.) -- C:\Windows\Installer\{EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B}\ARPPRODUCTICON.exe =>.FileMaker Inc O90 - PUC: "59F8EFDCF08F5114C9F3E0F18D9F5FC8" [HKLM] . (.Nero ControlCenter Help (CHM).) =>.Ahead Corporation O90 - PUC: "5A440F64B8EC691489E4B56D25E563D1" [HKLM] . (.Apple Application Support.) -- C:\Windows\Installer\{46F044A5-CE8B-4196-984E-5BD6525E361D}\WinInstall.ico =>.Apple Inc. O90 - PUC: "5C1093C35543A0E32A41B090A305076A" [HKLM] . (.Microsoft .NET Framework 4 Client Profile.) =>.Microsoft Corporation O90 - PUC: "5D1C0FDE089D9F84AB91E0ECED8F5C4D" [HKLM] . (.VMware vCenter Converter Standalone.) -- C:\Windows\Installer\{EDF0C1D5-D980-48F9-BA19-0ECEDEF8C5D4}\ARPPRODUCTICON.exe =>.VMware O90 - PUC: "68AB67CA7DA73301B744000000000010" [HKLM] . (.Adobe Reader 6.0.) -- C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-000000000001}\ARPPRODUCTICON.exe =>.Adobe Inc. O90 - PUC: "6F5A3E30C2B26FC4C981BF2BA8AF15B2" [HKLM] . (.LibreOffice 5.1.5.2.) -- C:\Windows\Installer\{03E3A5F6-2B2C-4CF6-9C18-FBB28AFA512B}\soffice.ico =>.Open Source O90 - PUC: "7040BB568CC47CD459E2E3FEFD5006A2" [HKLM] . (.Nero Update.) -- C:\Windows\Installer\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}\ARPPRODUCTICON.exe =>.Ahead Corporation O90 - PUC: "7170C33F40E85BE4098C74222178BDF4" [HKLM] . (.Kaspersky Secure Connection.) -- C:\Windows\Installer\{F33C0717-8E04-4EB5-90C8-47221287DB4F}\arp.ico =>.Kaspersky Labs O90 - PUC: "7A26F0EA2A1AF704F9C48439B99DDAD8" [HKLM] . (.tools-winPre2k.) =>.VMware O90 - PUC: "7A79579133DA8984D9E8376086814B46" [HKLM] . (.tools-netware.) =>.VMware O90 - PUC: "7B68F34021EE99332BAC0D6B308D9736" [HKLM] . (.Microsoft .NET Framework 4 Extended FRA Language Pack.) =>.Microsoft Corporation O90 - PUC: "7BD4C90EC03660F46A13E87A329932FA" [HKLM] . (.D3DX10.) =>.Microsoft Corporation O90 - PUC: "80316C14DFC645D4BAA61763DE801AE8" [HKLM] . (.Windows Live Communications Platform.) =>.Legitimate O90 - PUC: "8A0F842331866D117AB7000B0D610002" [HKLM] . (.Java(TM) 6 Update 2.) =>.Sun Microsystems O90 - PUC: "8BB419577DDF7D44EBAAE02580365866" [HKLM] . (.Oracle VM VirtualBox 5.1.8.) -- C:\Windows\Installer\{75914BB8-FDD7-44D7-BEAA-0E5208638566}\IconVirtualBox =>.Oracle O90 - PUC: "8CDD41E806AE81E43B3E917301D4B5AD" [HKLM] . (.MSVCRT110.) =>.Advanced Micro Devices Inc O90 - PUC: "A089CE062ADB6BC44A720BA745894BAC" [HKLM] . (.Google Update Helper.) =>.Google Inc. O90 - PUC: "A116201D664610145AD115603930CA56" [HKLM] . (.tools-linux.) =>.VMware O90 - PUC: "A57F49D06AE015943BFA1B54AFE9506C" [HKLM] . (.VMware Workstation.) -- C:\Windows\Installer\{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}\ARP.ico1 =>.VMware O90 - PUC: "A6C64DD86500CEF47BA082BB611A1FF1" [HKLM] . (.MSVCRT.) =>.Advanced Micro Devices Inc O90 - PUC: "A8F1162B7EFE88E478D5910FFEEA784E" [HKLM] . (.Windows Live PIMT Platform.) =>.Legitimate O90 - PUC: "AA9A3071D5C9F414B900210CB7F7D04A" [HKLM] . (.Wirecast.) -- C:\Windows\Installer\{1703A9AA-9C5D-414F-9B00-12C07B7F0DA4}\_D707CE1C009F1381803C2C.exe O90 - PUC: "AD46E6871CDCB234CBBA95217CA3279E" [HKLM] . (.Chrome Remote Desktop Host.) -- C:\Windows\Installer\{786E64DA-CDC1-432B-BCAB-5912C73A72E9}\chromoting.ico =>.Google Inc. O90 - PUC: "AFA3DC6331902C741B775CEEF536BE9C" [HKLM] . (.Nitro Pro 8.) -- C:\Windows\Installer\{36CD3AFA-0913-47C2-B177-C5EE5F63EBC9}\Professional.ico =>.Nitro O90 - PUC: "B9FB157332F56794AA26B14F7D19CDEF" [HKLM] . (.Photo Common.) =>.CyberLink Corporation O90 - PUC: "BA0E197B9A784A14D8891DC3E2739D82" [HKLM] . (.Nero Info.) -- C:\Windows\Installer\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}\ARPPRODUCTICON.exe =>.Ahead Corporation O90 - PUC: "BA40C7C979B4BD94880A547459430980" [HKLM] . (.Nero CoverDesigner Help (CHM).) -- C:\Windows\Installer\{9C7C04AB-4B97-49DB-88A0-454795349008}\NeroHelpIcon.A2EDDB31_726D_4D40_8014_5D5F2D3EF945 =>.Ahead Corporation O90 - PUC: "BC78C1BA70810FC44B2CEC1EC481DC4B" [HKLM] . (.tools-solaris.) =>.VMware O90 - PUC: "C18BC956E45B1FD46B813F757793A345" [HKLM] . (.Windows Live Installer.) =>.Microsoft Corporation O90 - PUC: "c1c4f01781cc94c4c8fb1542c0981a2a" [HKLM] . (.Microsoft Visual C++ 2005 Redistributable.) =>.bl.org O90 - PUC: "C3839DFF5D1079849A4534FA95A9DE03" [HKLM] . (.tools-windows.) =>.VMware O90 - PUC: "C7B0AF93BD7B4F141996EABF1619B363" [HKLM] . (.Sentinel Runtime.) O90 - PUC: "C842F99B3B4B16D4F9CFEA951A1F7332" [HKLM] . (.Windows Live.) =>.Microsoft Corporation O90 - PUC: "C8BD9F007D5674D4BAF56F89EE8385D0" [HKLM] . (.Windows Live UX Platform.) =>.Legitimate O90 - PUC: "CFD2C1F142D260E3CB8B271543DA9F98" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148.) =>.bl.org O90 - PUC: "D20352A90C039D93DBF6126ECE614057" [HKLM] . (.Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17.) =>.bl.org O90 - PUC: "D43EEBEB2A48DDE4B8AE69CC45732136" [HKLM] . (.Nero Core Components.) =>.Ahead Corporation O90 - PUC: "D911E380629BE0F4F9ADFF00530DC91A" [HKLM] . (.Cisco Jabber Video for TelePresence.) -- C:\Windows\Installer\{083E119D-B926-4F0E-9FDA-FF0035D09CA1}\AppIcon =>.Cisco Systems, Inc. O90 - PUC: "DBBFB30076C6E9142AD4D0ACCFA32594" [HKLM] . (.tools-freebsd.) =>.VMware O90 - PUC: "DE299B33B95B52E4F9F3FCD297BB9A41" [HKLM] . (.Windows Live UX Platform Language Pack.) =>.Legitimate O90 - PUC: "E1BEEC08C6A09B543A21731A2DF5EDCB" [HKLM] . (.QuickTime 7.) -- C:\Windows\Installer\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}\Installer.ico =>.Riskware.QuickTime O90 - PUC: "EF998CCBAAD2C0645ABF0692E1379D3C" [HKLM] . (.Microsoft SQL Server Compact 3.5 ENU.) -- C:\Windows\Installer\{BCC899FE-2DAA-460C-A5FB-60291E73D9C3}\ProductIcon =>.Microsoft Corporation O90 - PUC: "F3BC3312198F18046818EF2E2B14F94F" [HKLM] . (.Orb Runtime libraries.) O90 - PUC: "F45FAD3B52BD6854E91F692DB41B0488" [HKLM] . (.Windows Movie Maker 2.6.) =>.CyberLink Corporation O90 - PUC: "F60730A4A66673047777F5728467D401" [HKLM] . (.Java Auto Updater.) =>.Sun Microsystems O90 - PUC: "F78F652845587544C8D3F3334296D7F9" [HKLM] . (.Windows Live ID Sign-in Assistant.) =>.Microsoft Corporation O90 - PUC: "FCDAC0A0AD874C333A05DC1548B97920" [HKLM] . (.Microsoft .NET Framework 4 Extended.) =>.Microsoft Corporation O90 - PUC: "FF16EAA5E858E3548B3F496481419957" [HKLM] . (.Kaspersky Internet Security.) -- C:\Windows\Installer\{5AAE61FF-858E-453E-B8F3-944618149975}\arp.ico =>.F-Secure O90 - PUC: "FF6C750E304F7C04CA69BCB2808D3887" [HKLM] . (.Backup and Sync from Google.) -- C:\Windows\Installer\{E057C6FF-F403-40C7-AC96-CB2B08D88378}\DriveIcon =>.Google Inc. O90 - PUC: "41E0A130314079C4792762937B284FF6" [HKCU] . (.Common Desktop Agent.) =>.Samsung Electronics O90 - PUC: "C307C161BEEC0B544A277719EB349A6E" [HKCU] . (.Viber.) =>.Viber O90 - PUC: "41E0A130314079C4792762937B284FF6" [HKU] . (.Common Desktop Agent.) =>.Samsung Electronics O90 - PUC: "C307C161BEEC0B544A277719EB349A6E" [HKU] . (.Viber.) =>.Viber ---\\ PACKAGES WINDOWS INSTALLER (45) - 30s [MD5.996640D963E9E9BC526ED571B0505DB2] [WIS][2016/11/17 13:30:53] (.Oracle Corporation - Oracle VM VirtualBox 5.1.8 installation pac.) -- C:\Windows\Installer\1108261.msi [31932416] =>.Oracle Corporation [MD5.609687FD8CBA02CA90E313A2224E3A3C] [WIS][2016/11/17 14:23:36] (.VMware, Inc. - VmciSockets.) -- C:\Windows\Installer\1108272.msi [989696] =>.VMware, Inc. [MD5.0D5802517E14FEF20DC57D0C4DE0DD68] [WIS][2016/11/17 14:21:47] (.VMware, Inc. - VMware product.) -- C:\Windows\Installer\110827c.msi [8294912] =>.VMware, Inc. [MD5.CEE660CAA2DD4876AF95B5CF1249D81D] [WIS][2016/11/17 