cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.17.92 By Nicolas Coolman (2015/07/17)
~ Run by fidji (Administrator) (2015/07/18 10:08:57)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\fidji\Desktop\ZHPDiag.txt
~ Report: C:\Users\fidji\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
~ Windows 8.1, 64-bit (Build 9600)

---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v43.0.2357.134
MFIE: Mozilla Firefox 35.0.1 (x86 en-US) v35.0.1
MSIE: Internet Explorer v11.0.9600.17842

---\\ Windows Product Information (3) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Activation Technologies : OK

---\\ System protection software (2) - 1s
Malwarebytes Anti-Malware version 2.0.4.1028
McAfee LiveSafe – Internet Security v14.0.1076

---\\ System optimization software (1) - 1s
CCleaner v5.01

---\\ Surveillance software (2) - 1s
Adobe Flash Player 18 NPAPI
Adobe Reader XI

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 8270964
~ System Restore: Activé (Enable)
~ System drive C: has 225 GB free of 381 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: FIDJI
~ User Name: fidji
~ Logged in as Administrator

---\\ Enumeration of the disk units (3) - 0s
~ Drive C: has 225 GB free of 381 GB (System)
~ Drive D: has 550 GB free of 550 GB
~ Drive E: has 15 GB free of 15 GB

---\\ Search Generic System Files (22) - 1s
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Windows Explorer.) () -- C:\WINDOWS\Explorer.exe [2501368]
[MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [54784]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\WINDOWS\System32\Wininit.exe [145920]
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\WINDOWS\System32\wininet.dll [2426880]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\WINDOWS\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\WINDOWS\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800]
[MD5.D887446F3F6051C60C26F4FD1FC8D43F] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [142848]
[MD5.31233271EDE50D1BBB220F78AFA60486] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [405504]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - NT File System Driver.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\WINDOWS\System32\drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [310080]

---\\ Process running (23) - 1s
[MD5.DC2BA6926FA0CDCE273CC9897F05584A] - (.ASUSTek Computer Inc. - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [107320] [PID.1180]
[MD5.DBC598E47E7A382E60E2A4745D41FEF9] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1264]
[MD5.6A122B4F0E5293CACFA8A5F2CBA9B356] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120] [PID.1700]
[MD5.AAE374280DDC307061A43ED9FAD1AD57] - (.Copyright © 2012 - Asus WebStorage Windows Service.) -- C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192] [PID.1728]
[MD5.C6128F2E3DC6156C6F8828F9F1B96010] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160] [PID.1952]
[MD5.9EB0C1F000153022DBF1A6455899488C] - (...) -- C:\Program Files (x86)\56C354D0-1437189432-81F5-3789-AC9E170C904E\knsuFB1B.tmp [344576] [PID.1976] =>PUP.Optional.CrossRider
[MD5.F431427CD83E9A582E06EE3396F5219A] - (.ASUSTek Computer Inc. - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [303928] [PID.1616]
[MD5.F98BFE8634197144D5A8E18DFADE53E8] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files\ASUS\P4G\InsOnWMI.exe [594744] [PID.1668]
[MD5.4F870EF9292559AB9DE6F31527A1DCBF] - (.ASUSTek Computer Inc. - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe [113312] [PID.2100]
[MD5.61F674D54CD71FBF9B9631BFB608464A] - (.ASUS - Power4Gear Hybrid.) -- C:\Program Files\ASUS\P4G\BatteryLife.exe [1036088] [PID.2280]
[MD5.B07086D59443DAC6A668D691B27B968C] - (.ASUSTeK Computer Inc. - ASUS Color Engine.) -- C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [176240] [PID.2296]
[MD5.C570FD825751F7805CE226F68C4605DE] - (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [54488] [PID.2308]
[MD5.D0B4AB367A1EE3D4B2A72B6C731108DC] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1129040] [PID.2316]
[MD5.23075147F62C896784C66D706F38360E] - (.ASUSTek Computer Inc. - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [328504] [PID.4148]
[MD5.0B50F07E63EE15383CDFDC26D7A3D3E3] - (.ASUSTek Computer Inc. - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [205184] [PID.4156]
[MD5.6EEAF19A5D61F8CA23F233D9D3D7CE0F] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13449288] [PID.2532]
[MD5.45D629AAF007A0DED6689A7A031D2AC7] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1278024] [PID.3764]
[MD5.432F4E8794A2EA8A64E4C75EA80B790E] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\fidji\AppData\Roaming\uTorrent\uTorrent.exe [1694560] [PID.5224]
[MD5.8DACA62F3E15E45EBAF7AE51A609CBC1] - (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe [2892992] [PID.5272]
[MD5.2362B857693DA580E04ECE28F7D67E7E] - (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files (x86)\ASUS\APRP\aprp.exe [3187360] [PID.5380]
[MD5.A2221900B57AEC20577996744FA4A56A] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296] [PID.5604]
[MD5.D471F27FE3414238839979D4203143B3] - (.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe [1853632] [PID.5340]
[MD5.0A3544D7E9AF7D8C991C904339157EDC] - (.Valve Corporation - Steam Client Service.) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe [837312] [PID.6104]

---\\ Google Chrome, Start,Search,Extensions (G0,G1,G2) (3) - 1s
G2 - GCE: Preference [User Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] SiteAdvisor
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3) (16) - 1s
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazondotcom.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.31.2] - (.Oracle Corporation.) -- C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.31.2] - (.Oracle Corporation.) -- C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@mcafee.com/MSC,version=10] - (.McAfee Total Protection MIME Plugin.) -- c:\Program Files (x86)\McAfee\msc\npMcSnFFPl.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll

---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1) (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis F0, F1, F2, F3 - IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object (BHO) (O2) (2) - 0s
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean)
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphean)

---\\ Auto loading programs from Registry and folders (O4) (22) - 1s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\fidji\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_AFFCC0A835517E20D673850F27C983EA] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files (x86)\ASUS\APRP\aprp.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ASUS Cloud Corporation - ASUS WebStorage Panel.) -- C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKUS\S-1-5-21-2449881277-3091840382-687086128-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-2449881277-3091840382-687086128-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-2449881277-3091840382-687086128-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\fidji\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-2449881277-3091840382-687086128-1001\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe
O4 - HKUS\S-1-5-21-2449881277-3091840382-687086128-1001\..\Run: [GoogleChromeAutoLaunch_AFFCC0A835517E20D673850F27C983EA] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

