~ ZHPDiag v2015.9.14.141 By Nicolas Coolman (2015/09/12)
~ Run by dell (Administrator) (2015/09/15 22:03:09)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\dell.dell-PC\Desktop\ZHPDiag.txt
~ Report: C:\Users\dell.dell-PC\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (2) - 0s
MFIE: Mozilla Firefox 40.0.3 (x86 ar) v40.0.3
MSIE: Internet Explorer v11.0.9600.17843

---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System protection software (2) - 15s
ESET Smart Security v5.0.65.0
Windows Defender W7 (Activate)

---\\ System optimization software (1) - 15s
CCleaner v4.09

---\\ Surveillance software (2) - 15s
Adobe Flash Player 18 NPAPI
Adobe Reader 9.1

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3988.028 MB (19% free)
~ System Restore: Activé (Enable)
~ System drive C: has 129 GB free of 240 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: DELL-PC
~ User Name: dell
~ Logged in as Administrator

---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 129 GB free of 240 GB (System)
~ Drive E: has 29 GB free of 29 GB
~ Drive F: has 5 GB free of 7 GB
~ Drive G: has 9 GB free of 11 GB

---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Search Generic System Files (24) - 3s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [2426880] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.492D07D79E7024CA310867B526D9636D] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ©

---\\ Process running (38) - 2s
[MD5.DA7702025DFD169B909C4DA3126762CC] - (.IDT, Inc. - IDT PC Audio.) -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\stacsv64.exe [244736] [PID.568] ©
[MD5.0840ABBBDF438691EE65A20040635CBE] - (.Stardock Corporation - Dock Login Service.) -- C:\Program Files\Dell\DellDock\DockLogin.exe [155648] [PID.1216] ©
[MD5.DE816A0624D54D68E1FB8A9028DCF81A] - (.Dell Inc. - DW WLAN Card Wireless Network Service.) -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [48128] [PID.1348] ©
[MD5.BEDAD3F3FDD6B0B736D097E8CF3847E7] - (.Dell Inc. - DW WLAN Card Wireless Network Controller.) -- C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE [5088256] [PID.1372] ©
[MD5.5A0C16BA56B580CFC8BAAEDECDC6EA9B] - (.Baidu, Inc. - Baidu MoboMarket Service.) -- C:\Program Files (x86)\Baidu Security\MoboMarket\1.2.8.3351\bassvc.exe [208928] [PID.1432] ©
[MD5.A6FB9DB8F1A86861D955FD6975977AE0] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe [89600] [PID.1652] ©
[MD5.D65AA164ACD0F6706DBCFBBCC9731584] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [864032] [PID.1680] ©
[MD5.41310C7B494CD29AF2849DF72B1512F1] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [958464] [PID.1736] ©
[MD5.911961244D2CE9F1A16737862AE7BF73] - (.AnchorFree Inc. - Hotspot Shield 3.23.) -- C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [920872] [PID.1948] ©
[MD5.704EE8EA4A9993E3FD57EC20268CF537] - (...) -- C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [555304] [PID.2008]
[MD5.5460828F8951D310B42B442877603B8D] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2044] ©
[MD5.39E1DFB1700294E6C829465BD39E58B2] - (.McAfee, Inc. - McAfee Process Validation Service.) -- C:\Program Files\Common Files\mcafee\SystemCore\mfevtps.exe [149032] [PID.1788] ©
[MD5.96EFEC24346A8EB1157E80523079ADDC] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056] [PID.1728]
[MD5.CF53DCCE55E500F51089774E851E7363] - (.SoftThinks - SoftThinks Agent Service.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [673088] [PID.2068] ©
[MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.2216] ©
[MD5.F97961FD74E83E3E96DB45B69B33B157] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [3105144] [PID.2240]
[MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.2292] ©
[MD5.48362E5DB5CB2C000C514EE1F3890ACD] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13336] [PID.2440] ©
[MD5.AD2B622B46B78F212EB82330073B79E0] - (.McAfee, Inc. - McAfee Core Firewall Service.) -- C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe [245352] [PID.2484] ©
[MD5.8409EE56B279B55839A924D05B4DBEB5] - (.Maxiget Ltd. - Maxiget Updater.) -- C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe [131480] [PID.3304]
[MD5.D96D0F617E2E06EEB709430515B3B7D8] - (.© 2007-2009 SoftThinks SAS - ST Service Scheduling.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe [783680] [PID.3988] ©
[MD5.023C55185495F1066F4C7F893658C4ED] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [487424] [PID.3316] ©
[MD5.FD0816AEA467268B44865BBED9392294] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088] [PID.3740] ©
[MD5.D98EF2E62B94F243E1BAF4350BF48C61] - (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE [5712896] [PID.3732] ©
[MD5.A5A7E43ED80D1107CBD6D631A34B0EC7] - (.Kmaestro - KeyMaestro (x64) main program.) -- C:\Program Files\KMaestro\Kmaestro64.exe [373248] [PID.3856]
[MD5.022602978D5EC366FDBE5480C5F8C6A5] - (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [3382680] [PID.3240] ©
[MD5.70D2D88F5301B21488708A1F1A263D4F] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\System32\igfxtray.exe [167704] [PID.3360] ©
[MD5.68B83F92E02584FF5CB7B80CACDC8C24] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\System32\hkcmd.exe [392472] [PID.3160] ©
[MD5.2AC55814155D090E84EB8188F73CDBA7] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\System32\igfxpers.exe [416024] [PID.4180] ©
[MD5.DD7DAE4E8F169D1FF4511FC292FF6FF6] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696] [PID.4288] ©
[MD5.CFDFBCF821E14B00EC0DA1A4E7954258] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [121128] [PID.4452] ©
[MD5.609B1EC328B30D5DE438DCCE0732649C] - (.Stardock Corporation - Dell Dock.) -- C:\Program Files\Dell\DellDock\DellDock.exe [1324384] [PID.4480] ©
[MD5.00D1FB0073B4A8BD2989EA8FF4CC792B] - (.SupportSoft, Inc. - Dell Support Center Updates.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [206064] [PID.4524]
[MD5.29259683CE518DC73752348AF974B59E] - (.Baidu, Inc. - Baidu AndroidStore Helper.) -- C:\Program Files (x86)\Baidu Security\MoboMarket\1.2.8.3351\bas_helper.exe [2183200] [PID.4768] ©
[MD5.DDBE89226D55D694F1B7B3DD0C324640] - (.RealNetworks, Inc. - RealDownloader.) -- C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [233048] [PID.5256] ©
[MD5.D630B6F2E8379B6F10DC16E82A426552] - (.SupportSoft, Inc. - SupportSoft Agent Service.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe [206064] [PID.6124]
[MD5.9E89C2D6945389270DE067CE51FF7425] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.3184] ©
[MD5.018B44D6E41ABDD08403E6B9EC3575B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\dell.dell-PC\Desktop\ZHPDiag3.exe [1929728] [PID.1192] ©

