~ Report of ZHPDiag v2015.6.16.57 - Nicolas Coolman (16.06.2015)
~ Launched by GIUXGIUX (28.06.2015 17:52:40)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Web forum address : http://www.forum.nicolascoolman.fr
~ Translated by
~ Version State : Updated version.
~ White List : Deactivate by user
~ Elevation of privilege : OK
~ User Account Control : Deactivate by program


---\\ Internet browsers
MSIE: Internet Explorer v11.0.9600.17843
MFIE: Mozilla Firefox 37.0.1
GCIE: Google Chrome v43.0.2357.130 (Defaut)
OPIE: Opera v12.17
OPIE: Opera Stable v30.0.1835.88

---\\ Windows product information
~ Langage: Anglais
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : 468V7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ System protection software
Malwarebytes Anti-Malware, версия 2.1.6.1022
Microsoft Security Client RU-RU Language Pack v2.1.1116.0
Windows Defender W7 (Deactivate)

---\\ System optimization software

---\\ Sharing software PeerToPeer

---\\ Surveillance software
Adobe Flash Player 17 NPAPI
Adobe Reader 64-bit fixes
Adobe Reader XI - Russian
Java 7 Update 60 (64-bit)

---\\ Information on the system
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8175 MB (74% free)
System Restore: Activé (Enable)
System drive C: has 274 GB (58%) free of 466 GB

---\\ Connection to the system mode
~ Computer Name: HENRI-PC
~ User Name: GIUXGIUX
~ All Users Names: UpdatusUser, GIUXGIUX, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environment variables
~ System Unit : C:\
~ %AppZHP% : C:\Users\GIUXGIUX\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\GIUXGIUX\AppData\Roaming\
~ %Desktop% : C:\Users\GIUXGIUX\Desktop\
~ %Favorites% : C:\Users\GIUXGIUX\Favorites\
~ %LocalAppData% : C:\Users\GIUXGIUX\AppData\Local\
~ %StartMenu% : C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeration of the disk units
C: Hard drive, Flash drive, Thumb drive (Free 274 Go of 466 Go)
D: CD-ROM drive (Not Inserted)
E: Hard drive, Flash drive, Thumb drive (Free 993 Go of 1397 Go)



---\\ State of the Windows Security Center
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 49 Scanned in 00mn 00s



---\\ Search Generic System Files
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25.02.2011 - 7:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14.07.2009 - 2:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22.05.2015 - 18:50:20.) -- C:\Windows\System32\wininet.dll [2426880]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.17.07.2014 - 3:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21.11.2010 - 4:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30.05.2014 - 7:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14.07.2009 - 2:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14.07.2009 - 0:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21.11.2010 - 4:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21.11.2010 - 4:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21.11.2010 - 4:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14.07.2009 - 0:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14.07.2009 - 1:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27.04.2011 - 3:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21.11.2010 - 4:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24.01.2014 - 3:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14.07.2009 - 1:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21.11.2010 - 4:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14.07.2009 - 1:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11.11.2014 - 2:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21.11.2010 - 4:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Hidden files state (Hidden/Total)
~ Mes images (My Pictures) : 2/239
~ Mes musiques (My Musics) : 3/12379
~ Mes Videos (My Videos) : 1/8
~ Mes Favoris (My Favorites) : 1/658
~ Mes Documents (My Documents) : 4/578
~ Mon Bureau (My Desktop) : 1/401
~ Menu demarrer (Programs) : 1/64
~ Hidden Files: Scanned in 00mn 28s



---\\ Process running
[MD5.7B6CB5C60E549B746FA8DEEE82C5BB53] - (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ACEStream\engine\ace_engine.exe [23984] [PID.2612]
[MD5.43DFDE6570A948A178000348950B3546] - (...) -- C:\Users\GIUXGIUX\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [22824] [PID.2648]
[MD5.AD12F815BE0348F1FD7FEBF720FA307C] - (.Team MediaPortal - IR Server.) -- C:\Program Files (x86)\IR Server Suite\IR Server.exe [341504] [PID.2756]
[MD5.0A2BB12C84543B68E8E2E6E4235ADE58] - (.Team MediaPortal - IR Server Tray.) -- C:\Program Files (x86)\IR Server Suite\IR Server Tray.exe [426496] [PID.2816]
[MD5.C992C2FE8E3D149020F5397686C14145] - (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe [1565504] [PID.2832]
[MD5.39AF1CDEAFA4FC9D5185FBD9F4D141C4] - (.Octoshape ApS - Main program for Octoshape client.) -- C:\Users\GIUXGIUX\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [107800] [PID.2912]
[MD5.5CB4C3C7A74E9436273261F74625B646] - (.PIMOne Software - PIMOne.) -- C:\Program Files (x86)\PIMOne\PIMOne.exe [2883584] [PID.360]
[MD5.F3152DFF9154CD3E0A3F1DED854A826D] - (.Hauppauge Computer Works - IR.) -- C:\Program Files (x86)\WinTV\Ir.exe [115816] [PID.1952]
[MD5.59AE7A4D4DE08F75E69736EB6BF16A77] - (.Hauppauge Computer Works, Inc. - WinTVTray.) -- C:\Program Files (x86)\WinTV\WinTV8\WinTVTray.exe [775288] [PID.2540]
[MD5.60D2665C567B38C96E1216E9BC6F0253] - (.4t Niagara Software - 4t Tray Minimizer Free.) -- C:\Program Files (x86)\4t Tray Minimizer\4t-min.exe [1848832] [PID.4128]
[MD5.C32E458C8DDB46220C2D9C7807EC1A3F] - (.Schneider Electric - PowerChute System Tray Power Icon.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe [673144] [PID.4268]
[MD5.16AFB34618E1286FF856DC600AC49C79] - (.No owner - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968] [PID.4452]
[MD5.D3AC38E80E928CC61A22650E04423BB8] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328] [PID.4552]
[MD5.A381DE7A9E3EB7915242F91730F3B4D0] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616] [PID.4644]
[MD5.7C557FD090347693F7FD5DBFEC444D02] - (.No owner - Process Killer.) -- C:\Program Files\Process Killer 1.4.2\prkiller.exe [38400] [PID.4668]
[MD5.7791897A9EC247982F8B6DFA0230E6E4] - (.No owner - MDAPI_Plus Host Application.) -- C:\Program Files (x86)\MDAPI_Plus\MDAPIHost.exe [243200] [PID.4692]
[MD5.66A77B11E3B0DD7E95A8839D8102ACD5] - (.Mister Group - System Explorer.) -- C:\Program Files (x86)\System Explorer\SystemExplorer.exe [3391720] [PID.4700]
[MD5.A8C1BF646DD0168E81AFAA9662CCD843] - (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ACEStream\updater\ace_update.exe [22824] [PID.6036]
[MD5.E7B58CE9BD61BF575E2880088F4E5447] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8218112] [PID.4732]
[MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.1820]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [PID.1100]
[MD5.8A27975A7BD3EA10E7F22553558F3A74] - (...) -- C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe [917640] [PID.752]
[MD5.929593D76589294BA3F74540298D1B3E] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.2216]
[MD5.C7F8C8080B055B3DE9A8141DFD8E308A] - (.Schneider Electric - Battery Backup Management Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [705912] [PID.2328]
[MD5.221564CC7BE37611FE15EACF443E1BF6] - (.Apple Inc. - YSLoader.exe.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [43336] [PID.2480]
[MD5.BFC50B3F24800E659BAB4329CF3E5C95] - (.Camshare Inc. - Camfrog Video Chat update service.) -- C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe [1032680] [PID.2944]
[MD5.063BF547FA7BBFD7215AF7D49B3CE8D7] - (.Hauppauge Computer Works - Hauppauge TV Server.) -- C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [586360] [PID.2316]
[MD5.20372BE109FEE1C37E2D5216680DB9EB] - (.pdfforge GmbH - PDF Architect Helper Service.) -- C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496] [PID.3664]
[MD5.27DAD10A4DFF35E712674E05C88D0076] - (.Hauppauge Computer Works - Capture plugin for the USB devices.) -- C:\Program Files (x86)\WinTV\TVServer\CaptureGenUSB.exe [446464] [PID.1908]
[MD5.107AB19CC1D40B9D04537F6EEAAC34C9] - (.Schneider Electric - PowerChute Data Service.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [21880] [PID.3184]
[MD5.1AA9C2331234786211A261C8FC69EB25] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [86744] [PID.1996]
[MD5.A3A25E0509F67473B960DAF214828BE3] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1259296] [PID.172]
~ Processes Running: Scanned in 00mn 00s



---\\ Opera, Plugins,Start,Search (P1,B0,B1)
B0 - SPO: operaprefs.ini [GIUXGIUX] Home URL=http://www.rambler.ru/
B1 - OSP: search.ini [GIUXGIUX] URL=http://www.bing.com/search?q=%s&form=OPRTSD&pc=OPER
B1 - OSP: search.ini [GIUXGIUX] URL=http://redir.opera.com/amazon
B1 - OSP: search.ini [GIUXGIUX] URL=http://redir.opera.com/ebay
B1 - OSP: search.ini [GIUXGIUX] URL=http://fr.wikipedia.org/wiki/Special:Search?search=%s
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Opera\Program\Plugins\NPOFF12.DLL
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin2.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin3.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin4.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin5.dll
P1 - OPN:Opera Plugin Navigator . (...) -- C:\Program Files (x86)\Opera\Program\Plugins\NPSWF32.dll
P1 - OPN:Opera Plugin Navigator . (.Adobe Systems, Inc. - Adobe Flash Player Helper 10.0 r45.) -- C:\Program Files (x86)\Opera\Program\Plugins\NPSWF32_FlashUtil.exe =>.Adobe Systems Incorporated
P1 - OPN:Opera Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Opera\Program\Plugins\NPOFF12.DLL
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin2.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin3.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin4.dll
P1 - OPN:Opera Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Opera\Program\Plugins\npqtplugin5.dll
P1 - OPN:Opera Plugin Navigator . (...) -- C:\Program Files (x86)\Opera\Program\Plugins\NPSWF32.dll
P1 - OPN:Opera Plugin Navigator . (.Adobe Systems, Inc. - Adobe Flash Player Helper 10.0 r45.) -- C:\Program Files (x86)\Opera\Program\Plugins\NPSWF32_FlashUtil.exe =>.Adobe Systems Incorporated
~ Opera Browser: 21 Scanned in 00mn 00s



---\\ Google Chrome, Start,Search,Extensions (G0,G1,G2)
C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Google Chrome Extension Folder
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [__MSG_appName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [__MSG_appName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [__MSG_appName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgnkhhnnamicmpeenaelnjfhikgbkllg [__MSG_name__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [WOT]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bklnjbfcmglhiaoppcckdodanccbelcg [__MSG_app_name__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [__MSG_appName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpconcjcammlapcogcnnelfmaeghhagj [Nimbus Screenshot]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [__MSG_name__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjidbdiahninbecbcigapoocbkfncobc [Blur Privacy Dashboard]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [__MSG_appName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [__MSG_extensionName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\dheionainndbbpoacpnopgmnihkcmnkl [Gmelius for Gmail]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [Block site]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec [Facebook Disconnect]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd [Blur]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [__MSG_appName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmobfennjmjnkdbklhcnnfbhfibedgkk [Disconnect Search]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\iohcojnlgnfbmjfjfkbhahhmppcggdog [EverSync - Sync bookmarks, backup favorites]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [Disconnect]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmkeghegppbighmnhgjopkikgoglpjkk [UntinyURL]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [Chrome Hotword Shared Module]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\liiikhhbkpmpomjmdofandjmdgapiahi [MyPermissions Cleaner]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [Speed Dial [FVD] - New Tab Page, 3D, Sync...] =>PUP.QuickShare
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [__MSG_application_title__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [Ghostery]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlipoenfbbikpbjkfpfillcgkoblgpmj [__MSG_extName__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [__MSG_APP_NAME__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [Hover Zoom]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [__MSG_name__]
G2 - EXT: C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [__MSG_appName__]
~ Google Lines Browser: 64 Scanned in 00mn 01s



---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3)
C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\blozzve3.default\prefs.js
C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\blozzve3.default\user.js
C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\prefs.js
M3 - MFPP: Plugins - [GIUXGIUX] -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\searchplugins\ebook-.xml
M3 - MFPP: Plugins - [GIUXGIUX] -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\searchplugins\googletranslate.xml
M3 - MFPP: Plugins - [GIUXGIUX] -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\searchplugins\only-pdf.xml
M3 - MFPP: Plugins - [GIUXGIUX] -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\searchplugins\pdf-ebook-searches.xml
M3 - MFPP: Plugins - [GIUXGIUX] -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\searchplugins\pdf-search.xml
M3 - MFPP: Plugins - [GIUXGIUX] -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\searchplugins\translateru.xml
M0 - MFSP: prefs.js [GIUXGIUX - fi77grgz.dev-edition-default] chrome://fvd.speeddial/content/fvd_about_blank.html =>PUP.SpeedDial
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\clickclean@hotcleaner.com] [] Click&Clean v4.1 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\donottrackplus@abine.com] [] Blur (Formerly DoNotTrackMe) v4.5.1334 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\idme@abine.com] [] MaskMe v1.40.366 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\iobitascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v2.0 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\pavel.sherbakov@gmail.com] [] Speed Dial [FVD] - New Tab Page, Sync... v2.0 (..) =>PUP.QuickShare
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\printPages2Pdf@reinhold.ripper] [] Print pages to PDF v0.1.9.3 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\{0b457cAA-602d-484a-8fe7-c1d894a011ba}] [] FireShot v0.98.70 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}] [] Lightshot (էկրանը նկարելու ծրագիր) v4.6.8 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20131118 (..)
M2 - MFEP: prefs.js [GIUXGIUX - blozzve3.default\{dd3d7613-0246-469d-bc65-2a3cc1668adc}] [] Block site v1.1.8 (..)
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] adblockpopups@jessehakanen.net.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] arpit3@techraga.in.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] autoproxy@autoproxy.org.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] blender@meh.paranoid.pk.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] cleanjunk@netmaster.com.ua.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] clickclean@hotcleaner.com
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] client@anonymox.net.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] donottrackplus@abine.com
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] elemhidehelper@adblockplus.org.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] firefox@ghostery.com.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] HighlightedTextToFile@bobbyrne01.org.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] idme@abine.com
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] images@wink.su.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] iobitascsurfingprotection@iobit.com
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] jid0-gRmSxW9ByuHwGjLhtXJg27YnZRs@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] jid1-4Vy68XOTvAbEBQ@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] nocopypaste@adblockplus.org.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] notrace@unisa.it.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] pavel.sherbakov@gmail.com
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] printedit@DW-dev.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] printPages2Pdf@reinhold.ripper
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] requestpolicy@requestpolicy.com.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] safepreview@everhelper.me.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {0b457cAA-602d-484a-8fe7-c1d894a011ba}
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {0e10f3d7-07f6-4f12-97b9-9b27e07139a5}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {146f1820-2b0d-49ef-acbf-d85a6986e10c}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {ab4b5718-3998-4a2c-91ae-18a7c2db513e}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus Extension Mozilla Firefox
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {dd3d7613-0246-469d-bc65-2a3cc1668adc}
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {ea61041c-1e22-4400-99a0-aea461e69d04}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] copylinkurl@bluelightdev.com.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] extension@hidemyass.com.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] jid0-DpogclPgnN9OvqNntEBbPZxBinY@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] jid1-P34HaABBBpOerQ@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] jid1-zUrvDCat3xoDSQ@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] mail@sindre.at.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] maskingagent@basa.nl.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] mintrayr@tn123.ath.cx
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] password.generator@kolya.ca.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] privateTab@infocatcher.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] save2read@konstantin.plotnikov.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] staged
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] stealthyextension@gmail.com.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {02450914-cdd9-410f-b1da-db004e18c671}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {27c60876-b5c9-4335-b4f3-52b26782220c}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {6d43fee4-72e7-4290-b75a-b898e4f4676d}
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi
M2 - MFEP: Extension [GIUXGIUX - blozzve3.default] {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
M2 - MFEP: prefs.js [GIUXGIUX - fi77grgz.dev-edition-default\donottrackplus@abine.com] [] Blur (Formerly DoNotTrackMe) v4.5.1334.1-signed (..)
M2 - MFEP: prefs.js [GIUXGIUX - fi77grgz.dev-edition-default\idme@abine.com] [] MaskMe v1.40.366.1-signed (..)
M2 - MFEP: prefs.js [GIUXGIUX - fi77grgz.dev-edition-default\iobitascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v2.0 (..)
M2 - MFEP: prefs.js [GIUXGIUX - fi77grgz.dev-edition-default\printPages2Pdf@reinhold.ripper] [] Print pages to PDF v0.1.9.3 (..)
M2 - MFEP: prefs.js [GIUXGIUX - fi77grgz.dev-edition-default\{6d43fee4-72e7-4290-b75a-b898e4f4676d}] [] BlockSite Plus v1.1.1-signed (..)
M2 - MFEP: prefs.js [GIUXGIUX - fi77grgz.dev-edition-default\{dd3d7613-0246-469d-bc65-2a3cc1668adc}] [] Block site v1.1.8.1-signed (..)
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] adblockpopups@jessehakanen.net.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] arpit3@techraga.in.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] autoproxy@autoproxy.org.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] blender@meh.paranoid.pk.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] cleanjunk@netmaster.com.ua.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] clickclean@hotcleaner.com
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] client@anonymox.net.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] donottrackplus@abine.com
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] elemhidehelper@adblockplus.org.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] firefox@ghostery.com.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] HighlightedTextToFile@bobbyrne01.org.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] idme@abine.com
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] images@wink.su.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] iobitascsurfingprotection@iobit.com
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] jid0-gRmSxW9ByuHwGjLhtXJg27YnZRs@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] jid1-4Vy68XOTvAbEBQ@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] nocopypaste@adblockplus.org.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] notrace@unisa.it.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] pavel.sherbakov@gmail.com
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] printedit@DW-dev.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] printPages2Pdf@reinhold.ripper
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] requestpolicy@requestpolicy.com.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] safepreview@everhelper.me.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {0b457cAA-602d-484a-8fe7-c1d894a011ba}
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {0e10f3d7-07f6-4f12-97b9-9b27e07139a5}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {146f1820-2b0d-49ef-acbf-d85a6986e10c}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {ab4b5718-3998-4a2c-91ae-18a7c2db513e}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus Extension Mozilla Firefox
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {dd3d7613-0246-469d-bc65-2a3cc1668adc}
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {ea61041c-1e22-4400-99a0-aea461e69d04}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] copylinkurl@bluelightdev.com.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] extension@hidemyass.com.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] jid0-DpogclPgnN9OvqNntEBbPZxBinY@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] jid1-P34HaABBBpOerQ@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] jid1-zUrvDCat3xoDSQ@jetpack.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] mail@sindre.at.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] maskingagent@basa.nl.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] mintrayr@tn123.ath.cx
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] password.generator@kolya.ca.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] privateTab@infocatcher.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] save2read@konstantin.plotnikov.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] staged
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] stealthyextension@gmail.com.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {02450914-cdd9-410f-b1da-db004e18c671}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {27c60876-b5c9-4335-b4f3-52b26782220c}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {6d43fee4-72e7-4290-b75a-b898e4f4676d}
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi
M2 - MFEP: Extension [GIUXGIUX - fi77grgz.dev-edition-default] {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.0.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_190.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.25.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.25.2] - (.Oracle Corporation - Next Generation Java Plug-in 11.25.2 for Mozilla browsers.) -- C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.40416.0.) -- C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.4] - (...) -- C:\Program Files\VideoLAN\VLC\npvlc.dll (.not file.)
P2 - FPN: [HKCU] [@acestream.net/acestreamplugin,version=3.0.2] - (.Innovative Digital Technologies - ACE Stream Plug-in Version 2.2.5.1-next, Copyright (c) 2012-2014 Innov.) -- C:\Users\GIUXGIUX\AppData\Roaming\ACEStream\player\npace_plugin.dll
P2 - FPN: [HKCU] [@octoshape.com/Octoshape Streaming Services,version=1.0] - (.Octoshape ApS - Octoshape embedded video plugin.) -- C:\Users\GIUXGIUX\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1401100-0-npoctoshape.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\GIUXGIUX\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 5.41.2.0.) -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O1DPlugin] - (.Google - Version 5.41.2.0.) -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\plugins\npo1d.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll
~ Firefox Browser: 212 Scanned in 00mn 02s