14:26:28] (.Macrovision Corporation - InstallShield® 12 - Professional Edition 12.) -- C:\Windows\Installer\1108285.msi [15968256] =>.Macrovision Corporation [MD5.DE8E594E8387E75E81972DCB9E449AB2] [WIS][2016/11/17 14:27:03] (.Macrovision Corporation - InstallShield® 12 - Professional Edition 12.) -- C:\Windows\Installer\110828e.msi [60136960] =>.Macrovision Corporation [MD5.517223C92C1F23911ECC41AA8F8A9825] [WIS][2016/11/17 14:27:25] (.Macrovision Corporation - InstallShield® 12 - Professional Edition 12.) -- C:\Windows\Installer\1108297.msi [265216] =>.Macrovision Corporation [MD5.86FB870A48E73B9D83AB136EA2549F95] [WIS][2016/11/17 14:27:29] (.Macrovision Corporation - InstallShield® 12 - Professional Edition 12.) -- C:\Windows\Installer\11082a0.msi [13053440] =>.Macrovision Corporation [MD5.41FA43893420AA0E33143F153FE5D1AE] [WIS][2016/11/17 14:27:40] (.Macrovision Corporation - InstallShield® 12 - Professional Edition 12.) -- C:\Windows\Installer\11082a9.msi [50642944] =>.Macrovision Corporation [MD5.073FB6856DBE3F352DE09822D357B28F] [WIS][2016/11/17 14:27:45] (.Macrovision Corporation - InstallShield® 12 - Professional Edition 12.) -- C:\Windows\Installer\11082b2.msi [11520000] =>.Macrovision Corporation [MD5.7D841C1967A6945F9F0BEDF92D918EF3] [WIS][2018/04/28 19:05:21] (.Kaspersky Lab - Kaspersky Internet Security.) -- C:\Windows\Installer\11256a0a.msi [11042816] =>.Kaspersky Lab [MD5.1FCCB7846B517293F57294A09E6FA06A] [WIS][2018/04/28 19:05:01] (.Kaspersky Lab - Kaspersky Secure Connection.) -- C:\Windows\Installer\11256a14.msi [9412608] =>.Kaspersky Lab [MD5.79763EFDE42043E68726C76AC96710F0] [WIS][2016/11/17 14:47:26] (.VMware, Inc. - VMware vCenter Converter.) -- C:\Windows\Installer\12f7261.msi [127301632] =>.VMware, Inc. [MD5.A4DA3787B8B56657D3EB5B9F01839D23] [WIS][2016/11/20 15:26:01] (.Gemalto - Sentinel Runtime Environment.) -- C:\Windows\Installer\14c80bd.msi [17402368] =>.Gemalto [MD5.E891D6BCE330B88964860C9B33E2E114] [WIS][2013/08/30 17:29:22] (.CANON INC..) -- C:\Windows\Installer\14ee6d38.msi [3407360] =>.CANON INC. [MD5.2BF6F49CD8F59090AB8107F873258F91] [WIS][2010/03/23 03:02:56] (.Orb Networks, Inc..) -- C:\Windows\Installer\192cbb6.msi [1431040] =>.Orb Networks, Inc. [MD5.875E6871E7C2732F9802A568C88C064F] [WIS][2016/10/10 14:09:13] (.Nitro - Nitro Pro 8.1.1.3.) -- C:\Windows\Installer\1e3eb.msi [175665152] =>.Nitro [MD5.DC72693A89A306BCEBE3F7AB90DD66C8] [WIS][2016/10/10 14:14:47] (.Oracle Corporation - Java SE Runtime Environment 8.0.) -- C:\Windows\Installer\1e3f3.msi [36757504] =>.Oracle Corporation [MD5.8894196A72F5E6CB8E5252F59C334592] [WIS][2016/10/10 14:15:03] (.Oracle Corporation - Java Auto Updater.) -- C:\Windows\Installer\1e3fb.msi [675840] =>.Oracle Corporation [MD5.D4CE39DFF952C3AA74AFE38B6FD43895] [WIS][2019/09/02 09:51:42] (.InstallShield - InstallShield® 2018 - Premier Edition with .) -- C:\Windows\Installer\26f199.msi [2345472] =>.InstallShield [MD5.C958DDD0894F8D81F189631FD7078D14] [WIS][2019/05/28 19:51:32] (.Google, Inc. - Backup and Sync from Google.) -- C:\Windows\Installer\451e367.msi [54308864] =>.Google, Inc. [MD5.FBD85BE40C408B43D7E65475A1FDD07E] [WIS][2019/04/04 08:25:41] (.Google Inc. - Chrome Remote Desktop Host Package.) -- C:\Windows\Installer\47d72ef.msi [13967360] =>.Google Inc. [MD5.700633DC4D0FA538054B39D2987287D4] [WIS][2012/03/16 05:53:38] (.FileMaker, Inc. - FileMaker Pro 12 Advanced.) -- C:\Windows\Installer\4a52b4f.msi [4396544] =>.FileMaker, Inc. [MD5.87FAC4B56AF3F1A6E42073375FDDB92D] [WIS][2016/12/07 18:31:40] (.Viber Media Inc. - Viber.) -- C:\Windows\Installer\4e4863f.msi [68202496] =>.Viber Media Inc. [MD5.6C969AB4708ACB57920E30BEDFB4ABFA] [WIS][2017/02/13 10:08:45] (.Cisco Systems, Inc. - Cisco Jabber Video for TelePresence.) -- C:\Windows\Installer\53e0cda.msi [14211072] =>.Cisco Systems, Inc. [MD5.32C3354310A891434A8C81122BA365F0] [WIS][2017/01/23 12:35:35] (.Sun Microsystems, Inc. - Java(TM) SE Runtime Environment 6.0.) -- C:\Windows\Installer\5a16af2.msi [14442496] =>.Sun Microsystems, Inc. [MD5.1B720C225226D66085F7F08371F28909] [WIS][2015/07/02 20:23:34] (.Apple Inc. - Apple Application Support Installer.) -- C:\Windows\Installer\739065.msi [21402624] =>.Apple Inc. [MD5.A20C8EDDC732E30F7EC5A985843388ED] [WIS][2015/07/02 21:30:50] (.Apple Inc. - Apple Software Update Installer.) -- C:\Windows\Installer\73906d.msi [2323456] =>.Apple Inc. [MD5.DBC35568096DB25EB168A18E5371822F] [WIS][2015/08/14 18:59:14] (.Apple Inc. - QuickTime Installer.) -- C:\Windows\Installer\739071.msi [28401664] =>.Apple Inc. [MD5.9008070C394FC29588330CECBCD11F23] [WIS][2013/03/02 02:53:58] (.Telestream, Inc..) -- C:\Windows\Installer\739076.msi [35444736] =>.Telestream, Inc. [MD5.202B7EC9D41CDA7ECC9A5DB38301AB9F] [WIS][2019/05/15 04:43:49] (.Google LLC - Google Update Helper.) -- C:\Windows\Installer\9110ad1.msi [40960] =>.Google LLC [MD5.1AB6DFA65D5BAB2DFDB1FD201DD46E74] [WIS][2016/10/16 12:03:45] (.The Document Foundation - LibreOffice 5.1.) -- C:\Windows\Installer\d5cff2.msi [221679616] =>.The Document Foundation [MD5.966DCAA049A34096C5559F5158FE9F40] [WIS][2011/08/11 13:39:02] (..) -- C:\Windows\Installer\e1664.msi [381440] [MD5.89CCC1F847599C673E748DB39FE9D0C6] [WIS][2003/05/19 21:36:33] (.Adobe Systems Incorporated - ADOBER~1.0Adobe Reader 6.0.) -- C:\Windows\Installer\f5295.msi [2250240] =>.Adobe Systems Incorporated [MD5.98BA09CF7540622C0B66C886218B5D53] [WIS][2004/02/26 06:38:00] (.ABBYY Software House - ABBYY FineReader 5.0 Sprint.) -- C:\Windows\Installer\f529a.msi [382976] =>.ABBYY Software House [MD5.9AC2A6D621014FAD33BA858CC8810C22] [WIS][2019/02/19 12:01:28] (.Nero AG - Nero CoverDesigner.) -- C:\Windows\Installer\f6d95.msi [25316864] =>.Nero AG [MD5.C4DCFC4316FC0B1DFBE0E6816BD40A04] [WIS][2019/02/19 12:01:29] (.Nero AG - NeroControlCenter.) -- C:\Windows\Installer\f6d9e.msi [2143232] =>.Nero AG [MD5.444BCDCF6167902CCAB93FC57FD26B24] [WIS][2019/02/19 12:01:29] (.Nero AG - Nero Core Components.) -- C:\Windows\Installer\f6da8.msi [2609152] =>.Nero AG [MD5.DAFA8E8CF94704349C1332EC84ACCF49] [WIS][2019/02/19 12:01:28] (.Nero AG - Nero Prerequisites 1.) -- C:\Windows\Installer\f6db2.msi [3817984] =>.Nero AG [MD5.050369366EA6F2BC53E9BD860F6CFD61] [WIS][2019/02/19 12:01:28] (.Nero AG - Nero CoverDesigner 12.) -- C:\Windows\Installer\f6dbc.msi [1776640] =>.Nero AG [MD5.AAA66E9F2C20EBFFF88915B583F8F2D0] [WIS][2019/02/19 12:01:29] (.Nero AG - Nero ControlCenter Help (CHM).) -- C:\Windows\Installer\f6dc6.msi [867328] =>.Nero AG [MD5.42A1A638ECC9EB2B059C77AA6ABAF730] [WIS][2019/02/19 12:01:28] (.Nero AG - Nero CoverDesigner Help (CHM).) -- C:\Windows\Installer\f6dd0.msi [963072] =>.Nero AG [MD5.133B355891AA59038709C14F8D1534D5] [WIS][2019/02/19 12:01:28] (.Nero AG - Nero Update.) -- C:\Windows\Installer\f6dd9.msi [1308160] =>.Nero AG [MD5.A9BAF4E90D51ADB64A08C6EB31AD7F1A] [WIS][2019/02/19 12:01:28] (.Nero AG - Nero Info.) -- C:\Windows\Installer\f6de2.msi [1170432] =>.Nero AG [MD5.AC022AC4D63280214DF73D68EFEE1970] [WIS][2018/09/02 08:13:40] (.Kaspersky Lab.) -- C:\Windows\Installer\a2280.msp [17661952] =>.Kaspersky Lab ---\\ RECHERCHE DE CLÉS DE REGISTRE Tracing (2) - 4s HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>SUP.Optional.ByteFence HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>SUP.Optional.ByteFence ---\\ FEATURE CONTROL. (875) - 2s [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_96DPI_PIXEL]:WindowsAnytimeUpgradeUI.