---\\ Lop.com/Domain Hijackers (O17) (8) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 52.18.92.32,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = att.net
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 52.18.92.32,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.240 212.27.40.241
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = att.net

---\\ AppInit_DLLs Registry value Autorun (O20) (1) - 0s
O20 - AppInit_DLLs: . (.Authors - .) - C:\WINDOWS\System32\

---\\ Non Microsoft non disabled Windows XP/NT/2000 Services (O23) (30) - 1s
O23 - Service: McAfee Application Installer Cleanup (0237751436235358) (0237751436235358mcinstcleanup) . (...) - C:\WINDOWS\TEMP\023775~1.EXE (.not file.)
O23 - Service: acengine (acengine) . (...) - C:\PROGRA~2\FASTSE~1\acengine.exe (.not file.)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc. - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) . (.ASUS - ASUS InstantOn Program.) - C:\Program Files\ASUS\P4G\InsOnSrv.exe
O23 - Service: Asus WebStorage Windows Service (Asus WebStorage Windows Service) . (.Copyright © 2012 - Asus WebStorage Windows Service.) - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: McAfee Home Network (HomeNetSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Save Ascending (kivofefi) . (...) - C:\Program Files (x86)\56C354D0-1437189432-81F5-3789-AC9E170C904E\knsuFB1B.tmp =>PUP.Optional.CrossRider
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc. - SiteAdvisor.) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
O23 - Service: McAfee AP Service (McAPExe) . (.McAfee, Inc. - McAfee Access Protection.) - C:\Program Files\mcafee\msc\McAPExe.exe
O23 - Service: McAfee CSP Service (mccspsvc) . (.McAfee, Inc. - McAfee CSP Service Host.) - C:\Program Files\Common Files\mcafee\CSP\1.5.495.0\McCSPServiceHost.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Platform Services (mcpltsvc) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Firewall Core Service (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
O23 - Service: McAfee Service Controller (mfemms) . (.McAfee, Inc. - McAfee Management Service.) - C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\windows\system32\mfevtps.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) . (.McAfee, Inc. - McAfee Service Host.) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Update Steel Cut (Update Steel Cut) . (...) - C:\Program Files (x86)\Steel Cut\updateSteelCut.exe (.not file.) =>PUP.Optional.SteelCut
O23 - Service: Util Steel Cut (Util Steel Cut) . (...) - C:\Program Files (x86)\Steel Cut\bin\utilSteelCut.exe (.not file.) =>PUP.Optional.SteelCut
O23 - Service: Word Surfer 1.10.0.19 Client Service (wsasvc_1.10.0.19) . (...) - C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe (.not file.) =>PUP.Optional.WordSurfer

---\\ Task Planned Automatically (O39) (18) - 1s
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [830]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [904]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [908]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3718]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-fidji.sun@hotmail.fr [3496] =>PUP.Optional.CrossRider
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASUS InstantOn Config [2954]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASUS Live Update1 [3474]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASUS Live Update2 [3464]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASUS P4G [3054]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASUS Splendid ACMON [2986]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASUS Splendid ColorU [3002]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASUS USB Charger Plus [3026]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\AsusVibeSchedule [3266]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3644]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3880]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\McAfeeLogon [3064]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\sab3009 [3088]
O39 - APT: Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\Update Checker [3382]

