¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan | g3n-h@ckm@n | V9_18.10.19.1 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ ¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ - Start 12:40:42 09/26/2020 Updated 18/10/2019 | 07:30 (GMT) by g3n-h@ckm@n Contact : http://www.sosvirus.net/ Pre_scan Feedbacks : http://www.sosvirus.net/feedback-t74962.html [breathe&audiorandar (Administrator)] - [DESKTOP-8LA24MM] SID = S-1-5-21-3192201161-1359859000-606038350-1002 Boot: Normal boot System : Windows 10 Home (64 bits) Core ProcessorNameString : Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Identifier : Intel64 Family 6 Model 142 Stepping 9 CoreTemp : 29.8 Celsius - Max : 99 Celsius Memory RAM = Total (MB) : 4094 | Free (MB) : 1085 Pagefile = Total (MB) : 8188 | Free (MB) : 1897 Virtual = Total (MB) : 4194 | Free (MB) : 3862 ¤¤¤¤¤¤¤¤¤¤ # Components of starting up ¤¤¤¤¤¤¤¤¤¤¤ # Drives H:\-> [Fixed] | [SYSTEM] | Total : 0.09 Go | Free : 0.07 Go -> FAT32 (SSD) [SATA] G:\-> [Fixed] | [SAMSUNG_REC] | Total : 1 Go | Free : 0 Go -> FAT32 (SSD) [SATA] F:\-> [Fixed] | [SAMSUNG_REC2] | Total : 10.31 Go | Free : 1.24 Go -> NTFS (SSD) [SATA] D:\-> [Fixed] | [bitsa] | Total : 27.16 Go | Free : 0 Go -> NTFS (SSD) [SATA] C:\-> [Fixed] | [] | Total : 80.54 Go | Free : 6.15 Go -> NTFS (SSD) [SATA] ¤¤¤¤¤¤¤¤¤¤ # Windows updates Windows Is Activated ¤¤¤¤¤¤¤¤¤¤ # Sessions C:\Windows\system32\config\systemprofile C:\windows\ServiceProfiles\LocalService C:\windows\ServiceProfiles\NetworkService C:\Users\VexeAlebrulogNathali C:\Users\breathe&audiorandar Registry saved , to restore : Shortcut on the desktop 'Pre_Scan_Restore' Restore the register (C:\Pre_Scan\Save\Registry [26.09.2020 @ 12_36_50]) To restore File or Folder : Shortcut on the desktop 'Pre_Scan_Restore' , select 'restore File - Folder' , select an Item and click on Restore ¤¤¤¤¤¤¤¤¤¤ # Browsers IE : 11.0.16299.15 (© Microsoft Corporation.) ¤¤¤¤¤¤¤¤¤¤ # FlashPlayer ActiveX : 32.0.0.171 ���������� # Security FW : WMI : OK WU: Windows Update Service [Disabled(4)] = stopped AS: Windows Defender [Manual(3)] = stopped FW: Windows FireWall Service [Auto(2)] = Running ¤¤¤¤¤¤¤¤¤¤ # Stopped processes 2772 | [Owner : |Parent : 728] - (. - .) - (0.0.0.0) = C:\Windows\System32\PanelManagerSvc.exe 2780 | [Owner : |Parent : 728] - (.Samsung Electronics Co.,Ltd. - Samsung Radio Control Delegation Service executable.) - (2.3.0.7) = C:\Windows\System32\RCDService.exe 2792 | [Owner : |Parent : 728] - (. - SafiService.) - (1.0.0.7) = C:\Windows\System32\DriverStore\FileRepository\safidrv.inf_amd64_0e89535d35916282\SafiService.exe 2808 | [Owner : |Parent : 728] - (. - SamsungPenService.) - (1.0.33.0) = C:\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe 3112 | [Owner : |Parent : 728] - (.Intel Corporation - igfxCUIService Module.) - (6.15.10.4599) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\igfxCUIService.exe 3332 | [Owner : |Parent : 728] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.16299.15) = C:\Windows\System32\spoolsv.exe 3772 | [Owner : SYSTEM |Parent : 728] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) - (10.0.10011.16384) = C:\Windows\System32\drivers\AdminService.exe 3780 | [Owner : SYSTEM |Parent : 728] - (.Intel Corporation - IntelCpHDCPSvc Executable.) - (1.0.0.1) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\IntelCpHDCPSvc.exe 3892 | [Owner : |Parent : 728] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.12.16299.15) = C:\Program Files\Windows Defender\MsMpEng.exe 3900 | [Owner : SYSTEM |Parent : 728] - (.Samsung Electronics - GripResetService.) - (1.0.0.6) = C:\Windows\System32\GripResetService.exe 3916 | [Owner : SYSTEM |Parent : 728] - (.Samsung Electronics Co., Ltd. - SamsungSystemService.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemService.exe 3948 | [Owner : |Parent : 728] - (.Microsoft Corporation - Windows Security Health Service.) - (4.12.16299.15) = C:\Windows\System32\SecurityHealthService.exe 3992 | [Owner : SYSTEM |Parent : 728] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework.) - (8.2.11002.3418) = C:\Windows\System32\Intel\DPTF\esif_uf.exe 4264 | [Owner : SYSTEM |Parent : 728] - (.Intel Corporation - IntelCpHeciSvc Executable.) - (9.0.2.117) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\IntelCpHeciSvc.exe 4872 | [Owner : LOCAL SERVICE |Parent : 728] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 4072 | [Owner : LOCAL SERVICE |Parent : 728] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 3400 | [Owner : LogonSessionId_0_337324 |Parent : 728] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.8833) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 1300 | [Owner : LOCAL SERVICE |Parent : 728] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 6928 | [Owner : LOCAL SERVICE |Parent : 728] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 7172 | [Owner : LOCAL SERVICE |Parent : 728] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 7308 | [Owner : LOCAL SERVICE |Parent : 728] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 1404 | [Owner : SYSTEM |Parent : 728] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (11.7.0.1052) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe 696 | [Owner : SYSTEM |Parent : 728] - (.Samsung Electronics Co., Ltd. - WLAN SAR Service.) - (1.0.0.7) = C:\Windows\System32\WlSarService.exe 6000 | [Owner : SYSTEM |Parent : 5084] - (.Microsoft Corporation - Usermode Font Driver Host.) - (10.0.16299.19) = C:\Windows\System32\fontdrvhost.exe 9452 | [Owner : VexeAlebrulogNathali |Parent : 3992] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework Utility Application.) - (8.2.11002.3418) = C:\Windows\Temp\DPTF\esif_assist_64.exe 9508 | [Owner : VexeAlebrulogNathali |Parent : 2772] - (. - PanelManager.) - (1.0.9.0) = C:\Program Files\Samsung\PanelManager\PanelManager.exe 2800 | [Owner : VexeAlebrulogNathali |Parent : 2792] - (. - SafiAgent.) - (1.0.0.7) = C:\Windows\System32\DriverStore\FileRepository\safidrv.inf_amd64_0e89535d35916282\SafiAgent.exe 7956 | [Owner : VexeAlebrulogNathali |Parent : 3916] - (.Samsung Electronics Co., Ltd. - SamsungSystemAgent.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemAgent.exe 1172 | [Owner : VexeAlebrulogNathali |Parent : 2900] - (.Microsoft Corporation - Shell Infrastructure Host.) - (10.0.16299.15) = C:\Windows\System32\sihost.exe 2256 | [Owner : VexeAlebrulogNathali |Parent : 728] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 1676 | [Owner : VexeAlebrulogNathali |Parent : 728] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 672 | [Owner : VexeAlebrulogNathali |Parent : 2300] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.16299.15) = C:\Windows\System32\taskhostw.exe 6180 | [Owner : VexeAlebrulogNathali |Parent : 1816] - (.Intel Corporation - igfxEM Module.) - (6.15.10.4599) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\igfxEM.exe 8452 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Intel Corporation - igfxext Module.) - (6.15.10.4599) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\igfxext.exe 2768 | [Owner : VexeAlebrulogNathali |Parent : 1960] - (.Microsoft Corporation - Explorateur Windows.) - (10.0.16299.15) = C:\Windows\explorer.exe 1580 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 1368 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Search