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ACTIVEX_REPURPOSEDETECTION]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:excelcnv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:infopath.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:msn6.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_INPUT_PROMPTS]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:ByteFence.exe =>SUP.Optional.ByteFence [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:avpui.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:googledrivesync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:Apowersoft Screen Capture Pro.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPfewgsrv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGuiIT.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGUI.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLgPad.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLOGON.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:Scale_for_R3.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:ieuser.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_TELNET_PROTOCOL]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK]:YahooMusicEngine.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:devenv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:dexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:helppane.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FEEDS]:msfeedssync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_GPU_RENDERING]:mshta.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HIGH_CONTRAST_BACKGROUND_IMAGES]:sidebar.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:excelcnv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_XML_PROLOG]:msiexec.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:wm.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:cs.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:waol.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_INTERNET_SHELL_FOLDERS]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DISPPARAMS]:helppane.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DLCONTROL_BEHAVIORS]:wlmail.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:mshta.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:outlook.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:sidebar.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_NINPUT_LEGACYMODE]:mshta.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:CLVIEW.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:GROOVE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RELEASE_CALLBACK_ON_STOP_BINDING]:communicator.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:excelcnv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msimn.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:winmail.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_OBJECT_DATA_ATTRIBUTE]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:excelcnv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:excelcnv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHIM_MSHELP_COMBINE]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_APP_PROTOCOL_WARN_DIALOG]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SSLUX]:mshta.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SSLUX]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:winmail.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:msimn.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:outlook.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:excelcnv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:infopath.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:winword.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:excel.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:powerpnt.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD]:msn6.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD]:msn.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:CLVIEW.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:ONENOTEM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OUTLOOK.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:SCANPST.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:CNFNOT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:explorer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:iexplore.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:prevhost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:wmplayer.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:PresentationHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ehExtHost.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OSE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:EQNEDT32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:Setup.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ODeploy.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:Oarpmany.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OSPPREARM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:LICLUA.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OSPPSVC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:FLTLDR.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOSQM.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:CMigrate.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:protocolhandler.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:CSISYNCCLIENT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:NAMECONTROLSERVER.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:VSTOInstaller.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:DW20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:DWTRIG20.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOHTMED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOXMLED.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:msotd.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:msoev.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:msoia.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOSYNC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSOUC.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OLicenseHeartbeat.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:FIRSTRUN.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:SELFCERT.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:SETLANG.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:GRAPH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:MSQRY32.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:SmartTagInstall.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:SQLDumper.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:EXCEL.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:XLICONS.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:INFOPATH.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:AppSharingHookController.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:lync.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OcPubMgr.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:UcMapi.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:lynchtmlconv.