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (24) - 5s
M1 - SPR:Search Page Redirection - C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com
P2 - EXT FILE: (...) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\firefoxaddon@youtubeenhancer.com.xpi
P2 - EXT FILE: (...) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\jid1-tdms4EWes6XF5w@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\youtube-cinemode@gmail.com.xpi
P2 - EXT FILE: (...) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
P2 - EXT FILE: (...) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\{d62bb6fa-7192-47fd-b640-ad8855c444f3}.xpi
P2 - EXT FILE: (...) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\searchplugins\bingp.xml
P2 - EXT FILE: (...) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\searchplugins\conduit.xml =>PUP.Optional.Conduit
P2 - EXT: (.AnchorFree Inc - Hotspot Shield Extension.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.Nero - Apps Hat.) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\39ed7c16-185d-4f88-b976-666d4928ba01@fe4550c1-7a4f-4a62-ad1c-45e0afdf81a4.com
P2 - EXT: (.lightningnewtab.com - Fast Start.) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\faststartff@gmail.com =>PUP.Optional.FastStart
P2 - EXT: (.iWebar - iWebar1.1.) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\ROUAILDE73397174@UXGZI17268980.com
P2 - EXT: (.Object Browser - Sense1.) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\warnerroberts@hotmail.com
P2 - EXT: (.Goobzo - Youtube Accelerator Helper.) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\{4C59F3E5-BBD0-4344-8DD2-30866FA0B31E} =>PUP.Optional.Goobzo
P2 - EXT: (.Goobzo - Shopper-Pro.) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF} =>PUP.Optional.Goobzo
P2 - EXT: (.Conduit Ltd. - Hotspot Shield .) -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
P2 - FPN: [HKLM] [@omaha.maxiget.com/Maxiget Updater;version=3] - (.Maxiget Ltd..) -- C:\Program Files (x86)\Maxiget\Updater\70.3.29.7018\npMaxigetUpdater3.dll
P2 - FPN: [HKLM] [@omaha.maxiget.com/Maxiget Updater;version=9] - (.Maxiget Ltd..) -- C:\Program Files (x86)\Maxiget\Updater\70.3.29.7018\npMaxigetUpdater3.dll
P2 - FPN: [HKLM] [@real.com/nprpplugin;version=16.0.3.51] - (.RealPlayer.) -- c:\program files (x86)\Real\realplayer\Netscape6\nprpplugin.dll
P2 - FPN: [HKLM] [@realnetworks.com/npdlplugin;version=1] - (.RealDownloader.) -- C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate

---\\ Internet Explorer Extensions, Start, Search (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.mystartsearch.com/ =>PUP.Optional.StartSearch
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {c95a4e8e-816d-4655-8c79-d736da1adb6d} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = proxy1.emirates.net.ae:8080
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy1.emirates.net.ae:8080
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (0)

---\\ Browser Helper Object (BHO) (5) - 0s
O2 - BHO: scriptproxy [64Bits] - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} . (.McAfee, Inc. - VSCore Script Scanner.) -- C:\Program Files\Common Files\mcafee\SystemCore\ScriptSn.20110913231059.dll ©
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll ©
O2 - BHO: Hotspot Shield Class [64Bits] - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} (Orphean)
O2 - BHO: YTAHelperBHO [64Bits] - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} (Orphean) =>PUP.Optional.Goobzo

---\\ Internet Explorer Toolbars (3) - 0s
O3 - Toolbar: 0xEF44FA216D37534D9B0F8A89D3229068 - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} . (...) -- (.not file.)
O3 - Toolbar: 0x8E4E5AC96D8155468C79D736DA1ADB6D - [HKCU]{C95A4E8E-816D-4655-8C79-D736DA1ADB6D} . (...) -- (.not file.)
O3 - Toolbar: Hotspot Shield Toolbar - [HKLM]{c95a4e8e-816d-4655-8c79-d736da1adb6d} . (...) -- (.not file.)

---\\ Auto loading programs from Registry and folders (15) - 0s
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe ©
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE ©
O4 - HKLM\..\Run: [BtcMaestro] . (.Kmaestro - KeyMaestro (x64) main program.) -- C:\Program Files\KMaestro\KMaestro64.exe
O4 - HKLM\..\Run: [egui] . (.ESET - ESET GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe ©
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe ©
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe ©
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe ©
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe ©
O4 - HKLM\..\Wow6432Node\Run: [DellSupportCenter] . (.SupportSoft, Inc. - Dell Support Center Updates.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [Launcher] . (.Softthinks - VistaLauncher.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©

---\\ Lop.com/Domain Hijackers (9) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = dlinkrouter
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = dlinkrouter
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = dlinkrouter

---\\ Extra protocols (21) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\WINDOWS\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL ©

---\\ Non Microsoft non disabled Windows Services (23) - 1s
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe ©
O23 - Service: Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc. - Baidu MoboMarket Service.) - C:\Program Files (x86)\Baidu Security\MoboMarket\1.2.8.3351\bassvc.exe ©
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe ©
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O23 - Service: Dock Login Service (DockLoginService) . (.Stardock Corporation - Dock Login Service.) - C:\Program Files\Dell\DellDock\DockLogin.exe ©
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe ©
O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: Hotspot Shield Service (hshld) . (.AnchorFree Inc. - Hotspot Shield 3.23.) - C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe ©
O23 - Service: Hotspot Shield Monitoring Service (HssWd) . (...) - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe ©
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
O23 - Service: McShield (McShield) . (.McAfee, Inc. - McAfee On-Access Scanner service.) - C:\Program Files\Common Files\mcafee\SystemCore\mcshield.exe ©
O23 - Service: McAfee Firewall Core Service (mfefire) . (.McAfee, Inc. - McAfee Core Firewall Service.) - C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe ©
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc. - McAfee Process Validation Service.) - C:\Program Files\Common Files\mcafee\SystemCore\mfevtps.exe ©
O23 - Service: خدمة Maxiget Update (mglupdate) (mglupdate) . (.Maxiget Ltd. - Maxiget Updater.) - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe
O23 - Service: RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
O23 - Service: SoftThinks Agent Service (SftService) . (.SoftThinks - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE ©
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc. - SupportSoft Agent Service.) - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Audio Service (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\stacsv64.exe ©
O23 - Service: Torch Crash Handler (TorchCrashHandler) . (...) - C:\Users\dell.dell-PC\AppData\Local\Torch\Update\TorchCrashHandler.exe (.not file.) =>PUP.Optional.Torch
O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ©
O23 - Service: DW WLAN Tray Service (wltrysvc) . (.Dell Inc. - DW WLAN Card Wireless Network Service.) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE ©