and Cortana application.) - (10.0.16299.19) = C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 6276 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 1008 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Application Frame Host.) - (10.0.16299.15) = C:\Windows\System32\ApplicationFrameHost.exe 10496 | [Owner : Aucun |Parent : 2300] - (.Samsung Electronics Co., Ltd. - Show Window.) - (1.0.0.30) = C:\Program Files (x86)\Show Window\Show Window.exe 10672 | [Owner : VexeAlebrulogNathali |Parent : 2416] - (.Microsoft Corporation - Chargeur CTF.) - (10.0.16299.15) = C:\Windows\System32\ctfmon.exe 10680 | [Owner : VexeAlebrulogNathali |Parent : 2416] - (.Microsoft Corporation - Clavier tactile et volet d’écriture manuscrite.) - (10.0.16299.64) = C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 10756 | [Owner : VexeAlebrulogNathali |Parent : 10680] - (.Microsoft Corporation - Touch Keyboard and Handwriting Panel Helper.) - (10.0.16299.15) = C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe 10800 | [Owner : Aucun |Parent : 2300] - (.Samsung Electronics Co., Ltd. - S Agent.) - (1.1.5.8) = C:\Program Files\Samsung\S Agent\CommonAgent.exe 9884 | [Owner : VexeAlebrulogNathali |Parent : 2768] - (.Microsoft Corporation - Windows Defender notification icon.) - (4.12.16299.15) = C:\Program Files\Windows Defender\MSASCuiL.exe 1388 | [Owner : VexeAlebrulogNathali |Parent : 2768] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.1109) = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 1320 | [Owner : VexeAlebrulogNathali |Parent : 8616] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.7) = C:\Program Files\Realtek\Audio\HDA\EP64.exe 10648 | [Owner : VexeAlebrulogNathali |Parent : 2768] - (.Samsung Electronics Co., Ltd. - Samsung OSD.) - (1.0.11.0) = C:\Program Files\Samsung\SamsungOSD\OSD.exe 10656 | [Owner : VexeAlebrulogNathali |Parent : 728] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 10772 | [Owner : VexeAlebrulogNathali |Parent : 8328] - (.Microsoft Corporation - Microsoft OneDrive.) - (20.143.716.3) = C:\Users\VexeAlebrulogNathali\AppData\Local\Microsoft\OneDrive\OneDrive.exe 1244 | [Owner : Aucun |Parent : 2300] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.16299.15) = C:\Windows\System32\taskhostw.exe 1812 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - LockApp.exe.) - (10.0.16299.15) = C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe 10464 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 3844 | [Owner : SYSTEM |Parent : 728] - (.Microsoft Corporation - sedsvc.) - (10.0.17134.10102) = C:\Program Files\rempl\sedsvc.exe 1560 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Windows Defender SmartScreen.) - (10.0.16299.15) = C:\Windows\System32\smartscreen.exe 5008 | [Owner : VexeAlebrulogNathali |Parent : 12420] - (.Apowersoft - Apowersoft Online Launcher.) - (1.8.0.0) = C:\Users\VexeAlebrulogNathali\AppData\Local\Apowersoft\Apowersoft Online Launcher\Apowersoft Online Launcher.exe 12996 | [Owner : VexeAlebrulogNathali |Parent : 5008] - (.Apowersoft - Apowersoft Online Screen Recorder.) - (1.8.2.1) = C:\Users\VexeAlebrulogNathali\AppData\Local\Apowersoft\Online Screen Recorder\Online Screen Recorder.exe 11312 | [Owner : LogonSessionId_0_55417968 |Parent : 728] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.16299.15) = C:\Windows\System32\SearchIndexer.exe 13352 | [Owner : SYSTEM |Parent : 728] - (. - SPWindowsService.) - (1.0.0.0) = C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe 13252 | [Owner : Aucun |Parent : 14012] - (.Lavasoft - Web Companion.) - (6.0.2285.4135) = C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe 9204 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Adobe - Adobe® Flash® Player Utility.) - (32.0.0.171) = C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe 14940 | [Owner : Aucun |Parent : 14532] - (. - Stub Web Internet Setup .) - (0.0.0.0) = C:\Users\VexeAlebrulogNathali\Downloads\komodia free ssl sniffer_3740363463.exe 10884 | [Owner : Aucun |Parent : 15580] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 1772 | [Owner : Aucun |Parent : 10884] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 15900 | [Owner : Aucun |Parent : 1772] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 15952 | [Owner : VexeAlebrulogNathali |Parent : 10884] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 15568 | [Owner : VexeAlebrulogNathali |Parent : 10884] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 16404 | [Owner : VexeAlebrulogNathali |Parent : 16948] - (.Dashlane, Inc. - Dashlane.) - (6.2037.0.39131) = C:\Users\VexeAlebrulogNathali\AppData\Roaming\Dashlane\Dashlane.exe 17692 | [Owner : VexeAlebrulogNathali |Parent : 16404] - (.Dashlane, Inc. - Dashlane Plugin Agent.) - (6.2037.0.39131) = C:\Users\VexeAlebrulogNathali\AppData\Roaming\Dashlane\DashlanePlugin.exe 16576 | [Owner : VexeAlebrulogNathali |Parent : 2300] - (.CyberLink Corp. - CyberLink PhotoDirector 12.) - (12.0.2024.0) = C:\Program Files\CyberLink\PhotoDirector12\PhotoDirector12.exe 17676 | [Owner : VexeAlebrulogNathali |Parent : 2300] - (.CyberLink Corp. - PDStyleAgent.) - (1.0.0.507) = C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe 14756 | [Owner : SYSTEM |Parent : 728] - (.CyberLink - CyberLink RichVideo Module.) - (2.0.0.14321) = C:\Program Files\CyberLink\Shared files\RichVideo64.exe 11544 | [Owner : VexeAlebrulogNathali |Parent : 9900] - (. - .) - (0.0.0.0) = C:\Users\VexeAlebrulogNathali\Downloads\CyberLinkDirectorSuite9.0_Essential_DRS200813-01_TR200909-021.exe 7748 | [Owner : VexeAlebrulogNathali |Parent : 2768] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 20140 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Windows Shell Experience Host.) - (10.0.16299.15) = C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 5784 | [Owner : Aucun |Parent : 11544] - (.CyberLink Corp. - .) - (1.0.0.0) = C:\Users\VEXEAL~1\AppData\Local\Temp\RarSFX1\Setup.exe 22076 | [Owner : VexeAlebrulogNathali |Parent : 2300] - (.CyberLink Corp. - PowerDirector 19.) - (19.0.2108.0) = C:\Program Files\CyberLink\PowerDirector19\PDR.exe 18464 | [Owner : LogonSessionId_0_96859525 |Parent : 728] - (.Microsoft Corporation - Installateur Windows®.) - (5.0.16299.15) = C:\Windows\System32\msiexec.exe 21900 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 19788 | [Owner : Aucun |Parent : 21872] - (. - Usb Anti-Malware.) - (10.0.0.22) = C:\Program Files (x86)\UsbFix\UsbFix.exe 23472 | [Owner : SYSTEM |Parent : 2300] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.16299.15) = C:\Windows\System32\wermgr.exe 19172 | [Owner : Aucun |Parent : 2300] - (. - Real Time Protection for UsbFix Anti-Malware Professionnal.) - (10.0.0.31) = C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe 24000 | [Owner : Aucun |Parent : 680] - (.Baidu, Inc. - Baidu Antivirus MiniSetup.) - (5.9.0.21205) = C:\Users\VexeAlebrulogNathali\Downloads\BavPro_Setup_Mini_C1.exe 5976 | [Owner : Aucun |Parent : 24000] - (.Baidu, Inc. - Baidu Antivirus MiniSetup.) - (5.9.0.21205) = C:\Users\VexeAlebrulogNathali\AppData\Roaming\BavMini\BavPro_Setup_Mini_C1.exe 12732 | [Owner : Aucun |Parent : 5976] - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) - (5.812.10240.16384) = C:\Windows\SysWOW64\cscript.exe 21800 | [Owner : Aucun |Parent : 12732] - (.Microsoft