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ONENOTE.EXE =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:IEContentService.exe =>.Legitimate [HKLM\SOFTWARE\\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:ONENOTEM.EXE =>.Legitimate ---\\ SCAN ADDITIONNEL (51) - 31s C:\Windows\System32\Tasks\R@1n-KMS\Office15ProPlus =>HackTool.WinActivator C:\Program Files\QuickTime\QTTask.exe =>Riskware.QuickTime C:\Windows\KMS-R@1n.exe =>Adware.Suspect C:\Windows\KMS-R@1nhook.exe =>HackTool.AutoKMS HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mini-KMS Activator 1.0.5.2 =>Hacktool.Office HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} =>Riskware.QuickTime HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mini-KMS Activator 1.0.5.2 =>Hacktool.Office HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} =>Riskware.QuickTime C:\Program Files\ByteFence =>SUP.Optional.ByteFence C:\Program Files\DriverPack Notifier =>.SUP.DriverPack C:\Program Files\MachinerData =>Trojan.CrthRazy C:\Program Files\QuickTime =>Riskware.QuickTime C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime =>Riskware.QuickTime C:\Users\Admin\AppData\Roaming\DriverPack Notifier =>.SUP.DriverPack C:\Users\Admin\AppData\Roaming\DRPNPS =>.SUP.DriverPack C:\Users\Admin\AppData\Roaming\DRPSu =>.SUP.DriverPack C:\Windows\Prefetch\KMS-R@1NHOOK.EXE-95CFB3BC.pf =>HackTool.AutoKMS [HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{C66A1039-9783-4498-9826-1C0C00EBB2C9} =>Adware.Suspect [HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{A7EBA21F-478C-43C6-A9EA-1BDCEA0AE471} =>Adware.Suspect HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASAPI32 =>SUP.Optional.ByteFence HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ByteFence_RASMANCS =>SUP.Optional.ByteFence C:\Users\Admin\AppData\Local\Temp\tmp-cqi.xpi =>.SUP.Temporary.Firefox C:\Users\Admin\AppData\Local\Temp\tmp-fku.xpi =>.SUP.Temporary.Firefox C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\009 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\011 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\013 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\015 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\038 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\060 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\065 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\069 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\090 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\098 =>.SUP.Temporary.Chrome C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\099 =>.SUP.Temporary.Chrome NoIntegrityChecks est activé. Vérifiez avec la commande ZHPFix IntegrityChecksFix si vos pilotes sont signés. =>Riskware.Unsigned.Drivers HKU\S-1-5-21-234023727-2096472289-1681642753-1000\Software\csastats =>Adware.InstallCore HKU\S-1-5-21-234023727-2096472289-1681642753-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\drp.su =>.SUP.DriverPack HKCU\Software\drpsu =>.SUP.DriverPack HKCU\Software\csastats =>Adware.InstallCore HKCU\Software\ProductSetup =>Adware.InstallCore HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\drp.su =>.SUP.DriverPack HKLM\SOFTWARE\drpsu =>.SUP.DriverPack HKLM64\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\ByteFence.exe =>SUP.Optional.ByteFence HKLM\System\CurrentControlSet\Services\EventLog\Reason\ReasonByteFence =>SUP.Optional.ByteFence [HKU\S-1-5-21-234023727-2096472289-1681642753-1000\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings]:bnlcafindgcpjenlgoekciffahknjebo =>.SUP.Pricora [HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\EasyPHP-Devserver-16.1\run-easyphp-devserver.exe =>.Unsigned [HKU\S-1-5-21-234023727-2096472289-1681642753-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\EasyPHP-Devserver-16.1\run-easyphp-devserver.exe =>.Unsigned C:\Windows\KMS-R@1n.exe =>HackTool.WinActivator C:\Users\Admin\AppData\Roaming\IOBIT\Driver Booster =>.SUP.Energize C:\Windows\System32\Tasks\DRPNPS =>Adware.Wizzcaster C:\ProgramData\IOBIT\Driver Booster =>.SUP.Energize ---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS SUR VOTRE STATION (18) - 0s https://nicolascoolman.eu/2017/01/13/hacktool-winactivator/ =>HackTool.WinActivator https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan https://nicolascoolman.eu/2017/01/15/riskware-quicktime/ =>Riskware.QuickTime https://nicolascoolman.eu/2017/03/02/adware-suspect/ =>Adware.Suspect https://nicolascoolman.eu/2017/02/02/hacktool-autokms/ =>HackTool.AutoKMS https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.OurSurfing https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Hacktool.Office https://nicolascoolman.eu/2018/07/04/sup-driverpack/ =>.SUP.DriverPack https://nicolascoolman.eu/2017/03/11/pup-optional-crossrider/ =>Adware.CrossRider https://nicolascoolman.eu/2017/09/19/adware-installcore-3/ =>Adware.InstallCore https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>SUP.Optional.ByteFence https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Trojan.CrthRazy https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Firefox https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Temporary.Chrome https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Riskware.Unsigned.Drivers https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Pricora https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.SUP.Energize https://nicolascoolman.eu/2017/09/15/adware-wizzcaster/ =>Adware.Wizzcaster ---\\ NUMEROS DE SÉRIE [00AACEBA87AF464A87FD6EF6F03037ABBB] [03/09/2010] (.Pro Data Doctor Pvt. Ltd..) - C:\Program Files\DDR - Pen Drive Recovery(Demo)\DDR - Pen Drive Recovery(Demo).exe =>.Pro Data Doctor Pvt. Ltd. [00B165391BC4427117582E61910F3F2673] [01/07/2010] (.Just Great Software.) - C:\Windows\UnDeployV.exe =>.Just Great Software [00F1748BE12F68AB2638013D4F6C363A50] [19/12/2012] (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 8\NitroPDF.exe =>.Nitro PDF Software [00F1748BE12F68AB2638013D4F6C363A50] [19/12/2012] (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 8\NitroPDFDriverService8.exe =>.Nitro PDF Software [00F1748BE12F68AB2638013D4F6C363A50] [19/12/2012] (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 8\NPShellExtension.dll =>.Nitro PDF Software [00F1748BE12F68AB2638013D4F6C363A50] [19/12/2012] (.Nitro PDF Software.) - C:\Windows\System32\NLSSRV32.EXE =>.Nitro PDF Software [00FE46A10AD94269C3DD225C13645352E4] [18/11/2015] (.win.rar GmbH.) - C:\Program Files\WinRAR\Rar.exe =>.win.rar GmbH [00FE46A10AD94269C3DD225C13645352E4] [18/11/2015] (.win.rar GmbH.) - C:\Program Files\WinRAR\RarExt.dll =>.win.rar GmbH [00FE46A10AD94269C3DD225C13645352E4] [23/11/2015] (.win.rar GmbH.) - C:\Program Files\WinRAR\uninstall.exe =>.win.rar GmbH [01BCA2F95937E3F850F546B3B60DA86F] [03/10/2016] (.Tim Kosse.) - C:\Program Files\FileZilla FTP Client\filezilla.exe =>.Tim Kosse [01BCA2F95937E3F850F546B3B60DA86F] [22/09/2016] (.Tim Kosse.) - C:\Program Files\FileZilla Server\FileZilla Server Interface.exe =>.Tim Kosse [01BCA2F95937E3F850F546B3B60DA86F] [22/09/2016] (.Tim Kosse.) - C:\Program Files\FileZilla Server\FileZilla Server.exe =>.Tim Kosse [02DE9572414317531C3A3D52989EB11C] [19/09/2011] (.Samsung Electronics CO., LTD..) - C:\Program Files\Samsung\Samsung ML-2540 Series\Setup\setup.exe =>.Samsung Electronics CO., LTD. [0320BE3EB866526927F999B97B04346E] [17/01/2017] (.Realtek Semiconductor Corp..) - C:\Windows\System32\drivers\Rt86win7.sys =>.Realtek Semiconductor Corp. [0320BE3EB866526927F999B97B04346E] [25/01/2017] (.Realtek Semiconductor Corp..) - C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe =>.Realtek Semiconductor Corp. [0320BE3EB866526927F999B97B04346E] [25/01/2017] (.Realtek Semiconductor Corp..) - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp. [0320BE3EB866526927F999B97B04346E] [25/01/2017] (.Realtek Semiconductor Corp..) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe =>.Realtek Semiconductor Corp. [0320BE3EB866526927F999B97B04346E] [25/01/2017] (.Realtek Semiconductor Corp..) - C:\Program Files\Realtek\Audio\HDA\RtlUpd.exe =>.Realtek Semiconductor Corp. [0320BE3EB866526927F999B97B04346E] [25/01/2017] (.Realtek Semiconductor Corp..) - C:\Windows\System32\drivers\RTKVHDA.sys =>.Realtek Semiconductor Corp. [03471E2C8171B1679D898AC19BDA37BB] [27/08/2019] (.TeamViewer GmbH.) - C:\Users\Admin\AppData\Roaming\Blizz\Blizz.exe =>.TeamViewer GmbH [03471E2C8171B1679D898AC19BDA37BB] [27/08/2019] (.TeamViewer GmbH.) - C:\Users\Admin\AppData\Roaming\Blizz\uninstall.exe =>.TeamViewer GmbH [0572F6D5E559563497F353315B4E8147] [27/10/2018] (.NCH Software Pty Ltd.) - C:\Program Files\NCH Software\Debut\debut.exe =>.Not verified [0A4F987A769E4A353B26878A3BD3D3DE] [10/10/2016] (.Oracle America, Inc..) - C:\program files\java\jre1.8.0_45\bin\java.exe =>.Oracle America, Inc. [0A4F987A769E4A353B26878A3BD3D3DE] [10/10/2016] (.Oracle America, Inc..) - C:\Program Files\Java\jre1.8.0_45\bin\javaw.exe =>.Oracle America, Inc. [0A4F987A769E4A353B26878A3BD3D3DE] [10/10/2016] (.Oracle America, Inc..) - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll =>.Oracle America, Inc. [0A4F987A769E4A353B26878A3BD3D3DE] [10/10/2016] (.Oracle America, Inc..) - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll =>.Oracle America, Inc. [0ACA441B03F5CC14AC99060A805876FF] [01/03/2013] (.Telestream Inc..) - C:\Program Files\Telestream\Wirecast\Wirecast.exe =>.Telestream Inc. [0C15BE4A15BB0903C901B1D6C265302F] [01/04/2019] (.Google LLC.) - C:\Program Files\Google\Chrome Remote Desktop\74.0.3729.56\remoting_host.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [18/06/2019] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\75.0.3770.100\elevation_service.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [18/06/2019] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [18/06/2019] (.Google LLC.) - C:\Program Files\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\75.0.3770.100\75.0.3770.100_74.0.3729.169_chrome_updater.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [19/09/2019] (.Google LLC.) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\software_reporter_tool.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [22/05/2019] (.Google LLC.) - C:\Program Files\Google\Drive\contextmenu32.dll =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [22/05/2019] (.Google LLC.) - C:\Program Files\Google\Drive\googledrivesync.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [22/05/2019] (.Google LLC.) - C:\Program Files\Google\Drive\googledrivesync32.dll =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [23/06/2019] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [23/06/2019] (.Google LLC.) - C:\Program Files\Google\Chrome\Application\75.0.3770.100\Installer\setup.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [28/05/2019] (.Google LLC.) - C:\Program Files\Google\Google Web Designer\4.1.0.0\uninstaller.exe =>.Google LLC [0C15BE4A15BB0903C901B1D6C265302F] [28/05/2019] (.Google LLC.) - C:\Program Files\Google\Google Web Designer\webdesigner.exe =>.Google LLC [0C48E229A2D8060C1B4034A916D40112] [14/09/2016] (.SafeNet, Inc..) - C:\Windows\System32\drivers\aksclass.sys =>.SafeNet, Inc. [0C48E229A2D8060C1B4034A916D40112] [14/09/2016] (.SafeNet, Inc..) - C:\Windows\System32\drivers\aksfridge.sys =>.SafeNet, Inc. [0C48E229A2D8060C1B4034A916D40112] [14/09/2016] (.SafeNet, Inc..) - C:\Windows\System32\drivers\akshasp.sys =>.SafeNet, Inc. [0C48E229A2D8060C1B4034A916D40112] [14/09/2016] (.SafeNet, Inc..) - C:\Windows\System32\drivers\akshhl.sys =>.SafeNet, Inc. [0C48E229A2D8060C1B4034A916D40112] [14/09/2016] (.SafeNet, Inc..) - C:\Windows\System32\drivers\aksusb.sys =>.SafeNet, Inc. [0C48E229A2D8060C1B4034A916D40112] [14/09/2016] (.SafeNet, Inc..) - C:\Windows\System32\drivers\hardlock.sys =>.SafeNet, Inc. [0C48E229A2D8060C1B4034A916D40112] [14/09/2016] (.SafeNet, Inc..) - C:\Windows\System32\hasplms.exe =>.SafeNet, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [08/08/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vmci.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [12/07/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [13/11/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vmnet.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [13/11/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vmnetadapter.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [13/11/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vmnetbridge.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [14/11/2011] (.VMware, Inc..) - C:\Program Files\VMware\VMware Workstation\mkisofs.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [14/11/2011] (.VMware, Inc..) - C:\Program Files\VMware\VMware Workstation\vmware.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [14/11/2011] (.VMware, Inc..) - C:\Program Files\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [14/11/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vmnetuserif.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [14/11/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vmx86.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [14/11/2011] (.VMware, Inc..) - C:\Windows\System32\vmnat.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [14/11/2011] (.VMware, Inc..) - C:\Windows\System32\vmnetdhcp.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [15/03/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\bmdrvr.sys =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [19/08/2011] (.VMware, Inc..) - C:\Program Files\VMware\VMware vCenter Converter Standalone\converter.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [19/08/2011] (.VMware, Inc..) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [19/08/2011] (.VMware, Inc..) - C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [29/08/2011] (.VMware, Inc..) - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe =>.VMware, Inc. [0C4D1773C9517EE200E8403F6A06C5C2] [29/08/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\hcmon.sys =>.VMware, Inc. [0C5396DCB2949C70FAC48AB08A07338E] [04/10/2017] (.Mozilla Corporation.) - C:\Program Files\Mozilla Thunderbird\thunderbird.exe =>.Mozilla Corporation [0C5396DCB2949C70FAC48AB08A07338E] [04/10/2017] (.Mozilla Corporation.) - C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe =>.Mozilla Corporation [0C5396DCB2949C70FAC48AB08A07338E] [15/07/2019] (.Mozilla Corporation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation [0D2CACCD3E9EEC06738410BA31BF6595] [11/09/2019] (.Adobe Inc..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\PepperFlash\32.0.0.255\pepflashplayer.dll =>.Adobe Inc. [0E9B5887765BCCA6A3F2CA520E2F1136] [01/06/2016] (.VideoLAN.) - C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN [0F668FB0F0F002B774C7DDBD769EE5B1] [01/10/2016] (.Kaspersky Lab.) - C:\Windows\System32\drivers\kl1.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [07/12/2016] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klmouflt.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [11/10/2016] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klim6.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [23/12/2016] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klkbdflt.