---\\ Software installed (79) - 10s
O42 - Logiciel: KeyMaestro Input Device Driver V2.7.1-77AU MUL - (...) [HKLM][64Bits] -- BtcMaestro
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner ©
O42 - Logiciel: DW WLAN Card Utility - (.Dell Inc..) [HKLM][64Bits] -- DW WLAN Card Utility ©
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey ©
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: Java(TM) 6 Update 20 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416020FF} ©
O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor - (.Intel.) [HKLM][64Bits] -- {39F4C6F9-618A-4E5B-8FB2-6BD661174E32} ©
O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM][64Bits] -- {8EBA8727-ADC2-477B-9D9A-1A1836BE4E05} ©
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {9E9D49A4-1DF4-4138-B7DB-5D87A893088E} ©
O42 - Logiciel: Internet Explorer (Enable DEP) - (...) [HKLM][64Bits] -- {a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D81C035E-D0A5-11DF-9450-0013D3D69929} ©
O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Advanced Audio FX Engine - (.Creative Technology Ltd.) [HKLM][64Bits] -- Advanced Audio FX Engine ©
O42 - Logiciel: Autorun Virus Remover 2.3 - (.Autorun Remover.) [HKLM][64Bits] -- Autorun Virus Remover_is1
O42 - Logiciel: AVI/MPEG/RM/WMV Splitter 4.28 - (.boilsoft, Inc..) [HKLM][64Bits] -- AVI MPEG RM WMV Splitter_is1
O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Update Manager_is1 ©
O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Software Navigator_is1 ©
O42 - Logiciel: AVS Video Converter 8 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1 ©
O42 - Logiciel: Belief&Betrayal - (.dtp entertainment AG.) [HKLM][64Bits] -- Belief&Betrayal_is1
O42 - Logiciel: Dell Webcam Central - (.Creative Technology Ltd.) [HKLM][64Bits] -- Dell Webcam Central ©
O42 - Logiciel: iWebar - (.iWebar.) [HKLM][64Bits] -- iWebar =>PUP.Optional.CrossRider
O42 - Logiciel: K-Lite Codec Pack 10.2.0 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: MaxiGet Software Manager - (.Maxiget Ltd..) [HKLM][64Bits] -- MaxiGet Software Manager_is1
O42 - Logiciel: Messenger Plus! Live - (.Yuna Software.) [HKLM][64Bits] -- Messenger Plus! Live
O42 - Logiciel: Mozilla Firefox 40.0.3 (x86 ar) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.3 (x86 ar) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: My Program version 1.5 - (...) [HKLM][64Bits] -- My Program_is1
O42 - Logiciel: mystartsearch uninstall - (.mystartsearch.) [HKLM][64Bits] -- mystartsearch uninstall =>PUP.Optional.StartSearch
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 16.0 ©
O42 - Logiciel: recALL version 15.01 - (...) [HKLM][64Bits] -- recALL_is1
O42 - Logiciel: Torrente_Vace - (...) [HKLM][64Bits] -- Torrente_Vace
O42 - Logiciel: Total Video Converter 3.14 080930 - (.EffectMatrix Inc..) [HKLM][64Bits] -- Total Video Converter 3.14_is1
O42 - Logiciel: UltraISO Premium V9.3 - (...) [HKLM][64Bits] -- UltraISO_is1
O42 - Logiciel: VLC media player 2.1.2 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: WildTangent Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent dell Master Uninstall © =>.WildTangent
O42 - Logiciel: WinRAR archiver - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Yahoo! Messenger - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Messenger ©
O42 - Logiciel: YouTube Accelerator - (.Goobzo Ltd..) [HKLM][64Bits] -- YouTube Accelerator =>PUP.Optional.Goobzo
O42 - Logiciel: Dell DataSafe Local Backup - (.Dell.) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04} ©
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {15BC8CD0-A65B-47D0-A2DD-90A824590FA8} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Boilsoft Video Splitter 6.11 - (.Boilsoft, Inc..) [HKLM][64Bits] -- {253AD5C7-94ED-44BF-AA0C-890A80817A87}_is1
O42 - Logiciel: Java(TM) 6 Update 14 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216014F0} ©
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF} ©
O42 - Logiciel: Java 7 Update 13 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217013FF} ©
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} ©
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} ©
O42 - Logiciel: محول الصوتيات 6.0 - (.المكتب العربي للبرمجيات.) [HKLM][64Bits] -- {463E9B29-6875-47B6-AD91-6E071BD1C7C2}_is1
O42 - Logiciel: Messenger Companion - (.Microsoft Corporation.) [HKLM][64Bits] -- {50816F92-1652-4A7C-B9BC-48F682742C4B} ©
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} ©
O42 - Logiciel: Live! Cam Avatar Creator - (.Creative Technology Ltd.) [HKLM][64Bits] -- {65D0C510-D7B6-4438-9FC8-E6B91115AB0D} ©
O42 - Logiciel: Dell Getting Started Guide - (.Dell Inc..) [HKLM][64Bits] -- {7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045} ©
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: Compatibility Pack for the 2007 Office system - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0020-0409-0000-0000000FF1CE} ©
O42 - Logiciel: Skype Toolbars - (.Skype Technologies S.A..) [HKLM][64Bits] -- {981029E0-7FC9-4CF3-AB39-6F133621921A} ©
O42 - Logiciel: Roxio Burn - (.Roxio.) [HKLM][64Bits] -- {A33E7B0C-B99C-4EC9-B702-8A328B161AF9} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: Dell DataSafe Local Backup - Support Software - (.Dell.) [HKLM][64Bits] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49} ©
O42 - Logiciel: Adobe Reader 9.1 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-A91000000001} ©
O42 - Logiciel: Roxio Burn - (.Roxio.) [HKLM][64Bits] -- {B2E47DE7-800B-40BB-BD1F-9F221C3AEE87} ©
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE} ©
O42 - Logiciel: QordobaReader - (.Qordoba.) [HKLM][64Bits] -- {CDF1DC21-F431-4EEA-9C6B-CA0F5DE7BB29}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} ©
O42 - Logiciel: COWON Media Center - jetAudio Basic VX - (.COWON.) [HKLM][64Bits] -- {DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Dell Support Center (Support Software) - (.Dell.) [HKLM][64Bits] -- {E3BFEE55-39E2-4BE0-B966-89FE583822C1} ©
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} ©
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} ©
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} ©
O42 - Logiciel: AppsHat Mobile Apps - (.Somoto Ltd..) [HKCU][64Bits] -- AppsHat Mobile Apps =>PUP.Optional.MegaSearch

---\\ HKCU & HKLM Software Keys (174) - 10s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Apps Hat =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Apps Hat-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\ASIO
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\AVS4YOU
HKLM\SOFTWARE\Wow6432Node\Baidu Security
HKLM\SOFTWARE\Wow6432Node\Baidu_Drp_pos
HKLM\SOFTWARE\Wow6432Node\BcmSetup
HKLM\SOFTWARE\Wow6432Node\cbc79570-92ad-422f-b0ff-f8a192c7326a =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\COWON
HKLM\SOFTWARE\Wow6432Node\Creative
HKLM\SOFTWARE\Wow6432Node\Creative Tech
HKLM\SOFTWARE\Wow6432Node\CToolbar =>PUP.Optional.InboxEmail
HKLM\SOFTWARE\Wow6432Node\Cyberlink
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\Dell Computer Corporation
HKLM\SOFTWARE\Wow6432Node\EasyBoot Systems
HKLM\SOFTWARE\Wow6432Node\ESET
HKLM\SOFTWARE\Wow6432Node\FileServe
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Goobzo =>PUP.Optional.Goobzo
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HotspotShield
HKLM\SOFTWARE\Wow6432Node\Hotspot_Shield
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\ImageMagick
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\iTinySoft
HKLM\SOFTWARE\Wow6432Node\iWebar =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\iWebar-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\J. River
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\KONAMI
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Maxiget
HKLM\SOFTWARE\Wow6432Node\McAfee
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\McAfeeInstaller
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MusicNet
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Netscape
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Osen Kusnadi
HKLM\SOFTWARE\Wow6432Node\Patchou
HKLM\SOFTWARE\Wow6432Node\PC-Doctor
HKLM\SOFTWARE\Wow6432Node\RealNetworks
HKLM\SOFTWARE\Wow6432Node\Roxio
HKLM\SOFTWARE\Wow6432Node\ShopperPro =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SoftThinks
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\SupportSoft
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Virtual Toys
HKLM\SOFTWARE\Wow6432Node\WIBU-SYSTEMS
HKLM\SOFTWARE\Wow6432Node\WildTangent
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp.
HKLM\SOFTWARE\Wow6432Node\yahoo
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\4shared
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Anchorfree
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\AVS4YOU
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\Broadcom
HKCU\SOFTWARE\CatalinaGroup
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\COWON
HKCU\SOFTWARE\Creative Tech
HKCU\SOFTWARE\CToolbar =>PUP.Optional.InboxEmail
HKCU\SOFTWARE\Dell
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\DTP
HKCU\SOFTWARE\EasyBoot Systems
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Freeverse
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GetData
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IDT
HKCU\SOFTWARE\iLivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\J. River
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Macrovision
HKCU\SOFTWARE\madshi
HKCU\SOFTWARE\Maxiget
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\MEDASYS
HKCU\SOFTWARE\MediaChance
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nimbuzz
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Patchou
HKCU\SOFTWARE\PC App Store
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Qordoba
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Roxio
HKCU\SOFTWARE\Sammsoft
HKCU\SOFTWARE\Screentime Media
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Sonic
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
HKCU\SOFTWARE\SupportSoft
HKCU\SOFTWARE\SWiSHzone.com
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\SystemSafe
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\tvp
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\WebPlayer =>PUP.Optional.WebPlayer
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\Windows Live Writer
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\yahoo
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\RealNetworks
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Toolbar
HKCU\SOFTWARE\AppDataLow\Software\Apps Hat =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Hotspot_Shield
HKCU\SOFTWARE\AppDataLow\Software\iWebar =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\RealNetworks
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar

---\\ Contents of the Common Files folders (439) - 20s
O43 - CFD: 2012/01/17 22:11:48 - [] D -- C:\Program Files (x86)\4Media
O43 - CFD: 2010/08/17 23:45:06 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2014/09/29 23:27:33 - [] D -- C:\Program Files (x86)\Apps Hat =>PUP.Optional.CrossRider
O43 - CFD: 2011/11/09 13:21:05 - [] D -- C:\Program Files (x86)\AutorunRemover
O43 - CFD: 2012/02/24 13:47:40 - [] D -- C:\Program Files (x86)\AVI MPEG RM WMV Splitter
O43 - CFD: 2012/03/05 19:45:50 - [] D -- C:\Program Files (x86)\AVS4YOU
O43 - CFD: 2015/09/13 00:29:33 - [] D -- C:\Program Files (x86)\Baidu Security
O43 - CFD: 2012/02/24 16:12:50 - [] D -- C:\Program Files (x86)\Boilsoft Video Splitter
O43 - CFD: 2014/01/25 10:14:37 - [] D -- C:\Program Files (x86)\CCleaner
O43 - CFD: 2011/11/04 20:21:10 - [] D -- C:\Program Files (x86)\ChitChat Toolbar
O43 - CFD: 2010/08/17 23:45:00 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 2014/10/05 14:30:13 - [] D -- C:\Program Files (x86)\CodeMeter
O43 - CFD: 2014/12/26 20:16:39 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2012/11/17 02:04:17 - [] D -- C:\Program Files (x86)\Conduit
O43 - CFD: 2011/10/04 08:37:08 - [] D -- C:\Program Files (x86)\ConduitEngine
O43 - CFD: 2010/08/17 23:53:15 - [] D -- C:\Program Files (x86)\Creative
O43 - CFD: 2010/08/17 23:52:43 - [] D -- C:\Program Files (x86)\Creative Live! Cam
O43 - CFD: 2010/08/18 00:11:40 - [] D -- C:\Program Files (x86)\Dell
O43 - CFD: 2014/02/03 21:03:15 - [] D -- C:\Program Files (x86)\Dell DataSafe Local Backup
O43 - CFD: 2010/08/17 23:50:40 - [] D -- C:\Program Files (x86)\Dell Support Center
O43 - CFD: 2010/08/17 23:53:10 - [] D -- C:\Program Files (x86)\Dell Webcam
O43 - CFD: 2014/02/03 20:48:26 - [0] D -- C:\Program Files (x86)\Duplicate Cleaner
O43 - CFD: 2014/09/29 21:59:47 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2014/09/15 08:38:23 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2014/02/04 21:02:15 - [] D -- C:\Program Files (x86)\Hotspot Shield
O43 - CFD: 2014/09/29 23:27:24 - [] D -- C:\Program Files (x86)\Hotspot_Shield
O43 - CFD: 2013/11/12 15:54:11 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2011/11/02 18:51:27 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2014/09/29 21:39:28 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2015/09/12 23:31:54 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2014/10/24 22:18:10 - [] D -- C:\Program Files (x86)\iWebar =>PUP.Optional.CrossRider
O43 - CFD: 2013/11/12 15:48:00 - [] D -- C:\Program Files (x86)\J River
O43 - CFD: 2013/02/08 19:25:59 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2013/11/12 15:54:42 - [] D -- C:\Program Files (x86)\JetAudio
O43 - CFD: 2014/01/23 16:41:13 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 2011/09/30 20:43:24 - [] D -- C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 2014/09/29 22:00:43 - [] D -- C:\Program Files (x86)\Maxiget
O43 - CFD: 2014/09/29 22:03:05 - [] D -- C:\Program Files (x86)\MaxiGet Software Manager
O43 - CFD: 2011/10/06 21:28:26 - [] D -- C:\Program Files (x86)\McAfee
O43 - CFD: 2011/10/07 11:57:05 - [] D -- C:\Program Files (x86)\Messenger Plus! Live
O43 - CFD: 2011/10/04 08:37:00 - [] D -- C:\Program Files (x86)\Messenger_Plus_UAE
O43 - CFD: 2013/12/12 01:13:18 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2011/11/04 20:21:10 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/09/12 23:08:20 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2010/08/17 23:36:22 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2012/10/10 17:55:36 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2011/10/18 23:45:50 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/09/14 21:50:10 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/09/14 21:50:03 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 09:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/09/13 00:30:26 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2015/09/14 21:20:48 - [0] D -- C:\Program Files (x86)\PC App Store
O43 - CFD: 2013/12/29 12:28:17 - [] D -- C:\Program Files (x86)\Qordoba Reader
O43 - CFD: 2012/10/08 07:14:08 - [] D -- C:\Program Files (x86)\Real
O43 - CFD: 2013/11/12 14:50:16 - [] D -- C:\Program Files (x86)\RealNetworks
O43 - CFD: 2012/03/24 23:04:50 - [] D -- C:\Program Files (x86)\Real_SC
O43 - CFD: 2009/07/14 09:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2010/08/17 23:53:30 - [] D -- C:\Program Files (x86)\Roxio
O43 - CFD: 2011/11/04 20:21:10 - [] D -- C:\Program Files (x86)\SearchCore for Browsers =>PUP.Optional.SearchCore
O43 - CFD: 2014/12/26 20:16:39 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2014/09/29 23:27:26 - [] D -- C:\Program Files (x86)\SupTab =>PUP.Optional.SupTab
O43 - CFD: 2011/11/04 03:02:51 - [] D -- C:\Program Files (x86)\SweetIM =>PUP.Optional.SweetIM
O43 - CFD: 2014/01/23 16:40:34 - [] D -- C:\Program Files (x86)\Total Video Converter
O43 - CFD: 2014/02/03 21:03:16 - [0] D -- C:\Program Files (x86)\TuneUp Utilities 2013
O43 - CFD: 2011/10/13 12:58:18 - [] D -- C:\Program Files (x86)\UltraISO
O43 - CFD: 2009/07/14 08:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2011/10/02 03:19:01 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2014/02/03 20:46:16 - [0] D -- C:\Program Files (x86)\VisiPics
O43 - CFD: 2010/08/17 23:45:43 - [] D -- C:\Program Files (x86)\WildTangent
O43 - CFD: 2013/07/18 06:01:42 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2011/11/04 04:12:09 - [] D -- C:\Program Files (x86)\Windows iLivid Toolbar =>PUP.Optional.Bandoo
O43 - CFD: 2013/06/14 13:57:28 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2012/12/13 00:56:56 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/09/14 21:21:08 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 09:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2012/12/13 00:56:56 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2012/12/13 00:56:56 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2012/12/13 00:56:56 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2011/10/19 14:00:02 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2012/10/19 14:29:53 - [] D -- C:\Program Files (x86)\Yahoo!
O43 - CFD: 2015/09/13 00:14:27 - [] D -- C:\Program Files (x86)\YouTube Accelerator
O43 - CFD: 2013/02/16 06:26:51 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2012/01/15 11:48:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/09/29 22:00:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppsHat =>PUP.Optional.MegaSearch
O43 - CFD: 2011/11/09 13:21:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutorunRemover
O43 - CFD: 2012/02/24 13:47:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVI MPEG RM WMV Splitter
O43 - CFD: 2012/03/05 19:45:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2011/10/19 14:42:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belief&Betrayal
O43 - CFD: 2012/02/24 16:12:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Boilsoft Video Splitter
O43 - CFD: 2014/01/25 10:14:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2013/11/12 15:54:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COWON Media Center - jetAudio
O43 - CFD: 2010/08/18 00:11:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 2010/08/18 00:06:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
O43 - CFD: 2010/08/17 23:50:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
O43 - CFD: 2010/08/17 23:53:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Webcam
O43 - CFD: 2010/08/17 23:44:38 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
O43 - CFD: 2011/10/31 11:23:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
O43 - CFD: 2010/08/17 23:48:43 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2013/12/04 03:50:58 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 2014/01/18 20:25:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
O43 - CFD: 2010/08/17 23:54:14 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2013/11/12 15:49:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JRiver Media Center 19
O43 - CFD: 2014/01/23 16:41:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 2014/12/26 20:11:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\keit.co