---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.rambler.ru
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://encrypted.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17840 (winblue_r11.150522-0826)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 19 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Line Analysis F0, F1, F2, F3 - IniFiles, Auto loading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (1)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PDF Architect Helper [64Bits] - {3A2D5EBA-F86D-4BD3-A177-019765996711} . (.pdfforge GmbH - PDF Architect Helper.) -- C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Programme d’aide de l’Assistant de connexion au compte Microsoft [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: WOT Helper [64Bits] - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} . (...) -- C:\Program Files (x86)\WOT\WOT.dll
O2 - BHO: CutePDF Form Filler [64Bits] - {D41289F2-69C6-417B-897E-C653D677CBAF} . (.Acro Software Inc. - CutePDF Filler Helper.) -- C:\Program Files (x86)\Acro Software\CutePDF Pro\CPFillerCo.dll
O2 - BHO: Adblock Plus for IE Browser Helper Object [64Bits] - {FFCB3198-32F3-4E8B-9539-4324694ED664} . (.Eyeo GmbH - Adblock Plus BHO for Internet Explorer.) -- C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll
O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} Orphan key
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Orphan key
O2 - BHO: (no name) [64Bits] - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} Orphan key
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Orphan key
~ BHO: 16 Scanned in 00mn 00s



---\\ Internet Explorer toolbars (O3)
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O3 - Toolbar: WOT - [HKLM]{71576546-354D-41c9-AAE8-31F2EC22BF0D} . (...) -- C:\Program Files\WOT\WOT.dll
O3 - Toolbar: Easy Photo Print - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL x64).) -- C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Orphan key
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{71576546-354D-41C9-AAE8-31F2EC22BF0D} Orphan key
~ Toolbar: Scanned in 00mn 00s



---\\ Auto loading programs from Registry and folders (O4)
O4 - HKLM\..\Run: [Fences] . (.Stardock Corporation - Fences Settings.) -- C:\Program Files (x86)\Stardock\Fences\Fences.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [Windows Firewall Control] . (.Alexandru Dicu - Windows Firewall Control.) -- C:\Windows\SysWOW64\wfc.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [AceStream] . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ACEStream\engine\ace_engine.exe
O4 - HKCU\..\Run: [AceWebException] . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.exe =>.Epson Seiko Corporation
O4 - HKCU\..\Run: [IR Server] . (.Team MediaPortal - IR Server.) -- C:\Program Files (x86)\IR Server Suite\IR Server.exe
O4 - HKCU\..\Run: [IR Server Tray] . (.Team MediaPortal - IR Server Tray.) -- C:\Program Files (x86)\IR Server Suite\IR Server Tray.exe
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [Octoshape Streaming Services] . (.Octoshape ApS - Main program for Octoshape client.) -- C:\Users\GIUXGIUX\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
O4 - HKCU\..\Run: [PIMOne] . (.PIMOne Software - PIMOne.) -- C:\Program Files (x86)\PIMOne\PIMOne.exe
O4 - HKCU\..\Run: [icq] . (.ICQ - ICQ.) -- C:\Users\GIUXGIUX\AppData\Roaming\ICQM\icq.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKCU\..\Run: [Geotag Security] . (.No owner - Geotag Security.) -- C:\Program Files (x86)\Geotag Security\GeotagSecurity.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [Display] . (.Schneider Electric - Startup Notification Module.) -- C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXMediaServer] . (.DivX, LLC - DivX Media Server Launcher.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.No owner - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Wow6432Node\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe =>.Samsung Electronics Co
O4 - HKLM\..\Wow6432Node\Run: [MDAPI_Plus] . (.No owner - MDAPI_Plus Host Application.) -- C:\Program Files (x86)\MDAPI_Plus\MDAPIHost.exe
O4 - HKLM\..\Wow6432Node\Run: [SystemExplorerAutoStart] . (.Mister Group - System Explorer.) -- C:\Program Files (x86)\System Explorer\SystemExplorer.exe
O4 - HKLM\..\Wow6432Node\Run: [WsmUpdater] . (.Web Solution Mart - Updater.) -- C:\Program Files (x86)\Web Solution Mart\Fake Webcam Codecs Pack\Updater.exe
O4 - HKUS\.DEFAULT\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.exe =>.Epson Seiko Corporation
O4 - HKUS\S-1-5-18\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.exe =>.Epson Seiko Corporation
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [AceStream] . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ACEStream\engine\ace_engine.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [AceWebException] . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHLE.exe =>.Epson Seiko Corporation
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [IR Server] . (.Team MediaPortal - IR Server.) -- C:\Program Files (x86)\IR Server Suite\IR Server.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [IR Server Tray] . (.Team MediaPortal - IR Server Tray.) -- C:\Program Files (x86)\IR Server Suite\IR Server Tray.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [Octoshape Streaming Services] . (.Octoshape ApS - Main program for Octoshape client.) -- C:\Users\GIUXGIUX\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [PIMOne] . (.PIMOne Software - PIMOne.) -- C:\Program Files (x86)\PIMOne\PIMOne.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [icq] . (.ICQ - ICQ.) -- C:\Users\GIUXGIUX\AppData\Roaming\ICQM\icq.exe
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKUS\S-1-5-21-3147391334-965059008-3150008735-1000\..\Run: [Geotag Security] . (.No owner - Geotag Security.) -- C:\Program Files (x86)\Geotag Security\GeotagSecurity.exe
~ Application: Scanned in 00mn 00s



---\\ IE Options icon not visible in Control Panel (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
~ Winsock: 9 Scanned in 00mn 00s



---\\ Site in Trusted Zone (O15)
O15 - Trusted Zone: [HKCU\...\Domains\www] http.parom.tv
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Lop.com/Domain Hijackers (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{CF459770-6FDC-42AC-8D87-9F477126D016}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{CF459770-6FDC-42AC-8D87-9F477126D016}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{CF459770-6FDC-42AC-8D87-9F477126D016}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Domain: Scanned in 00mn 00s



---\\ Extra protocols (O18)
O18 - Handler: wot [64Bits] - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} . (...) -- C:\Program Files\WOT\WOT.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ ShellServiceObjectDelayLoad (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ SharedTaskScheduler (O22)
O22 - SharedTaskScheduler: (no name) [64Bits] - {1984DD45-52CF-49cd-AB77-18F378FEA264} - (.not file.)
O22 - SharedTaskScheduler: (no name) [64Bits] - {73526E5A-FD53-4BE7-B5E2-D3C89D7413DC} - (.not file.)
O22 - SharedTaskScheduler: (no name) [64Bits] - {E31004D1-A431-41B8-826F-E902F9D95C81} . (.Microsoft Corporation - Microsoft Windows 7 Ultimate Extra: Windows.) -- C:\Windows\SysWow64\DreamScene.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Non Microsoft non disabled Windows XP/NT/2000 Services (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Acunetix WVS Scheduler v8 (AcuWVSSchedulerv8) . (...) - C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: APC Data Service (APC Data Service) . (.Schneider Electric - PowerChute Data Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
O23 - Service: APC UPS Service (APC UPS Service) . (.Schneider Electric - Battery Backup Management Service.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Служба Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Camfrog Update Service (camfrog_update_service) . (.Camshare Inc. - Camfrog Video Chat update service.) - C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe =>.Epson Seiko Corporation
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HauppaugeTVServer (HauppaugeTVServer) . (.Hauppauge Computer Works - Hauppauge TV Server.) - C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: MySQL (MySQL) . (...) - C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 309.0.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GmbH - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GmbH - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
O23 - Service: RumoteVMC Service (RumoteVMCService) . (.Rumote - RumoteMCEService.) - C:\Program Files (x86)\Rumote\RumoteVMC\RumoteMCEService.exe
O23 - Service: SolidConverterPDFReadSpool (SCPDFReadSpool) . (.Solid Documents, LLC - Solid Spool Service.) - C:\Program Files (x86)\SolidDocuments\Solid Converter PDF\SCPDF\SolidConverterPDFServicex64.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: Windows Firewall Control (_wfcs) . (.BiniSoft.org - Windows Firewall Control Service.) - C:\Program Files\Windows Firewall Control\wfcs.exe
~ Services: 24 Scanned in 00mn 04s



---\\ Windows Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Task Planned Automatically (039)
[MD5.64495D9B3C4B640230E9265C23A33F55] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1018056]
[MD5.6259A5B669AE018A5E53247259A101C3] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268464]
[MD5.00000000000000000000000000000000] [APT] [ASCU8_PerformanceMonitor] (...) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\Monitor.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [ASCU8_SkipUac_GIUXGIUX] (...) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASC.exe (.not file.) [0]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000Core] (.Google Inc..) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000UA] (.Google Inc..) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.1B74F7F7CB3C8351409FB2DD81D3BB50] [APT] [Opera scheduled Autoupdate 1376993084] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [908408]
[MD5.00000000000000000000000000000000] [APT] [RealUpgradeLogonTaskS-1-5-21-3147391334-965059008-3150008735-1000] (...) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [RealUpgradeScheduledTaskS-1-5-21-3147391334-965059008-3150008735-1000] (...) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{0216C314-D397-45E4-95FC-DA5594765496}] (...) -- C:\Program Files (x86)\Team MediaPortal\MediaPortal TV Server\SetupTv.exe (.not file.) [0]
[MD5.604A6F3CB699983E73880B3E91B38B5E] [APT] [{792D849D-B980-4817-8E4F-26A71359355F}] (...) -- C:\Program Files (x86)\K!TV\UninstKTV.exe [4229955]
[MD5.00000000000000000000000000000000] [APT] [{ABBC8076-9041-4B14-8B8B-139F0E4DDC84}] (...) -- D:\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{AFFEB6F3-57E6-4CB9-B51A-7B92475A2D85}] (...) -- D:\INSTALL.exe (.not file.) [0]
[MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [{B8DC7294-44CD-4C81-BC05-4A5162480BC6}] (...) -- C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.cpl" [1511424]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000Core.job [922]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000Core [922]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000UA.job [974]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3147391334-965059008-3150008735-1000UA [974]
~ Scheduled Task: 24 Scanned in 00mn 03s



---\\ ActiveSetup Installed Components (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\\ Drivers launched at startup (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AppleCharger) . (...) - C:\Windows\System32\DRIVERS\AppleCharger.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (HWiNFO32) . (.REALiX(tm) - HWiNFO AMD64 Kernel Driver.) - C:\Windows\sysWOW64\drivers\HWiNFO64A.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 66 Scanned in 00mn 00s