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [24/01/2017] (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [24/01/2017] (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klflt.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klhk.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klpd.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\kltdi.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [26/12/2016] (.Kaspersky Lab.) - C:\Windows\System32\drivers\cm_km.sys =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [28/04/2018] (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avpui.exe =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [28/04/2018] (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\IEExt\ie_plugin.dll =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [28/04/2018] (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 18.0.0\shellex.dll =>.Kaspersky Lab [0F668FB0F0F002B774C7DDBD769EE5B1] [31/05/2016] (.Kaspersky Lab.) - C:\Windows\System32\drivers\kldisk.sys =>.Kaspersky Lab [0F9D91C6ABA86F4E54CBB9EF57E68346] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klbackupdisk.sys =>.Kaspersky Lab [0F9D91C6ABA86F4E54CBB9EF57E68346] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klbackupflt.sys =>.Kaspersky Lab [0F9D91C6ABA86F4E54CBB9EF57E68346] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klif.sys =>.Kaspersky Lab [0F9D91C6ABA86F4E54CBB9EF57E68346] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\klwtp.sys =>.Kaspersky Lab [0F9D91C6ABA86F4E54CBB9EF57E68346] [24/12/2017] (.Kaspersky Lab.) - C:\Windows\System32\drivers\kneps.sys =>.Kaspersky Lab [10021A27D28312885C613AA498580F6F] [20/05/2011] (.Intel Corporation.) - C:\Windows\System32\drivers\iaStor.sys =>.Intel Corporation [1044F31AE1F93A0BB95F19AB9FAAC6BB] [02/10/2019] (.ESET, spol. s r.o..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\edls_32.dll =>.ESET, spol. s r.o. [1044F31AE1F93A0BB95F19AB9FAAC6BB] [02/10/2019] (.ESET, spol. s r.o..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\em000_32.dll =>.ESET, spol. s r.o. [1044F31AE1F93A0BB95F19AB9FAAC6BB] [02/10/2019] (.ESET, spol. s r.o..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\em001_32.dll =>.ESET, spol. s r.o. [1044F31AE1F93A0BB95F19AB9FAAC6BB] [02/10/2019] (.ESET, spol. s r.o..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\em002_32.dll =>.ESET, spol. s r.o. [1044F31AE1F93A0BB95F19AB9FAAC6BB] [02/10/2019] (.ESET, spol. s r.o..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\em003_32.dll =>.ESET, spol. s r.o. [1044F31AE1F93A0BB95F19AB9FAAC6BB] [02/10/2019] (.ESET, spol. s r.o..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\em004_32.dll =>.ESET, spol. s r.o. [1044F31AE1F93A0BB95F19AB9FAAC6BB] [02/10/2019] (.ESET, spol. s r.o..) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\SwReporter\44.219.200\em005_32.dll =>.ESET, spol. s r.o. [11217744F4734203086E7A2B2312FE1225D5] [17/10/2016] (.Martin Malik - REALiX.) - C:\Windows\System32\drivers\HWiNFO32.SYS =>.Martin Malik - REALiX [15E5AC0A487063718E39DA52301A0488] [04/04/2012] (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe =>.Adobe Systems Incorporated [15E5AC0A487063718E39DA52301A0488] [04/04/2012] (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated [15E5AC0A487063718E39DA52301A0488] [09/03/2012] (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe =>.Adobe Systems Incorporated [15E5AC0A487063718E39DA52301A0488] [12/03/2012] (.Adobe Systems Incorporated.) - C:\Program Files\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe =>.Adobe Systems Incorporated [15E5AC0A487063718E39DA52301A0488] [14/03/2012] (.Adobe Systems Incorporated.) - C:\Program Files\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe =>.Adobe Systems Incorporated [15E5AC0A487063718E39DA52301A0488] [31/03/2012] (.Adobe Systems Incorporated.) - C:\Program Files\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe =>.Adobe Systems Incorporated [1F9AE0] [18/04/2004] (.InstallShield Software Corporation.) - C:\Program Files\InstallShield Installation Information\{EA2E8D6D-EE50-4689-B7ED-1E580BC04CC1}\setup.exe =>.InstallShield Software Corporation [20A20DFCE424E6BBCC162A5FCC0972EE] [28/09/2018] (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH [20A20DFCE424E6BBCC162A5FCC0972EE] [28/09/2018] (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer GmbH [20A20DFCE424E6BBCC162A5FCC0972EE] [28/09/2018] (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\uninstall.exe =>.TeamViewer GmbH [243C767E33053FAAE0F0131C103D7A17] [02/10/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Roaming\ViberPC\11.6.0.51\11.6.0.51\updater.exe =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-console-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-datetime-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-debug-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-errorhandling-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-file-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-file-l1-2-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-file-l2-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-handle-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-heap-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-interlocked-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-libraryloader-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-localization-l1-2-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-memory-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-namedpipe-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-processenvironment-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-processthreads-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-processthreads-l1-1-1.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-profile-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-rtlsupport-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-string-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-synch-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-synch-l1-2-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-sysinfo-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-timezone-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-core-util-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-conio-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-convert-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-environment-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-filesystem-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-heap-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-locale-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-math-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-multibyte-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-private-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-process-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-runtime-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-stdio-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-string-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-time-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\api-ms-win-crt-utility-l1-1-0.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\audio\qtaudio_windows.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\d3dcompiler_47.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\geoservices\qtgeoservices_esri.