O43 - CFD: 2011/10/21 15:06:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyMaestro
O43 - CFD: 2009/07/14 08:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/09/29 22:03:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxiGet Software Manager
O43 - CFD: 2010/08/17 23:52:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2015/09/12 23:12:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2012/10/10 17:55:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2013/12/29 12:28:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qordoba Reader
O43 - CFD: 2013/11/12 14:50:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
O43 - CFD: 2010/08/17 23:53:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio
O43 - CFD: 2014/12/26 20:16:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/09/13 00:19:29 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2010/08/18 02:16:15 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2011/10/19 15:04:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Torrente_Vace
O43 - CFD: 2012/01/18 21:51:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
O43 - CFD: 2011/10/13 12:58:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
O43 - CFD: 2014/01/23 16:40:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2012/06/23 21:42:43 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2014/12/26 20:13:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2012/10/19 14:29:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
O43 - CFD: 2014/09/29 21:57:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Accelerator
O43 - CFD: 2012/03/24 23:04:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\محول الصوتيات
O43 - CFD: 2013/05/01 21:59:28 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/07/14 09:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2011/10/31 11:09:59 - [0] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2012/03/05 19:45:55 - [] D -- C:\ProgramData\AVS4YOU
O43 - CFD: 2014/12/24 23:29:51 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 2015/09/13 00:29:41 - [] D -- C:\ProgramData\Baidu Security
O43 - CFD: 2012/11/16 02:46:12 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 2011/11/04 18:09:06 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2011/11/04 19:05:30 - [] D -- C:\ProgramData\Chit Chat For Facebook
O43 - CFD: 2012/11/30 22:14:22 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 2013/12/05 23:53:08 - [] D -- C:\ProgramData\Conduit
O43 - CFD: 2012/11/10 14:26:50 - [] D -- C:\ProgramData\Creative
O43 - CFD: 2014/01/16 03:56:28 - [0] D -- C:\ProgramData\Datamngr =>PUP.Optional.Datamngr
O43 - CFD: 2011/09/14 00:19:28 - [] D -- C:\ProgramData\Dell
O43 - CFD: 2009/07/14 09:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 09:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2011/10/31 11:23:05 - [] D -- C:\ProgramData\ESET
O43 - CFD: 2009/07/14 09:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/01/24 01:56:35 - [] D -- C:\ProgramData\Hotspot Shield
O43 - CFD: 2013/12/05 23:50:56 - [0] D -- C:\ProgramData\hssff
O43 - CFD: 2014/01/25 10:14:31 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2014/09/29 23:27:28 - [] D -- C:\ProgramData\IePluginServices =>Trojan.SProtector
O43 - CFD: 2011/11/02 18:55:24 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2014/05/21 00:40:56 - [] D -- C:\ProgramData\Log
O43 - CFD: 2010/08/17 23:53:31 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 2011/11/02 02:27:33 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2011/10/02 20:31:58 - [] D -- C:\ProgramData\Messenger Plus!
O43 - CFD: 2015/06/15 21:02:04 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/13 02:22:05 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2010/08/17 23:50:44 - [0] D -- C:\ProgramData\PCDr
O43 - CFD: 2015/06/16 05:49:27 - [] D -- C:\ProgramData\Real
O43 - CFD: 2013/11/12 14:50:14 - [] D -- C:\ProgramData\RealNetworks
O43 - CFD: 2014/09/29 22:24:52 - [] D -- C:\ProgramData\ShopperPro =>PUP.Optional.ShopperPro
O43 - CFD: 2014/12/26 20:16:51 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2010/08/17 23:53:37 - [] D -- C:\ProgramData\Sonic
O43 - CFD: 2012/01/14 23:26:01 - [] D -- C:\ProgramData\Sony
O43 - CFD: 2009/07/14 09:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2012/01/17 18:55:36 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2010/08/17 23:50:46 - [] D -- C:\ProgramData\SupportSoft
O43 - CFD: 2011/11/04 03:02:46 - [] D -- C:\ProgramData\SweetIM =>PUP.Optional.SweetIM
O43 - CFD: 2015/09/12 23:59:42 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 09:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/11/30 22:18:54 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 2010/08/17 23:53:40 - [] D -- C:\ProgramData\Uninstall
O43 - CFD: 2012/01/17 00:23:03 - [] D -- C:\ProgramData\Web Installer
O43 - CFD: 2012/11/02 18:51:19 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 2014/09/29 23:27:28 - [] D -- C:\ProgramData\WindowsMangerProtect =>PUP.Optional.WpManager
O43 - CFD: 2012/10/19 14:29:56 - [] D -- C:\ProgramData\Yahoo!
O43 - CFD: 2014/09/29 22:24:43 - [] D -- C:\ProgramData\YTAHelper =>PUP.Optional.Goobzo
O43 - CFD: 2012/11/30 22:26:55 - [0] SHD -- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
O43 - CFD: 2012/11/30 22:26:55 - [0] SHD -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 2012/11/30 22:26:56 - [0] HDC -- C:\ProgramData\{D19C2D22-6043-47E7-B400-83A351841204}
O43 - CFD: 2010/08/17 23:45:09 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2012/03/05 19:45:30 - [] D -- C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 2013/11/12 15:54:40 - [] D -- C:\Program Files (x86)\Common Files\COWON
O43 - CFD: 2014/05/17 17:20:16 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2011/10/13 12:58:18 - [] D -- C:\Program Files (x86)\Common Files\EZB Systems
O43 - CFD: 2010/08/17 23:52:40 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2010/08/17 23:54:12 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2012/01/17 18:55:36 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2011/10/06 21:28:26 - [] D -- C:\Program Files (x86)\Common Files\mcafee
O43 - CFD: 2015/06/16 05:51:54 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2010/08/17 23:40:00 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2010/08/17 23:53:31 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2010/08/17 23:53:10 - [] D -- C:\Program Files (x86)\Common Files\Reallusion
O43 - CFD: 2010/08/17 23:53:31 - [] D -- C:\Program Files (x86)\Common Files\Roxio Shared
O43 - CFD: 2011/11/04 20:21:41 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/12/26 20:16:39 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2010/08/17 23:53:31 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 2009/07/14 07:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2010/08/17 23:50:35 - [] D -- C:\Program Files (x86)\Common Files\supportsoft
O43 - CFD: 2012/12/13 00:56:56 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2010/08/17 23:33:56 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2012/10/08 07:14:27 - [] D -- C:\Program Files (x86)\Common Files\xing shared
O43 - CFD: 2011/09/18 02:03:37 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Adobe
O43 - CFD: 2012/03/05 19:45:56 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\AVS4YOU
O43 - CFD: 2015/09/13 00:29:30 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Baidu Security
O43 - CFD: 2012/02/24 16:12:50 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Boilsoft
O43 - CFD: 2013/11/12 15:55:48 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\COWON
O43 - CFD: 2011/09/14 03:32:26 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Dell
O43 - CFD: 2014/02/03 20:48:19 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\DigitalVolcano
O43 - CFD: 2014/10/05 14:22:42 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\DMCache
O43 - CFD: 2013/11/12 15:27:46 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\dvdcss
O43 - CFD: 2011/10/31 11:23:49 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\ESET
O43 - CFD: 2011/10/19 15:19:09 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Freeverse