---\\ Software installed (O42) (84) - 5s
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: ASUS Screen Saver - (.ASUS.) [HKLM][64Bits] -- {0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {4046F74A-28F8-48C6-A5D3-2AFC472574C1}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {5D61F006-168C-4B8B-B7FD-F113C10AE0E4}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
O42 - Logiciel: Vegas Pro 12.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {A782B230-FE98-11E1-9A1E-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {AB085680-FE98-11E1-A232-F04DA23A5C58}
O42 - Logiciel: Apple Application Support (64-bit) - (.Apple Inc..) [HKLM][64Bits] -- {B255D495-4734-4E9B-B4F5-96702FD4A7B9}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {FA00A3CC-7440-4938-A271-F186F50DD40D}
O42 - Logiciel: 4K Video Downloader 3.5 - (.Open Media LLC.) [HKLM][64Bits] -- 4K Video Downloader_is1
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM][64Bits] -- Asus Vibe2.0
O42 - Logiciel: ASUS WebStorage Sync Agent - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net
O42 - Logiciel: DVDFab 9.1.8.3 (07/01/2015) - (.Fengtao Software Inc..) [HKLM][64Bits] -- DVDFab 9 US_is1
O42 - Logiciel: Elsword - (.Gameforge.) [HKLM][64Bits] -- Elsword_fr_is1
O42 - Logiciel: Freemake Video Converter version 4.1.5 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1
O42 - Logiciel: Friendly Error - (...) [HKLM][64Bits] -- FriendlyError
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mozilla Firefox 35.0.1 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 35.0.1 (x86 en-US)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: McAfee LiveSafe – Internet Security - (.McAfee, Inc..) [HKLM][64Bits] -- MSC
O42 - Logiciel: MyBitCast 2.0 - (.ASUS.) [HKLM][64Bits] -- MyBitCast
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Walking Dead 2 - (.Audioslave.) [HKLM][64Bits] -- Walking Dead 2_is1
O42 - Logiciel: Walking Dead - (.Audioslave.) [HKLM][64Bits] -- Walking Dead_is1
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall =>.WildTangent
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: WordSurfer 1.10.0.19 - (.WordSurfer.) [HKLM][64Bits] -- WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
O42 - Logiciel: Tales of Lagoona - (.WildTangent.) [HKLM][64Bits] -- WTA-21e86661-8d6c-4fd1-af68-34c97e81c2e1 =>.WildTangent
O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WTA-2b878b41-62cf-48f5-a545-808b72d8a96c =>.WildTangent
O42 - Logiciel: Cut the Rope - (.WildTangent.) [HKLM][64Bits] -- WTA-37b0c899-be55-4990-ace2-377368f019b1 =>.WildTangent
O42 - Logiciel: Peggle - (.WildTangent.) [HKLM][64Bits] -- WTA-76b0a447-ce1e-45e2-ba52-842c2abfca88 =>.WildTangent
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-c70ce12c-fa71-4526-9e49-dc34f23d11e5 =>.WildTangent
O42 - Logiciel: Azteca - (.WildTangent.) [HKLM][64Bits] -- WTA-f16d00eb-f7b1-482f-bd1f-4433db7f046d =>.WildTangent
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: Galería de fotos - (.Microsoft Corporation.) [HKLM][64Bits] -- {198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}
O42 - Logiciel: Skype™ 7.6 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Java 8 Update 25 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218025F0}
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0}
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent
O42 - Logiciel: McAfee WebAdvisor - (.McAfee, Inc..) [HKLM][64Bits] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {627FFC10-CE0A-497F-BA2B-208CAC638010}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus =>.WildTangent
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Apple Application Support (32-bit) - (.Apple Inc..) [HKLM][64Bits] -- {7FE25256-B7C1-480D-B736-10A67A833AEA}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE}
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0409-0000-0000000FF1CE}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: Gameforge Live 2.0.8 - (.Gameforge.) [HKLM][64Bits] -- {9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1
O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe Reader XI (11.0.10) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AB0000000001}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: ???? - (.Microsoft Corporation.) [HKLM][64Bits] -- {D3F0882C-4948-4BAA-9720-47CC4D9AEF54}
O42 - Logiciel: ASUSDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: ??? - (.Microsoft Corporation.) [HKLM][64Bits] -- {E9BAA7A4-4397-4DE7-8C01-5A39B24F17F2}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {FA540E67-095C-4A1B-97BA-4D547DEC9AF4}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (111) - 5s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ASIO
HKLM\SOFTWARE\Wow6432Node\AsLdr
HKLM\SOFTWARE\Wow6432Node\ASUS
HKLM\SOFTWARE\Wow6432Node\Atheros
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\ECAREME
HKLM\SOFTWARE\Wow6432Node\Freemake
HKLM\SOFTWARE\Wow6432Node\Gameforge
HKLM\SOFTWARE\Wow6432Node\Gameforge4d
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\Metin2_FR
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Network Associates
HKLM\SOFTWARE\Wow6432Node\Nostale_FR
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Reg
HKLM\SOFTWARE\Wow6432Node\Runes of Magic
HKLM\SOFTWARE\Wow6432Node\SiteAdvisor
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Soda PDF 3D Reader
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\Telltale Games
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\Zemi Interactive
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\4kdownload.com
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AOL
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\DigitByteStudio
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\DVDFab
HKCU\SOFTWARE\ECAREME
HKCU\SOFTWARE\ElswordINT
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\Gameforge4d
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\INCAInternet
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\Mine
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\redsn0w
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Soda PDF 3D Reader
HKCU\SOFTWARE\Soda PDF 3D Reader 7
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Telltale Games
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contents of the Common Files folders (O43) (203) - 7s
O43 - CFD: 2015/06/22 01:18:50 - [] D -- C:\Program Files (x86)\4KDownload
O43 - CFD: 2015/07/18 10:00:13 - [] D -- C:\Program Files (x86)\56C354D0-1437189432-81F5-3789-AC9E170C904E =>PUP.Optional.CrossRider
O43 - CFD: 2015/01/09 19:19:20 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/01/08 17:37:36 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2015/05/18 02:53:58 - [] D -- C:\Program Files (x86)\ASUS
O43 - CFD: 2015/03/03 03:41:05 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 2015/03/08 21:31:08 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2015/01/07 16:00:43 - [] D -- C:\Program Files (x86)\CapturinoV25
O43 - CFD: 2015/06/20 11:24:52 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/10/23 01:26:49 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2015/01/08 11:56:31 - [] D -- C:\Program Files (x86)\DVDFab 9 US
O43 - CFD: 2015/07/18 05:47:01 - [0] D -- C:\Program Files (x86)\EaseFab
O43 - CFD: 2015/01/08 11:55:50 - [] D -- C:\Program Files (x86)\Freemake
O43 - CFD: 2015/07/18 08:30:56 - [] D -- C:\Program Files (x86)\FriendlyError
O43 - CFD: 2015/07/06 19:08:13 - [] D -- C:\Program Files (x86)\GameforgeLive
O43 - CFD: 2015/01/06 00:58:17 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/03/03 06:22:27 - [] D -- C:\Program Files (x86)\Hearthstone
O43 - CFD: 2014/10/23 01:27:44 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/01/10 03:38:06 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/06/16 12:41:33 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/07/06 11:23:18 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2015/03/06 07:48:21 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/01/07 20:33:46 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2015/07/07 05:15:47 - [] D -- C:\Program Files (x86)\McAfee
O43 - CFD: 2013/05/01 12:37:46 - [] D -- C:\Program Files (x86)\mcafee.com
O43 - CFD: 2013/05/01 12:32:48 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/05/15 18:09:41 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2013/05/01 12:36:10 - [] D -- C:\Program Files (x86)\Microsoft SkyDrive
O43 - CFD: 2013/05/01 12:37:03 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2015/03/26 04:42:49 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/02/06 06:24:50 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/02/10 01:47:06 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/01/10 13:18:51 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/02/13 02:37:39 - [] D -- C:\Program Files (x86)\NBA Live News
O43 - CFD: 2014/10/23 01:16:36 - [] D -- C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 2015/07/06 11:17:52 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2014/10/23 01:24:27 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2015/01/10 13:18:51 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/07/02 16:05:40 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2015/01/07 16:40:56 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 2015/02/13 02:39:23 - [] D -- C:\Program Files (x86)\Start
O43 - CFD: 2015/07/18 10:07:42 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2014/10/23 01:24:25 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2015/01/14 04:47:44 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2013/05/01 12:40:27 - [] D -- C:\Program Files (x86)\WildGames
O43 - CFD: 2013/05/01 12:39:44 - [] D -- C:\Program Files (x86)\WildTangent Games
O43 - CFD: 2015/03/15 03:10:56 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2015/01/12 23:31:07 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2015/03/15 03:10:04 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/03/15 03:10:04 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2015/03/15 03:10:04 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 2013/08/22 18:36:30 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2015/03/15 03:10:04 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2015/03/15 03:10:04 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2015/01/10 03:38:10 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/08/22 18:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 2015/03/07 10:06:11 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/06/22 01:19:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
O43 - CFD: 2015/03/15 03:10:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2015/03/15 03:10:57 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/03/15 03:10:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/05/18 02:54:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 2015/01/10 03:38:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUSDVD
O43 - CFD: 2015/03/03 03:41:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 2014/09/24 12:50:17 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Embedded Lockdown Manager