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\geoservices\qtgeoservices_itemsoverlay.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\geoservices\qtgeoservices_mapbox.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\geoservices\qtgeoservices_nokia.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\geoservices\qtgeoservices_osm.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\iconengines\qsvgicon.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\icudt63.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\icuin63.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\icuuc63.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qgif.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qicns.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qico.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qjpeg.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qsvg.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qtga.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qtiff.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qwbmp.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\imageformats\qwebp.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\libEGL.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\libGLESV2.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\mediaservice\dsengine.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\mediaservice\qtmedia_audioengine.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\mediaservice\wmfengine.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\msvcp140.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\msvcp140_1.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\msvcp140_2.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\opengl32sw.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\platforms\qwindows.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\playlistformats\qtmultimedia_m3u.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\position\qtposition_positionpoll.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\position\qtposition_winrt.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_debugger.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_inspector.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_local.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_messages.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_native.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_nativedebugger.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_preview.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_profiler.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_quickprofiler.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_server.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qmltooling\qmldbg_tcp.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\qrencode.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt\labs\folderlistmodel\qmlfolderlistmodelplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt\labs\platform\qtlabsplatformplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt\labs\settings\qmlsettingsplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Core.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Gui.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Location.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Multimedia.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5MultimediaQuick.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Network.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Positioning.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5PositioningQuick.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Qml.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Quick.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5QuickControls2.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5QuickTemplates2.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5RemoteObjects.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Sql.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Svg.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5WebChannel.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5WebEngine.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5WebEngineCore.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5WebSockets.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5Widgets.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Qt5WinExtras.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtGraphicalEffects\qtgraphicaleffectsplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtLocation\declarative_location.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtMultimedia\declarative_multimedia.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtPositioning\declarative_positioning.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQml\Models.2\modelsplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQml\RemoteObjects\qtqmlremoteobjects.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQml\StateMachine\qtqmlstatemachine.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick.2\qtquick2plugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Controls.2\Fusion\qtquickcontrols2fusionstyleplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Controls.2\Imagine\qtquickcontrols2imaginestyleplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Controls.2\Material\qtquickcontrols2materialstyleplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Controls.2\qtquickcontrols2plugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Controls.2\Universal\qtquickcontrols2universalstyleplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Controls\qtquickcontrolsplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Controls\Styles\Flat\qtquickextrasflatplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Dialogs\dialogplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Dialogs\Private\dialogsprivateplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Extras\qtquickextrasplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Layouts\qquicklayoutsplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\PrivateWidgets\widgetsplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Templates.2\qtquicktemplates2plugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtQuick\Window.2\windowplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtWebChannel\declarative_webchannel.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtWebEngine\qtwebengineplugin.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\QtWebEngineProcess.exe =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\scenegraph\qsgd3d12backend.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\sqldrivers\qsqlite.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\sqldrivers\qsqlodbc.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\styles\qwindowsvistastyle.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\ucrtbase.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\vccorlib140.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\vcruntime140.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\Viber.exe =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\ViberRTC.dll =>.Viber Media S.à r.l. [243C767E33053FAAE0F0131C103D7A17] [25/09/2019] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Viber\ViberSandbox.exe =>.Viber Media S.