---\\ Software installed (O42)
O42 - Logiciel: "Солдат удачи: Расплата" версии 1.1.0.0 - (...) [HKLM][64Bits] -- SoldierofFortunePayback_is1
O42 - Logiciel: 4K Video to MP3 2.2 - (.Open Media LLC.) [HKLM][64Bits] -- 4K Video to MP3_is1
O42 - Logiciel: 4t Tray Minimizer Free 5.52 - (.4t Niagara Software.) [HKLM][64Bits] -- 4t Tray Minimizer_is1
O42 - Logiciel: 7-Zip 9.38 beta - (...) [HKLM][64Bits] -- 7-Zip
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: ABBYY FineReader11 Professional Edition - (...) [HKLM][64Bits] -- ABBYY FineReader11 Professional Edition
O42 - Logiciel: ACDSee Pro 2 - (.ACD Systems International.) [HKLM][64Bits] -- {4AAC95F4-A30E-4EE5-A086-6F79581D0D70}
O42 - Logiciel: AIM for Windows - (.AOL Inc..) [HKCU][64Bits] -- AIM
O42 - Logiciel: Ace Stream Media 3.0.2 - (.Ace Stream Media.) [HKCU][64Bits] -- AceStream
O42 - Logiciel: Acunetix Web Vulnerability Scanner 8.0 - (.Acunetix.) [HKLM][64Bits] -- {DBD76811-6CF0-4A15-9436-B779C3A36929}_is1
O42 - Logiciel: AdFender - (.AdFender, Inc..) [HKLM][64Bits] -- AdFender
O42 - Logiciel: Adblock Plus for IE - (...) [HKLM][64Bits] -- {fd97d1e2-368a-4cd9-af63-8eeff938044a}
O42 - Logiciel: Adblock Plus для IE (32- и 64-разрядные версии) - (.Eyeo GmbH.) [HKLM][64Bits] -- {0E47CCC3-6D30-4CB7-A0A9-1375BBC02CCA}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD}
O42 - Logiciel: Adobe Acrobat 4.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Acrobat 4.0
O42 - Logiciel: Adobe Flash Player 17 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader 64-bit fixes - (.Leo Davidson / Pretentious Name.) [HKLM][64Bits] -- {6D80AAE7-FF65-4950-B1CA-3A7EA4995574}_is1
O42 - Logiciel: Adobe Reader XI - Russian - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1049-7B44-AB0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130}
O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: AnVir Task Manager - (.AnVir Software.) [HKLM][64Bits] -- AnVir Task Manager
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {787136D2-F0F8-4625-AA3F-72D7795AC842}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Ashampoo MP3 Check&Convert - (...) [HKLM][64Bits] -- Ashampoo MP3 Check&Convert
O42 - Logiciel: Avery Wizard 4.0 - (.Avery.) [HKLM][64Bits] -- {F97272B4-82C4-46B2-BCF1-C4D6E8CAB3E6}
O42 - Logiciel: Aviator - (.WhiteHat Security, Inc..) [HKLM][64Bits] -- {B0E4AA1D-76A7-48B5-AAA1-D68BDBB1FF99}
O42 - Logiciel: BlazeVideo HDTV Player 6.6 Professional - (...) [HKLM][64Bits] -- BlazeVideo HDTV Player 6.6 Professional_is1
O42 - Logiciel: BlindScanner Pro - (.Masters ITC Software.) [HKLM][64Bits] -- {3F02DFA9-EA6F-40E7-AF53-8750D6FB646B}_is1
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Bullzip PDF Printer 10.8.0.2282 - (.Bullzip.) [HKLM][64Bits] -- Bullzip PDF Printer_is1
O42 - Logiciel: CacheMyWork - (.Codeplex.) [HKLM][64Bits] -- {4CD3A1CB-EB91-4DC5-B636-33B66BA56162}
O42 - Logiciel: Camfrog Video Chat 6.11 - (.Camshare, Inc..) [HKLM][64Bits] -- Camfrog
O42 - Logiciel: Camfrog Web Advanced 2.0 ActiveX Plugin (remove only) - (...) [HKLM][64Bits] -- CFWebAdvancedU2
O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (remove only) - (...) [HKLM][64Bits] -- CFWebAdvancedU
O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (www.bobtv.fr) - (...) [HKLM][64Bits] -- CFWebAdvancedU_BOBTV.FR
O42 - Logiciel: Cartes de Visite - (...) [HKLM][64Bits] -- {888DF9D4-876E-11D7-B60C-00C04F4351FF}
O42 - Logiciel: Classic Menu for Office 2007 v5.00 - (.Addintools.) [HKLM][64Bits] -- {409ECFF1-9CC7-43A8-B28A-B7F0B7CB04D1}_is1
O42 - Logiciel: Crystal TV 3.1.684 - (.Crystal Reality LLC.) [HKLM][64Bits] -- Crystal TV
O42 - Logiciel: CutePDF Professional 3.71 - (.Acro Software Inc..) [HKLM][64Bits] -- CutePDF Professional_is1
O42 - Logiciel: CutePDF Writer 3.0 - (.Acro Software Inc..) [HKLM][64Bits] -- CutePDF Writer Installation
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Daum PotPlayer 1.5.33948 RU x64 - (.©7sh3. (Сборка от 26.07.2012).) [HKLM][64Bits] -- {69764025-6925-4F66-A38B-63AD94DB6746}_is1
O42 - Logiciel: Daum 팟플레이어 - (.Daum Kakao Corp..) [HKLM][64Bits] -- PotPlayer
O42 - Logiciel: DjVuLibre+DjView - (.DjVuZone.) [HKLM][64Bits] -- DjVuLibre+DjView
O42 - Logiciel: Download Updater (AOL Inc.) - (.AOL Inc..) [HKLM][64Bits] -- SoftwareUpdUtility
O42 - Logiciel: DriverMax 7 - (.Innovative Solutions.) [HKLM][64Bits] -- DMX5_is1
O42 - Logiciel: EPSON SX235 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX235 Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {A02D7029-C4EF-44C1-9FD4-C0D3CA518113}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: Etron USB3.0 Host Controller - (.Etron Technology.) [HKLM][64Bits] -- InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}
O42 - Logiciel: Etron USB3.0 Host Controller - (.Etron Technology.) [HKLM][64Bits] -- {DFBB738C-71D8-4DC5-B8D2-D65C37680E27}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: Fake Webcam 7.3 - (.Web Solution Mart.) [HKLM][64Bits] -- fakewebcam7.3.0_is1
O42 - Logiciel: Fake Webcam Codecs Pack 1.0.0 - (.Web Solution Mart.) [HKLM][64Bits] -- fwccpsetup_is1
O42 - Logiciel: Firefox Developer Edition 40.0a2 (x86 ru) - (.Mozilla.) [HKLM][64Bits] -- Firefox Developer Edition 40.0a2 (x86 ru)
O42 - Logiciel: FormMax Filler 3.51 - (.Acro Software Inc..) [HKLM][64Bits] -- FormMax Filler_is1
O42 - Logiciel: FraudEliminator 2.4.0 - (.www.FraudEliminator.com.) [HKLM][64Bits] -- {48C619B9-C4ED-41C9-8F18-94B0C06AEE2D}
O42 - Logiciel: Free Folder Hider 12.03 - (.AuoBAUP, Inc..) [HKLM][64Bits] -- Free Folder Hider_is1
O42 - Logiciel: GG - (.GG Network S.A..) [HKCU][64Bits] -- GG
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {F4D99A13-F63A-4FC1-8799-CFFDB78DDFB3}
O42 - Logiciel: Geotag Security 1.0 - (.Geotag Security Software, Inc.) [HKLM][64Bits] -- Geotag Security_is1
O42 - Logiciel: Ghostery IE Plugin - (.Ghostery.) [HKLM][64Bits] -- Ghostery IE Plugin_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Guide d'utilisation EPSON SX235 Series - (...) [HKLM][64Bits] -- EPSON SX235 Series Useg
O42 - Logiciel: Guide réseau EPSON SX235 Series - (...) [HKLM][64Bits] -- EPSON SX235 Series Netg
O42 - Logiciel: H.264 Encoder - (.www.H264Encoder.com.) [HKLM][64Bits] -- {B99459D2-B91A-417E-9DFA-F53D569F4445}_is1
O42 - Logiciel: Hauppauge WinTV 7 - (.Hauppauge Computer Works.) [HKLM][64Bits] -- Hauppauge WinTV 7
O42 - Logiciel: Hauppauge WinTV 8 - (.Hauppauge Computer Works.) [HKLM][64Bits] -- Hauppauge WinTV 8
O42 - Logiciel: ICQ 8.3 (сборка 7317) - (.ICQ.) [HKCU][64Bits] -- ICQ
O42 - Logiciel: IP-TV Player 0.28.1.8834 - (.ООО АДСЛ Клуб.) [HKLM][64Bits] -- IP-TV_Player
O42 - Logiciel: IR Server Suite - (.Team MediaPortal.) [HKLM][64Bits] -- IR Server Suite
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {D4FC649C-0247-4873-930D-D9E6904DCAF5}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {3DE97849-544D-4D68-9255-11DF6F9F10D8}
O42 - Logiciel: Internet Explorer (Enable DEP) - (...) [HKLM][64Bits] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb
O42 - Logiciel: Java 7 Update 60 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F06417060FF}
O42 - Logiciel: Java 8 Update 25 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418025F0}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {F6F30C28-38AA-4DBA-AE0B-7E30238E61BB}
O42 - Logiciel: K!TV - (...) [HKLM][64Bits] -- K!TV
O42 - Logiciel: K-Meleon 1.5.4 ru-RU (только удаление) - (.K-Meleon Team.) [HKLM][64Bits] -- K-Meleon
O42 - Logiciel: Kazoo Player - (...) [HKLM][64Bits] -- Kazoo Player
O42 - Logiciel: Lagarith lossless video codec (Remove Only) - (...) [HKLM][64Bits] -- LAGARITH
O42 - Logiciel: Lunascape6 (All Users) - (.Lunascape.) [HKLM][64Bits] -- Lunascape6
O42 - Logiciel: MDAPI_Plus - (.Alexander Plyas.) [HKLM][64Bits] -- MDAPI_Plus
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {DB1FC045-9AD0-4503-9DC1-D7F949632E97}
O42 - Logiciel: Malwarebytes Anti-Malware, версия 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: ManyCam 4.0.44 - (.Visicom Media Inc..) [HKLM][64Bits] -- ManyCam
O42 - Logiciel: MaxTV - (.MaxTV Technologies.) [HKLM][64Bits] -- MaxTV
O42 - Logiciel: Microsoft Antimalware Service RU-RU Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {7F20FBE0-9939-4BA0-9290-628727D63D55}
O42 - Logiciel: Microsoft Fix it Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {B7588D45-AFDC-4C93-9E2E-A100F3554B64}
O42 - Logiciel: Microsoft FrontPage 2002 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9017040C-6000-11D3-8CFE-0050048383C9}
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}
O42 - Logiciel: Microsoft Security Client RU-RU Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {93492218-15C0-4719-B898-05FC5769F2E6}
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Monkey's Audio - (...) [HKLM][64Bits] -- Monkey's Audio_is1
O42 - Logiciel: Mozilla Firefox 37.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 37.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mp3tag v2.70 - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag
O42 - Logiciel: MyFreeCodec - (...) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: MySQL Server 5.1 - (.MySQL AB.) [HKLM][64Bits] -- {561AB451-B967-475C-80E0-3B6679C38B52}
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Pilote graphique 309.08 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Nero 7 Ultra Edition - (.Nero AG.) [HKLM][64Bits] -- {30C50520-1B5E-4FD1-A87B-444F86E21049}
O42 - Logiciel: ON_OFF Charge B11.0110.1 - (.GIGABYTE.) [HKLM][64Bits] -- {3DECD372-76A1-4483-BF10-B547790A3261}
O42 - Logiciel: Octoshape Streaming Services - (.Octoshape ApS.) [HKCU][64Bits] -- Octoshape Streaming Services
O42 - Logiciel: Office Tab FreeEdition - (.Detong Technology Ltd..) [HKLM][64Bits] -- {DE469D65-1DEB-4058-BF95-C642D733668D}_is1
O42 - Logiciel: OpenFM - (.GG Network S.A..) [HKCU][64Bits] -- OpenFM
O42 - Logiciel: Opera 12.17 - (.Opera Software ASA.) [HKLM][64Bits] -- Opera 12.17.1863
O42 - Logiciel: Opera Stable 30.0.1835.88 - (.Opera Software.) [HKLM][64Bits] -- Opera 30.0.1835.88
O42 - Logiciel: PC Wizard 2013.2.12 - (.CPUID.) [HKLM][64Bits] -- PC Wizard 2013_is1
O42 - Logiciel: PDF Architect - (.pdfforge GmbH.) [HKLM][64Bits] -- {064A929A-4DE8-40CF-A901-BD40C14E4D25}
O42 - Logiciel: PDF Unlocker - (...) [HKLM][64Bits] -- PDF Unlocker
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: PIMOne 5.35 - (.PIMOne Software.) [HKLM][64Bits] -- PIMOne_is1
O42 - Logiciel: PVSonyDll - (.NVIDIA Corporation.) [HKLM][64Bits] -- {3D3E663D-4E7E-4577-A560-7ECDDD45548A}
O42 - Logiciel: Pamela Basic 4.8 - (.Scendix Software-Vertriebsges. mbH.) [HKLM][64Bits] -- Pamela
O42 - Logiciel: Parom.TV player - (...) [HKLM][64Bits] -- Parom.TV
O42 - Logiciel: Philips SPC 900NC PC Camera - (...) [HKLM][64Bits] -- {220F6386-5D1F-4DA5-94DB-F12133C3AE2C}
O42 - Logiciel: Philips VLounge - (.ArcSoft.) [HKLM][64Bits] -- {89ACA875-BDB9-443C-B7C7-D74D3BDE8FE2}
O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}
O42 - Logiciel: PowerChute Personal Edition 3.0.2 - (.Schneider Electric.) [HKLM][64Bits] -- {8ED262EE-FC73-47A9-BB86-D92223246881}
O42 - Logiciel: ProgDVB x64 - (.Prog.) [HKLM][64Bits] -- ProgDVB
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Reg Organizer, версия 6.55 - (.ChemTable Software.) [HKLM][64Bits] -- Reg Organizer_is1
O42 - Logiciel: Roadkil's Unstoppable Copier Version 5.2 - (.Roadkil.Net.) [HKLM][64Bits] -- {A306FD29-7D3A-4287-91AC-9A0180931395}_is1
O42 - Logiciel: Rumote VMC Plugin - (...) [HKLM][64Bits] -- {af46b9c7-3b0c-4ebb-86fb-349203430866}
O42 - Logiciel: Rumote VMC Plugin 2.1.4 - (.Rumote.) [HKLM][64Bits] -- {93014103-9212-4AC7-9CD1-77544704BAC3}
O42 - Logiciel: RunMe 0.9 - (.KSoft.) [HKLM][64Bits] -- RunMe
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Story Album Viewer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}
O42 - Logiciel: Samsung Story Album Viewer - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {698BBAD8-B116-495D-B879-0F07A533E57F}
O42 - Logiciel: Scan Tailor - (...) [HKLM][64Bits] -- Scan Tailor
O42 - Logiciel: Scan2PDF 1.6 - (.Koma-Code.) [HKLM][64Bits] -- Scan2PDF_is1
O42 - Logiciel: Secure Eraser - (.ASCOMP Software GmbH.) [HKLM][64Bits] -- Secure Eraser_is1
O42 - Logiciel: SiSoftware Sandra Business 2013 - (.SiSoftware.) [HKLM][64Bits] -- {C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1
O42 - Logiciel: Simple Adblock - (.Simple Adblock.) [HKLM][64Bits] -- {B4920103-09F6-4AD2-B150-CFC4474D2DDC}
O42 - Logiciel: Skype™ 7.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: SlimDrivers - (.SlimWare Utilities, Inc..) [HKLM][64Bits] -- {A5457401-D56A-43F2-9524-78E54A7FC07A}
O42 - Logiciel: Solid Converter PDF - (.SolidDocuments.) [HKLM][64Bits] -- {56BFAA6E-2BCC-4AED-9233-84731E66B205}
O42 - Logiciel: SopCast 3.9.2 - (.www.sopcast.com.) [HKLM][64Bits] -- SopCast
O42 - Logiciel: Stardock Fences 2 - (.Stardock Software, Inc..) [HKLM][64Bits] -- Stardock Fences 2
O42 - Logiciel: StreamTransport version: 1.1.3.0 - (...) [HKLM][64Bits] -- {FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1
O42 - Logiciel: System Explorer 6.4.2 - (.Mister Group.) [HKLM][64Bits] -- {40F485F7-6478-4896-B0D5-F94BE677EB78}_is1
O42 - Logiciel: TELL ME MORE - (...) [HKLM][64Bits] -- TMM70
O42 - Logiciel: Teleport Ultra - (.Tennyson Maxwell Information Systems, Inc..) [HKLM][64Bits] -- Teleport Ultra
O42 - Logiciel: TeraCopy 2.3 - (.Code Sector.) [HKLM][64Bits] -- TeraCopy_is1
O42 - Logiciel: URL Helper - (...) [HKLM][64Bits] -- URL Helper_is1
O42 - Logiciel: URL Snooper v2.35.01 - (.DonationCoder.com.) [HKLM][64Bits] -- URLSnooper 2_is1
O42 - Logiciel: Uninstall Tool - (.CrystalIDEA Software, Inc..) [HKLM][64Bits] -- Uninstall Tool_is1
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Player - (.VMware, Inc.) [HKLM][64Bits] -- VMware_Player
O42 - Logiciel: VMware Player - (.VMware, Inc..) [HKLM][64Bits] -- {E452E727-86B8-4233-8CC3-41FD817AFAFF}
O42 - Logiciel: WOT for Internet Explorer - (.WOT Services Oy.) [HKLM][64Bits] -- {373B90E1-A28C-434C-92B6-7281AFA6115A}
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: WinRAR 5.11 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Windows Firewall Control - (.Alexandru Dicu.) [HKLM][64Bits] -- WindowsFirewallControl
O42 - Logiciel: Windows Firewall Control - (.BiniSoft.org.) [HKLM][64Bits] -- Windows Firewall Control
O42 - Logiciel: Windows Media Player 64-bit Plug-in Fix - (...) [HKLM][64Bits] -- {00a8ce68-cb2e-4652-aecd-c05c0d9d53a7}.sdb =>.Microsoft Corporation
O42 - Logiciel: Windows Media Player Firefox Plugin - (.Microsoft Corp.) [HKLM][64Bits] -- {69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} =>.Microsoft Corporation
O42 - Logiciel: Windows Media Player Plus! 2.6 - (.BM-productions.) [HKLM][64Bits] -- {67E4EF06-E0D6-42E0-A2BA-67199B0143FB}_is1 =>.Microsoft Corporation
O42 - Logiciel: XBMC - (.Team XBMC.) [HKCU][64Bits] -- XBMC
O42 - Logiciel: Zattoo4 4.0.5 - (.Zattoo Inc..) [HKLM][64Bits] -- Zattoo4
O42 - Logiciel: ffdshow x64 v1.3.4531 [2014-06-28] - (...) [HKLM][64Bits] -- ffdshow64_is1
O42 - Logiciel: ooVoo - (.ooVoo LLC..) [HKLM][64Bits] -- {FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}
O42 - Logiciel: paint.net - (.dotPDN LLC.) [HKLM][64Bits] -- {19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}
O42 - Logiciel: rue des йcoles - Super Vacances vers le CM1 - (...) [HKLM][64Bits] -- SupVac09
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: tools-freebsd - (.VMware, Inc..) [HKLM][64Bits] -- {003BFBBD-6C67-419E-A24D-0DCAFC3A5249}
O42 - Logiciel: tools-linux - (.VMware, Inc..) [HKLM][64Bits] -- {D102611A-6466-4101-A51D-51069303AC65}
O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM][64Bits] -- {197597A7-AD33-4898-9D8E-73066818B464}
O42 - Logiciel: tools-solaris - (.VMware, Inc..) [HKLM][64Bits] -- {AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}
O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM][64Bits] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}
O42 - Logiciel: tools-windows - (.VMware, Inc..) [HKLM][64Bits] -- {FFD9383C-01D5-4897-A954-43AF599AED30}
O42 - Logiciel: Поддержка программ Apple - (.Apple Inc..) [HKLM][64Bits] -- {AAC5D43E-816D-4C2D-8E51-55FFF35BE301}
O42 - Logiciel: Установка DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
~ Logic: 132 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\2LMultimedia]
[HKCU\Software\2vg]
[HKCU\Software\4kdownload.com]
[HKCU\Software\4t Niagara Software]
[HKCU\Software\7-Zip]
[HKCU\Software\ABBYY]
[HKCU\Software\ACD Systems]
[HKCU\Software\ACE Compression Software]
[HKCU\Software\APC]
[HKCU\Software\ASCOMP]
[HKCU\Software\ASProtect]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Acro Software Inc]
[HKCU\Software\Acunetix]
[HKCU\Software\AdblockPlus]
[HKCU\Software\AddinTools]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\Ainvo]
[HKCU\Software\All-Radio]
[HKCU\Software\America Online]
[HKCU\Software\Anvide Labs]
[HKCU\Software\Anvir]
[HKCU\Software\AppDataLow\IEPro]
[HKCU\Software\AppDataLow\LastScanTime]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Against Intuition]
[HKCU\Software\AppDataLow\Software\DivX]
[HKCU\Software\AppDataLow\Software\G DATA]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Mail.Ru]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\ThinPrint]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Auralog]
[HKCU\Software\Auslogics]
[HKCU\Software\Avant Browser]
[HKCU\Software\Avery]
[HKCU\Software\Aviator]
[HKCU\Software\BExplorer]
[HKCU\Software\BM-productions]
[HKCU\Software\BST]
[HKCU\Software\Binary Noise]
[HKCU\Software\BiniSoft.org]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\BlazeVideo]
[HKCU\Software\Borland]
[HKCU\Software\BurnAware]
[HKCU\Software\CPUID]
[HKCU\Software\CSoftLab]
[HKCU\Software\CamfrogWeb]
[HKCU\Software\Camfrog]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Carthago]
[HKCU\Software\ChemTable Software]
[HKCU\Software\ChrisPC JTV Player]
[HKCU\Software\ChrisTV Online]
[HKCU\Software\ChromePlus]
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Code Sector]
[HKCU\Software\CoreFLAC]
[HKCU\Software\Crystal Reality]
[HKCU\Software\CrystalIdea Software]
[HKCU\Software\DPP]
[HKCU\Software\DSP-worx]
[HKCU\Software\Dating Notifier (Wekiss)]
[HKCU\Software\Daum]
[HKCU\Software\David Esperalta]
[HKCU\Software\Depositfiles]
[HKCU\Software\DevID]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\DjVuLibre]
[HKCU\Software\Dominsoft]
[HKCU\Software\DownloadCenter]
[HKCU\Software\EFD Software]
[HKCU\Software\EPSON]
[HKCU\Software\Enterbrain]
[HKCU\Software\Evernote]
[HKCU\Software\Explorer++]
[HKCU\Software\ExtendOffice]
[HKCU\Software\Eyeball]
[HKCU\Software\Facebook]
[HKCU\Software\FinalWire]
[HKCU\Software\Foxit Software]
[HKCU\Software\FraudEliminatorToolBar]
[HKCU\Software\Freeware]
[HKCU\Software\FreshDevices]
[HKCU\Software\Froggie]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Geek Uninstaller]
[HKCU\Software\Ghostery]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Hachette Multimedia]
[HKCU\Software\Haihaisoft PDF Reader]
[HKCU\Software\Hensense.com]
[HKCU\Software\HiDownloadPlatinum]
[HKCU\Software\I.R.I.S. Applications]
[HKCU\Software\IM Providers]
[HKCU\Software\ImageMagick]
[HKCU\Software\ImgBurn]
[HKCU\Software\Infium]
[HKCU\Software\Innovative Solutions]
[HKCU\Software\IvoSoft]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\K-Meleon]
[HKCU\Software\KC Softwares]
[HKCU\Software\Kartina.TV]
[HKCU\Software\LAV64]
[HKCU\Software\LAV]
[HKCU\Software\Licenses]
[HKCU\Software\LizardTech]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\LopeSoft]
[HKCU\Software\Lunascape Corporation]
[HKCU\Software\MCAFEE]
[HKCU\Software\MONOGRAM]
[HKCU\Software\Macromedia]
[HKCU\Software\Mail.Ru]
[HKCU\Software\MainConcept (HCW)]
[HKCU\Software\MainConcept]
[HKCU\Software\Makayama]
[HKCU\Software\Malware Destroyer 6]
[HKCU\Software\Malware Destroyer 7]
[HKCU\Software\Malwarebytes' Anti-Malware (portable)]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\ManyCam]
[HKCU\Software\Master Commander]
[HKCU\Software\MasterMedia]
[HKCU\Software\Masters ITC]
[HKCU\Software\MediaLingua]
[HKCU\Software\Monkey's Audio]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Neuber GbR]
[HKCU\Software\NewSoftware's]
[HKCU\Software\NuonSoft]
[HKCU\Software\ODBC]
[HKCU\Software\OJOsoft Corporation]
[HKCU\Software\Octoshape]
[HKCU\Software\Onet Pliki]
[HKCU\Software\Onet.pl]
[HKCU\Software\Opera Software]
[HKCU\Software\PDF Architect]
[HKCU\Software\PDFCreator.net]
[HKCU\Software\PDFCreator]
[HKCU\Software\Paint.NET]
[HKCU\Software\Parom.TV]
[HKCU\Software\Pinnacle Systems]
[HKCU\Software\Piriform]
[HKCU\Software\PistonSoft]
[HKCU\Software\Policies]
[HKCU\Software\ProcessLasso]
[HKCU\Software\ProtectedData]
[HKCU\Software\QIP]
[HKCU\Software\Quizo]
[HKCU\Software\RDE]
[HKCU\Software\RISING]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Remedy Entertainment]
[HKCU\Software\Resort Labs]
[HKCU\Software\Rightmark]
[HKCU\Software\Rising Sun Solutions, Inc.]
[HKCU\Software\Roadkil]
[HKCU\Software\RocketDock]
[HKCU\Software\Rumote]
[HKCU\Software\SIV]
[HKCU\Software\SUPERAntiSpyware.com]
[HKCU\Software\Samsung]
[HKCU\Software\Scan Tailor]
[HKCU\Software\Scanitto]
[HKCU\Software\Secunia]
[HKCU\Software\SiSoftware]
[HKCU\Software\SightSpeed Inc]
[HKCU\Software\SimpleTV by SergeyVS#3]
[HKCU\Software\Sippoint]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\SlimWare Utilities Inc]
[HKCU\Software\Softland]
[HKCU\Software\SolidDocuments]
[HKCU\Software\Spoon]
[HKCU\Software\Stardock]
[HKCU\Software\Stdin2]
[HKCU\Software\Streamripper]
[HKCU\Software\SyncApp]
[HKCU\Software\Sysinternals]
[HKCU\Software\SystemExplorer]
[HKCU\Software\TAdvCheckList]
[HKCU\Software\TL]
[HKCU\Software\Tennyson Maxwell]
[HKCU\Software\The Silicon Realms Toolworks]
[HKCU\Software\Trolltech]
[HKCU\Software\TweakNow RegCleaner 2011]
[HKCU\Software\URLHelper]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VMware, Inc.]
[HKCU\Software\VOB]
[HKCU\Software\VOS]
[HKCU\Software\VSO]
[HKCU\Software\Valve]
[HKCU\Software\VideoLAN]
[HKCU\Software\VirtualDub.org]
[HKCU\Software\Visicom Media Inc]
[HKCU\Software\VueScan]
[HKCU\Software\Web Solution Mart]
[HKCU\Software\WhiteHat]
[HKCU\Software\WinAbility]
[HKCU\Software\WinHTTrack Website Copier]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Winamp-BackupByWinampPortable]
[HKCU\Software\Winamp]
[HKCU\Software\Winreview.ru]
[HKCU\Software\Winternals]
[HKCU\Software\Wondershare]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Xenocode]
[HKCU\Software\Y's]
[HKCU\Software\Yahoo]
[HKCU\Software\Zattoo]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\cmcm]
[HKCU\Software\eBooks]
[HKCU\Software\eSellerate]
[HKCU\Software\fwc]
[HKCU\Software\hugin]
[HKCU\Software\ooVoo]
[HKCU\Software\pth264]
[HKCU\Software\sipXtapi]
[HKCU\Software\torora.net]
[HKCU\Software\zyceffab]
[HKCU\Software\zyceffmorg]
[HKLM\Software\ACD Systems]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Acro Software Inc]
[HKLM\Software\Adblock Plus for IE]
[HKLM\Software\Adobe]
[HKLM\Software\Ainvo]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Bullzip]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Code Sector]
[HKLM\Software\Creative Tech]
[HKLM\Software\Debug]
[HKLM\Software\DivX]
[HKLM\Software\EPSON]
[HKLM\Software\EpsonNet]
[HKLM\Software\ExtendOffice]
[HKLM\Software\GEAR Software]
[HKLM\Software\GNU]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hauppauge]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Jasmio]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\PDFCreator.net]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SIV]
[HKLM\Software\SRS Labs]
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\SiSoftware]
[HKLM\Software\Soft4Boost]
[HKLM\Software\SolidDocuments]
[HKLM\Software\Sonic]
[HKLM\Software\Stardock]
[HKLM\Software\Synaptics]
[HKLM\Software\VMware, Inc.]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\ACD Systems]
[HKLM\Software\Wow6432Node\APC]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Acro Software Inc]
[HKLM\Software\Wow6432Node\Acro Software]
[HKLM\Software\Wow6432Node\Acunetix]
[HKLM\Software\Wow6432Node\AddinTools]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\Auralog]
[HKLM\Software\Wow6432Node\Avg Secure Update]
[HKLM\Software\Wow6432Node\AviSynth]
[HKLM\Software\Wow6432Node\BM-productions]
[HKLM\Software\Wow6432Node\Better Explorer Team]
[HKLM\Software\Wow6432Node\Blue Ridge Networks]
[HKLM\Software\Wow6432Node\Borland]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Cauldron]
[HKLM\Software\Wow6432Node\Chromium]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\ComodoGroup]
[HKLM\Software\Wow6432Node\Comodo]
[HKLM\Software\Wow6432Node\Cygwin]
[HKLM\Software\Wow6432Node\DAUM]
[HKLM\Software\Wow6432Node\Dating]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\Depositfiles]
[HKLM\Software\Wow6432Node\DevID]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\EpsonNet]
[HKLM\Software\Wow6432Node\Eset]
[HKLM\Software\Wow6432Node\ExtendOffice]
[HKLM\Software\Wow6432Node\Eyeball]
[HKLM\Software\Wow6432Node\Florian Heidenreich]
[HKLM\Software\Wow6432Node\FotoNation]
[HKLM\Software\Wow6432Node\FreshDevices]
[HKLM\Software\Wow6432Node\GIGABYTE]
[HKLM\Software\Wow6432Node\GPL Ghostscript]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HPrefs]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hauppauge]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\IObit]
[HKLM\Software\Wow6432Node\Innovative Solutions]
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\InterVideo]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Kodak]
[HKLM\Software\Wow6432Node\LEAD Technologies, Inc.]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LightWork Design]
[HKLM\Software\Wow6432Node\LucasArts Entertainment Company LLC]
[HKLM\Software\Wow6432Node\Lunascape Corporation]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Mail.Ru]
[HKLM\Software\Wow6432Node\Malware Destroyer 7]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (portable)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\Mindscape]
[HKLM\Software\Wow6432Node\Moyea]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MySQL AB]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\NHN Corporation]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Naver]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Netscape]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Onet.pl]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\PDF Architect]
[HKLM\Software\Wow6432Node\PDFCreator]
[HKLM\Software\Wow6432Node\Philips]
[HKLM\Software\Wow6432Node\Pinnacle Systems]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Quadrant International, Inc.]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Rockstar Games]
[HKLM\Software\Wow6432Node\Rumote]
[HKLM\Software\Wow6432Node\S3R521]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION]
[HKLM\Software\Wow6432Node\Samsung]
[HKLM\Software\Wow6432Node\Secunia]
[HKLM\Software\Wow6432Node\SimpleAdblock]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\SlimWare Utilities Inc]
[HKLM\Software\Wow6432Node\Soft4Boost]
[HKLM\Software\Wow6432Node\SoftRM]
[HKLM\Software\Wow6432Node\SolidDocuments]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Stardock]
[HKLM\Software\Wow6432Node\Stardvb]
[HKLM\Software\Wow6432Node\StreamTransport]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\SystemExplorer]
[HKLM\Software\Wow6432Node\SystemInfoBapm670]
[HKLM\Software\Wow6432Node\ThinPrint]
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\VMware, Inc.]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Web Solution Mart]
[HKLM\Software\Wow6432Node\Webteh]
[HKLM\Software\Wow6432Node\WhiteHat]
[HKLM\Software\Wow6432Node\WinAbility]
[HKLM\Software\Wow6432Node\WinPcap]
[HKLM\Software\Wow6432Node\Winmend]
[HKLM\Software\Wow6432Node\Wise Solutions]
[HKLM\Software\Wow6432Node\Wondershare]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\ashampoo]
[HKLM\Software\Wow6432Node\eSellerate]
[HKLM\Software\Wow6432Node\fCoder]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\rue des йcoles]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
[HKLM\Software\fCoder]
[HKLM\Software\mozilla.org]
[HKLM\Software\paint.net]
[HKLM\Software\swearware]
~ Key Software: 801 Scanned in 00mn 00s