O43 - CFD: 2015/01/10 03:42:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 2015/07/06 19:09:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
O43 - CFD: 2015/01/10 03:42:15 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/07/18 06:25:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2015/03/03 03:47:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 2015/01/10 03:42:15 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2015/07/06 11:23:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2015/01/25 21:32:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2013/08/22 18:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/18 08:07:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
O43 - CFD: 2015/03/26 04:41:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2015/05/14 23:32:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/07/06 11:17:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2015/01/10 03:42:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/01/10 03:38:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 2013/08/22 18:36:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 2015/06/20 11:24:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2015/03/15 03:10:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2014/09/24 09:53:23 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/06/23 12:20:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Walking Dead 1
O43 - CFD: 2015/06/25 19:29:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Walking Dead 2
O43 - CFD: 2015/03/07 10:06:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/07/18 10:03:26 - [] D -- C:\ProgramData\abc
O43 - CFD: 2015/03/07 10:10:18 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/03/08 21:31:17 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2015/03/08 21:32:20 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2013/08/22 17:45:52 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2013/05/01 12:35:50 - [] D -- C:\ProgramData\ASUS WebStorage
O43 - CFD: 2013/05/01 12:34:23 - [] D -- C:\ProgramData\ASUSLogos
O43 - CFD: 2014/10/23 01:27:53 - [] D -- C:\ProgramData\ASUSVibe
O43 - CFD: 2015/03/03 03:37:44 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 2015/03/03 03:41:04 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 2015/01/08 11:17:01 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2013/08/22 17:45:52 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2013/08/22 17:45:52 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/07/06 11:23:16 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 2015/03/05 05:37:27 - [] D -- C:\ProgramData\Freemake
O43 - CFD: 2014/10/23 01:22:16 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/07/18 06:40:37 - [0] D -- C:\ProgramData\LULU Software
O43 - CFD: 2015/01/07 20:33:43 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2015/02/28 21:20:05 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/03/26 04:43:42 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2013/05/01 12:36:10 - [] D -- C:\ProgramData\Microsoft SkyDrive
O43 - CFD: 2015/01/07 21:07:21 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/01/09 12:15:12 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/10/23 01:26:20 - [] D -- C:\ProgramData\P4G
O43 - CFD: 2015/07/18 06:26:55 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/01/10 03:38:14 - [] D -- C:\ProgramData\PRICache
O43 - CFD: 2014/10/23 01:16:28 - [] D -- C:\ProgramData\Qualcomm Atheros
O43 - CFD: 2015/03/07 10:10:25 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2015/06/26 07:10:52 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2015/07/02 16:05:44 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2015/07/18 06:43:02 - [0] D -- C:\ProgramData\Soda PDF 3D Reader
O43 - CFD: 2015/01/07 16:40:56 - [] D -- C:\ProgramData\Sony
O43 - CFD: 2013/08/22 17:45:52 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2015/06/23 12:25:46 - [] D -- C:\ProgramData\Steam
O43 - CFD: 2015/01/09 12:15:46 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2014/10/23 01:27:10 - [] D -- C:\ProgramData\Temp
O43 - CFD: 2013/08/22 17:45:52 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2014/10/23 01:33:15 - [] D -- C:\ProgramData\USBChargerPlus
O43 - CFD: 2013/05/01 12:39:49 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2015/06/15 10:16:16 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/03/08 21:31:12 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2015/03/03 03:47:36 - [0] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 2015/03/26 04:42:51 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2014/10/23 01:24:03 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2015/01/10 03:29:10 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2015/01/31 06:26:38 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/05/01 12:38:31 - [] D -- C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 2015/03/26 04:42:52 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 2014/10/23 01:21:57 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2013/08/22 18:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2015/01/06 04:29:14 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2015/07/06 20:59:02 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2015/03/15 03:10:03 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2013/05/01 12:36:01 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/05/16 23:10:15 - [0] D -- C:\Users\fidji\AppData\Roaming\13359
O43 - CFD: 2015/06/15 10:16:17 - [] D -- C:\Users\fidji\AppData\Roaming\Adobe
O43 - CFD: 2015/03/08 21:34:38 - [] D -- C:\Users\fidji\AppData\Roaming\Apple Computer
O43 - CFD: 2015/01/06 00:54:23 - [] D -- C:\Users\fidji\AppData\Roaming\ASUS WebStorage
O43 - CFD: 2015/03/03 03:43:04 - [] D -- C:\Users\fidji\AppData\Roaming\Battle.net
O43 - CFD: 2015/01/07 15:58:57 - [] D -- C:\Users\fidji\AppData\Roaming\Capturino
O43 - CFD: 2015/01/08 11:16:38 - [] D -- C:\Users\fidji\AppData\Roaming\CyberLink
O43 - CFD: 2015/01/08 11:20:47 - [] D -- C:\Users\fidji\AppData\Roaming\Digiarty
O43 - CFD: 2015/01/08 11:21:46 - [] D -- C:\Users\fidji\AppData\Roaming\dvdcss
O43 - CFD: 2015/01/08 11:56:38 - [] D -- C:\Users\fidji\AppData\Roaming\DVDFab9
O43 - CFD: 2015/07/18 05:45:53 - [] D -- C:\Users\fidji\AppData\Roaming\EaseFab
O43 - CFD: 2015/01/10 08:37:29 - [] D -- C:\Users\fidji\AppData\Roaming\Identities
O43 - CFD: 2015/01/06 00:54:50 - [] D -- C:\Users\fidji\AppData\Roaming\Macromedia
O43 - CFD: 2015/03/26 14:05:54 - [] SD -- C:\Users\fidji\AppData\Roaming\Microsoft
O43 - CFD: 2015/01/07 21:07:42 - [] D -- C:\Users\fidji\AppData\Roaming\Mozilla
O43 - CFD: 2015/01/07 16:43:53 - [0] D -- C:\Users\fidji\AppData\Roaming\Publish Providers
O43 - CFD: 2015/03/08 19:56:02 - [] D -- C:\Users\fidji\AppData\Roaming\redsn0w
O43 - CFD: 2015/07/18 10:08:43 - [] D -- C:\Users\fidji\AppData\Roaming\Skype
O43 - CFD: 2015/06/28 16:00:22 - [] D -- C:\Users\fidji\AppData\Roaming\Soda PDF 3D Reader
O43 - CFD: 2015/01/10 09:35:57 - [] D -- C:\Users\fidji\AppData\Roaming\Sony
O43 - CFD: 2015/01/10 12:30:21 - [] D -- C:\Users\fidji\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 2015/07/18 10:07:43 - [] D -- C:\Users\fidji\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/17 10:29:18 - [] D -- C:\Users\fidji\AppData\Roaming\vlc
O43 - CFD: 2015/01/07 15:14:33 - [] D -- C:\Users\fidji\AppData\Roaming\WinRAR
O43 - CFD: 2015/07/18 10:09:02 - [] D -- C:\Users\fidji\AppData\Roaming\ZHP
O43 - CFD: 2015/06/22 01:20:24 - [] D -- C:\Users\fidji\AppData\Local\4kdownload.com
O43 - CFD: 2015/07/16 04:38:53 - [] D -- C:\Users\fidji\AppData\Local\Adobe
O43 - CFD: 2015/01/08 17:37:36 - [] D -- C:\Users\fidji\AppData\Local\Apple
O43 - CFD: 2015/03/08 21:33:50 - [] D -- C:\Users\fidji\AppData\Local\Apple Computer
O43 - CFD: 2015/01/10 03:36:20 - [0] SHD -- C:\Users\fidji\AppData\Local\Application Data
O43 - CFD: 2015/01/06 00:52:43 - [] D -- C:\Users\fidji\AppData\Local\ASUS
O43 - CFD: 2015/03/03 06:22:24 - [] D -- C:\Users\fidji\AppData\Local\Battle.net
O43 - CFD: 2015/03/03 04:32:39 - [] D -- C:\Users\fidji\AppData\Local\Blizzard
O43 - CFD: 2015/03/03 03:41:16 - [] D -- C:\Users\fidji\AppData\Local\Blizzard Entertainment
O43 - CFD: 2015/01/08 12:33:49 - [] D -- C:\Users\fidji\AppData\Local\Cyberlink
O43 - CFD: 2015/06/20 12:59:40 - [0] SHD -- C:\Users\fidji\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/20 12:59:40 - [0] SHD -- C:\Users\fidji\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/20 12:59:40 - [0] SHD -- C:\Users\fidji\AppData\Local\EmieUserList
O43 - CFD: 2015/07/06 19:08:32 - [] D -- C:\Users\fidji\AppData\Local\Gameforge4d
O43 - CFD: 2015/07/16 04:40:49 - [] D -- C:\Users\fidji\AppData\Local\Google
O43 - CFD: 2015/06/05 16:59:44 - [] D -- C:\Users\fidji\AppData\Local\GWX
O43 - CFD: 2015/01/10 03:36:20 - [0] SHD -- C:\Users\fidji\AppData\Local\History
O43 - CFD: 2015/07/18 08:05:54 - [] D -- C:\Users\fidji\AppData\Local\Macromedia
O43 - CFD: 2015/05/30 08:26:55 - [] D -- C:\Users\fidji\AppData\Local\Microsoft
O43 - CFD: 2015/01/07 21:07:42 - [] D -- C:\Users\fidji\AppData\Local\Mozilla
O43 - CFD: 2015/07/09 16:58:10 - [] D -- C:\Users\fidji\AppData\Local\Packages
O43 - CFD: 2015/01/07 14:50:11 - [] D -- C:\Users\fidji\AppData\Local\Programs
O43 - CFD: 2015/01/06 04:29:23 - [] D -- C:\Users\fidji\AppData\Local\Skype
O43 - CFD: 2015/01/07 16:43:51 - [] D -- C:\Users\fidji\AppData\Local\Sony
O43 - CFD: 2015/06/20 11:27:45 - [] D -- C:\Users\fidji\AppData\Local\Steam
O43 - CFD: 2015/07/18 10:08:40 - [] D -- C:\Users\fidji\AppData\Local\Temp
O43 - CFD: 2015/01/10 03:36:20 - [0] SHD -- C:\Users\fidji\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/03/26 04:39:17 - [] D -- C:\Users\fidji\AppData\Local\VirtualStore
O43 - CFD: 2015/02/05 03:55:22 - [] D -- C:\Users\fidji\AppData\Local\Windows Live
O43 - CFD: 2015/01/10 03:37:04 - [] RD -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 2013/08/22 18:36:32 - [] RD -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/18 06:47:38 - [] RD -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/01/10 03:37:04 - [] D -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 2013/08/22 18:36:32 - [] D -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/18 09:44:29 - [] RD -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/01/10 03:37:05 - [] RD -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 2015/03/07 10:06:11 - [] D -- C:\Users\fidji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Latest files created in Windows Prefetcher (O45) (4) - 24s
O45 - LFCP:[MD5.6F14D807582490CBC10623C162D16D7C] 2015/07/18 06:18:03 A -- C:\WINDOWS\Prefetch\STEELCUTUNINSTALL.EXE-167798AF.pf =>PUP.SteelCut
O45 - LFCP:[MD5.5B9BD3190E1AE560F87C75E5AA1DED78] 2015/07/18 06:15:37 A -- C:\WINDOWS\Prefetch\STEELCUT_SETUP.EXE-BFEC6377.pf =>PUP.SteelCut
O45 - LFCP:[MD5.E451A8A3432C1829352AC3B0617166A1] 2015/07/18 06:18:10 A -- C:\WINDOWS\Prefetch\UPDATESTEELCUT.EXE-073130AC.pf =>PUP.SteelCut
O45 - LFCP:[MD5.F444B1F5A8A6F2FDFC002A4E42DBDA6B] 2015/07/18 06:18:09 A -- C:\WINDOWS\Prefetch\UTILSTEELCUT.EXE-1F091FA4.pf =>PUP.SteelCut