à r.l. [26DE215EF39F4CCA21BA3D4BEA9E3A31] [15/03/2012] (.FileMaker, Inc.) - C:\Program Files\FileMaker\FileMaker Pro 12 Advanced\FileMaker Pro Advanced.exe =>.FileMaker, Inc [26DE215EF39F4CCA21BA3D4BEA9E3A31] [15/03/2012] (.FileMaker, Inc.) - C:\Program Files\FileMaker\FileMaker Pro 12 Advanced\Setup\Uninstall.exe =>.FileMaker, Inc [2B20EB3380792AB011F662C064FDB473] [10/08/2015] (.Apple Inc..) - C:\Program Files\QuickTime\QuickTimePlayer.exe =>.Apple Inc. [2C80892E0115B0B77AA3594B9A733953] [08/09/2011] (.Realtek Semiconductor Corp.) - C:\Windows\System32\drivers\Rtlh86.sys =>.Realtek Semiconductor Corp [3260EF1B2D62998EC17A21F40669ED22] [07/03/2014] (.CANON INC..) - C:\Program Files\Canon\MF Toolbox Ver4.9\MFTBOX.exe =>.CANON INC. [3260EF1B2D62998EC17A21F40669ED22] [07/03/2014] (.CANON INC..) - C:\Program Files\Canon\MF Toolbox Ver4.9\Uninst.exe =>.CANON INC. [3260EF1B2D62998EC17A21F40669ED22] [07/03/2014] (.CANON INC..) - C:\Windows\System32\CanonMF Uninstaller Information\{33A079E0-BF49-4E97-9293-3EDDA6D130A4}\misc\DelDrv.exe =>.CANON INC. [3260EF1B2D62998EC17A21F40669ED22] [10/04/2014] (.CANON INC..) - C:\Program Files\Canon\OIPTonerStatus\CnTnrStsTask.exe =>.CANON INC. [3260EF1B2D62998EC17A21F40669ED22] [10/04/2014] (.CANON INC..) - C:\Program Files\Canon\OIPTonerStatus\Uninst.exe =>.CANON INC. [3260EF1B2D62998EC17A21F40669ED22] [11/11/2013] (.CANON INC..) - C:\Program Files\Canon\PrnUninstall\Canon LBP6030 6040 6018L\UNINSTAL.exe =>.CANON INC. [330000B33510830D6C8A284DCB00020000B335] [12/05/2016] (.Intel Corporation - pGFX.) - C:\Program Files\Intel\Intel(R) Processor Graphics\Uninstall\Setup.exe =>.Intel Corporation - pGFX [330000B33510830D6C8A284DCB00020000B335] [12/05/2016] (.Intel Corporation - pGFX.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX [330000B33510830D6C8A284DCB00020000B335] [12/05/2016] (.Intel Corporation - pGFX.) - C:\Windows\System32\igfxEM.exe =>.Intel Corporation - pGFX [330000B33510830D6C8A284DCB00020000B335] [12/05/2016] (.Intel Corporation - pGFX.) - C:\Windows\System32\igfxHK.exe =>.Intel Corporation - pGFX [330000B33510830D6C8A284DCB00020000B335] [12/05/2016] (.Intel Corporation - pGFX.) - C:\Windows\System32\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX [330000B898AA86B5A39E5A1BBD00020000B898] [12/05/2016] (.Intel(R) pGFX.) - C:\Windows\System32\drivers\igdkmd32.sys =>.Intel(R) pGFX [330000C4FE532CA47D2C2EF2F000030000C4FE] [29/05/2015] (.Intel Corporation - Rapid Storage Technology.) - C:\Windows\System32\drivers\iaStorA.sys =>.Intel Corporation - Rapid Storage Technology [330000C4FE532CA47D2C2EF2F000030000C4FE] [29/05/2015] (.Intel Corporation - Rapid Storage Technology.) - C:\Windows\System32\drivers\iaStorF.sys =>.Intel Corporation - Rapid Storage Technology [340EDFDE125E67CB26577AF2C7691E60] [04/03/2011] (.IBM UK Ltd.) - C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe =>.Not verified [390A5F7A22D49D3195E93B83A9A76971] [12/10/2018] (.PUYBARET EMMANUEL.) - C:\Program Files\Sweet Home 3D\SweetHome3D.exe =>.Not verified [390A5F7A22D49D3195E93B83A9A76971] [27/11/2018] (.PUYBARET EMMANUEL.) - C:\Program Files\Sweet Home 3D\unins000.exe =>.Not verified [3DAA06F4E8BE7B2AE8FC57BA8578B7D9] [07/06/2016] (.AnchorFree Inc.) - C:\Windows\System32\drivers\kltap.sys =>.AnchorFree Inc [3F5F2725B11E258A905707175244664A] [15/07/2014] (.Nero AG.) - C:\Program Files\Nero\Update\NASvc.exe =>.Nero AG [4995FDCB051F55B2F953BA6851AC50B1] [19/12/2011] (.PC SOFT INFORMATIQUE.) - C:\WinDev 17\Desinstallation.exe =>.PC SOFT INFORMATIQUE [49C8B878580D02C17A6016651581371E] [15/05/2019] (.SHENZHEN EDRAW SOFTWARE CO.,LTD..) - C:\Program Files\Edraw\Edraw Max\EdrawMax.exe =>.Not verified [50B4E4F2161DA9CC1980A043903435CD] [09/11/2012] (.CANON INC..) - C:\Windows\System32\CNAC4RPK.EXE =>.CANON INC. [50B4E4F2161DA9CC1980A043903435CD] [09/11/2012] (.CANON INC..) - C:\Windows\System32\spool\drivers\w32x86\3\CNAC4LAK.EXE =>.CANON INC. [51CA009816FDBD80F120E015EE75823E] [18/10/2016] (.Oracle Corporation.) - C:\Program Files\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation [51CA009816FDBD80F120E015EE75823E] [18/10/2016] (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxDrv.sys =>.Oracle Corporation [51CA009816FDBD80F120E015EE75823E] [18/10/2016] (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxNetAdp6.sys =>.Oracle Corporation [51CA009816FDBD80F120E015EE75823E] [18/10/2016] (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxNetLwf.sys =>.Oracle Corporation [51CA009816FDBD80F120E015EE75823E] [18/10/2016] (.Oracle Corporation.) - C:\Windows\System32\drivers\VBoxUSBMon.sys =>.Oracle Corporation [54C3C910528E537C3ED4225038666D42] [05/04/2011] (.Samsung Electronics CO., LTD..) - C:\Program Files\Samsung\Easy Printer Manager\Uninst.exe =>.Samsung Electronics CO., LTD. [5600000027396847078B466FFF000000000027] [29/03/2016] (.Intel(R) Embedded Subsystems and IP Blocks Group.) - C:\Windows\System32\drivers\TeeDriver.sys =>.Not verified [57F54AD6589EA6C339570EB6CF5D5912] [17/06/2016] (.Runtime Software, LLC.) - C:\Program Files\Runtime Software\GetDataBack Simple\gdbsim.exe =>.Runtime Software, LLC [5AECF5A58104948997EF21A8F3D44AAE] [20/12/2016] (.Viber Media S.à r.l..) - C:\Users\Admin\AppData\Local\Package Cache\{445dc168-71e3-405e-820c-d2d95a0633e7}\ViberSetup.exe =>.Viber Media S.à r.l. [5D38D8BD64455068C2D1C74088C5E28A] [15/09/2019] (.Tim Kosse.) - C:\Users\Admin\Downloads\FileZilla_3.44.2_win32-setup.exe =>.Tim Kosse [5FA2A6E514B187C52E1FEA5240CB04E9] [13/09/2013] (.Apple Inc..) - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc. [5FA2A6E514B187C52E1FEA5240CB04E9] [13/09/2013] (.Apple Inc..) - C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe =>.Apple Inc. [61C4954295FC68AB2A6BC4D7] [10/07/2019] (.Sole Proprietorship Smolikov Eugene Gennadyevich.) - C:\Users\Admin\Downloads\AeroAdmin.exe =>.Not verified [6404DB61004532252326E3EE1DAB5AB2] [14/05/2016] (.Free Time Co., Ltd..) - C:\Program Files\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe =>.Free Time Co., Ltd. [65D89426697260C83D33F2D7163748DF] [07/09/2012] (.CANON INC..) - C:\Program Files\Canon\PrnUninstall\Canon LBP5000\CNAC4UN.EXE =>.CANON INC. [65D89426697260C83D33F2D7163748DF] [14/06/2012] (.CANON INC..) - C:\Windows\System32\spool\drivers\w32x86\3\CNAP3LAK.exe =>.CANON INC. [6AD32BE325F129C1992E833B078BEE9F] [24/06/2019] (.Xebiro Limited.) - C:\ProgramData\WIFIService\WIFIService.exe =>.Not verified [6DAF7B424FFE7E164F4B9FC5] [30/07/2019] (.INDEX EDUCATION SASU.) - C:\Program Files\Index Education\Mise a jour automatique\ServiceMiseAJourIndex.exe =>.INDEX EDUCATION SASU [72FB3194DF6A92475219F34B6F008993] [29/08/2011] (.VMware, Inc..) - C:\Windows\System32\drivers\vmusb.sys =>.VMware, Inc. [741D340793306ACA84FAB3ABBB1567CE] [01/12/2011] (.Piriform Ltd.) - C:\Program Files\Recuva\Recuva.exe =>.Piriform Ltd [741D340793306ACA84FAB3ABBB1567CE] [01/12/2011] (.Piriform Ltd.) - C:\Program Files\Recuva\uninst.exe =>.Piriform Ltd [74E272F8CF91E4026059EE44A8F63845] [15/05/2003] (.Adobe Systems, Incorporated.) - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll =>.Adobe Systems, Incorporated [774A92D24364DD551CF8DFD072287151] [25/10/2013] (.Cisco Systems Norway AS.) - C:\Program Files\Cisco\JabberVideo\JabberVideo.exe =>.Not verified [7A4C85A6E02387A2CAB6748494301044] [16/08/2016] (.AlcorMicro, Corp..) - C:\Windows\System32\drivers\AmUStor.sys =>.AlcorMicro, Corp. ~ Unselected Options: O82, ~ End of the scan, 12041 items in 09mn51s (3472)(0)