---\\ Contents of the Common Files folders (O43)
O43 - CFD: 14.03.2015 - 20:41:20 - [] ----D C:\Program Files (x86)\4KDownload
O43 - CFD: 14.03.2015 - 20:41:21 - [] ----D C:\Program Files (x86)\4t Tray Minimizer
O43 - CFD: 14.03.2015 - 20:41:21 - [] ----D C:\Program Files (x86)\7-Zip
O43 - CFD: 14.03.2015 - 20:41:23 - [] ----D C:\Program Files (x86)\ABBYY FineReader 11
O43 - CFD: 14.03.2015 - 20:41:26 - [] ----D C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
O43 - CFD: 14.03.2015 - 20:41:31 - [] ----D C:\Program Files (x86)\ACD Systems
O43 - CFD: 14.03.2015 - 20:41:31 - [] ----D C:\Program Files (x86)\Acro Software
O43 - CFD: 14.03.2015 - 20:41:31 - [] ----D C:\Program Files (x86)\Acunetix
O43 - CFD: 14.03.2015 - 20:41:31 - [] ----D C:\Program Files (x86)\AdFender
O43 - CFD: 27.05.2015 - 9:41:23 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 27.05.2015 - 10:10:37 - [] ----D C:\Program Files (x86)\Adobe Reader 64-bit fixes
O43 - CFD: 14.03.2015 - 20:41:33 - [] ----D C:\Program Files (x86)\AnVir Task Manager
O43 - CFD: 14.03.2015 - 20:41:34 - [] ----D C:\Program Files (x86)\APC
O43 - CFD: 14.03.2015 - 20:41:34 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 14.03.2015 - 20:41:34 - [] ----D C:\Program Files (x86)\ASCOMP Software
O43 - CFD: 14.03.2015 - 20:41:34 - [] ----D C:\Program Files (x86)\ashampoo
O43 - CFD: 14.03.2015 - 20:41:35 - [] ----D C:\Program Files (x86)\Auralog
O43 - CFD: 31.08.2013 - 21:26:26 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 14.03.2015 - 20:41:39 - [] ----D C:\Program Files (x86)\BlazeVideo
O43 - CFD: 14.03.2015 - 20:41:45 - [] ----D C:\Program Files (x86)\BlindScanner Pro
O43 - CFD: 14.03.2015 - 20:41:45 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 14.03.2015 - 20:41:45 - [] ----D C:\Program Files (x86)\CacheMyWork
O43 - CFD: 04.04.2015 - 22:11:16 - [] ----D C:\Program Files (x86)\Camfrog
O43 - CFD: 14.03.2015 - 20:41:45 - [] ----D C:\Program Files (x86)\CFWebAdvancedU2
O43 - CFD: 14.03.2015 - 20:41:46 - [] ----D C:\Program Files (x86)\CFWebAdvancedU_BOBTV.FR
O43 - CFD: 14.03.2015 - 20:41:46 - [] ----D C:\Program Files (x86)\Classic Menu for Office
O43 - CFD: 14.03.2015 - 20:41:47 - [] ----D C:\Program Files (x86)\cmcm
O43 - CFD: 27.05.2015 - 9:19:40 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 14.03.2015 - 20:42:10 - [] ----D C:\Program Files (x86)\CPUID
O43 - CFD: 14.03.2015 - 20:42:11 - [] ----D C:\Program Files (x86)\Crystal TV
O43 - CFD: 14.03.2015 - 20:42:11 - [] ----D C:\Program Files (x86)\DAUM
O43 - CFD: 14.03.2015 - 20:42:12 - [] ----D C:\Program Files (x86)\DepositFiles
O43 - CFD: 14.03.2015 - 20:42:15 - [] ----D C:\Program Files (x86)\DivX
O43 - CFD: 14.03.2015 - 20:42:15 - [] ----D C:\Program Files (x86)\DjVuZone
O43 - CFD: 14.03.2015 - 20:42:15 - [] ----D C:\Program Files (x86)\epson
O43 - CFD: 14.03.2015 - 20:42:29 - [] ----D C:\Program Files (x86)\Epson Software
O43 - CFD: 14.03.2015 - 20:42:36 - [] ----D C:\Program Files (x86)\Etron Technology
O43 - CFD: 14.03.2015 - 20:42:36 - [] ----D C:\Program Files (x86)\Fake Webcam 7.3
O43 - CFD: 27.06.2015 - 8:54:30 - [] ----D C:\Program Files (x86)\Firefox Developer Edition
O43 - CFD: 14.03.2015 - 20:42:40 - [] ----D C:\Program Files (x86)\FraudEliminator
O43 - CFD: 14.03.2015 - 20:42:41 - [] ----D C:\Program Files (x86)\FreeFolderHider
O43 - CFD: 14.03.2015 - 20:42:41 - [] ----D C:\Program Files (x86)\FVDIEPlugin
O43 - CFD: 04.02.2014 - 22:12:18 - [0] ----D C:\Program Files (x86)\G Data
O43 - CFD: 14.03.2015 - 20:42:41 - [] ----D C:\Program Files (x86)\Geotag Security
O43 - CFD: 14.03.2015 - 20:42:41 - [] ----D C:\Program Files (x86)\GhosteryIEplugin
O43 - CFD: 14.03.2015 - 20:42:41 - [] ----D C:\Program Files (x86)\GIGABYTE
O43 - CFD: 24.06.2015 - 10:32:04 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 14.03.2015 - 20:42:43 - [] ----D C:\Program Files (x86)\GPLGS
O43 - CFD: 14.03.2015 - 20:42:43 - [] ----D C:\Program Files (x86)\H.264 Encoder
O43 - CFD: 21.04.2013 - 8:13:38 - [0] ----D C:\Program Files (x86)\Inhatch
O43 - CFD: 14.03.2015 - 20:42:43 - [] ----D C:\Program Files (x86)\Innovative Solutions
O43 - CFD: 17.04.2015 - 21:09:48 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 14.03.2015 - 20:42:46 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 10.06.2015 - 14:38:53 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 14.03.2015 - 20:42:48 - [] ----D C:\Program Files (x86)\IP-TV Player
O43 - CFD: 14.03.2015 - 20:42:49 - [] ----D C:\Program Files (x86)\IR Server Suite
O43 - CFD: 14.03.2015 - 20:42:50 - [] ----D C:\Program Files (x86)\Java
O43 - CFD: 14.03.2015 - 20:42:54 - [] ----D C:\Program Files (x86)\K!TV
O43 - CFD: 14.03.2015 - 20:42:56 - [] ----D C:\Program Files (x86)\K-Meleon
O43 - CFD: 14.03.2015 - 20:42:56 - [] ----D C:\Program Files (x86)\Links keeper
O43 - CFD: 18.01.2013 - 3:43:18 - [0] ----D C:\Program Files (x86)\lpd
O43 - CFD: 27.06.2015 - 16:06:13 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 14.03.2015 - 20:42:57 - [] ----D C:\Program Files (x86)\ManyCam
O43 - CFD: 14.03.2015 - 20:42:57 - [] ----D C:\Program Files (x86)\MarkAny
O43 - CFD: 14.03.2015 - 20:42:58 - [] R---D C:\Program Files (x86)\Max Payne 2
O43 - CFD: 14.03.2015 - 20:42:58 - [] ----D C:\Program Files (x86)\MaxTV
O43 - CFD: 14.03.2015 - 20:43:00 - [] ----D C:\Program Files (x86)\MDAPI_Plus
O43 - CFD: 14.03.2015 - 20:43:27 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 13.05.2015 - 8:41:04 - [] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 13.05.2015 - 10:01:19 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 14.03.2015 - 20:43:31 - [] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 14.03.2015 - 20:43:31 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 14.03.2015 - 20:43:31 - [] ----D C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 14.03.2015 - 20:43:31 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 14.03.2015 - 20:43:31 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 14.03.2015 - 20:43:38 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 14.03.2015 - 20:43:38 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14.03.2015 - 20:43:38 - [] ----D C:\Program Files (x86)\Monkey's Audio
O43 - CFD: 04.04.2015 - 22:54:24 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 27.06.2015 - 8:54:30 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 11.05.2015 - 16:35:15 - [] ----D C:\Program Files (x86)\Mp3tag
O43 - CFD: 14.03.2015 - 20:43:41 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 16.07.2013 - 0:25:40 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 17.03.2015 - 1:14:33 - [] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 21.07.2014 - 19:43:32 - [0] ----D C:\Program Files (x86)\Naver
O43 - CFD: 14.03.2015 - 20:43:41 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 14.03.2015 - 20:43:53 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 13.03.2014 - 21:05:19 - [0] ----D C:\Program Files (x86)\Onet
O43 - CFD: 14.03.2015 - 20:43:53 - [] ----D C:\Program Files (x86)\ooVoo
O43 - CFD: 26.06.2015 - 9:09:38 - [] ----D C:\Program Files (x86)\Opera
O43 - CFD: 14.03.2015 - 20:44:02 - [] ----D C:\Program Files (x86)\Pamela
O43 - CFD: 06.06.2015 - 17:30:25 - [] ----D C:\Program Files (x86)\Parom.TV
O43 - CFD: 14.03.2015 - 20:44:34 - [] ----D C:\Program Files (x86)\PDF Architect
O43 - CFD: 14.03.2015 - 20:44:35 - [] ----D C:\Program Files (x86)\PDF Unlocker
O43 - CFD: 14.03.2015 - 20:44:35 - [] ----D C:\Program Files (x86)\Philips
O43 - CFD: 14.03.2015 - 20:44:43 - [] ----D C:\Program Files (x86)\PIMOne
O43 - CFD: 14.03.2015 - 20:45:15 - [] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 12.07.2014 - 19:38:21 - [0] ----D C:\Program Files (x86)\RayV
O43 - CFD: 13.05.2015 - 12:42:58 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14.07.2009 - 7:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 14.03.2015 - 20:45:21 - [] ----D C:\Program Files (x86)\Reg Organizer
O43 - CFD: 14.03.2015 - 20:45:22 - [] ----D C:\Program Files (x86)\Roadkil.Net
O43 - CFD: 14.03.2015 - 20:45:22 - [] ----D C:\Program Files (x86)\rue des йcoles
O43 - CFD: 14.03.2015 - 20:45:40 - [] ----D C:\Program Files (x86)\Rumote
O43 - CFD: 14.03.2015 - 20:46:05 - [] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 10.05.2015 - 22:07:28 - [] ----D C:\Program Files (x86)\Scan2PDF
O43 - CFD: 14.03.2015 - 20:46:18 - [] ----D C:\Program Files (x86)\Scanitto
O43 - CFD: 14.03.2015 - 20:46:18 - [] ----D C:\Program Files (x86)\Secunia
O43 - CFD: 14.03.2015 - 20:46:19 - [] ----D C:\Program Files (x86)\SimpleTV
O43 - CFD: 14.03.2015 - 20:46:43 - [] ----D C:\Program Files (x86)\SimpleTV047r2
O43 - CFD: 14.03.2015 - 20:47:59 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 14.03.2015 - 20:47:59 - [] ----D C:\Program Files (x86)\SlimDrivers
O43 - CFD: 30.06.2013 - 11:15:52 - [0] ----D C:\Program Files (x86)\SmElis
O43 - CFD: 14.03.2015 - 20:48:00 - [] ----D C:\Program Files (x86)\Soldier of Fortune Payback
O43 - CFD: 14.03.2015 - 20:48:00 - [] ----D C:\Program Files (x86)\SolidDocuments
O43 - CFD: 14.03.2015 - 20:48:02 - [] ----D C:\Program Files (x86)\SopCast
O43 - CFD: 14.03.2015 - 20:48:02 - [] ----D C:\Program Files (x86)\Stardock
O43 - CFD: 01.07.2013 - 15:45:25 - [0] ----D C:\Program Files (x86)\Stardvb
O43 - CFD: 18.06.2013 - 14:06:05 - [0] ----D C:\Program Files (x86)\stinger
O43 - CFD: 14.03.2015 - 20:48:03 - [] ----D C:\Program Files (x86)\StreamingStar
O43 - CFD: 14.03.2015 - 20:48:03 - [] ----D C:\Program Files (x86)\StreamTransport
O43 - CFD: 23.05.2015 - 0:17:27 - [] ----D C:\Program Files (x86)\System Explorer
O43 - CFD: 14.03.2015 - 20:48:04 - [] ----D C:\Program Files (x86)\Team MediaPortal
O43 - CFD: 14.03.2015 - 20:48:04 - [] ----D C:\Program Files (x86)\Teleport Ultra
O43 - CFD: 13.05.2015 - 12:12:02 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14.07.2009 - 6:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 14.03.2015 - 20:48:04 - [] ----D C:\Program Files (x86)\Unlocker
O43 - CFD: 14.03.2015 - 20:48:04 - [] ----D C:\Program Files (x86)\URLSnooper2
O43 - CFD: 14.03.2015 - 20:48:04 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 14.03.2015 - 20:48:09 - [] ----D C:\Program Files (x86)\VMware
O43 - CFD: 14.03.2015 - 20:48:22 - [] ----D C:\Program Files (x86)\Web Solution Mart
O43 - CFD: 14.03.2015 - 20:48:23 - [] ----D C:\Program Files (x86)\WhiteHat
O43 - CFD: 15.03.2015 - 17:09:08 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 14.03.2015 - 20:48:25 - [] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 12.04.2011 - 11:16:36 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 10.06.2015 - 14:38:58 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14.03.2015 - 20:48:26 - [] ----D C:\Program Files (x86)\Windows Media Player Plus! =>.Microsoft Corporation
O43 - CFD: 14.07.2009 - 7:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12.04.2011 - 11:16:36 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21.11.2010 - 5:31:38 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12.04.2011 - 11:16:36 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 14.03.2015 - 20:48:27 - [] ----D C:\Program Files (x86)\WinPcap
O43 - CFD: 17.04.2015 - 21:27:53 - [] ----D C:\Program Files (x86)\WinTV
O43 - CFD: 14.03.2015 - 20:48:31 - [] ----D C:\Program Files (x86)\WOT
O43 - CFD: 14.03.2015 - 20:48:49 - [] ----D C:\Program Files (x86)\XBMC
O43 - CFD: 09.12.2012 - 0:54:39 - [0] ----D C:\Program Files (x86)\Xenocode
O43 - CFD: 14.03.2015 - 20:48:50 - [] ----D C:\Program Files (x86)\Zattoo4
O43 - CFD: 28.06.2015 - 0:05:00 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 14.03.2015 - 20:41:47 - [] ----D C:\Program Files (x86)\Common Files\ABBYY
O43 - CFD: 14.03.2015 - 20:41:48 - [] ----D C:\Program Files (x86)\Common Files\ACD Systems
O43 - CFD: 14.03.2015 - 20:41:48 - [] ----D C:\Program Files (x86)\Common Files\Acro Software
O43 - CFD: 04.06.2015 - 19:18:15 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 14.03.2015 - 20:41:48 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 14.03.2015 - 20:41:51 - [] ----D C:\Program Files (x86)\Common Files\Ahead
O43 - CFD: 14.03.2015 - 20:41:57 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 14.03.2015 - 20:41:58 - [] ----D C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 14.03.2015 - 20:41:58 - [] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 14.03.2015 - 20:41:58 - [] ----D C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 14.03.2015 - 20:41:58 - [] ----D C:\Program Files (x86)\Common Files\Common Share
O43 - CFD: 14.03.2015 - 20:41:58 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 14.03.2015 - 20:41:58 - [] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 14.03.2015 - 20:41:59 - [] ----D C:\Program Files (x86)\Common Files\EPSON
O43 - CFD: 14.03.2015 - 20:41:59 - [] ----D C:\Program Files (x86)\Common Files\FotoNation
O43 - CFD: 14.03.2015 - 20:41:59 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 14.03.2015 - 20:41:59 - [] ----D C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 14.03.2015 - 20:42:00 - [] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 28.04.2013 - 23:30:06 - [0] ----D C:\Program Files (x86)\Common Files\Makayama
O43 - CFD: 14.03.2015 - 20:42:06 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14.03.2015 - 20:42:07 - [] ----D C:\Program Files (x86)\Common Files\PDF Architect
O43 - CFD: 14.03.2015 - 20:42:07 - [] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14.07.2009 - 5:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14.03.2015 - 20:42:07 - [] ----D C:\Program Files (x86)\Common Files\Simple Star Shared
O43 - CFD: 14.03.2015 - 20:42:08 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 05.04.2015 - 23:16:40 - [] ----D C:\Program Files (x86)\Common Files\Software Update Utility
O43 - CFD: 14.07.2009 - 5:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 15.03.2015 - 17:09:21 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 14.03.2015 - 20:42:10 - [] ----D C:\Program Files (x86)\Common Files\VMware
O43 - CFD: 14.03.2015 - 20:42:10 - [] ----D C:\Program Files (x86)\Common Files\Web Solution Mart
O43 - CFD: 14.03.2015 - 20:42:10 - [] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 14.03.2015 - 20:42:10 - [] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 14.03.2015 - 20:48:50 - [] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 21.05.2015 - 1:38:08 - [] ----D C:\ProgramData\ABBYY
O43 - CFD: 14.03.2015 - 20:48:54 - [] ----D C:\ProgramData\ACD Systems
O43 - CFD: 14.03.2015 - 20:48:59 - [] ----D C:\ProgramData\Acunetix WVS 8
O43 - CFD: 14.03.2015 - 20:48:59 - [] ----D C:\ProgramData\AdFender
O43 - CFD: 04.06.2015 - 19:18:16 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 14.03.2015 - 20:48:59 - [] ----D C:\ProgramData\Apple
O43 - CFD: 14.07.2009 - 7:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 14.03.2015 - 20:48:59 - [] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 14.03.2015 - 20:48:59 - [] ----D C:\ProgramData\BlazeVideo
O43 - CFD: 14.03.2015 - 20:49:00 - [] ----D C:\ProgramData\Blue Ridge Networks
O43 - CFD: 14.03.2015 - 20:49:00 - [] ----D C:\ProgramData\BlueStacksSetup
O43 - CFD: 14.03.2015 - 22:29:23 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 16.06.2015 - 8:59:57 - [0] ----D C:\ProgramData\Camfrog Update
O43 - CFD: 14.03.2015 - 20:49:00 - [] ----D C:\ProgramData\Caminova
O43 - CFD: 14.03.2015 - 20:49:00 - [] ----D C:\ProgramData\Canneverbe Limited
O43 - CFD: 14.03.2015 - 20:49:00 - [] ----D C:\ProgramData\Caphyon
O43 - CFD: 14.03.2015 - 20:49:00 - [] ----D C:\ProgramData\cmcm
O43 - CFD: 28.11.2012 - 0:13:43 - [0] ----D C:\ProgramData\CMUV
O43 - CFD: 14.03.2015 - 20:49:01 - [] --H-D C:\ProgramData\Common Files
O43 - CFD: 14.03.2015 - 20:49:01 - [] ----D C:\ProgramData\DBC2F6FD-3140-41E0-A2A1-D6BAB77D5E21__F893F7CA-8278-41DF-A76F-CAF0437A90CD__
O43 - CFD: 14.07.2009 - 7:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14.03.2015 - 20:49:01 - [] ----D C:\ProgramData\DivX
O43 - CFD: 14.07.2009 - 7:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 14.03.2015 - 20:49:01 - [] ----D C:\ProgramData\DonationCoder
O43 - CFD: 14.03.2015 - 20:49:01 - [] ----D C:\ProgramData\EPSON
O43 - CFD: 14.03.2015 - 22:29:23 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14.07.2009 - 7:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 06.05.2015 - 13:33:26 - [] ----D C:\ProgramData\GG
O43 - CFD: 14.03.2015 - 20:49:02 - [] ----D C:\ProgramData\Google
O43 - CFD: 28.06.2015 - 17:48:35 - [] ----D C:\ProgramData\Hauppauge
O43 - CFD: 14.03.2015 - 20:49:02 - [] ----D C:\ProgramData\Intel
O43 - CFD: 14.03.2015 - 20:49:02 - [] ----D C:\ProgramData\IObit
O43 - CFD: 14.03.2015 - 20:49:02 - [] ----D C:\ProgramData\IP-TV Player
O43 - CFD: 14.03.2015 - 20:49:02 - [] ----D C:\ProgramData\IPTV Distribution
O43 - CFD: 14.03.2015 - 20:49:10 - [] ----D C:\ProgramData\IR Server Suite
O43 - CFD: 14.03.2015 - 20:49:10 - [] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 14.03.2015 - 20:49:10 - [] ----D C:\ProgramData\Kingsoft
O43 - CFD: 14.03.2015 - 20:49:10 - [] ----D C:\ProgramData\Kristanix Games
O43 - CFD: 14.03.2015 - 20:49:10 - [] ----D C:\ProgramData\Lavasoft
O43 - CFD: 14.03.2015 - 20:49:12 - [] ----D C:\ProgramData\Licenses
O43 - CFD: 14.03.2015 - 20:49:13 - [] ----D C:\ProgramData\Logs
O43 - CFD: 13.05.2015 - 8:04:26 - [] ----D C:\ProgramData\ma-config.com
O43 - CFD: 14.03.2015 - 20:49:18 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 14.03.2015 - 20:49:18 - [] ----D C:\ProgramData\Masters ITC
O43 - CFD: 14.03.2015 - 20:49:18 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 14.03.2015 - 20:49:18 - [] ----D C:\ProgramData\MDAPI_Plus
O43 - CFD: 14.03.2015 - 22:29:23 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 14.03.2015 - 20:50:02 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 10.06.2015 - 14:36:41 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 14.03.2015 - 20:50:02 - [] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 14.03.2015 - 20:50:02 - [] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 14.03.2015 - 22:29:23 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 14.03.2015 - 20:50:02 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 14.03.2015 - 20:50:02 - [] ----D C:\ProgramData\MySQL
O43 - CFD: 14.03.2015 - 20:50:03 - [] ----D C:\ProgramData\Nuance
O43 - CFD: 14.03.2015 - 20:50:03 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 14.03.2015 - 20:36:23 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 14.03.2015 - 20:50:03 - [] ----D C:\ProgramData\Oracle
O43 - CFD: 14.03.2015 - 20:50:03 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 14.03.2015 - 20:50:03 - [] ----D C:\ProgramData\PDF Writer
O43 - CFD: 14.03.2015 - 20:50:03 - [] ----D C:\ProgramData\Pinnacle
O43 - CFD: 14.03.2015 - 20:50:04 - [] ----D C:\ProgramData\Plugins
O43 - CFD: 26.05.2013 - 14:30:54 - [0] ----D C:\ProgramData\ProcessLasso
O43 - CFD: 14.03.2015 - 20:50:04 - [] ----D C:\ProgramData\ProductData
O43 - CFD: 14.03.2015 - 20:50:04 - [] ----D C:\ProgramData\RogueKiller
O43 - CFD: 14.03.2015 - 20:50:04 - [] ----D C:\ProgramData\RonyaSoft
O43 - CFD: 14.03.2015 - 20:50:10 - [] ----D C:\ProgramData\Samsung
O43 - CFD: 04.06.2015 - 10:25:50 - [] ----D C:\ProgramData\Skype
O43 - CFD: 14.03.2015 - 20:50:10 - [] ----D C:\ProgramData\SolidDocuments
O43 - CFD: 14.03.2015 - 20:50:10 - [] ----D C:\ProgramData\Stardock
O43 - CFD: 14.07.2009 - 7:08:56 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 29.03.2015 - 1:34:30 - [] ----D C:\ProgramData\SystemExplorer
O43 - CFD: 14.03.2015 - 20:50:10 - [] ----D C:\ProgramData\Team MediaPortal
O43 - CFD: 28.06.2015 - 17:48:14 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14.07.2009 - 7:08:56 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 14.03.2015 - 20:50:10 - [] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 14.03.2015 - 20:50:11 - [] ----D C:\ProgramData\UDL
O43 - CFD: 14.03.2015 - 20:50:11 - [] ----D C:\ProgramData\VMware
O43 - CFD: 14.03.2015 - 20:50:11 - [] ----D C:\ProgramData\VSO
O43 - CFD: 14.03.2015 - 20:50:11 - [] ----D C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 25.06.2013 - 23:06:35 - [0] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 14.03.2015 - 20:50:11 - [] ----D C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA}
O43 - CFD: 14.03.2015 - 20:50:11 - [] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 14.03.2015 - 20:49:40 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C
O43 - CFD: 14.03.2015 - 20:49:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
O43 - CFD: 14.03.2015 - 20:49:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4t Tray Minimizer
O43 - CFD: 14.03.2015 - 20:49:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 14.03.2015 - 20:49:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 9.0 Sprint
O43 - CFD: 16.03.2015 - 14:01:01 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14.03.2015 - 20:49:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ACD Systems
O43 - CFD: 14.03.2015 - 20:49:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acunetix Web Vulnerability Scanner 8
O43 - CFD: 14.03.2015 - 20:49:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AdFender
O43 - CFD: 14.07.2009 - 6:57:13 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27.05.2015 - 10:10:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 64-bit fixes
O43 - CFD: 14.03.2015 - 20:49:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnVir Task Manager
O43 - CFD: 14.03.2015 - 20:49:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\APC
O43 - CFD: 14.03.2015 - 20:49:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASCOMP Software
O43 - CFD: 14.03.2015 - 20:49:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 14.03.2015 - 20:49:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bullzip
O43 - CFD: 14.03.2015 - 20:49:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Menu for Office
O43 - CFD: 27.05.2015 - 13:27:03 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
O43 - CFD: 14.03.2015 - 20:49:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 14.03.2015 - 20:49:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crystal TV
O43 - CFD: 19.03.2015 - 9:27:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
O43 - CFD: 21.04.2015 - 21:08:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daum
O43 - CFD: 14.03.2015 - 20:49:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Daum PotPlayer x64
O43 - CFD: 14.03.2015 - 20:49:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
O43 - CFD: 14.03.2015 - 20:49:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DjVuLibre
O43 - CFD: 14.03.2015 - 20:49:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
O43 - CFD: 14.03.2015 - 20:49:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 14.03.2015 - 20:49:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
O43 - CFD: 14.03.2015 - 20:49:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Explorer Toolbar Editor
O43 - CFD: 14.03.2015 - 20:49:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eyeball Chat
O43 - CFD: 14.03.2015 - 20:49:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fake Webcam 7.3
O43 - CFD: 14.03.2015 - 20:49:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow x64
O43 - CFD: 14.03.2015 - 20:49:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FormMax Filler
O43 - CFD: 14.03.2015 - 20:49:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Folder Hider
O43 - CFD: 14.03.2015 - 20:49:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FVD Suite IE Plugin
O43 - CFD: 14.03.2015 - 20:37:53 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14.03.2015 - 20:49:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geotag Security
O43 - CFD: 24.06.2015 - 10:32:12 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 14.03.2015 - 20:49:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\H.264 Encoder
O43 - CFD: 17.04.2015 - 21:27:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
O43 - CFD: 14.03.2015 - 20:49:47 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 14.03.2015 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IR Server Suite
O43 - CFD: 14.03.2015 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 14.03.2015 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K!TV
O43 - CFD: 14.03.2015 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Meleon
O43 - CFD: 14.03.2015 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kazoo Player
O43 - CFD: 14.03.2015 - 20:49:48 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lunascape6
O43 - CFD: 13.05.2015 - 8:04:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
O43 - CFD: 14.07.2009 - 6:57:09 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27.06.2015 - 16:06:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 14.03.2015 - 20:49:49 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Masters ITC
O43 - CFD: 14.03.2015 - 20:49:49 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxTV
O43 - CFD: 14.03.2015 - 20:49:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MDAPI_Plus
O43 - CFD: 14.03.2015 - 20:49:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 13.05.2015 - 8:26:22 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 14.03.2015 - 20:49:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 14.03.2015 - 20:49:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mindscape
O43 - CFD: 14.03.2015 - 20:49:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Monkey's Audio
O43 - CFD: 17.03.2015 - 1:14:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
O43 - CFD: 14.03.2015 - 20:49:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 14.03.2015 - 20:49:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Ultra Edition
O43 - CFD: 14.03.2015 - 20:49:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Office Tab
O43 - CFD: 14.03.2015 - 20:49:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ooVoo
O43 - CFD: 14.03.2015 - 20:49:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
O43 - CFD: 14.03.2015 - 20:49:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pamela
O43 - CFD: 14.03.2015 - 20:49:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Parom.TV
O43 - CFD: 14.03.2015 - 20:49:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect
O43 - CFD: 14.03.2015 - 21:00:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 14.03.2015 - 20:49:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Philips SPC 900NC PC Camera
O43 - CFD: 14.03.2015 - 20:49:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PIMOne
O43 - CFD: 14.03.2015 - 20:49:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProgDVB
O43 - CFD: 14.03.2015 - 20:49:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 14.03.2015 - 20:49:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reg Organizer
O43 - CFD: 14.03.2015 - 20:49:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roadkil.Net
O43 - CFD: 14.03.2015 - 20:49:56 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\rue des йcoles
O43 - CFD: 14.03.2015 - 20:49:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rumote
O43 - CFD: 14.03.2015 - 20:49:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RunMe
O43 - CFD: 14.03.2015 - 20:49:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
O43 - CFD: 14.03.2015 - 20:49:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scan Tailor
O43 - CFD: 10.05.2015 - 22:07:29 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scan2PDF
O43 - CFD: 14.03.2015 - 20:49:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware
O43 - CFD: 14.03.2015 - 20:49:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 14.03.2015 - 20:49:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers
O43 - CFD: 14.03.2015 - 20:49:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SolidDocuments
O43 - CFD: 14.03.2015 - 20:49:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
O43 - CFD: 14.03.2015 - 20:49:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
O43 - CFD: 17.04.2015 - 21:27:55 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 14.03.2015 - 20:49:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamingStar
O43 - CFD: 14.03.2015 - 20:49:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport
O43 - CFD: 23.05.2015 - 0:17:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
O43 - CFD: 12.04.2011 - 11:27:52 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 14.03.2015 - 20:49:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teleport Ultra
O43 - CFD: 14.03.2015 - 20:50:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TELL ME MORE SI PLUS
O43 - CFD: 14.03.2015 - 20:50:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
O43 - CFD: 14.03.2015 - 20:50:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Tool
O43 - CFD: 14.03.2015 - 20:50:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 14.03.2015 - 20:50:01 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 14.03.2015 - 20:50:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 14.03.2015 - 20:50:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 14.03.2015 - 20:50:01 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zattoo4
O43 - CFD: 28.06.2015 - 0:05:00 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 06.05.2015 - 13:49:52 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\.ACEStream
O43 - CFD: 14.03.2015 - 21:03:29 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\.Torrent Stream
O43 - CFD: 14.03.2015 - 21:03:29 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\4t Niagara Software
O43 - CFD: 30.07.2013 - 0:48:46 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\4Team
O43 - CFD: 04.04.2015 - 22:23:17 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\8pecxstudios
O43 - CFD: 14.03.2015 - 21:03:29 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ABBYY
O43 - CFD: 14.03.2015 - 21:03:29 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\AC3Filter
O43 - CFD: 14.03.2015 - 21:03:29 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ACD Systems
O43 - CFD: 14.03.2015 - 21:03:29 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ACD Systems International Inc
O43 - CFD: 14.03.2015 - 21:03:38 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ACEStream
O43 - CFD: 14.03.2015 - 21:03:38 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\AceWebExtension
O43 - CFD: 27.05.2015 - 9:43:25 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Adobe
O43 - CFD: 14.03.2015 - 21:03:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Ahead
O43 - CFD: 14.03.2015 - 21:03:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Alp-Software
O43 - CFD: 14.03.2015 - 21:03:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\App Launcher Gadget
O43 - CFD: 14.03.2015 - 21:03:51 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Apple Computer
O43 - CFD: 14.03.2015 - 21:03:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\APP_NAME_NON_STRING
O43 - CFD: 14.03.2015 - 21:03:51 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ArcSoft
O43 - CFD: 14.03.2015 - 21:03:51 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ASCOMP Software
O43 - CFD: 14.03.2015 - 21:03:53 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\AtslegSoft
O43 - CFD: 14.03.2015 - 21:03:53 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Auslogics
O43 - CFD: 02.03.2014 - 2:44:42 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\AutoUpdate
O43 - CFD: 14.03.2015 - 21:03:53 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Avant Profiles
O43 - CFD: 14.03.2015 - 21:03:53 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Avery
O43 - CFD: 14.03.2015 - 21:04:21 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\AVS4YOU
O43 - CFD: 14.03.2015 - 21:04:21 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\BerezaTV
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\BExplorer
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\blue ridge networks
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\BSplayer
O43 - CFD: 15.06.2015 - 22:58:00 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Camfrog
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Camfrog Web
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Canneverbe Limited
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ChemTable Software
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\com.zoosk.Desktop
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Comodo
O43 - CFD: 14.03.2015 - 21:04:22 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\CrystalIdea Software
O43 - CFD: 14.03.2015 - 21:04:23 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\CrystalTV
O43 - CFD: 14.03.2015 - 21:04:23 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\DBC2F6FD-3140-41E0-A2A1-D6BAB77D5E21__F893F7CA-8278-41DF-A76F-CAF0437A90CD__
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\DivX
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\DonationCoder
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Dropbox
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\DScaler4
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\dvdcss
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Easy Image Modifier
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Epson
O43 - CFD: 01.06.2015 - 10:32:11 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\FireShot
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Foxit Software
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\FreshDiagnose
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\FVDIEPlugin
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Geek Uninstaller
O43 - CFD: 26.06.2015 - 11:34:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\GG
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\goalbit
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Google
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Haihaisoft PDF Reader
O43 - CFD: 14.03.2015 - 21:04:24 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\HTML Executable
O43 - CFD: 08.05.2015 - 1:27:41 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ICQ-Profile
O43 - CFD: 17.04.2015 - 11:36:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ICQM
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ID3 renamer
O43 - CFD: 15.03.2015 - 21:48:31 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Identities
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ImgBurn
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Innovative Solutions
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Insoft LLC
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\InstallShield
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\IObit
O43 - CFD: 25.11.2012 - 23:47:25 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\IP-TV Player
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\IRISPen
O43 - CFD: 14.03.2015 - 21:04:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\IrisPen6
O43 - CFD: 14.03.2015 - 21:04:43 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\K-Meleon
O43 - CFD: 07.05.2015 - 11:58:13 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Kartina.TV
O43 - CFD: 14.03.2015 - 21:04:58 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\KastorStreamRecorder
O43 - CFD: 14.03.2015 - 21:04:58 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\KC Softwares
O43 - CFD: 14.03.2015 - 21:04:58 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\KillProcess
O43 - CFD: 14.03.2015 - 21:04:58 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\LavasoftStatistics
O43 - CFD: 14.03.2015 - 21:04:58 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\livestreamer
O43 - CFD: 14.03.2015 - 21:04:58 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Lunascape
O43 - CFD: 14.03.2015 - 21:05:05 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Macromedia
O43 - CFD: 14.03.2015 - 21:05:06 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Makayama
O43 - CFD: 23.04.2014 - 17:40:49 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\Malwarebytes
O43 - CFD: 14.03.2015 - 21:05:06 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ManyCam
O43 - CFD: 14.03.2015 - 21:05:06 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Marine Aquarium 3
O43 - CFD: 14.03.2015 - 21:05:06 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Maxthon3
O43 - CFD: 14.03.2015 - 21:05:06 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\MaxTV Technologies
O43 - CFD: 12.04.2011 - 11:27:52 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\Media Center Programs
O43 - CFD: 14.03.2015 - 21:32:22 - [] -S--D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft
O43 - CFD: 14.03.2015 - 21:05:16 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\MiniDm
O43 - CFD: 17.03.2015 - 22:48:21 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Mozilla
O43 - CFD: 16.05.2015 - 0:41:49 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Mp3tag
O43 - CFD: 14.03.2015 - 21:05:39 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Nero
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Notepad++
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Nuance
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\NVIDIA
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Obnovi Soft
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Octoshape
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\OfficeTab
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Offline Explorer
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ooVoo Details
O43 - CFD: 10.04.2015 - 20:19:09 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\OpenFM
O43 - CFD: 14.03.2015 - 21:05:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Opera
O43 - CFD: 14.03.2015 - 21:05:43 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Opera Software
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Paltalk
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Pamela
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\PDF Architect
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\PDF Software
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\PDF Writer
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Pistonsoft
O43 - CFD: 21.04.2015 - 21:09:09 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\PotPlayer
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\PotPlayerMini
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\PotPlayerMini64
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Pouchin TV Mod
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ProcessLasso
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ProductData
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\QIP
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\RayV
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Resort Labs
O43 - CFD: 14.03.2015 - 21:09:28 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Samsung
O43 - CFD: 10.05.2015 - 22:14:26 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Scan2PDF
O43 - CFD: 31.08.2013 - 21:19:39 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\Simple Star
O43 - CFD: 14.03.2015 - 21:09:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\SimpleTV V03
O43 - CFD: 28.06.2015 - 16:44:02 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Skype
O43 - CFD: 14.03.2015 - 21:09:43 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Softland
O43 - CFD: 14.03.2015 - 21:09:43 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Softplicity
O43 - CFD: 27.05.2015 - 9:19:40 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\SolidDocuments
O43 - CFD: 14.03.2015 - 21:09:43 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Stardock
O43 - CFD: 13.10.2014 - 21:50:43 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\streamripper
O43 - CFD: 14.03.2015 - 21:09:44 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Template
O43 - CFD: 14.03.2015 - 21:09:44 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\TeraCopy
O43 - CFD: 14.03.2015 - 21:09:44 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\To the Moon - Freebird Games
O43 - CFD: 14.03.2015 - 21:09:44 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\TorrentStream
O43 - CFD: 14.03.2015 - 21:09:44 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Trillian
O43 - CFD: 14.03.2015 - 21:09:45 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\TuneUp Software
O43 - CFD: 14.03.2015 - 21:09:45 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\TweakNow RegCleaner 2011
O43 - CFD: 14.03.2015 - 21:09:45 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\UDC Profiles
O43 - CFD: 14.03.2015 - 21:09:45 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\vcards
O43 - CFD: 23.06.2015 - 19:38:42 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\vlc
O43 - CFD: 14.03.2015 - 21:09:46 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\VMware
O43 - CFD: 14.03.2015 - 21:09:47 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\VOS
O43 - CFD: 27.12.2013 - 22:24:18 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\Windows Live Writer
O43 - CFD: 14.03.2015 - 21:09:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Windows SideBar
O43 - CFD: 14.03.2015 - 21:09:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\WinRAR
O43 - CFD: 14.03.2015 - 21:09:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Wireshark
O43 - CFD: 14.03.2015 - 21:09:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Wise Care 365
O43 - CFD: 14.03.2015 - 21:09:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Wise Registry Cleaner
O43 - CFD: 14.03.2015 - 21:09:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Wise Uninstaller
O43 - CFD: 14.03.2015 - 21:09:48 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Wondershare
O43 - CFD: 14.03.2015 - 21:09:48 - [] -SH-D C:\Users\GIUXGIUX\AppData\Roaming\wyUpdate AU
O43 - CFD: 14.03.2015 - 21:10:06 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\XBMC
O43 - CFD: 28.06.2015 - 17:53:36 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 14.03.2015 - 21:00:54 - [] ----D C:\Users\GIUXGIUX\AppData\Local\4kdownload.com
O43 - CFD: 04.04.2015 - 22:23:17 - [] ----D C:\Users\GIUXGIUX\AppData\Local\8pecxstudios
O43 - CFD: 14.03.2015 - 21:00:55 - [] ----D C:\Users\GIUXGIUX\AppData\Local\ABBYY
O43 - CFD: 14.03.2015 - 21:00:56 - [] ----D C:\Users\GIUXGIUX\AppData\Local\ACD Systems
O43 - CFD: 14.03.2015 - 21:00:57 - [] ----D C:\Users\GIUXGIUX\AppData\Local\AdFender
O43 - CFD: 02.06.2015 - 22:15:29 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Adobe
O43 - CFD: 14.03.2015 - 21:00:57 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Ahead
O43 - CFD: 14.03.2015 - 21:00:57 - [] ----D C:\Users\GIUXGIUX\AppData\Local\AlbumArtDownloader
O43 - CFD: 14.03.2015 - 21:00:57 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Anolis
O43 - CFD: 14.03.2015 - 21:00:57 - [] ----D C:\Users\GIUXGIUX\AppData\Local\AnVir
O43 - CFD: 05.04.2015 - 23:16:51 - [] ----D C:\Users\GIUXGIUX\AppData\Local\AOL
O43 - CFD: 14.03.2015 - 21:00:57 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Apple
O43 - CFD: 14.03.2015 - 20:38:13 - [] -SH-D C:\Users\GIUXGIUX\AppData\Local\Application Data
O43 - CFD: 27.05.2015 - 9:56:34 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Apps
O43 - CFD: 14.03.2015 - 21:00:57 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Aviator
O43 - CFD: 14.03.2015 - 21:01:14 - [] ----D C:\Users\GIUXGIUX\AppData\Local\BuildAGadget Content
O43 - CFD: 16.06.2015 - 8:30:01 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Camfrog
O43 - CFD: 14.03.2015 - 21:01:14 - [] ----D C:\Users\GIUXGIUX\AppData\Local\ChemTable Software
O43 - CFD: 14.03.2015 - 21:01:14 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Chromium
O43 - CFD: 14.03.2015 - 21:01:14 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Clover
O43 - CFD: 01.05.2015 - 23:39:17 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Comodo
O43 - CFD: 14.03.2015 - 21:01:15 - [] ----D C:\Users\GIUXGIUX\AppData\Local\CrashDumps
O43 - CFD: 14.03.2015 - 21:01:15 - [] ----D C:\Users\GIUXGIUX\AppData\Local\CrashRpt
O43 - CFD: 14.03.2015 - 21:01:15 - [] ----D C:\Users\GIUXGIUX\AppData\Local\CustomStamp
O43 - CFD: 14.03.2015 - 21:01:16 - [] ----D C:\Users\GIUXGIUX\AppData\Local\CutePDF
O43 - CFD: 24.06.2015 - 12:56:45 - [] ----D C:\Users\GIUXGIUX\AppData\Local\CutePDF Writer
O43 - CFD: 04.06.2015 - 11:57:39 - [] ----D C:\Users\GIUXGIUX\AppData\Local\CutePDF_Filler
O43 - CFD: 24.06.2015 - 12:57:19 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\CutePDF_Pro
O43 - CFD: 14.03.2015 - 21:01:16 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Daum
O43 - CFD: 14.03.2015 - 21:01:16 - [] ----D C:\Users\GIUXGIUX\AppData\Local\DDMSettings
O43 - CFD: 10.06.2015 - 8:57:37 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Diagnostics
O43 - CFD: 13.05.2015 - 12:52:28 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Downloaded Installations
O43 - CFD: 28.12.2014 - 12:57:49 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\ElevatedDiagnostics
O43 - CFD: 10.06.2015 - 19:10:38 - [0] -SH-D C:\Users\GIUXGIUX\AppData\Local\EmieBrowserModeList
O43 - CFD: 10.06.2015 - 19:10:38 - [0] -SH-D C:\Users\GIUXGIUX\AppData\Local\EmieSiteList
O43 - CFD: 10.06.2015 - 19:10:38 - [0] -SH-D C:\Users\GIUXGIUX\AppData\Local\EmieUserList
O43 - CFD: 14.03.2015 - 21:01:16 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Evernote
O43 - CFD: 14.03.2015 - 21:01:17 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Facebook
O43 - CFD: 14.03.2015 - 21:01:17 - [] ----D C:\Users\GIUXGIUX\AppData\Local\FixItCenter
O43 - CFD: 12.12.2012 - 15:14:05 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\Folderico
O43 - CFD: 14.03.2015 - 21:01:18 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Geotag Security
O43 - CFD: 06.05.2015 - 13:33:27 - [] ----D C:\Users\GIUXGIUX\AppData\Local\GG
O43 - CFD: 14.03.2015 - 21:01:19 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Google
O43 - CFD: 14.03.2015 - 21:01:19 - [] ----D C:\Users\GIUXGIUX\AppData\Local\gtk-2.0
O43 - CFD: 12.06.2015 - 13:17:36 - [] ----D C:\Users\GIUXGIUX\AppData\Local\GWX
O43 - CFD: 14.03.2015 - 20:38:13 - [] -SH-D C:\Users\GIUXGIUX\AppData\Local\Historique
O43 - CFD: 14.03.2015 - 21:01:19 - [] ----D C:\Users\GIUXGIUX\AppData\Local\iMule
O43 - CFD: 14.03.2015 - 21:01:19 - [] ----D C:\Users\GIUXGIUX\AppData\Local\infidele-messenger
O43 - CFD: 14.03.2015 - 21:01:20 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Innovative Solutions
O43 - CFD: 14.03.2015 - 21:01:20 - [] ----D C:\Users\GIUXGIUX\AppData\Local\IsolatedStorage
O43 - CFD: 14.03.2015 - 21:01:20 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Jiri_Cincura_-_x2develop
O43 - CFD: 14.03.2015 - 21:01:20 - [] ----D C:\Users\GIUXGIUX\AppData\Local\K-Meleon
O43 - CFD: 21.07.2014 - 20:06:30 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\Kakao
O43 - CFD: 07.05.2015 - 1:24:59 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Kartina.TV
O43 - CFD: 14.03.2015 - 21:01:22 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Macromedia
O43 - CFD: 01.04.2015 - 12:31:48 - [] ----D C:\Users\GIUXGIUX\AppData\Local\ManyCam
O43 - CFD: 14.03.2015 - 21:01:22 - [] ----D C:\Users\GIUXGIUX\AppData\Local\MaxTV Technologies
O43 - CFD: 14.03.2015 - 21:01:22 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Mgeni
O43 - CFD: 24.05.2015 - 16:56:08 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Microsoft
O43 - CFD: 14.03.2015 - 21:01:36 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Microsoft Games
O43 - CFD: 14.03.2015 - 21:01:36 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Microsoft Help
O43 - CFD: 14.03.2015 - 21:01:36 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Moonchild Productions
O43 - CFD: 17.03.2015 - 22:48:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Mozilla
O43 - CFD: 14.03.2015 - 21:01:38 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Mydownloadwin_security
O43 - CFD: 14.03.2015 - 21:01:38 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Octoshape
O43 - CFD: 10.04.2015 - 20:19:09 - [] ----D C:\Users\GIUXGIUX\AppData\Local\OpenFM
O43 - CFD: 14.03.2015 - 21:01:38 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Opera
O43 - CFD: 14.03.2015 - 21:02:20 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Opera Software
O43 - CFD: 14.03.2015 - 21:02:20 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Packages
O43 - CFD: 23.03.2015 - 13:58:41 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Paint.NET
O43 - CFD: 14.03.2015 - 21:02:20 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Parom.TV
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\PDF Writer
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\PDF24
O43 - CFD: 29.01.2015 - 20:52:31 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\PDFCreator
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Pinnacle Systems GmbH
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Programs
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\RNT
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\roulettechat-hot
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Samsung
O43 - CFD: 05.06.2013 - 23:16:49 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\Secunia PSI
O43 - CFD: 14.03.2015 - 21:02:21 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Skype
O43 - CFD: 14.03.2015 - 21:02:24 - [] ----D C:\Users\GIUXGIUX\AppData\Local\SlimWare Utilities Inc
O43 - CFD: 14.03.2015 - 21:02:38 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Soft4Boost
O43 - CFD: 14.03.2015 - 21:02:38 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Spoon
O43 - CFD: 14.03.2015 - 21:02:38 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Stardock
O43 - CFD: 28.06.2015 - 17:50:18 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Temp
O43 - CFD: 14.03.2015 - 20:38:13 - [] -SH-D C:\Users\GIUXGIUX\AppData\Local\Temporary Internet Files
O43 - CFD: 29.03.2015 - 19:57:43 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\uTorrent =>P2P.µTorrent
O43 - CFD: 14.03.2015 - 21:02:41 - [] ----D C:\Users\GIUXGIUX\AppData\Local\VirtualStore
O43 - CFD: 14.03.2015 - 21:02:41 - [] ----D C:\Users\GIUXGIUX\AppData\Local\VMware
O43 - CFD: 20.06.2012 - 3:11:31 - [0] ----D C:\Users\GIUXGIUX\AppData\Local\VS Revo Group
O43 - CFD: 19.05.2015 - 19:40:59 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Windows Live
O43 - CFD: 14.03.2015 - 21:02:41 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Windows Live Writer
O43 - CFD: 14.03.2015 - 21:02:41 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Wondershare
O43 - CFD: 14.03.2015 - 21:02:41 - [] ----D C:\Users\GIUXGIUX\AppData\Local\www.obnovi-soft.ru
O43 - CFD: 14.03.2015 - 21:02:41 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Xenocode
O43 - CFD: 14.03.2015 - 21:02:50 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Xpom
O43 - CFD: 14.03.2015 - 21:02:51 - [] ----D C:\Users\GIUXGIUX\AppData\Local\Zattoo
O43 - CFD: 14.03.2015 - 21:05:14 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 11
O43 - CFD: 14.07.2009 - 6:54:32 - [] R---D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14.03.2015 - 21:05:14 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
O43 - CFD: 15.03.2015 - 17:25:42 - [] R---D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 05.04.2015 - 23:16:44 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AIM for Windows
O43 - CFD: 14.03.2015 - 21:05:14 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnVir Task Manager
O43 - CFD: 14.03.2015 - 21:24:56 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14.03.2015 - 21:05:14 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 17.04.2015 - 11:33:33 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
O43 - CFD: 14.03.2015 - 21:05:14 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kartina.TV
O43 - CFD: 14.07.2009 - 6:49:38 - [] R---D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 14.03.2015 - 21:05:15 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Parom.TV
O43 - CFD: 13.01.2015 - 2:32:40 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Polyglossum
O43 - CFD: 08.09.2014 - 13:03:27 - [0] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
O43 - CFD: 15.03.2015 - 17:25:42 - [] R---D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 14.03.2015 - 21:05:15 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 14.03.2015 - 21:05:15 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 14.03.2015 - 21:05:16 - [] ----D C:\Users\GIUXGIUX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
~ Program Folder: 629 Scanned in 00mn 01s