O43 - CFD: 2014/02/03 21:40:14 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Hotspot Shield
O43 - CFD: 2011/09/14 03:31:36 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Identities
O43 - CFD: 2011/09/14 03:32:27 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Intel Corporation
O43 - CFD: 2013/11/12 15:47:43 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\J River
O43 - CFD: 2014/12/26 20:11:46 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\keit.co
O43 - CFD: 2013/07/03 00:59:24 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\LaunchPad
O43 - CFD: 2011/09/14 07:44:19 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Macromedia
O43 - CFD: 2012/10/29 20:47:18 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Macrovision
O43 - CFD: 2010/08/18 02:16:15 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\Media Center Programs
O43 - CFD: 2013/12/13 19:20:48 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\Media Player Classic
O43 - CFD: 2013/12/13 18:31:51 - [] SD -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft
O43 - CFD: 2011/09/16 20:23:43 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Mozilla
O43 - CFD: 2014/02/14 14:54:40 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\MPC-HC
O43 - CFD: 2014/09/29 22:22:13 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
O43 - CFD: 2013/11/11 16:17:05 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 2014/02/03 22:05:24 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Opera
O43 - CFD: 2014/12/26 20:13:41 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Opera Software
O43 - CFD: 2015/09/13 00:25:20 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\PC App Store
O43 - CFD: 2012/01/14 23:29:01 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\Publish Providers
O43 - CFD: 2013/05/07 22:53:03 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Real
O43 - CFD: 2013/11/12 14:50:47 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\RealNetworks
O43 - CFD: 2011/09/14 03:32:19 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Roxio
O43 - CFD: 2015/09/12 23:43:03 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Skype
O43 - CFD: 2012/09/05 00:25:36 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\skypePM
O43 - CFD: 2012/01/17 01:17:55 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Sony
O43 - CFD: 2012/02/08 22:08:11 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 2014/09/29 22:03:51 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\SupTab =>PUP.Optional.SupTab
O43 - CFD: 2012/10/22 22:42:15 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Template
O43 - CFD: 2012/11/30 22:18:54 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\TuneUp Software
O43 - CFD: 2014/02/03 20:29:36 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\URSoft
O43 - CFD: 2011/10/24 17:55:48 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Vistanita
O43 - CFD: 2014/02/14 14:56:24 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\vlc
O43 - CFD: 2012/06/23 22:44:41 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\Windows Live Writer
O43 - CFD: 2011/10/19 14:00:20 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\WinRAR
O43 - CFD: 2012/10/19 17:38:43 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Yahoo!
O43 - CFD: 2015/09/15 22:03:45 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\ZHP
O43 - CFD: 2015/09/12 22:45:46 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Adobe
O43 - CFD: 2011/09/14 03:28:10 - [0] SHD -- C:\Users\dell.dell-PC\AppData\Local\Application Data
O43 - CFD: 2014/09/29 22:00:51 - [] D -- C:\Users\dell.dell-PC\AppData\Local\AppsHat Mobile Apps =>PUP.Optional.MegaSearch
O43 - CFD: 2011/10/21 14:59:30 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Ashisoft
O43 - CFD: 2011/09/14 03:32:19 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Broadcom
O43 - CFD: 2014/02/01 14:58:40 - [] D -- C:\Users\dell.dell-PC\AppData\Local\CatalinaGroup
O43 - CFD: 2012/11/17 02:04:13 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Conduit
O43 - CFD: 2014/09/29 21:57:37 - [] D -- C:\Users\dell.dell-PC\AppData\Local\CrashRpt =>.Superfluous.CrashReports
O43 - CFD: 2013/01/16 17:29:05 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Diagnostics
O43 - CFD: 2013/12/13 19:21:03 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/09/13 00:23:38 - [0] SHD -- C:\Users\dell.dell-PC\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/09/13 00:23:38 - [0] SHD -- C:\Users\dell.dell-PC\AppData\Local\EmieSiteList
O43 - CFD: 2015/09/13 00:23:38 - [0] SHD -- C:\Users\dell.dell-PC\AppData\Local\EmieUserList
O43 - CFD: 2011/10/31 11:23:49 - [] D -- C:\Users\dell.dell-PC\AppData\Local\ESET
O43 - CFD: 2012/08/24 17:45:31 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Facebook
O43 - CFD: 2014/09/29 21:59:47 - [] D -- C:\Users\dell.dell-PC\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
O43 - CFD: 2014/12/26 20:00:11 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Google
O43 - CFD: 2011/09/14 03:28:10 - [0] SHD -- C:\Users\dell.dell-PC\AppData\Local\History
O43 - CFD: 2014/09/29 21:57:43 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Installer =>PUP.Optional.InstallPedia
O43 - CFD: 2012/06/22 21:54:17 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Macromedia
O43 - CFD: 2014/09/29 22:00:43 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Maxiget
O43 - CFD: 2011/09/24 22:32:34 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Media Get LLC =>PUP.Optional.MediaGet
O43 - CFD: 2011/10/06 20:44:46 - [] D -- C:\Users\dell.dell-PC\AppData\Local\MediaGet2 =>PUP.Optional.MediaGet
O43 - CFD: 2014/01/23 16:41:16 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Microsoft
O43 - CFD: 2011/09/19 03:22:17 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Microsoft Games
O43 - CFD: 2014/10/24 22:33:22 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\Microsoft Help
O43 - CFD: 2013/11/13 16:48:07 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Mozilla
O43 - CFD: 2012/01/17 00:46:20 - [] D -- C:\Users\dell.dell-PC\AppData\Local\nimbuzz
O43 - CFD: 2014/02/03 22:05:24 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Opera
O43 - CFD: 2014/12/26 20:13:42 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Opera Software
O43 - CFD: 2011/11/04 02:56:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\PackageAware =>PUP.Optional.BearShare
O43 - CFD: 2013/11/12 16:00:11 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Programs
O43 - CFD: 2011/10/07 15:56:11 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Real
O43 - CFD: 2014/12/26 20:17:12 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Skype
O43 - CFD: 2015/09/15 21:54:34 - [] D -- C:\Users\dell.dell-PC\AppData\Local\SoftThinks
O43 - CFD: 2012/01/14 23:28:55 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Sony
O43 - CFD: 2011/09/14 03:31:20 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Stardock_Corporation
O43 - CFD: 2011/09/14 03:32:11 - [] D -- C:\Users\dell.dell-PC\AppData\Local\SupportSoft
O43 - CFD: 2015/09/15 22:04:08 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Temp
O43 - CFD: 2011/09/14 03:28:10 - [0] SHD -- C:\Users\dell.dell-PC\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/01/17 22:14:27 - [] D -- C:\Users\dell.dell-PC\AppData\Local\VirtualStore
O43 - CFD: 2014/09/29 22:00:49 - [] D -- C:\Users\dell.dell-PC\AppData\Local\WebPlayer
O43 - CFD: 2014/12/24 23:34:38 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Windows Live
O43 - CFD: 2012/06/25 02:04:03 - [] D -- C:\Users\dell.dell-PC\AppData\Local\Windows Live Writer
O43 - CFD: 2012/08/29 23:12:13 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{033E1451-08FB-463A-9A58-5828339FA826}
O43 - CFD: 2012/08/02 00:28:12 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{04D007BA-7C93-4A51-9B0C-2782370B27B3}
O43 - CFD: 2013/01/17 19:56:20 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{065333C0-1B70-4790-8D65-9574E82F77EB}
O43 - CFD: 2012/08/22 16:47:09 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{07B813AF-7117-4D21-8A02-3E8123868B5F}
