Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ Pre_Scan | g3n-h@ckm@n | V7_16.10.17.1 Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤

Â¤Â¤Â¤Â¤Â¤ XP | Vista | 7 | 8 - 32/64 bits Â¤Â¤Â¤Â¤Â¤ - Start 17:30:44 02/05/2023

Updated 16/10/2017 | 14.45 by g3n-h@ckm@n
Contact : http://www.sosvirus.net/
Pre_scan Feedbacks : http://www.sosvirus.net/feedback-t74962.html

[EFM LFS Hyper UEFM (Administrator)] - [DESKTOP-H7BEC55]
SID = S-1-5-21-662962405-169162653-1899843541-1001

Boot: Normal boot
System : Windows 10 Enterprise (64 bits) Enterprise 
ProcessorNameString : AMD E1-1200 APU with Radeon(tm) HD Graphics
Identifier : AMD64 Family 20 Model 2 Stepping 0
CoreTemp : -1 Celsius - Max :  Celsius

Memory RAM = Total (MB) : 3748 | Free (MB) : 2388
Pagefile = Total (MB) : 4662 | Free (MB) : 3513
Virtual = Total (MB) : 4194 | Free (MB) : 3945

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Components of starting up


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Drives

I:\-> [CDROM] | [WINDOWS 11] | Total : 4.18 Go | Free : 0 Go -> UDF [SATA]
E:\-> [Removable] | [] | Total : 59.5 Go | Free : 59.5 Go -> FAT32 [USB]
C:\-> [Fixed] | [windows2go workspace] | Total : 57.6 Go | Free : 0.34 Go -> NTFS (SSD) [USB]

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Windows updates


Possible Fixed Windows

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Sessions

C:\Windows\system32\config\systemprofile
C:\Windows\ServiceProfiles\LocalService
C:\Windows\ServiceProfiles\NetworkService
C:\Users\EFM LFS Hyper UEFM
C:\Users\_ashbackup_

Registry saved , to restore :  Shortcut on the desktop 'Pre_Scan_Restore' Restore the register (C:\Pre_Scan\Save\Registry [05.02.2023 @ 17_20_44])
To restore File or Folder : Shortcut on the desktop 'Pre_Scan_Restore' , select 'restore File - Folder' , select an Item and click on Restore

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Browsers

IE : 11.0.17134.1     (Â© Microsoft Corporation.)
GC : 76.0.3809.100     (Copyright 2019 Google LLC.)

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # FlashPlayer

ActiveX : 32.0.0.207

ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ï¿½ # Security

AV : Windows Defender Enabled
AS : Windows Defender Enabled
FW : 
WMI : OK
WU: Windows Update Service [Auto(2)] = stopped
AS: Windows Defender [Auto(2)] = Running
FW: Windows FireWall Service [Auto(2)] = stopped

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Stopped processes

2696 | [Owner :  |Parent : 692] - (.Microsoft Corporation - Windows Security Health Service.) - (4.13.17134.191) = C:\Windows\System32\SecurityHealthService.exe
2912 | [Owner :  |Parent : 692] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.18.1907.4) = C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
3424 | [Owner :  |Parent : 692] - (.Microsoft Corporation - Microsoft Network Realtime Inspection Service.) - (4.18.1907.4) = C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
4584 | [Owner :  |Parent : 692] - (.Microsoft Corporation - Service Broker du moniteur d'exÃ©cution System Guard.) - (10.0.17134.1) = C:\Windows\System32\SgrmBroker.exe
1032 | [Owner : SERVICE LOCAL |Parent : 2488] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.17134.1) = C:\Windows\System32\dasHost.exe
5180 | [Owner : EFM LFS Hyper UEFM |Parent : 2816] - (.Microsoft Corporation - Chargeur CTF.) - (10.0.17134.1) = C:\Windows\System32\ctfmon.exe
2216 | [Owner : EFM LFS Hyper UEFM |Parent : 1392] - (.Microsoft Corporation - Shell Infrastructure Host.) - (10.0.17134.1) = C:\Windows\System32\sihost.exe
6416 | [Owner : EFM LFS Hyper UEFM |Parent : 2216] - (.Microsoft Corporation - Explorateur Windows.) - (10.0.17134.858) = C:\Windows\explorer.exe
1132 | [Owner : SERVICE LOCAL |Parent : 2488] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.17134.1) = C:\Windows\System32\dasHost.exe
4808 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
728 | [Owner : EFM LFS Hyper UEFM |Parent : 692] - (.Microsoft Corporation - Processus hÃ´te pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe
3872 | [Owner : EFM LFS Hyper UEFM |Parent : 692] - (.Microsoft Corporation - Processus hÃ´te pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe
1936 | [Owner : EFM LFS Hyper UEFM |Parent : 692] - (.Microsoft Corporation - Processus hÃ´te pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe
2584 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3808 | [Owner : EFM LFS Hyper UEFM |Parent : 864] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (10.0.17134.885) = C:\Windows\System32\SettingSyncHost.exe
4528 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6236 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1728 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2296 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
60 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3824 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4368 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4848 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5392 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1840 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5428 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6020 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5696 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6644 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2132 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1928 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5224 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5240 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5664 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6392 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1496 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2684 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6972 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6696 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5520 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3880 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3648 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6720 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4144 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6164 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1364 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4040 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6204 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5000 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1724 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5360 | [Owner : SystÃ¨me |Parent : 1168] - (.Microsoft Corporation - UsoClient.) - (10.0.17134.915) = C:\Windows\System32\UsoClient.exe
2080 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4560 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6348 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5440 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4780 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5488 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3252 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5312 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5060 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
188 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3596 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6040 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5328 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2032 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6332 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1844 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1020 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6608 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3104 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6172 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3212 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1256 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2344 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6936 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5068 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5720 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3692 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3740 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3136 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
664 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2956 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5604 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5172 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5108 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5424 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1056 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3532 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6768 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5420 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4124 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5572 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3364 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
7056 | [Owner : Aucun |Parent : 6572] - (.Microsoft Corporation - Bloc-notes.) - (10.0.17134.1) = C:\Windows\SysWOW64\notepad.exe
1980 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6420 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2988 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1164 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3952 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4108 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4676 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6068 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6280 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5648 | [Owner : EFM LFS Hyper UEFM |Parent : 1168] - (.Microsoft Corporation - Processus hÃ´te pour TÃ¢ches Windows.) - (10.0.17134.619) = C:\Windows\System32\taskhostw.exe
2740 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
7084 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4748 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6524 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
2424 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
812 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6216 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
464 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3972 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3088 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1196 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
456 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5904 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6448 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
1940 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6240 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3668 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6292 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4228 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4496 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5984 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
5292 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
6808 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3204 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
3064 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe
4468 | [Owner : SystÃ¨me |Parent : 692] - (.Microsoft Corporation - Windows Problem Reporting.) - (10.0.17134.885) = C:\Windows\System32\wermgr.exe

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Winlogon user


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Winlogon machine


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # SafeBoot

Safeboot Keys are O.K

Alternate shell is OK !

ï¿½


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # IFEO


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Mountpoints2



Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Windows

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]~[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini]~[winlogon] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]~[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Security center




Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Services


Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess]~[Start] : 1 -> 2

Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Internet Explorer


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # reparsepoint



Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Offsets


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # Files | Folders | Registry


Will be moved in quarantine at reboot : C:\$Recycle.bin\S-1-5-21-662962405-169162653-1899843541-1001\desktop.ini


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ # ADS


Prefetch -> cleaned



Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ | Hidden files



End : 18:57:51


Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤( EOF )Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤Â¤ - 264