Corporation - Console Window Host.) - (10.0.16299.15) = C:\Windows\System32\conhost.exe 21996 | [Owner : VexeAlebrulogNathali |Parent : 2768] - (.Microsoft Corporation - Internet Explorer.) - (11.0.16299.15) = C:\Program Files\internet explorer\iexplore.exe 21620 | [Owner : VexeAlebrulogNathali |Parent : 21996] - (.Microsoft Corporation - Internet Explorer.) - (11.0.16299.15) = C:\Program Files (x86)\Internet Explorer\iexplore.exe 23680 | [Owner : VexeAlebrulogNathali |Parent : 21996] - (.Microsoft Corporation - Internet Explorer.) - (11.0.16299.15) = C:\Program Files (x86)\Internet Explorer\iexplore.exe 19404 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Background Task Host.) - (10.0.16299.15) = C:\Windows\System32\backgroundTaskHost.exe 5472 | [Owner : Aucun |Parent : 5784] - (.CyberLink Corp. - .) - (1.0.0.0) = C:\Users\VEXEAL~1\AppData\Local\Temp\RarSFX1\ColorDirector9\Setup.exe 9840 | [Owner : VexeAlebrulogNathali |Parent : 11312] - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.16299.15) = C:\Windows\System32\SearchProtocolHost.exe 11136 | [Owner : VexeAlebrulogNathali |Parent : 10884] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 17016 | [Owner : VexeAlebrulogNathali |Parent : 3916] - (.Samsung Electronics Co., Ltd. - SamsungSystemManager.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemManager.exe 24732 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe 9276 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Browser_Broker.) - (11.0.16299.15) = C:\Windows\System32\browser_broker.exe 11840 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 20308 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 13752 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 11552 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 22236 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 11340 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 3796 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 10216 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 20916 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Windows Defender application.) - (10.0.16299.15) = C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe 12364 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 17596 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 4676 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 5464 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 10412 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 12804 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 6716 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 21232 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 20544 | [Owner : SYSTEM |Parent : 11312] - (.Microsoft Corporation - Microsoft Windows Search Filter Host.) - (7.0.16299.15) = C:\Windows\System32\SearchFilterHost.exe 21040 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 7388 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 19816 | [Owner : NETWORK SERVICE |Parent : 18816] - (.Microsoft Corporation - Microsoft Malware Protection Command Line Utility.) - (4.12.16299.15) = C:\Program Files\Windows Defender\MpCmdRun.exe 19948 | [Owner : SYSTEM |Parent : 20172] - (.Microsoft Corporation - Console Window Host.) - (10.0.16299.15) = C:\Windows\System32\conhost.exe 11332 | [Owner : |Parent : 728] - (.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) - (10.0.16299.15) = C:\Windows\System32\sppsvc.exe 11692 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.16299.15) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe 1532 | [Owner : |Parent : 712] - (. - .) - (0.0.0.0) = C:\Windows\System32\PanelManagerSvc.exe 1540 | [Owner : |Parent : 712] - (.Samsung Electronics Co.,Ltd. - Samsung Radio Control Delegation Service executable.) - (2.3.0.7) = C:\Windows\System32\RCDService.exe 1548 | [Owner : |Parent : 712] - (. - SafiService.) - (1.0.0.7) = C:\Windows\System32\DriverStore\FileRepository\safidrv.inf_amd64_0e89535d35916282\SafiService.exe 1600 | [Owner : |Parent : 712] - (. - SamsungPenService.) - (1.0.33.0) = C:\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe 2672 | [Owner : |Parent : 712] - (.Intel Corporation - igfxCUIService Module.) - (6.15.10.4599) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\igfxCUIService.exe 3232 | [Owner : |Parent : 712] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.16299.15) = C:\Windows\System32\spoolsv.exe 3828 | [Owner : Système |Parent : 712] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) - (10.0.10011.16384) = C:\Windows\System32\drivers\AdminService.exe 3852 | [Owner : Système |Parent : 712] - (.Intel Corporation - IntelCpHDCPSvc Executable.) - (1.0.0.1) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\IntelCpHDCPSvc.exe 3904 | [Owner : Système |Parent : 712] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework.) - (8.2.11002.3418) = C:\Windows\System32\Intel\DPTF\esif_uf.exe 3912 | [Owner : Système |Parent : 712] - (.Samsung Electronics - GripResetService.) - (1.0.0.6) = C:\Windows\System32\GripResetService.exe 3988 | [Owner : Système |Parent : 712] - (.Samsung Electronics Co., Ltd. - SamsungSystemService.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemService.exe 4024 | [Owner : Système |Parent : 712] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.5.11.0) = C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe 4048 | [Owner : Système |Parent : 712] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.6.0.0) = C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe 4088 | [Owner : |Parent : 712] - (.Microsoft Corporation - Windows Security Health Service.) - (4.12.16299.15) = C:\Windows\System32\SecurityHealthService.exe 3080 | [Owner : Système |Parent : 712] - (. - SPWindowsService.) - (1.0.0.0) = C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe 544 | [Owner : |Parent : 712] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.12.16299.15) = C:\Program Files\Windows Defender\MsMpEng.exe 4588 | [Owner : Système |Parent : 712] - (.Intel Corporation - IntelCpHeciSvc Executable.) - (9.0.2.117) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\IntelCpHeciSvc.exe 4996 | [Owner : VexeAlebrulogNathali |Parent : 1532] - (. - PanelManager.) - (1.0.9.0) = C:\Program Files\Samsung\PanelManager\PanelManager.exe 1684 | [Owner : VexeAlebrulogNathali |Parent : 1476] - (.Microsoft Corporation - Shell Infrastructure Host.) - (10.0.16299.15) = C:\Windows\System32\sihost.exe 1660 | [Owner : VexeAlebrulogNathali |Parent : 1548] - (. - SafiAgent.) - (1.0.0.7) = C:\Windows\System32\DriverStore\FileRepository\safidrv.inf_amd64_0e89535d35916282\SafiAgent.exe 5816 | [Owner : VexeAlebrulogNathali |Parent : 712] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 468 | [Owner : VexeAlebrulogNathali |Parent : 712] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 2224 | [Owner : Aucun |Parent : 1280] - (. - Real Time Protection for UsbFix Anti-Malware Professionnal.) - (10.0.0.31) = C:\Program Files (x86)\UsbFix\Modules\UsbFixMonitor.exe 1952 | [Owner : VexeAlebrulogNathali |Parent : 1280] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.16299.15) = C:\Windows\System32\taskhostw.exe 1712 | [Owner : LogonSessionId_0_322892 |Parent : 712] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.8833) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 2940 | [Owner : VexeAlebrulogNathali |Parent : 3988] - (.Samsung Electronics Co., Ltd. - SamsungSystemAgent.