---\\ Last modified or created files under Windows and System32 (O44)
O44 - LFC:[MD5.A4DE811C6150DA7D8CE567EEE870C8FA] - 15.06.2015 - 9:28:24 ---A- . (...) -- C:\Windows\MEMORY.DMP [607570361]
O44 - LFC:[MD5.0A7DF4B224BB161ED0B2959BE94F01C1] - 24.06.2015 - 12:01:11 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1669776]
O44 - LFC:[MD5.7AE6EEDEB23FDE5E77E1050F6E119B7B] - 24.06.2015 - 12:01:11 ---A- . (...) -- C:\Windows\System32\perfc009.dat [122170]
O44 - LFC:[MD5.3B8CD1C91FA1E0D1D0C20C66E0348363] - 24.06.2015 - 12:01:11 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [149606]
O44 - LFC:[MD5.D6863C7F978119E8B332B5CB783CCEBF] - 24.06.2015 - 12:01:11 ---A- . (...) -- C:\Windows\System32\perfh009.dat [654298]
O44 - LFC:[MD5.982F7DC5FAC3A5F31BAB73ACBA9425A4] - 24.06.2015 - 12:01:11 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [737678]
O44 - LFC:[MD5.4A4743CEE1AB0F0B630407CD02002D40] - 27.06.2015 - 22:45:26 ---A- . (...) -- C:\Windows\PFRO.log [47166]
O44 - LFC:[MD5.E9CD058C79EA15B4AA93E259FA713B07] - 28.06.2015 - 16:17:42 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [136408]
O44 - LFC:[MD5.DC7A696F64E0993B34353E589D19F604] - 28.06.2015 - 16:17:57 ---A- . (...) -- C:\Windows\ntbtlog.txt [4747076]
O44 - LFC:[MD5.D70BDE105A2C2931D825D562311476CC] - 28.06.2015 - 16:46:46 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.6E04FB19904E3D3712342D42DBE997A0] - 28.06.2015 - 16:46:56 ---A- . (...) -- C:\Windows\setupact.log [6404455]
O44 - LFC:[MD5.11B7DAB4A496D5CD55FD35114CAC4ED3] - 28.06.2015 - 16:53:16 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1746760]
~ Files: 12 Scanned in 00mn 14s