---\\ System Drivers List (SDL) (O58) (63) - 28s
O58 - SDL:2013/08/22 15:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896]
O58 - SDL:2013/08/22 15:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176]
O58 - SDL:2013/03/13 07:12:14 A . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\WINDOWS\System32\drivers\AiCharger.sys [17152]
O58 - SDL:2013/08/22 15:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200]
O58 - SDL:2013/08/22 15:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424]
O58 - SDL:2013/08/22 15:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952]
O58 - SDL:2013/08/22 15:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016]
O58 - SDL:2012/05/31 06:47:44 A . (.ASUS - HID driver for ASUS Wireless Radio Control.) -- C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [21152]
O58 - SDL:2013/06/18 17:45:02 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\drivers\athw8x.sys [3680256]
O58 - SDL:2013/08/13 02:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624]
O58 - SDL:2013/08/22 15:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296]
O58 - SDL:2015/04/08 07:43:42 A . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\WINDOWS\System32\drivers\cfwids.sys [68784]
O58 - SDL:2013/08/22 15:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024]
O58 - SDL:2012/10/03 17:14:56 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:2011/03/30 02:21:48 A . (.Google Inc - ADB Interface.) -- C:\WINDOWS\System32\drivers\ghsandroid.sys [38424]
O58 - SDL:2013/01/23 10:57:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [64624]
O58 - SDL:2015/04/27 08:02:58 A . (.McAfee, Inc. - McAfee HIP IPS Driver.) -- C:\WINDOWS\System32\drivers\HipShieldK.sys [198448]
O58 - SDL:2013/08/22 15:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352]
O58 - SDL:2013/07/30 21:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:2013/07/25 22:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:2013/01/14 05:00:36 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [652784]
O58 - SDL:2013/08/10 03:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248]
O58 - SDL:2013/08/22 15:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000]
O58 - SDL:2013/10/01 14:02:30 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [4177920]
O58 - SDL:2013/05/02 10:19:08 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [442368]
O58 - SDL:2013/08/23 01:51:12 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [39320]
O58 - SDL:2013/08/23 01:51:12 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [26008]
O58 - SDL:2012/08/02 06:22:48 A . (. - Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\kbfiltr.sys [14992]
O58 - SDL:2013/08/22 15:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408]
O58 - SDL:2013/08/22 15:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536]
O58 - SDL:2013/08/22 15:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760]
O58 - SDL:2013/08/22 15:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784]
O58 - SDL:2014/11/21 07:14:08 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816]
O58 - SDL:2014/11/21 07:14:12 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [93400]
O58 - SDL:2015/01/08 14:05:27 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [129752]
O58 - SDL:2013/08/22 15:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672]
O58 - SDL:2013/08/22 15:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840]
O58 - SDL:2015/04/08 07:44:12 A . (.McAfee, Inc. - McAfee Arbitrary Access Control Driver.) -- C:\WINDOWS\System32\drivers\mfeaack.sys [402888]
O58 - SDL:2015/04/08 07:40:42 A . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\WINDOWS\System32\drivers\mfeavfk.sys [338272]
O58 - SDL:2015/03/26 12:46:36 A . (.McAfee, Inc. - McAfee Driver Cleaning Driver.) -- C:\WINDOWS\System32\drivers\mfeclnrk.sys [11720]
O58 - SDL:2015/04/08 07:44:52 A . (.McAfee, Inc. - McAfee Disk Filter Driver.) -- C:\WINDOWS\System32\drivers\mfedisk.sys [101872]
O58 - SDL:2015/04/08 07:35:18 A . (.McAfee, Inc. - McAfee ELAM Driver.) -- C:\WINDOWS\System32\drivers\mfeelamk.sys [80160]
O58 - SDL:2015/04/08 07:41:04 A . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\WINDOWS\System32\drivers\mfefirek.sys [488000]
O58 - SDL:2015/04/08 07:41:34 A . (.McAfee, Inc. - McAfee Link Driver.) -- C:\WINDOWS\System32\drivers\mfehidk.sys [864200]
O58 - SDL:2015/03/26 12:45:54 A . (.McAfee, Inc. - Event Driver.) -- C:\WINDOWS\System32\drivers\mfencbdc.sys [483240]
O58 - SDL:2015/03/26 12:46:00 A . (.McAfee, Inc. - Detection driver.) -- C:\WINDOWS\System32\drivers\mfencrk.sys [100720]
O58 - SDL:2015/04/08 07:42:18 A . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\WINDOWS\System32\drivers\mfewfpk.sys [335944]
O58 - SDL:2013/08/22 15:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840]
O58 - SDL:2014/11/21 07:14:26 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216]
O58 - SDL:2013/08/22 15:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368]
O58 - SDL:2013/08/22 15:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288]
O58 - SDL:2013/06/18 17:46:17 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [591360]
O58 - SDL:2013/03/26 15:54:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [3376200]
O58 - SDL:2012/06/13 13:24:00 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\WINDOWS\System32\drivers\RtsUStor.sys [252048]
O58 - SDL:2013/08/22 18:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040]
O58 - SDL:2013/08/22 15:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896]
O58 - SDL:2013/08/22 15:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760]
O58 - SDL:2013/08/22 15:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072]
O58 - SDL:2014/08/15 23:35:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784]
O58 - SDL:2013/08/22 15:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808]
O58 - SDL:2013/08/22 15:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800]
O58 - SDL:2013/08/22 15:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504]
O58 - SDL:2012/11/19 09:57:58 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\WINDOWS\System32\athw8x.sys [3728384]