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemAgent.exe 5408 | [Owner : VexeAlebrulogNathali |Parent : 5400] - (.Microsoft Corporation - Explorateur Windows.) - (10.0.16299.15) = C:\Windows\explorer.exe 6160 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Intel Corporation - igfxext Module.) - (6.15.10.4599) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\igfxext.exe 6576 | [Owner : VexeAlebrulogNathali |Parent : 6504] - (.Intel Corporation - igfxEM Module.) - (6.15.10.4599) = C:\Windows\System32\DriverStore\FileRepository\ki120832.inf_amd64_2ded2fe16badb11a\igfxEM.exe 6612 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Windows Shell Experience Host.) - (10.0.16299.15) = C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 6776 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Search and Cortana application.) - (10.0.16299.19) = C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe 6976 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 6364 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 7340 | [Owner : VexeAlebrulogNathali |Parent : 896] - (. - .) - (8.56.0.102) = C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 7516 | [Owner : LogonSessionId_0_440178 |Parent : 712] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.16299.15) = C:\Windows\System32\SearchIndexer.exe 7840 | [Owner : VexeAlebrulogNathali |Parent : 1424] - (.Microsoft Corporation - Chargeur CTF.) - (10.0.16299.15) = C:\Windows\System32\ctfmon.exe 7868 | [Owner : VexeAlebrulogNathali |Parent : 1424] - (.Microsoft Corporation - Clavier tactile et volet d’écriture manuscrite.) - (10.0.16299.64) = C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 1996 | [Owner : VexeAlebrulogNathali |Parent : 6128] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 4348 | [Owner : VexeAlebrulogNathali |Parent : 1996] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 2560 | [Owner : VexeAlebrulogNathali |Parent : 4348] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 8484 | [Owner : VexeAlebrulogNathali |Parent : 1996] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 8604 | [Owner : VexeAlebrulogNathali |Parent : 1996] - (.WebDiscover Media - WebDiscover Browser.) - (63.0.3239.132) = C:\Program Files\WebDiscoverBrowser\4.28.2\browser.exe 8704 | [Owner : VexeAlebrulogNathali |Parent : 1280] - (.CyberLink Corp. - PDStyleAgent.) - (1.0.0.507) = C:\Program Files (x86)\CyberLink\Shared files\PDStyleAgent\PDStyleAgent.exe 9512 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Microsoft Corporation - Windows Defender notification icon.) - (4.12.16299.15) = C:\Program Files\Windows Defender\MSASCuiL.exe 9596 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.1109) = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 9940 | [Owner : VexeAlebrulogNathali |Parent : 9736] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.7) = C:\Program Files\Realtek\Audio\HDA\EP64.exe 9960 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Samsung Electronics Co., Ltd. - Samsung OSD.) - (1.0.11.0) = C:\Program Files\Samsung\SamsungOSD\OSD.exe 9296 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Microsoft Corporation - Microsoft OneDrive.) - (20.143.716.3) = C:\Users\VexeAlebrulogNathali\AppData\Local\Microsoft\OneDrive\OneDrive.exe 9288 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Lavasoft - Web Companion.) - (6.0.2285.4135) = C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe 10132 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Application Frame Host.) - (10.0.16299.15) = C:\Windows\System32\ApplicationFrameHost.exe 10160 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Paramètres.) - (10.0.16299.15) = C:\Windows\ImmersiveControlPanel\SystemSettings.exe 7268 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Dashlane, Inc. - Dashlane.) - (6.2037.0.39131) = C:\Users\VexeAlebrulogNathali\AppData\Roaming\Dashlane\Dashlane.exe 5876 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Dashlane, Inc. - Dashlane Plugin Agent.) - (6.2037.0.39131) = C:\Users\VexeAlebrulogNathali\AppData\Roaming\Dashlane\DashlanePlugin.exe 3476 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 3940 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 4072 | [Owner : VexeAlebrulogNathali |Parent : 5408] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 9136 | [Owner : VexeAlebrulogNathali |Parent : 3988] - (.Samsung Electronics Co., Ltd. - SamsungSystemManager.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemManager.exe 10124 | [Owner : Aucun |Parent : 1280] - (.Samsung Electronics Co., Ltd. - Show Window.) - (1.0.0.30) = C:\Program Files (x86)\Show Window\Show Window.exe 9524 | [Owner : Aucun |Parent : 1280] - (.Samsung Electronics Co., Ltd. - S Agent.) - (1.1.5.8) = C:\Program Files\Samsung\S Agent\CommonAgent.exe 9860 | [Owner : VexeAlebrulogNathali |Parent : 712] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 8452 | [Owner : Aucun |Parent : 9172] - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) - (5.812.10240.16384) = C:\Windows\SysWOW64\cscript.exe 9780 | [Owner : Aucun |Parent : 1280] - (.Samsung Electronics - SRSMessagesCPP.) - (7.3.0.18) = C:\Program Files\Samsung\Recovery\SRSMessages.exe 3688 | [Owner : Système |Parent : 712] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (11.7.0.1052) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe 7008 | [Owner : Système |Parent : 712] - (.CyberLink - CyberLink RichVideo Module.) - (2.0.0.14321) = C:\Program Files\CyberLink\Shared files\RichVideo64.exe 840 | [Owner : Système |Parent : 712] - (.Microsoft Corporation - sedsvc.) - (10.0.17134.10102) = C:\Program Files\rempl\sedsvc.exe 3836 | [Owner : SERVICE LOCAL |Parent : 712] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 9564 | [Owner : Aucun |Parent : 2224] - (. - Usb Anti-Malware.) - (10.0.0.22) = C:\Program Files (x86)\UsbFix\UsbFix.exe 3304 | [Owner : Aucun |Parent : 2224] - (. - Usb Anti-Malware.) - (10.0.0.22) = C:\Program Files (x86)\UsbFix\UsbFix.exe 6836 | [Owner : Aucun |Parent : 2224] - (. - Usb Anti-Malware.) - (10.0.0.22) = C:\Program Files (x86)\UsbFix\UsbFix.exe 8516 | [Owner : Aucun |Parent : 2224] - (. - Usb Anti-Malware.) - (10.0.0.22) = C:\Program Files (x86)\UsbFix\UsbFix.exe 3272 | [Owner : Système |Parent : 7516] - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.16299.15) = C:\Windows\System32\SearchProtocolHost.exe 1784 | [Owner : Système |Parent : 7516] - (.Microsoft Corporation - Microsoft Windows Search Filter Host.) - (7.0.16299.15) = C:\Windows\System32\SearchFilterHost.exe 5836 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Windows Defender application.) - (10.0.16299.15) = C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe 2040 | [Owner : VexeAlebrulogNathali |Parent : 896] - (.Microsoft Corporation - Windows Defender SmartScreen.) - (10.0.16299.15) = C:\Windows\System32\smartscreen.exe 1212 | [Owner : VexeAlebrulogNathali |Parent : 3904] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework Utility Application.) - (8.2.11002.3418) = C:\Windows\Temp\DPTF\esif_assist_64.exe 664 | [Owner : |Parent : 908] - (.Intel Corporation - Intel HD Graphics Drivers for