---\\ Local Security Authority-LSA Deny (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Safe Boot Control (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.No owner - ffdshow VFW.) -- C:\Windows\System32\ff_vfw.dll
O52 - TDSD: \Drivers32\"VIDC.LAGS"="lagarith.dll" . (.No owner - Lagarith.) -- C:\Windows\System32\lagarith.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video encoder" . (.No owner - ffdshow VFW.) -- C:\Windows\System32\ff_vfw.dll
O52 - TDSD: \drivers.desc\"lagarith.dll"="Lagarith lossless codec [LAGS]" . (.No owner - Lagarith.) -- C:\Windows\System32\lagarith.dll
~ TDSD: 6 Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "DisableRegistryTools"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDrives"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDrives"=0
~ MWPE Keys: 5 Scanned in 00mn 00s



---\\ System Drivers List (SDL) (O58)
O58 - SDL:09.12.2012 - 20:49:32 ---A- . (.NXP Semiconductors Germany GmbH - 3xHybrid.) -- C:\Windows\System32\Drivers\3xHybr64.sys [1448064]
O58 - SDL:14.07.2009 - 2:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:14.07.2009 - 2:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536]
O58 - SDL:14.07.2009 - 2:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864]
O58 - SDL:14.07.2009 - 2:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440]
O58 - SDL:11.03.2011 - 7:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904]
O58 - SDL:14.07.2009 - 2:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128]
O58 - SDL:11.03.2011 - 7:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008]
O58 - SDL:10.01.2011 - 17:16:08 ---A- . (...) -- C:\Windows\System32\Drivers\AppleCharger.sys [21104]
O58 - SDL:14.07.2009 - 2:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632]
O58 - SDL:14.07.2009 - 2:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856]
O58 - SDL:10.06.2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [270848]
O58 - SDL:10.06.2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432]
O58 - SDL:10.06.2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704]
O58 - SDL:14.07.2009 - 2:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720]
O58 - SDL:10.06.2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104]
O58 - SDL:10.06.2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976]
O58 - SDL:10.06.2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720]
O58 - SDL:10.06.2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480]
O58 - SDL:23.04.2007 - 14:44:12 ---A- . (...) -- C:\Windows\System32\Drivers\camdrv42.sys [1533952]
O58 - SDL:30.10.2011 - 13:14:56 ---A- . (.CrystalIdea Software - Uninstall Tool 3 Driver.) -- C:\Windows\System32\Drivers\CisUtMonitor.sys [33360]
O58 - SDL:14.07.2009 - 2:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488]
O58 - SDL:14.07.2009 - 2:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:12.02.2014 - 18:22:00 ---A- . (.Etron Technology Inc - Etron eXtensible Hub Driver..) -- C:\Windows\System32\Drivers\EtronHub3.sys [65408]
O58 - SDL:12.02.2014 - 18:22:00 ---A- . (.Etron Technology Inc - Etron eXtensible Host Controller Driver..) -- C:\Windows\System32\Drivers\EtronXHCI.sys [94208]
O58 - SDL:10.06.2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016]
O58 - SDL:21.08.2012 - 12:01:20 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240]
O58 - SDL:02.12.2012 - 11:03:17 ---A- . (.GFI Software - GFI Boot Time Operations Driver.) -- C:\Windows\System32\Drivers\gfibto.sys [14456]
O58 - SDL:02.11.2009 - 16:47:26 ---A- . (.No owner - WDM NULL filter driver.) -- C:\Windows\System32\Drivers\gMouUsb.sys [14336]
O58 - SDL:27.02.2014 - 18:40:32 ---A- . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\Drivers\hcmon.sys [54464]
O58 - SDL:23.10.2012 - 10:55:46 ---A- . (.Hauppauge Computer Works, Inc. - WinTV-Nova-T-Mini device driver.) -- C:\Windows\System32\Drivers\hcw17b64.sys [78192]
O58 - SDL:06.08.2012 - 11:18:48 ---A- . (.Hauppauge Computer Works, Inc. - WinTV-Nova-T-Mini device driver.) -- C:\Windows\System32\Drivers\hcw17bda.sys [75184]
O58 - SDL:10.06.2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:19.10.2010 - 22:34:26 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [56344]
O58 - SDL:21.11.2010 - 4:23:47 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [78720]
O58 - SDL:11.03.2011 - 7:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496]
O58 - SDL:14.07.2009 - 2:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112]
O58 - SDL:06.03.2015 - 10:02:21 ---A- . (.Kingsoft Corporation - Kingsoft KSAPI Module.) -- C:\Windows\System32\Drivers\ksapi.sys [81768]
O58 - SDL:06.03.2015 - 10:02:21 ---A- . (.Kingsoft Corporation - Kingsoft KSAPI Module.) -- C:\Windows\System32\Drivers\ksapi64.sys [56680]
O58 - SDL:14.07.2009 - 2:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752]
O58 - SDL:14.07.2009 - 2:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560]
O58 - SDL:14.07.2009 - 2:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600]
O58 - SDL:14.07.2009 - 2:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776]
O58 - SDL:29.09.2012 - 20:54:26 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam,3.sys [25928]
O58 - SDL:14.04.2015 - 8:37:42 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]
O58 - SDL:14.04.2015 - 8:37:46 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [107736]
O58 - SDL:28.06.2015 - 16:17:42 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [136408]
O58 - SDL:14.07.2009 - 2:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392]
O58 - SDL:14.07.2009 - 2:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736]
O58 - SDL:14.04.2015 - 8:37:56 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704]
O58 - SDL:14.07.2009 - 2:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264]
O58 - SDL:01.03.2013 - 2:49:12 ---A- . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\Drivers\npf.sys [36600]
O58 - SDL:18.02.2015 - 10:55:54 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 309.08.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [13585736]
O58 - SDL:11.03.2011 - 7:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352]
O58 - SDL:11.03.2011 - 7:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272]
O58 - SDL:10.06.2009 - 21:32:37 ---A- . (.NXP Semiconductors - Ph3xIBxx.) -- C:\Windows\System32\Drivers\Ph3xIB64.sys [1627520]
O58 - SDL:14.07.2009 - 2:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816]
O58 - SDL:14.07.2009 - 2:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592]
O58 - SDL:15.01.2015 - 7:42:24 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt64win7.sys [977624]
O58 - SDL:14.04.2015 - 18:38:14 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [4664792]
O58 - SDL:10.06.2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:14.07.2009 - 1:00:40 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\serial.sys [94208]
O58 - SDL:14.07.2009 - 2:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584]
O58 - SDL:14.07.2009 - 2:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464]
O58 - SDL:20.10.2012 - 8:43:02 ---A- . (.Ray Hinchliffe - System Information Viewer X64 Driver.) -- C:\Windows\System32\Drivers\SIVX64.sys [129856]
O58 - SDL:01.01.2000 - 1:00:00 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_Intel.sys [34544]
O58 - SDL:22.02.2013 - 8:16:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ssadcm.sys [17224]
O58 - SDL:22.02.2013 - 8:16:54 ---A- . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\Drivers\ssadwh.sys [17736]
O58 - SDL:22.01.2014 - 8:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [108800]
O58 - SDL:22.01.2014 - 8:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]
O58 - SDL:22.01.2014 - 8:52:12 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudserd.sys [206080]
O58 - SDL:14.07.2009 - 2:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:20.03.2014 - 10:43:02 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\TeeDriverx64.sys [118272]
O58 - SDL:10.03.2015 - 22:14:33 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [37624]
O58 - SDL:14.07.2009 - 2:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488]
O58 - SDL:29.10.2014 - 15:00:50 ---A- . (.VMware, Inc. - VMware keyboard filter driver (64-bit).) -- C:\Windows\System32\Drivers\VMkbd.sys [33496]
O58 - SDL:29.10.2014 - 15:00:52 ---A- . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\Drivers\vmnetbridge.sys [46160]
O58 - SDL:29.10.2014 - 15:01:14 ---A- . (.VMware, Inc. - VMware network application interface driver (64-bit).) -- C:\Windows\System32\Drivers\vmnetuserif.sys [31448]
O58 - SDL:29.10.2014 - 15:01:42 ---A- . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\Drivers\vmx86.sys [64728]
O58 - SDL:14.07.2009 - 2:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872]
O58 - SDL:08.10.2013 - 18:21:10 ---A- . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\Drivers\vsock.sys [73296]
O58 - SDL:07.03.2015 - 18:43:42 ---A- . (.REALiX(tm) - HWiNFO AMD64 Kernel Driver.) -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528]
O58 - SDL:14.08.2013 - 8:34:04 ---A- . (...) -- C:\Windows\SysWOW64\drivers\vwifikerneldrv.sys [389]
O58 - SDL:23.11.1999 - 8:17:34 ---A- . (...) -- C:\Windows\SysWOW64\dc240u.sys [7808]
O58 - SDL:23.11.1999 - 8:17:36 ---A- . (...) -- C:\Windows\SysWOW64\Digita.sys [65864]
O58 - SDL:05.02.2013 - 9:54:40 ---A- . (...) -- C:\Windows\SysWOW64\FsUsbExDisk.Sys [37344]
~ Drivers: 86 Scanned in 00mn 03s