O43 - CFD: 2012/07/18 20:54:33 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{0A1C43F5-9C83-4007-8054-7429DD85AE1C}
O43 - CFD: 2012/10/23 21:49:02 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{0AE95A4D-B88C-4D6B-92F7-911E6E5C8220}
O43 - CFD: 2012/10/26 23:30:05 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{0C5A06B0-2BDD-4245-9874-86332B29A54F}
O43 - CFD: 2012/07/02 21:05:42 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{0FB309E0-FBA7-4B73-86C0-7BD6921CDD36}
O43 - CFD: 2013/01/26 20:34:58 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{10C51D9F-6E4C-4B54-9ABD-C7880711022F}
O43 - CFD: 2012/08/01 00:12:47 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{12CB6001-3116-4292-BA7F-ED86CF269BEE}
O43 - CFD: 2012/06/23 21:45:04 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{175ACB92-5A79-4E4D-A121-464450F475AF}
O43 - CFD: 2012/08/18 00:05:02 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{1AC1625F-31E0-4526-BB29-4B98C60357B9}
O43 - CFD: 2012/08/21 00:26:55 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{1C8D39DD-500D-43B3-BD2B-B78AD467DDED}
O43 - CFD: 2012/10/11 10:20:55 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{20DFD140-1524-4A74-B129-E6B8792C85D8}
O43 - CFD: 2012/07/17 20:48:50 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{21832A36-E261-4536-A1F1-22EE12E0AFCB}
O43 - CFD: 2013/01/17 00:43:36 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{2457E161-156B-4CBD-827C-7583A1898160}
O43 - CFD: 2013/02/08 00:30:38 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{268D7DE2-5AA9-41D2-B30A-76C4FFF01EC8}
O43 - CFD: 2013/03/08 20:32:45 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{285AE70E-5B1C-45E6-A53D-D9732ADB73F6}
O43 - CFD: 2012/10/14 22:02:28 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{289E2DA5-148A-48FF-8941-0E970236084F}
O43 - CFD: 2012/07/17 00:00:28 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{291BEF3A-A999-40BC-8A23-552952B8E2C0}
O43 - CFD: 2012/11/18 23:02:27 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{2B7A8086-9B6B-41F7-AC50-FE3CDB9049CD}
O43 - CFD: 2013/01/15 00:03:17 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{2C41FD85-AD62-4892-9C13-68CC4049A75B}
O43 - CFD: 2012/12/27 20:46:36 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{2DD1F8F8-5A5B-4B5C-A807-2A9BEDD16006}
O43 - CFD: 2012/08/29 00:25:50 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{2E000830-2791-46E2-BDE1-F88FE1EC9193}
O43 - CFD: 2012/11/04 21:23:06 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{312C0F37-A336-4D92-B4AD-30D5AFD4395A}
O43 - CFD: 2012/12/09 01:31:08 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3150D8BB-EA99-493A-AD58-AD67FA95D663}
O43 - CFD: 2012/09/24 23:12:52 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{32325B7A-C30A-4C2D-99C2-B46A49E437DA}
O43 - CFD: 2013/03/03 21:01:45 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{32CE36A0-9D8A-4FD7-B6FE-CD8EF1FECF7D}
O43 - CFD: 2012/11/08 23:52:55 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{33406626-C1FD-4C9A-90E7-DB87A6E7F987}
O43 - CFD: 2012/08/02 00:28:11 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{347DDB9E-8F47-49D4-AABB-E86D08CEAD2A}
O43 - CFD: 2012/09/08 22:00:56 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3582DDD0-EF6F-4789-B52A-5C28E4B82212}
O43 - CFD: 2012/07/10 21:21:47 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{35F22A6E-95BB-4E0C-B569-F8835C10A755}
O43 - CFD: 2012/12/09 19:23:38 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3695C3E0-F686-4236-B182-D8FF3C93F4D0}
O43 - CFD: 2012/10/12 16:33:17 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3A96325F-4397-45BB-905F-EC9CF99190EC}
O43 - CFD: 2012/09/02 23:40:02 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3AA8FFB8-14BB-43F8-AB0D-F8635990D602}
O43 - CFD: 2012/06/25 02:04:17 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3CCF7750-AC93-49B9-852A-655629BF6384}
O43 - CFD: 2013/11/06 23:55:42 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3D5E92C0-72D5-4F08-A40D-4D3CB31FF37F}
O43 - CFD: 2012/10/07 23:52:37 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{3E4D5E0B-63A5-441C-838A-F988D0403BD6}
O43 - CFD: 2012/09/12 23:16:17 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{40BA8BA0-A8E5-4655-AD5D-6C7CB54DA541}
O43 - CFD: 2012/08/05 01:13:52 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{41CC0ED0-BD67-4BC0-981F-1A0A152C888B}
O43 - CFD: 2012/06/25 02:04:18 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{493A44B9-7FA2-4657-B2AC-83138302591B}
O43 - CFD: 2012/08/13 21:40:22 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4A9A893E-F9A0-4ED6-A968-DB539EADC56E}
O43 - CFD: 2012/11/16 11:45:59 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4B2182AF-F971-402D-9C7C-89479A3A7A24}
O43 - CFD: 2012/09/01 22:25:31 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4B87C3FF-3D4B-4AE2-8BDF-8D2AE78C3EBF}
O43 - CFD: 2012/09/05 00:30:08 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4BCA8E8D-0990-4E44-A394-498720E984A0}
O43 - CFD: 2012/09/22 23:36:22 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4BDAB4C2-EF6D-4005-93D7-E9A6FC1CBB23}
O43 - CFD: 2013/01/11 19:13:32 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4BF2E24C-475C-4516-92FD-6BECE900A2E7}
O43 - CFD: 2012/07/02 21:05:43 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4CD52775-FA0D-49D0-B84C-5C956DDEB8DF}
O43 - CFD: 2013/02/09 22:03:07 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{4FB33E58-0CF5-4FC7-869D-5F4E774FAE50}
O43 - CFD: 2012/08/31 23:00:06 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{5040AE82-72D0-4C46-8B2B-04707455D93E}
O43 - CFD: 2012/10/13 20:36:19 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{54A1A077-3246-4CC7-86EB-C9F0E4639D7C}
O43 - CFD: 2012/07/18 20:54:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{5505C1AB-569C-4499-A543-A5C69C685F9F}
O43 - CFD: 2012/11/19 22:49:53 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{5572B197-4EA7-448E-A539-C3D862CB8C56}
O43 - CFD: 2012/07/17 00:00:27 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{5B3CDFB9-4D64-4A5C-9650-44FC6DE48B5A}
O43 - CFD: 2013/01/27 21:40:47 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{5C853658-7E21-4752-9D07-1E84708512C4}
O43 - CFD: 2012/07/19 17:06:45 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{5F18E465-9EAD-439D-AE8B-0F3B89EC6CFB}
O43 - CFD: 2012/08/27 23:20:56 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{62EC5A9C-C3B7-425B-A118-CCBBE27F66AA}
O43 - CFD: 2012/08/20 01:01:53 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{642A9256-0EE4-4879-920D-7097D6F9829E}
O43 - CFD: 2012/07/10 21:21:49 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{65A420D3-86CA-4374-8636-26AC6DF8F8F4}
O43 - CFD: 2012/07/11 20:34:03 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{679D07AF-64E9-4E3E-94C0-2F15F870DA67}
O43 - CFD: 2012/08/18 00:05:01 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{6A248E9D-5626-4D42-9288-987E511A3D4F}
O43 - CFD: 2012/08/12 23:09:22 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{6A254F44-B7F0-4391-965F-4EE2BDE17862}
O43 - CFD: 2013/02/08 19:18:25 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{6C3A1A51-9D46-44AA-9839-8E5BB3184FD3}
O43 - CFD: 2012/07/13 04:46:52 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{6DFD52F9-4E91-4EC1-AD97-84C00A490702}
O43 - CFD: 2012/10/20 16:46:39 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{6EB27D0D-387F-4994-B50B-AA6054151AE0}
O43 - CFD: 2012/12/13 23:28:53 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{71BF915E-0A2B-40B5-B326-0DDB4F7C61D3}
O43 - CFD: 2012/07/26 00:13:32 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{71C8EEB7-6453-4BF4-8E7B-3DA5B3F1B451}
O43 - CFD: 2012/07/11 20:34:04 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{72A99613-C672-4E81-8CD1-8027E21C7D1D}
O43 - CFD: 2013/01/31 20:17:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{7895FB81-BE07-45C0-AC53-3D5CFBDD5D6D}
O43 - CFD: 2012/10/10 02:15:23 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{78F2FAF1-94B8-4F4C-BFD8-8E7A19BEFDC4}
O43 - CFD: 2012/07/13 20:02:03 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{7ED5820F-9399-4FA9-A84A-BCC569B09024}