---\\ Last modified or created user files (O61) (22) - 63s
O61 - LFC: 2015/07/18 05:45:23 A . (..) -- C:\Users\fidji\Downloads\easefab_video-converter_install.exe [31007053]
O61 - LFC: 2015/07/18 06:13:38 A . (.DigitByte Studio.) -- C:\Users\fidji\Downloads\mkv-to-avi-converter_3-2-1-1_fr_188938.exe [1502132]
O61 - LFC: 2015/07/18 08:02:09 A . (..) -- C:\Users\fidji\AppData\Roaming\sp_data.sys [74]
O61 - LFC: 2015/07/12 03:42:17 A . (.Filip Skakun.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\WinRTXamlToolkit\ede82075f7b6a542f169064f65fca30b\WinRTXamlToolkit.ni.dll [2580992]
O61 - LFC: 2015/07/12 03:42:14 A . (.Copyright © 2013.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\WinRtExtension\f0b07d4396a4297b8651aad95d18c8df\WinRtExtension.ni.dll [30208]
O61 - LFC: 2015/07/12 03:42:15 A . (.LocalJoost.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\WinRtBehaviors\2b37559a707b4d87f3dafc9d8ddacd5e\WinRtBehaviors.ni.dll [54272]
O61 - LFC: 2015/07/12 03:42:17 A . (.None.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\Win8Controls\033e16d2294e22ed71ca55cb2b834e46\Win8Controls.ni.dll [132608]
O61 - LFC: 2015/07/12 03:42:14 A . (.Copyright © 2012.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\StringsResources\782523fdae211f7b6dc72a5b44585ecd\StringsResources.ni.dll [116736]
O61 - LFC: 2015/07/12 03:42:17 A . (.Copyright © 2012.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\Shape\85022953352b9e64bb4401d7980e64d1\Shape.ni.dll [20480]
O61 - LFC: 2015/07/12 03:42:12 A . (.Copyright © 2014.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\IMPlusW8\265be1e2992d78d6b141693083c8f630\IMPlusW8.ni.exe [3946496]
O61 - LFC: 2015/07/12 03:42:13 A . (.Copyright © 2013.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\IMPlusCore\af213058fb17f743a77ec795f45a0e87\IMPlusCore.ni.dll [1950720]
O61 - LFC: 2015/07/12 03:42:17 A . (.Copyright © 2013.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\FlurryWin8SDK\657459d53b3fbf35bb8af108cce8a0d5\FlurryWin8SDK.ni.dll [337408]
O61 - LFC: 2015/07/12 03:42:18 A . (.The Outercurve Foundation.) -- C:\Users\fidji\AppData\Local\Packages\SHAPEGmbH.IM_mp7z04cf0c36r\AC\Microsoft\CLR_v4.0_32\NativeImages\Facebook\4a1d7746bf94ab9ecae38c21b35acd66\Facebook.ni.dll [463872]
O61 - LFC: 2015/07/18 08:30:30 A . (..) -- C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\UIAEEOPQ\FriendlyError_s4[1].exe [264704]
O61 - LFC: 2015/07/18 08:31:36 A . (..) -- C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\S14OFSKY\VuuPC_VO2_8907[1].exe [229102] =>PUP.Optional.VuuPC
O61 - LFC: 2015/07/18 08:30:16 A . (..) -- C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\RRMPZL07\cmmdWriter[1].exe [41444]
O61 - LFC: 2015/07/18 08:31:33 A . (..) -- C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\RAL7VNM0\policyname[1].exe [57110]
O61 - LFC: 2015/07/18 08:30:23 A . (.Word Surfer.) -- C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\PBN2A5N0\wordsurfer-setup-1.10.0.19[1].exe [1172712] =>PUP.Optional.WordSurfer
O61 - LFC: 2015/07/18 08:30:16 A . (.Copyright 2013.) -- C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\BKSLYGVL\Validate[1].exe [61981]
O61 - LFC: 2015/07/18 08:31:00 A . (..) -- C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\35CLU72Q\setup_gmsd_fr[1].exe [5779696]
O61 - LFC: 2015/07/18 09:44:26 A . (..) -- C:\Users\fidji\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/07/13 10:14:22 A . (..) -- C:\Users\fidji\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll [16307888]