Windows(R).) - (25.20.100.8581) = C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_377c238b1690ab0f\IntelCpHDCPSvc.exe 2140 | [Owner : |Parent : 908] - (.Intel Corporation - igfxCUIService Module.) - (6.15.100.8581) = C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6850e1b6319e5b65\igfxCUIService.exe 2264 | [Owner : |Parent : 908] - (.Samsung Electronics Co.,Ltd. - Samsung Radio Control Delegation Service executable.) - (2.3.0.7) = C:\Windows\System32\RCDService.exe 2272 | [Owner : |Parent : 908] - (. - SafiService.) - (1.0.0.7) = C:\Windows\System32\DriverStore\FileRepository\safidrv.inf_amd64_0e89535d35916282\SafiService.exe 2284 | [Owner : |Parent : 908] - (. - SamsungPenService.) - (1.0.33.0) = C:\Program Files (x86)\Samsung\Air Command\SamsungPenService.exe 2296 | [Owner : |Parent : 908] - (. - .) - (0.0.0.0) = C:\Windows\System32\PanelManagerSvc.exe 2600 | [Owner : |Parent : 908] - (.Intel Corporation - IntelCpHeciSvc Executable.) - (9.1.21.420) = C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_377c238b1690ab0f\IntelCpHeciSvc.exe 2676 | [Owner : |Parent : 908] - (.AVAST Software - Avast remediation exe.) - (20.7.5568.0) = C:\Program Files\Avast Software\Avast\wsc_proxy.exe 3644 | [Owner : |Parent : 908] - (.AVAST Software - Avast Service.) - (20.7.5568.0) = C:\Program Files\Avast Software\Avast\AvastSvc.exe 4320 | [Owner : Système |Parent : 1624] - (.Microsoft Corporation - sedlauncher.) - (10.0.17134.10102) = C:\Program Files\rempl\sedlauncher.exe 4696 | [Owner : Système |Parent : 908] - (.Hasleo Software - Hasleo BitLocker Anywhere Service Application..) - (1.0.0.1) = C:\Program Files\Hasleo\BitLocker Anywhere\bin\BitlockerAnywhereService.exe 4704 | [Owner : Système |Parent : 908] - (.Anvisoft - CloudSystemBooster3 Service.) - (3.0.0.104) = C:\Program Files (x86)\Anvisoft\Cloud System Booster\CSBSvc.exe 4816 | [Owner : Système |Parent : 908] - (.CrypKey (Canada) Ltd. - CrypKey License Service.) - (1.1.0.2) = C:\Windows\System32\Crypserv.exe 4836 | [Owner : Système |Parent : 908] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) - (10.0.10011.16384) = C:\Windows\System32\drivers\AdminService.exe 4864 | [Owner : Système |Parent : 908] - (.NCH Software - BroadWave Audio Streaming Server.) - (0.0.0.0) = C:\Program Files (x86)\NCH Software\BroadWave\broadwave.exe 4940 | [Owner : Système |Parent : 908] - (.Digital Wave Ltd. - Digital Wave Update Service.) - (1.0.129.507) = C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe 4948 | [Owner : Système |Parent : 908] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework.) - (8.2.11002.3418) = C:\Windows\System32\Intel\DPTF\esif_uf.exe 4956 | [Owner : Système |Parent : 908] - (.Freemake - FreemakeUtilsService.) - (1.0.0.0) = C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe 5024 | [Owner : Système |Parent : 908] - (.Samsung Electronics - GripResetService.) - (1.0.0.6) = C:\Windows\System32\GripResetService.exe 724 | [Owner : Système |Parent : 908] - (.Intel Corporation - Intel® Graphics Command Center Service.) - (1.0.0.0) = C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_14b6c79434365e33\OneApp.IGCC.WinService.exe 4192 | [Owner : LogonSessionId_0_273120 |Parent : 908] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.8833) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 5400 | [Owner : Système |Parent : 908] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit Service.) - (1.13.1.257) = C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe 5408 | [Owner : Système |Parent : 908] - (.Intel Corporation - Intel(R) Local Management Service.) - (2019.14.0.1587) = C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_51074a304c325b5d\LMS.exe 5532 | [Owner : Système |Parent : 908] - (.Samsung Electronics Co., Ltd. - SamsungSystemService.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemService.exe 5552 | [Owner : Système |Parent : 908] - (.Intel Corporation - Intel(R) Rapid Storage Technology Management Service.) - (17.9.0.1007) = C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c98d5e0dfc88ac2f\RstMwService.exe 5560 | [Owner : |Parent : 908] - (.Microsoft Corporation - Windows Security Health Service.) - (4.12.16299.15) = C:\Windows\System32\SecurityHealthService.exe 5800 | [Owner : Système |Parent : 908] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.5.11.0) = C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe 5808 | [Owner : Système |Parent : 908] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.6.0.0) = C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe 5860 | [Owner : Système |Parent : 908] - (.WiseCleaner.com - Wise BootTime Service.) - (1.2.4.54) = C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe 5956 | [Owner : Système |Parent : 908] - (.NoVirusThanks Company Srl - NoVirusThanks Win Update Stop Service.) - (1.0.0.0) = C:\Program Files\NoVirusThanks\Win Update Stop\WinUpdStopSvc.exe 5968 | [Owner : Système |Parent : 908] - (.Corel Corporation - WinZip Smart Monitor Service.) - (2.11.3.8) = C:\Program Files\WinZip Smart Monitor\WinZip Smart Monitor Service.exe 6336 | [Owner : SERVICE LOCAL |Parent : 908] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 6536 | [Owner : SERVICE LOCAL |Parent : 908] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 6816 | [Owner : SERVICE LOCAL |Parent : 908] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 7080 | [Owner : SERVICE LOCAL |Parent : 908] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.16299.15) = C:\Windows\System32\WUDFHost.exe 7524 | [Owner : Système |Parent : 5400] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit 64bit tasks.) - (1.13.1.257) = C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.exe 7552 | [Owner : Système |Parent : 7524] - (.Microsoft Corporation - Console Window Host.) - (10.0.16299.15) = C:\Windows\System32\conhost.exe 8540 | [Owner : Système |Parent : 4320] - (.Microsoft Corporation - Console Window Host.) - (10.0.16299.15) = C:\Windows\System32\conhost.exe 9000 | [Owner : breathe&audiorandar |Parent : 4948] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework Utility Application.) - (8.2.11002.3418) = C:\Windows\Temp\DPTF\esif_assist_64.exe 9132 | [Owner : breathe&audiorandar |Parent : 2296] - (. - PanelManager.) - (1.0.9.0) = C:\Program Files\Samsung\PanelManager\PanelManager.exe 8236 | [Owner : breathe&audiorandar |Parent : 908] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 8472 | [Owner : breathe&audiorandar |Parent : 1972] - (.Microsoft Corporation - Shell Infrastructure Host.) - (10.0.16299.15) = C:\Windows\System32\sihost.exe 4352 | [Owner : breathe&audiorandar |Parent : 5532] - (.Samsung Electronics Co., Ltd. - SamsungSystemAgent.