---\\ Last modified or created user files (O61)
O61 - LFC: 21.06.2015 - 17:56:21 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ooVoo Details\Cache\4144963466_Pic.bin [34250]
O61 - LFC: 22.06.2015 - 17:54:09 ---A- . (.Google Inc..) -- C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\Application\43.0.2357.130\Installer\setup.exe [990024]
O61 - LFC: 22.06.2015 - 17:54:11 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\43.0.2357.130\43.0.2357.130_43.0.2357.124_chrome_updater.exe [1063504]
O61 - LFC: 22.06.2015 - 17:54:11 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Local\Google\Update\Install\{7A560A91-21D3-4035-B97D-AB365508F62D}\43.0.2357.130_43.0.2357.124_chrome_updater.exe [1063504]
O61 - LFC: 23.06.2015 - 17:56:23 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ooVoo Details\Cache\nik.ki_Pic.bin [36440]
O61 - LFC: 23.06.2015 - 17:56:23 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ooVoo Details\Cache\sexijesi_Pic.bin [19836]
O61 - LFC: 24.06.2015 - 17:56:21 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ooVoo Details\Cache\awhfuck234_Pic.bin [68395]
O61 - LFC: 24.06.2015 - 17:57:25 ---A- . (...) -- C:\Users\GIUXGIUX\Downloads\1\ABBYY.FineReader.12.0.101.264.Pro.Portable\ABBYY FineReader 12.0.101.264 Pro EN-RU Portable\%Local AppData%\ABBYY\FineReader\12.00\datafile.bin [991]
O61 - LFC: 24.06.2015 - 17:57:57 ---A- . (.Google Inc..) -- C:\Users\GIUXGIUX\Downloads\2\ChromeSetup.exe [931408]
O61 - LFC: 24.06.2015 - 17:58:11 ---A- . (...) -- C:\Users\GIUXGIUX\Downloads\adguardInstaller.exe [391728]
O61 - LFC: 25.06.2015 - 17:59:12 ---A- . (...) -- C:\Users\GIUXGIUX\Downloads\PortableApps\GoogleChromePortable\Data\profile\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 26.06.2015 - 17:56:23 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\ooVoo Details\Users\hottboy2006\{0188FDE5-3A3B-0000-BCB4-B9F2FC61DCDF}.bin [2568]
O61 - LFC: 27.06.2015 - 17:56:16 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\extensions\staged\printPages2Pdf@reinhold.ripper\libraries\libgcc_s_dw2-1.dll [43008]
O61 - LFC: 27.06.2015 - 17:56:16 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\extensions\staged\printPages2Pdf@reinhold.ripper\libraries\mingwm10.dll [18207]
O61 - LFC: 27.06.2015 - 17:56:19 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\fi77grgz.dev-edition-default\extensions\staged\printPages2Pdf@reinhold.ripper\libraries\wkhtmltox0.dll [8835072]
O61 - LFC: 27.06.2015 - 18:02:48 ---A- . (.Nicolas Coolman.) -- C:\Users\GIUXGIUX\Downloads\ZHPDiag2.exe [6883618] =>.Nicolas Coolman
O61 - LFC: 28.06.2015 - 17:54:10 ---A- . (...) -- C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 28.06.2015 - 18:02:45 ---A- . (...) -- C:\Users\GIUXGIUX\Downloads\Startup Delayer 3.0.363\startup-delayer-v3.0b363.exe [8813312]
~ 63 Fichiers temporaires (Temporary files)
~ 18 Fichiers cookies (Cookies files)
~ Files: 18 Scanned in 08mn 52s



---\\ List all tools cleaner (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ List all legacy services(LALS) (O64)
O64 - Services: CurCS - 10.01.2011 - C:\Windows\System32\DRIVERS\AppleCharger.sys (AppleCharger) .(...) - LEGACY_APPLECHARGER
O64 - Services: CurCS - 02.12.2012 - C:\Windows\System32\drivers\gfibto.sys (gfibto) .(.GFI Software - GFI Boot Time Operations Driver.) - LEGACY_GFIBTO
O64 - Services: CurCS - 27.02.2014 - C:\Windows\system32\drivers\hcmon.sys (hcmon) .(.VMware, Inc. - VMware USB monitor.) - LEGACY_HCMON
O64 - Services: CurCS - 07.03.2015 - C:\Windows\sysWOW64\drivers\HWiNFO64A.sys (HWiNFO32) .(.REALiX(tm) - HWiNFO AMD64 Kernel Driver.) - LEGACY_HWINFO32
O64 - Services: CurCS - 14.04.2015 - C:\Windows\system32\drivers\mbamchameleon.sys (mbamchameleon) .(.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) - LEGACY_MBAMCHAMELEON
O64 - Services: CurCS - 14.04.2015 - C:\Windows\system32\drivers\mbam.sys (MBAMProtector) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 01.03.2013 - C:\Windows\System32\drivers\npf.sys (NPF) .(.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) - LEGACY_NPF
O64 - Services: CurCS - 10.06.2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 29.10.2014 - C:\Windows\system32\drivers\vmx86.sys (vmx86) .(.VMware, Inc. - VMware kernel driver.) - LEGACY_VMX86
O64 - Services: CurCS - 08.10.2013 - C:\Windows\System32\drivers\vsock.sys (vsock) .(.VMware, Inc. - VMware vSockets Service.) - LEGACY_VSOCK
~ Legacy: 81 Scanned in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\GIUXGIUX\AppData\Local\Google\Chrome\Application\chrome.exe
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Start Menu Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\GIUXGIUX\Downloads\PortableApps\GoogleChromePortable\App\Chrome-bin\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (SBI) (O69)
O69 - SBI: prefs.js [GIUXGIUX - blozzve3.default] user_pref("weboftrust.search.ask.display", "Ask.com Web Search");
O69 - SBI: SearchScopes [HKCU] {231CE532-7C50-418F-AAFC-B14AA5118BD8} - (Translate.Ru) - http://rambler.ru
O69 - SBI: SearchScopes [HKCU] {3962B399-706B-4124-B9FC-96C0A305283E} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {BD3F5EC4-8DB2-4576-A099-8E6707BDACE7} - (Антивирусная база Microsoft) - http://www.microsoft.com
~ Keys: Scanned in 00mn 00s



---\\ Search Svchost Services (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [683520]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2553856]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Services: 32 Scanned in 00mn 00s



---\\ Search Particular Root Folder (SPRF) (O84)
[MD5.F1D3FF8443297732862DF21DC4E57262] [SPRF][09.08.2014] (...) -- C:\Users\GIUXGIUX\AppData\Roaming\wklnhst.dat [4]
[MD5.95300BA672A14E3AE6740CB3CB41DB7B] [SPRF][10.03.2015] (.No owner - Aut2Exe.) -- C:\Users\GIUXGIUX\Desktop\adwcleaner_4.112.exe [2171392]
[MD5.CFE1AF5EE9CD57726695DC11941C0FB1] [SPRF][20.04.2011] (...) -- C:\Windows\Downloaded Program Files\WebInstallRunner.dll [43008]
~ Files: 3 Scanned in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "UDP Query User{A1262EFB-21DF-4EF3-B28D-AFAC5BC49423}E:\telechargements\logiciels\portables\загрузка\utorrent portable\app\utorrent\utorrent.exe" | In - Public - P17 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- E:\telechargements\logiciels\portables\загрузка\utorrent portable\app\utorrent\utorrent.exe =>P2P.BitTorrent
O87 - FAEL: "TCP Query User{684C0968-BAD5-4925-A14F-B447D7ABFC88}E:\telechargements\logiciels\portables\загрузка\utorrent portable\app\utorrent\utorrent.exe" | In - Public - P6 - TRUE | .(.BitTorrent, Inc. - µTorrent.) -- E:\telechargements\logiciels\portables\загрузка\utorrent portable\app\utorrent\utorrent.exe =>P2P.BitTorrent
~ Firewall: 2 Scanned in 00mn 18s



---\\ General States of Services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 24.06.2015 268464 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 06.04.2010 31272 | (AppleChargerSrv) . (...) - C:\Windows\System32\AppleChargerSrv.exe
SS - | Auto 20.10.2014 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 20.10.2014 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 14.08.2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 14.11.2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
SS - | Demand 31.01.2014 887232 | (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
SS - | Disabled 14.04.2015 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
SS - | Auto 14.04.2015 1080120 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
SS - | Demand 26.06.2015 149672 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 09.10.2006 724992 | (NBService) . (.Nero AG.) - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
SS - | Auto 08.04.2013 799280 | (PDF Architect Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe
SS - | Demand 01.03.2013 118520 | (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe
SS - | Demand 04.11.2008 68760 | (SandraAgentSrv) . (.SiSoftware.) - C:\Program Files\SiSoftware\SiSoftware Sandra Business 2013\RpcAgentSrv.exe
SS - | Auto 18.02.2015 315488 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 14.07.2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SS - | Demand 22.07.1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14.05.2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SR - | Auto 15.12.2011 917640 | (AcuWVSSchedulerv8) . (...) - C:\Program Files (x86)\Acunetix\Web Vulnerability Scanner 8\WVSScheduler.exe
SR - | Auto 06.03.2015 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 24.01.2012 21880 | (APC Data Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
SR - | Auto 24.01.2012 705912 | (APC UPS Service) . (.Schneider Electric.) - C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
SR - | Auto 12.02.2014 43336 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30.08.2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 03.10.2014 1032680 | (camfrog_update_service) . (.Camshare Inc..) - C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe
SR - | Auto 21.02.2012 151648 | (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe
SR - | Auto 09.04.2015 586360 | (HauppaugeTVServer) . (.Hauppauge Computer Works.) - C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
SR - | Auto 10.04.2015 2823496 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SR - | Auto 30.04.2015 23816 | (MsMpSvc) . (.Microsoft Corporation.) - c:\Program Files\Microsoft Security Client\MsMpEng.exe
SR - | Auto 18.08.2009 7599616 | (MySQL) . (...) - C:\Program Files\MySQL\MySQL Server 5.1\bin\mysqld.exe
SR - | Auto 31.01.2015 878400 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 19.02.2013 1259296 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SR - | Auto 08.04.2013 1320496 | (PDF Architect Helper Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\HelperService.exe
SR - | Auto 17.01.2013 8704 | (RumoteVMCService) . (.Rumote.) - C:\Program Files (x86)\Rumote\RumoteVMC\RumoteMCEService.exe
SR - | Auto 10.09.2012 193392 | (SCPDFReadSpool) . (.Solid Documents, LLC.) - C:\Program Files (x86)\SolidDocuments\Solid Converter PDF\SCPDF\SolidConverterPDFServicex64.exe
SR - | Auto 10.05.2005 82944 | (SLService) . (...) - C:\Windows\System32\slmdmsr.exe
SR - | Demand 20.12.2014 820960 | (SystemExplorerHelpService) . (.Mister Group.) - C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
SR - | Auto 29.10.2014 86744 | (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
SR - | Auto 27.02.2014 906432 | (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
SR - | Auto 14.07.2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 08.09.2014 97280 | (_wfcs) . (.BiniSoft.org.) - C:\Program Files\Windows Firewall Control\wfcs.exe
~ Services: Scanned in 00mn 10s



---\\ Search Master Boot Record Infection (MBR)(O80)
Run by GIUXGIUX at 28.06.2015 18:04:40
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Search Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by GIUXGIUX at 28.06.2015 18:04:42
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13008 - (16.06.2015)
Clés trouvées (Keys found) : 13
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 3
Fichiers trouvés (Files found) : 1

[HKLM\Software\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}] =>PUP.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}] =>PUP.Conduit
[HKLM\Software\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}] =>PUP.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}] =>PUP.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}] =>Toolbar.AOL
[HKLM\Software\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}] =>Toolbar.AOL
[HKLM\Software\Wow6432Node\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}] =>Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUIBrowser] =>Toolbar.AOL
[HKLM\Software\Classes\dnUpdate] =>Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUIBrowser.1] =>Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUpdController] =>Toolbar.AOL
[HKLM\Software\Classes\dnUpdater.DownloadUpdController.1] =>Toolbar.AOL
C:\Users\GIUXGIUX\AppData\Roaming\Mozilla\Firefox\Profiles\blozzve3.default\extensions\pavel.sherbakov@gmail.com =>PUP.QuickShare^
C:\Users\GIUXGIUX\AppData\Local\uTorrent =>P2P.µTorrent^
C:\Program Files (x86)\Common Files\Software Update Utility =>Toolbar.AOL
[HKCU\Software\BitTorrent] =>P2P.BitTorrent^
~ Additionnel Scan: 384082 Items scanned in 00mn 24s



---\\ Additional information about modules
~ http://www.nicolascoolman.fr/g2-google-chrome-extensions/ =>.Google Chrome, Start,Search,Extensions (G0,G1,G2)
~ http://www.nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://www.nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects (O2)
~ http://www.nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer toolbars (O3)
~ http://www.nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Auto loading programs from Registry and folders (O4)
~ AMI: 5 Scanned in 00mn 00s



---\\ Summary of the detections found on your workstation
http://www.nicolascoolman.fr/pup-quickshare =>PUP.QuickShare
http://www.nicolascoolman.fr/32720552-pup-speeddial =>PUP.SpeedDial
http://www.nicolascoolman.fr/blog/ =>Toolbar.Agent
http://www.nicolascoolman.fr/blog/ =>PUP.Conduit
http://www.nicolascoolman.fr/blog/ =>Toolbar.AOL
~ MSI: 5 link(s) detected in 00mn 00s



End of the scan (2434 lines in 12mn 32s)(0.10)