---\\ File Associations Shell Spawning (O67) (9) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Start Menu Internet (SMI) (O68) (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe

---\\ Search Browser Infection (SBI) (O69) (1) - 1s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/

---\\ Search Svchost Services (SSS) (O83) (34) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\WINDOWS\System32\aelupsvc.dll [214528]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [156160]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [156160]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [329216]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1360896]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [1084416]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [31744]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [110080]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [1265152]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [230400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\WINDOWS\system32\mmcss.dll [71168]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [135168]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [225280]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [339968]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\WINDOWS\system32\kmsvc.dll [101376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [348672]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Windows Location Framework Service.) -- C:\Windows\System32\GeofenceMonitorService.dll [521728]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [1639424]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [59392]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [166400]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [102912]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [542208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [226816]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [73728]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [313344]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [3678720]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [933376]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [640000]

---\\ Firewall Active Exception List (FirewallRules) (O87) (15) - 1s
O87 - FAEL: "{6077E052-5F89-42EA-B288-AD5676CE55DD}" [In-None-P6-TRUE] .(.CyberLink Corp. - PowerDVD 10.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
O87 - FAEL: "{0A84CE24-93CE-4EBC-9D8D-FCF5FA977B80}" [In-None-P6-TRUE] .(.CyberLink Corp. - CyberLink PowerDVD Cinema 10 Main Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
O87 - FAEL: "{27731070-0072-40FC-AFF0-E7E480A53017}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\fidji\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{D11B8819-0FA2-4E51-A8E7-28C38C6AC3FB}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\fidji\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{1A73BD87-308C-4815-AF2A-22108597B1CE}" [In-None-P6-TRUE] .(.Blizzard Entertainment - Blizzard File Switcher.) -- C:\Program Files (x86)\Battle.net\Battle.net.exe
O87 - FAEL: "{7B6BC49D-DA4D-422B-97A8-4AB5D33DCA61}" [In-None-P17-TRUE] .(.Blizzard Entertainment - Blizzard File Switcher.) -- C:\Program Files (x86)\Battle.net\Battle.net.exe
O87 - FAEL: "{C0C06372-AE27-4B36-89F0-4CF8E76A435D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Hearthstone\Hearthstone.exe
O87 - FAEL: "{6F83D9BA-BC36-4848-9646-2E0F9E0943BE}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Hearthstone\Hearthstone.exe
O87 - FAEL: "{864AB386-933E-4CB7-9BCC-BB65915117A9}" [In-None-P6-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{16124F47-B8F0-4E4B-BE2F-C442CF11B617}" [In-None-P17-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe
O87 - FAEL: "{42529445-D669-492C-B73D-D462D136B41C}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GameforgeLive\gfl_client.exe
O87 - FAEL: "{C28120D7-78D3-4D74-9B77-ED0969125CE5}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GameforgeLive\Games\FRA_fra\Elsword\data\x2.exe
O87 - FAEL: "{14D36E5D-3057-410B-A0D8-1C50F92AA8B7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\GameforgeLive\Games\FRA_fra\Elsword\data\x2.exe
O87 - FAEL: "{C5F4ABA2-636B-4EDE-A500-8E50AF97FAAC}" [In-None-P6-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
O87 - FAEL: "{B22679C9-FE51-49D9-A83C-152215FB2B79}" [In-None-P17-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe

---\\ General States of Services not Microsoft (EGS) (SR=Running, SS=Stopped) (36) - 13s
SR - Auto [2014/12/03 09:31:16] [ 81088] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - Demand [2015/07/16 04:38:41] [ 268976] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2015/05/29 18:51:26] [ 77128] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - Auto [2013/01/16 02:20:54] [ 107320] ASLDR Service (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
SR - Auto [2013/04/30 02:03:18] [ 277120] ASUS InstantOn Service (ASUS InstantOn) . (.ASUS.) - C:\Program Files\ASUS\P4G\InsOnSrv.exe
SR - Auto [2012/12/19 09:10:38] [ 72192] Asus WebStorage Windows Service (Asus WebStorage Windows Service) . (.Copyright © 2012.) - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
SR - Auto [2011/11/22 00:19:50] [ 96896] ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
SR - Auto [2011/08/31 00:05:32] [ 462184] Bonjour Service (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - Demand [2013/10/01 14:02:42] [ 279000] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe
SS - Demand [2010/10/12 20:59:12] [ 206072] GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SS - Auto [2015/01/06 00:56:06] [ 107912] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/01/06 00:56:06] [ 107912] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - Auto [2015/05/06 22:58:02] [ 340744] McAfee Home Network (HomeNetSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
SR - Auto [2012/12/11 00:31:28] [ 732160] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SS - Demand [2012/12/11 00:31:44] [ 803872] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
SR - Demand [2015/06/29 17:13:36] [ 644904] iPod Service (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - Auto [2013/01/25 04:25:42] [ 167736] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - Auto [2015/07/17 17:34:08] [ 344576] Save Ascending (kivofefi) . (...) - C:\Program Files (x86)\56C354D0-1437189432-81F5-3789-AC9E170C904E\knsuFB1B.tmp
SR - Auto [2013/01/25 04:26:04] [ 364856] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - Auto [2015/07/03 15:28:08] [ 155368] McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
SR - Auto [2015/05/13 15:00:50] [ 754280] McAfee AP Service (McAPExe) . (.McAfee, Inc..) - C:\Program Files\mcafee\msc\McAPExe.exe
SS - Demand [2012/12/21 23:37:20] [ 334760] McAfee Activation Service (McAWFwk) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe
SR - Auto [2015/06/04 13:45:26] [ 207344] McAfee CSP Service (mccspsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\CSP\1.5.495.0\McCSPServiceHost.exe
SR - Auto [2015/05/06 22:58:02] [ 340744] McAfee Personal Firewall Service (McMPFSvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
SR - Auto [2015/05/06 22:58:02] [ 340744] McAfee VirusScan Announcer (McNaiAnn) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
SS - Demand [2015/05/05 06:26:22] [ 609592] McAfee Scanner (McODS) . (.McAfee, Inc..) - C:\Program Files\mcafee\VirusScan\mcods.exe
SS - Disabled [2015/05/06 22:58:02] [ 340744] McAfee OOBE Service2 (McOobeSv2) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
SR - Auto [2015/05/06 22:58:02] [ 340744] McAfee Platform Services (mcpltsvc) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
SR - Auto [2015/05/06 22:58:02] [ 340744] McAfee Proxy Service (McProxy) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
SR - Auto [2015/04/08 07:40:58] [ 232656] McAfee Firewall Core Service (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
SR - Auto [2015/05/14 11:45:20] [ 373704] McAfee Service Controller (mfemms) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
SR - Auto [2015/04/08 07:42:14] [ 250672] McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc..) - C:\windows\system32\mfevtps.exe
SS - Demand [2015/01/23 13:37:25] [ 114800] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - Auto [2015/05/06 22:58:02] [ 340744] McAfee Anti-Spam Service (MSK80Service) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
SS - Auto [2015/06/03 16:42:38] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - Demand [2015/06/04 21:56:54] [ 837312] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

---\\ Additional Scan (O88) (15) - 0s
C:\Program Files (x86)\56C354D0-1437189432-81F5-3789-AC9E170C904E\knsuFB1B.tmp =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\kivofefi =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\Update Steel Cut =>PUP.Optional.SteelCut
HKLM\SYSTEM\CurrentControlSet\Services\Util Steel Cut =>PUP.Optional.SteelCut
HKLM\SYSTEM\CurrentControlSet\Services\wsasvc_1.10.0.19 =>PUP.Optional.WordSurfer
C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-fidji.sun@hotmail.fr =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
HKLM\SOFTWARE\Wow6432Node\WordSurfer_1.10.0.19 =>PUP.Optional.WordSurfer
C:\Program Files (x86)\56C354D0-1437189432-81F5-3789-AC9E170C904E =>PUP.Optional.CrossRider
C:\WINDOWS\Prefetch\STEELCUTUNINSTALL.EXE-167798AF.pf =>PUP.SteelCut
C:\WINDOWS\Prefetch\STEELCUT_SETUP.EXE-BFEC6377.pf =>PUP.SteelCut
C:\WINDOWS\Prefetch\UPDATESTEELCUT.EXE-073130AC.pf =>PUP.SteelCut
C:\WINDOWS\Prefetch\UTILSTEELCUT.EXE-1F091FA4.pf =>PUP.SteelCut
C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\S14OFSKY\VuuPC_VO2_8907[1].exe =>PUP.Optional.VuuPC
C:\Users\fidji\AppData\Local\Microsoft\Windows\INetCache\IE\PBN2A5N0\wordsurfer-setup-1.10.0.19[1].exe =>PUP.Optional.WordSurfer

---\\ Summary of the elements found on your workstation (5) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-steelcut/ =>PUP.Optional.SteelCut
http://www.nicolascoolman.fr/blog =>PUP.Optional.WordSurfer
http://www.nicolascoolman.fr/blog =>PUP.SteelCut
http://www.nicolascoolman.fr/pup-vuupc/ =>PUP.Optional.VuuPC

~ End of the scan, 40518 items in 159 seconds (843)(0)()

Publicité


Signaler le contenu de ce document

Publicité