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemAgent.exe 2568 | [Owner : breathe&audiorandar |Parent : 2272] - (. - SafiAgent.) - (1.0.0.7) = C:\Windows\System32\DriverStore\FileRepository\safidrv.inf_amd64_0e89535d35916282\SafiAgent.exe 9284 | [Owner : breathe&audiorandar |Parent : 908] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 9408 | [Owner : breathe&audiorandar |Parent : 420] - (.Intel Corporation - igfxext Module.) - (6.15.100.8581) = C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_6850e1b6319e5b65\igfxext.exe 9520 | [Owner : breathe&audiorandar |Parent : 1624] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.16299.15) = C:\Windows\System32\taskhostw.exe 9760 | [Owner : Aucun |Parent : 1624] - (.WiseCleaner.com - Wise Care 365 Tray.) - (5.1.7.184) = C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe 9772 | [Owner : Aucun |Parent : 1624] - (.Corel Corporation - WinZip System Utilities Suite.) - (3.9.0.24) = C:\Program Files\WinZip System Utilities Suite\WinZip System Utilities Suite.exe 10800 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Windows Shell Experience Host.) - (10.0.16299.15) = C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe 11496 | [Owner : Aucun |Parent : 1624] - (.Dll-FIles.Com - DLL-Files Fixer.) - (3.3.90.3079) = C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe 11692 | [Owner : breathe&audiorandar |Parent : 2036] - (.Microsoft Corporation - Chargeur CTF.) - (10.0.16299.15) = C:\Windows\System32\ctfmon.exe 11716 | [Owner : breathe&audiorandar |Parent : 2036] - (.Microsoft Corporation - Clavier tactile et volet d’écriture manuscrite.) - (10.0.16299.64) = C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe 11840 | [Owner : breathe&audiorandar |Parent : 11716] - (.Microsoft Corporation - Touch Keyboard and Handwriting Panel Helper.) - (10.0.16299.15) = C:\Program Files (x86)\Common Files\microsoft shared\ink\TabTip32.exe 12836 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Windows Defender notification icon.) - (4.12.16299.15) = C:\Program Files\Windows Defender\MSASCuiL.exe 13036 | [Owner : breathe&audiorandar |Parent : 10024] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) - (6.69.126.0) = C:\Program Files\Logitech\SetPointP\SetPoint.exe 13100 | [Owner : breathe&audiorandar |Parent : 13036] - (.Logitech, Inc. - Logitech KHAL Main Process.) - (5.94.124.0) = C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe 11808 | [Owner : breathe&audiorandar |Parent : 10024] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.1130) = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe 5176 | [Owner : breathe&audiorandar |Parent : 12432] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.9) = C:\Program Files\Realtek\Audio\HDA\EP64.exe 11684 | [Owner : breathe&audiorandar |Parent : 10024] - (.AVAST Software - Avast Cleanup UI.) - (20.1.9294.0) = C:\Program Files\Avast Software\Cleanup\TuneupUI.exe 10620 | [Owner : breathe&audiorandar |Parent : 10024] - (.Opera Software - Opera Browser Assistant.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\assistant\browser_assistant.exe 12628 | [Owner : breathe&audiorandar |Parent : 10620] - (.Opera Software - Opera Browser Assistant.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\assistant\browser_assistant.exe 13008 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (10.0.16299.15) = C:\Windows\System32\wbem\unsecapp.exe 5584 | [Owner : breathe&audiorandar |Parent : 984] - (.Malwarebytes Corporation - Malwarebytes Anti-Exploit.) - (1.13.1.257) = C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe 11656 | [Owner : breathe&audiorandar |Parent : 984] - (.NCH Software - BroadWave Audio Streaming Server.) - (0.0.0.0) = C:\Program Files (x86)\NCH Software\BroadWave\broadwave.exe 13020 | [Owner : Aucun |Parent : 420] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (10.0.16299.15) = C:\Windows\System32\wbem\unsecapp.exe 5180 | [Owner : breathe&audiorandar |Parent : 5532] - (.Samsung Electronics Co., Ltd. - SamsungSystemManager.) - (1.0.48.0) = C:\Program Files (x86)\Samsung\Samsung System Agent\SamsungSystemManager.exe 11156 | [Owner : Aucun |Parent : 1624] - (.Samsung Electronics Co., Ltd. - Show Window.) - (1.0.0.30) = C:\Program Files (x86)\Show Window\Show Window.exe 10908 | [Owner : Aucun |Parent : 5968] - (.Corel Corporation - WinZip Smart Monitor.) - (2.11.3.8) = C:\Program Files\WinZip Smart Monitor\WinZipSmartMonitor.exe 5572 | [Owner : breathe&audiorandar |Parent : 908] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.16299.15) = C:\Windows\System32\svchost.exe 13900 | [Owner : Système |Parent : 908] - (.McAfee, LLC. - McAfee CSP Service Host.) - (3.4.105.0) = C:\Program Files\Common Files\McAfee\CSP\3.4.105.0\McCSPServiceHost.exe 9060 | [Owner : Système |Parent : 908] - (. - Roxio Burn Launcher.) - (1.31.33.0) = C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe 10940 | [Owner : Système |Parent : 908] - (.Microsoft Corporation - sedsvc.) - (10.0.17134.10102) = C:\Program Files\rempl\sedsvc.exe 9860 | [Owner : Système |Parent : 908] - (.Samsung Electronics Co., Ltd. - WLAN SAR Service.) - (1.0.0.7) = C:\Windows\System32\WlSarService.exe 8284 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Runtime Broker.) - (10.0.16299.15) = C:\Windows\System32\RuntimeBroker.exe 1320 | [Owner : Système |Parent : 908] - (.SPAMfighter ApS - Fighter Suite Service.) - (3.1.295.0) = C:\Program Files (x86)\Fighters\FighterSuiteService.exe 8916 | [Owner : breathe&audiorandar |Parent : 10024] - (.SPAMfighter ApS - FIGHTERtools Update Manager.) - (4.0.278.0) = C:\Program Files (x86)\Fighters\Tray\FightersTray.exe 13112 | [Owner : breathe&audiorandar |Parent : 10024] - (.SPAMfighter ApS - OUTDATEfighter product.) - (1.1.97.1) = C:\Program Files (x86)\Fighters\OUTDATEfighter\OUTDATEfighter.exe 6176 | [Owner : breathe&audiorandar |Parent : 1396] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 9584 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera crash-reporter.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera_crashreporter.exe 1184 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 6956 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 13976 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 5444 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 452 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 2620 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14396 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14404 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14412 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14420 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14428 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14436 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14444 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14452 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14460 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14472 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14484 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14532 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14576 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 14608 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 6012 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 16040 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 6204 | [Owner : breathe&audiorandar |Parent : 13580] - (.Deluge Team - Deluge Bittorrent Client.) - (1.3.15.0) = C:\Program Files (x86)\Deluge\deluge.exe 5124 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 16380 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 16032 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 1576 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 10384 | [Owner : breathe&audiorandar |Parent : 2880] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 13552 | [Owner : LogonSessionId_0_30175716 |Parent : 908] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.16299.15) = C:\Windows\System32\spoolsv.exe 8016 | [Owner : Système |Parent : 908] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.7.0.0) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 8076 | [Owner : LogonSessionId_0_31026497 |Parent : 908] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.16299.15) = C:\Windows\System32\SearchIndexer.exe 6624 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 13936 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Paramètres.) - (10.0.16299.15) = C:\Windows\ImmersiveControlPanel\SystemSettings.exe 4020 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Application Frame Host.) - (10.0.16299.15) = C:\Windows\System32\ApplicationFrameHost.exe 17196 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Windows Defender application.) - (10.0.16299.15) = C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe 3184 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 2180 | [Owner : breathe&audiorandar |Parent : 10024] - (.Adobe Systems Incorporated - Bootstrapper Application.) - (6.0.335.0) = C:\Users\breathe&audiorandar\Downloads\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\Set-up.exe 18328 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 6468 | [Owner : breathe&audiorandar |Parent : 6176] - (.BitTorrent Inc. - µTorrent.) - (3.5.5.45291) = C:\Users\breathe&audiorandar\AppData\Roaming\uTorrent\uTorrent.exe 9448 | [Owner : breathe&audiorandar |Parent : 6468] - (.BitTorrent Inc. - µTorrent Helper.) - (2.0.8.605) = C:\Users\breathe&audiorandar\AppData\Roaming\uTorrent\helper\helper.exe 13836 | [Owner : breathe&audiorandar |Parent : 6468] - (.Alexander Roshal - WinRAR archiver.) - (5.91.0.0) = C:\Program Files\WinRAR\WinRAR.exe 13808 | [Owner : breathe&audiorandar |Parent : 10024] - (.Alexander Roshal - WinRAR archiver.) - (5.91.0.0) = C:\Program Files\WinRAR\WinRAR.exe 12668 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 18224 | [Owner : breathe&audiorandar |Parent : 10024] - (.Alexander Roshal - WinRAR archiver.) - (5.91.0.0) = C:\Program Files\WinRAR\WinRAR.exe 17224 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 5980 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 17740 | [Owner : breathe&audiorandar |Parent : 7056] - (.Mindspark Interactive Network, Inc. - BabyNameReady Setup.) - (2.8.1.1000) = C:\Users\breathe&audiorandar\Downloads\babynameready.e01c558cdf584df986c43bc34d8589de.exe 16300 | [Owner : breathe&audiorandar |Parent : 17740] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.16299.15) = C:\Windows\SysWOW64\rundll32.exe 9368 | [Owner : breathe&audiorandar |Parent : 7056] - (.Mindspark Interactive Network, Inc. - RadioRage Setup.) - (2.7.1.3000) = C:\Users\breathe&audiorandar\Downloads\RadioRage.ac78c977e8734b7497819e9c4382236c.exe 18644 | [Owner : SERVICE LOCAL |Parent : 1904] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.16299.15) = C:\Windows\System32\dasHost.exe 15088 | [Owner : Aucun |Parent : 10024] - (.SOSVirus - AdsFix.) - (7.247.20.1) = C:\Users\breathe&audiorandar\Desktop\AdsFix.exe 15308 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 3600 | [Owner : Système |Parent : 8076] - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.16299.15) = C:\Windows\System32\SearchProtocolHost.exe 2512 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 16844 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 18648 | [Owner : breathe&audiorandar |Parent : 10024] - (. - .) - (0.0.0.0) = D:\SlimWare.Utilities.FixCleaner.v2.0.4398.833.Incl.Keygen-BRD\Keygen\Keygen.exe 4452 | [Owner : Aucun |Parent : 11448] - (.Slimware Utilities, Inc. - FixCleaner.) - (2.0.4398.833) = C:\Program Files (x86)\FixCleaner\FixCleaner.exe 17624 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 3448 | [Owner : Système |Parent : 908] - (.Wondershare - Wondershare AppService.) - (2.1.4.4) = C:\Program Files (x86)\Wondershare\WAF\2.1.4.4\WsAppService.exe 18260 | [Owner : breathe&audiorandar |Parent : 6896] - (.Wondershare - Wondershare MirrorGo.) - (1.5.0.63) = D:\Placard des objets confisqués caus' sifatal 26 09 2020\Wondershare\MirrorGo\MirrorGo.exe 20124 | [Owner : breathe&audiorandar |Parent : 420] - (.Wondershare - Wondershare Passport.) - (2.1.4.4) = C:\Program Files (x86)\Wondershare\WAF\2.1.4.4\WsAppClient.exe 2016 | [Owner : breathe&audiorandar |Parent : 10024] - (.Microsoft Corporation - Bloc-notes.) - (10.0.16299.15) = C:\Windows\System32\notepad.exe 3128 | [Owner : Aucun |Parent : 10024] - (.PC Helpsoft - PC Cleaner.) - (7.2.0.13) = C:\Program Files (x86)\PC Cleaner\PCCleaner.exe 19548 | [Owner : Aucun |Parent : 3128] - (.PC Helpsoft - PC Cleaner automatic scan and notifications.) - (7.2.0.13) = C:\Program Files (x86)\PC Cleaner\PCCNotifications.exe 16984 | [Owner : Aucun |Parent : 10024] - (.WiseCleaner.com - Wise Care 365.) - (5.5.8.553) = C:\Program Files (x86)\Wise\Wise Care 365\WiseCare365.exe 12096 | [Owner : breathe&audiorandar |Parent : 10024] - (. - .) - (0.0.0.0) = D:\ReviverSoft PC Reviver 3.10.0.22 Multilingual\Patch\created by Download's team.exe 18264 | [Owner : Aucun |Parent : 10024] - (.tigrr - SpyHunter 4 Portable.) - (2015.7.6.0) = G:\SpyHunter.Malware.Security.Suite.v4.25.6.4782.Portable.Multilingua-iCV-CreW\SpyHunterPortable.exe 19476 | [Owner : Aucun |Parent : 18264] - (.Enigma Software Group USA, LLC. - SpyHunter4 application.) - (4.25.6.4782) = G:\SpyHunter.Malware.Security.Suite.v4.25.6.4782.Portable.Multilingua-iCV-CreW\App\SpyHunter\SpyHunter4.exe 7324 | [Owner : Aucun |Parent : 1624] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.16299.15) = C:\Windows\System32\taskhostw.exe 13280 | [Owner : Aucun |Parent : 10024] - (.Microsoft Corporation - Gestionnaire des tâches.) - (10.0.16299.15) = C:\Windows\System32\Taskmgr.exe 13796 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 20060 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Explorateur Windows.) - (10.0.16299.15) = C:\Windows\explorer.exe 4060 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.16299.15) = C:\Windows\System32\rundll32.exe 20256 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.16299.15) = C:\Windows\System32\rundll32.exe 9704 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.16299.15) = C:\Windows\System32\rundll32.exe 10732 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.16299.15) = C:\Windows\System32\rundll32.exe 5656 | [Owner : Aucun |Parent : 764] - (.Acelogix Software - Ace Utilities.) - (6.5.0.298) = C:\Program Files\Ace Utilities\au.exe 15784 | [Owner : breathe&audiorandar |Parent : 420] - (.Microsoft Corporation - Windows Defender SmartScreen.) - (10.0.16299.15) = C:\Windows\System32\smartscreen.exe 19360 | [Owner : breathe&audiorandar |Parent : 6176] - (.Alexander Roshal - WinRAR archiver.) - (5.91.0.0) = C:\Program Files\WinRAR\WinRAR.exe 6464 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe 20400 | [Owner : breathe&audiorandar |Parent : 6176] - (.Opera Software - Opera Internet Browser.) - (71.0.3770.171) = C:\Users\breathe&audiorandar\AppData\Local\Programs\Opera\71.0.3770.171\opera.exe ¤¤¤¤¤¤¤¤¤¤ # Winlogon user ¤¤¤¤¤¤¤¤¤¤ # Winlogon machine Repaired : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon]~[userinit] : -> C:\Windows\SYSWOW64\userinit.exe, ¤¤¤¤¤¤¤¤¤¤ # SafeBoot Safeboot Keys are O.K Alternate shell is OK ! � ¤¤¤¤¤¤¤¤¤¤ | Winsock ¤¤¤¤¤¤¤¤¤¤ # IFEO ¤¤¤¤¤¤¤¤¤¤ # Mountpoints2 ¤¤¤¤¤¤¤¤¤¤ # Windows [HKLM\Software\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]~[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon [HKLM\Software\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini]~[winlogon] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon [HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]~[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon ¤¤¤¤¤¤¤¤¤¤ # Security center Repaired : [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A}]~[Autostart] : -> C:\Windows\System32\ActionCenter.dll ¤¤¤¤¤¤¤¤¤¤ # Services Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\Compbatt]~[Start] : -> 0 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\srService]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\PlugPlay]~[Start] : 3 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\Parvdm]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\NVSvc]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\NIHardwareService]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\IKEEXT]~[Start] : 3 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\IAStorDataMgrsvc]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\lmhosts]~[Start] : 3 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\agp440]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\ERSvc]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\EapHost]~[Start] : 3 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess]~[Start] : 3 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\windefend]~[Start] : 3 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\wuauserv]~[Start] : 4 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\wudfsvc]~[Start] : -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\WerSvc]~[Start] : 3 -> 2 Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\Wwansvc]~[Start] : 2 -> 3 ¤¤¤¤¤¤¤¤¤¤ # Internet Explorer ¤¤¤¤¤¤¤¤¤¤ # reparsepoint ¤¤¤¤¤¤¤¤¤¤ # Offsets ¤¤¤¤¤¤¤¤¤¤ # Files | Folders | Registry Deleted : HKU\S-1-5-21-3192201161-1359859000-606038350-1001\Software\nwjs Deleted : [HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce]~[DriverUpdate] : cmd /c "start "" "C:\Program Files\DriverUpdate\DriverUpdate.exe" /delay=60 /mode=toaster " Will be moved in quarantine at reboot : F:\pre-scan_V9_18.10.19.1.exe Moved to quarantine successfully : D:\AdsFix.exe Moved to quarantine successfully : D:\Advanced_Uninstaller13.exe Moved to quarantine successfully : D:\anti-porn_23-3-12-1_fr_148744.exe Moved to quarantine successfully : D:\BavPro_Setup_Mini_C1.exe Moved to quarantine successfully : D:\BCUninstaller_4.16_setup.exe Moved to quarantine successfully : D:\bdcamsetup.exe Moved to quarantine successfully : D:\BitLockerAnywhere_Trial.exe Moved to quarantine successfully : D:\BitLockerDataRecovery_Trial.exe Moved to quarantine successfully : D:\bwpsetup.exe Moved to quarantine successfully : D:\deluge-1.3.15-win32-py2.7.exe Moved to quarantine successfully : D:\Driver_Genius.exe Moved to quarantine successfully : D:\file-recovery-setup.exe Moved to quarantine successfully : D:\Firefox Installer.fr.exe Moved to quarantine successfully : D:\foobar2000_v1.6_beta_15.exe Moved to quarantine successfully : D:\FreeTikTokDownloader_1.0.1.625_d.exe Moved to quarantine successfully : D:\Free_Translator_last_Setup.exe Moved to quarantine successfully : D:\gamefire.exe Moved to quarantine successfully : D:\goback.exe Moved to quarantine successfully : D:\haozip_v3.0_enu.exe Moved to quarantine successfully : D:\HotspotShield-6.8.8-3030670.exe Moved to quarantine successfully : D:\imusic-win_setup_full2400.exe Moved to quarantine successfully : D:\ipu3_30.15063.6.5603_30.15063.5603.1_2016.1110.1448_fzm1_3_win10-6_64_d175292.exe Moved to quarantine successfully : D:\IS4N_SETUP.exe Moved to quarantine successfully : D:\keepvid-music-tag-editor_full4171 (1).exe Moved to quarantine successfully : D:\keepvid-music-tag-editor_full4171.exe Moved to quarantine successfully : D:\komodia free ssl sniffer.exe Moved to quarantine successfully : D:\kprm_1.2.exe Moved to quarantine successfully : D:\llse_64.exe Moved to quarantine successfully : D:\localbackup64_ENU.exe Moved to quarantine successfully : D:\musicrecorder-Setup-pad.exe Moved to quarantine successfully : D:\OneSafe_Driver_Manager.exe Moved to quarantine successfully : D:\OneSafe_JPEGRepair_FR.exe Moved to quarantine successfully : D:\OnlineTV 15 Plus.exe Moved to quarantine successfully : D:\OTConvertIt.exe Moved to quarantine successfully : D:\outdatefighter-1-1-88-multi-win (1).exe Moved to quarantine successfully : D:\outdatefighter-1-1-88-multi-win.exe Moved to quarantine successfully : D:\OUTDATEfighter_Web.exe Moved to quarantine successfully : D:\pctrans_free_installer.exe Moved to quarantine successfully : D:\pdf-bates.exe Moved to quarantine successfully : D:\perfect365_retail_tbyb_all (1).exe Moved to quarantine successfully : D:\perfect365_retail_tbyb_all.exe Moved to quarantine successfully : D:\PotPlayerSetup64.exe Moved to quarantine successfully : D:\PSP2019Installer.exe Moved to quarantine successfully : D:\quickdiag_V5_29.10.19.1.exe Moved to quarantine successfully : D:\Quick_Any2Ico.exe Moved to quarantine successfully : D:\r0dab16w.exe Moved to quarantine successfully : D:\Rem-VBSworm_8.0.exe Moved to quarantine successfully : D:\RevoUninProSetup.exe Moved to quarantine successfully : D:\rkill-unsigned64.exe Moved to quarantine successfully : D:\safe14int.exe Moved to quarantine successfully : D:\savsetupg_savsite-savsite.exe Moved to quarantine successfully : D:\Screenpresso.exe Moved to quarantine successfully : D:\SCUDownloader.exe Moved to quarantine successfully : D:\Setup_Vestalive_fr.exe Moved to quarantine successfully : D:\SFCFix.exe Moved to quarantine successfully : D:\smartpcsetup.exe Moved to quarantine successfully : D:\Soda_PDF_12_Installer.exe Moved to quarantine successfully : D:\sp99488.exe Moved to quarantine successfully : D:\tenorshare-ios-ads-remover.exe Moved to quarantine successfully : D:\torbrowser-install-win64-10.0_en-US.exe Moved to quarantine successfully : D:\u1rad07us14lcfc.exe Moved to quarantine successfully : D:\utweb_installer.exe Moved to quarantine successfully : D:\vbsetup.exe Moved to quarantine successfully : D:\WFHSetup_4.3.4.193.exe Moved to quarantine successfully : D:\WinToUSB_Free.exe Moved to quarantine successfully : D:\WiseCare365_5.5.8.553.exe Moved to quarantine successfully : D:\WMOSetup_3.6.8.112.exe Moved to quarantine successfully : D:\WYDSetup_2.8.4.114.exe Moved to quarantine successfully : C:\bootTel.dat Will be moved in quarantine at reboot : C:\ProgramData\SharewareOnSale Notifier Moved to quarantine successfully : D:\desktop.ini ¤¤¤¤¤¤¤¤¤¤ # ADS ¤¤¤¤¤¤¤¤¤¤ # Prefetch cleaned F:\ : Vaccinated (Vaccin created by Pre_Scan) G:\ : Vaccinated (Vaccin created by Pre_Scan) H:\ : Vaccinated (Vaccin created by Pre_Scan) ¤¤¤¤¤¤¤¤¤¤ | Hidden files ~ [Drive C:] : Hidden : 5 | Restored : 5 ~ [Program Files] : Hidden : 7 | Restored : 2 ~ [Users] : Hidden : 2 | Restored : 2 ~ [Documents] : Hidden : 3 | Restored : 3 ~ [Searches] : Hidden : 2 | Restored : 2 ~ [Windows] : Hidden : 56 | Restored : 56 ~ [Start Menu | Programs | Startup] : Hidden : 1 | Restored : 1 ~ [AppData] : Hidden : 5 | Restored : 5 End : 12:49:36 ¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤ - 599