O43 - CFD: 2012/12/02 19:58:41 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{80700475-E264-4D5D-9F67-9252E64D36E2}
O43 - CFD: 2012/08/06 00:49:34 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{827F0598-AF8E-486B-9A33-8E454CD78ABE}
O43 - CFD: 2012/08/25 23:21:45 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{84D67DAC-4A61-403F-9B53-B56BD20757C6}
O43 - CFD: 2012/07/14 17:14:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{851DB483-CE68-4DB3-AC27-82030352E761}
O43 - CFD: 2012/07/13 20:02:04 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{856DFEB5-9B18-4197-8CA7-A6539A935537}
O43 - CFD: 2013/01/19 21:19:37 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{85E57454-0AF9-4E9C-B015-D08B5F61839D}
O43 - CFD: 2012/06/23 21:45:25 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{87BC26A2-434F-4F18-88F1-16C29A4A4932}
O43 - CFD: 2012/11/29 19:42:52 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{8A0BEA64-A30F-427B-B6A8-3EE12610B06A}
O43 - CFD: 2013/03/31 23:40:08 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{8B471F21-1D23-4CC1-B5C8-EA91AD15E81D}
O43 - CFD: 2012/09/27 01:22:36 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{90534E31-62FD-4813-AA6F-FACCA0C0A9B4}
O43 - CFD: 2012/08/31 00:16:23 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{91A05969-583D-4FF9-8CE8-D2DC265F3CB2}
O43 - CFD: 2012/10/19 13:35:37 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{933F0C82-CFB5-4AF3-A81D-048AFE3071F3}
O43 - CFD: 2012/09/05 17:50:59 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{96C10BEA-C9A9-493E-B018-CACDDE01487E}
O43 - CFD: 2012/11/17 20:55:30 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{96F41FE6-34E1-44D3-BFF0-35D4C1A0291D}
O43 - CFD: 2012/10/27 11:35:55 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{97F8E7AB-B875-4CA1-B2F6-787C1E74CAC5}
O43 - CFD: 2012/10/25 22:33:33 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{9A8EAD0B-631F-40BA-9301-0B65BC6FCBF4}
O43 - CFD: 2012/08/17 01:01:18 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{9ADDFFB5-EE00-4B39-A6CB-FD9945A5344F}
O43 - CFD: 2012/11/26 17:36:46 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{9C778ACA-19DD-4338-A585-D6E03B338C86}
O43 - CFD: 2012/08/13 21:40:23 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{9DF9C1D8-0F1A-4642-8B8C-BBD263BEAFA4}
O43 - CFD: 2012/12/25 18:46:08 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{A1941E64-AD8F-4AFF-B6CC-80CFFDFD4CCC}
O43 - CFD: 2012/08/06 00:49:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{A226BC87-4FCF-4E74-9AEC-23135C25B018}
O43 - CFD: 2013/03/21 22:49:24 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{A38CB203-E324-4C9F-959B-628C10D46D01}
O43 - CFD: 2013/04/18 18:02:47 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{A49B0DF9-781B-48EC-9E03-87B30D146D97}
O43 - CFD: 2012/11/30 19:13:02 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{A4F42984-3CD2-49D5-A4CE-39551C08C5B1}
O43 - CFD: 2012/08/01 00:12:44 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{AA9567F6-404E-4E7B-B8BF-78F91158DEE7}
O43 - CFD: 2012/10/04 18:15:27 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{AC9753B6-5B63-4D7B-839E-C0416D74875C}
O43 - CFD: 2012/11/14 21:32:01 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{AFB34B7F-6110-4767-ABE5-2ACFFADDD489}
O43 - CFD: 2012/08/25 00:32:16 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{B12E8C05-1971-407E-916D-4ED3F1B800E2}
O43 - CFD: 2013/03/10 22:09:53 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{B4C41579-927F-495A-BAC0-8E4EE2C50B2E}
O43 - CFD: 2012/10/06 17:34:51 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{B59DDA82-97AA-447F-A4F5-520AF97FE303}
O43 - CFD: 2012/07/26 00:13:29 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{B679CE6A-EF76-4DB8-895B-5A700FFDB92F}
O43 - CFD: 2012/08/16 00:07:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{B7E6F53E-DBEB-4918-9149-DFAE84D1516C}
O43 - CFD: 2012/12/03 21:47:59 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{BB118FD3-310E-4B1F-84DF-AA7CE74E4659}
O43 - CFD: 2012/10/29 11:36:47 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{BE9C63CB-7E4B-47D8-BB9B-E2732263036D}
O43 - CFD: 2013/01/22 21:45:20 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{BF3CD3D4-E3F5-45FB-9873-DE8517B805DB}
O43 - CFD: 2012/09/07 01:04:23 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{BF3EC13E-2ACB-4A24-97D6-3DA897DF6AF7}
O43 - CFD: 2012/07/14 17:14:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{BF47D612-34EB-4A76-80C5-46A47E5434E0}
O43 - CFD: 2012/08/16 00:07:36 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{C2543E0F-6376-4168-B0A6-C07926D1C19C}
O43 - CFD: 2012/10/05 21:30:51 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{C4AA1CDA-4959-4DEF-B886-DA2FD96CF0C2}
O43 - CFD: 2012/07/13 04:46:50 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{C8B5AD8C-9A00-4BA7-A80D-00C985229239}
O43 - CFD: 2012/09/11 01:48:22 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{CAD668CD-8B0D-42CA-B357-AA305F00764A}
O43 - CFD: 2013/01/29 22:22:33 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{CC3D1453-10EE-4E23-8C4D-2611AE1997A6}
O43 - CFD: 2012/10/17 17:31:11 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{CE3164D6-4B56-4C1D-A550-401BC1AC2049}
O43 - CFD: 2013/01/19 20:37:20 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{CF5AF74E-10C6-4540-B955-5947B6C9F346}
O43 - CFD: 2013/04/28 22:20:08 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{D1B4B720-4ADB-4337-AFE8-72A623E849D2}
O43 - CFD: 2013/03/11 21:18:29 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{D249DEA1-D1C0-4582-BA6F-09F8E3100CEC}
O43 - CFD: 2012/08/17 01:01:17 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{D2E6FEBA-FFDF-448A-B4BE-5B56E555BFF1}
O43 - CFD: 2012/08/12 23:09:24 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{D50B4A1F-1F4B-4525-81BA-5DDC1506AEF7}
O43 - CFD: 2012/08/23 17:57:35 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{D79F8050-164F-4494-BB58-34DCAC5262C2}
O43 - CFD: 2012/09/12 00:29:44 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{D829F4DA-E49C-4381-98A5-3CF9502B7B78}
O43 - CFD: 2013/01/21 18:31:07 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{D9777EAE-2B1D-46C1-AA86-EFAFA8E576A9}
O43 - CFD: 2013/02/14 23:30:07 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{DB11F499-A205-432C-A6CB-168CEB0E79B1}
O43 - CFD: 2013/01/18 12:30:51 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{DBDE8C4C-0655-4378-B18D-08DECCEC159E}
O43 - CFD: 2012/10/18 18:46:17 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E0F5A504-026C-42DB-B871-F70BEADE20B7}
O43 - CFD: 2013/01/25 00:38:33 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E2B6F5D8-7F4B-43BD-B2F6-F8DBD53E1D88}
O43 - CFD: 2012/10/07 18:32:54 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E44250AC-7EB8-40A4-BAFC-580D184795AC}
O43 - CFD: 2012/09/03 22:34:28 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E4C15D13-6C67-488B-AD46-E8DF1E5C1B04}
O43 - CFD: 2012/08/06 22:50:10 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E5C77F28-C638-4E08-992B-C2F1CBB5B889}
O43 - CFD: 2012/07/17 20:48:52 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E6A72872-FD17-4F0E-8E16-25DB902EF9EE}
O43 - CFD: 2013/01/30 22:21:32 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E6CDE602-7F00-4C42-8E4A-0EEA2BFD2F86}
O43 - CFD: 2012/07/19 17:06:46 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{E7A48DB1-D26E-41DA-BD3D-C9592A225307}
O43 - CFD: 2012/08/06 22:50:09 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{EB97FBC2-4224-4EDD-85F0-52A5F5038278}
O43 - CFD: 2013/01/08 21:42:42 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{EBF783ED-66DD-4DBA-A6C9-55AEA0EC29A6}
O43 - CFD: 2013/11/10 14:58:12 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{EBF89D83-7792-470B-8923-A5E8E6B81F99}
O43 - CFD: 2013/01/10 04:49:55 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{EE0C6E4B-184E-4AF9-93C6-EBADC84FEC52}
O43 - CFD: 2012/12/20 19:34:54 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{F6DC2C47-C30A-4494-AA50-AEBE7C719329}
O43 - CFD: 2012/12/12 23:12:03 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{F87FB181-2D6C-4FC0-8045-CBFFD923F3B8}
O43 - CFD: 2013/02/12 21:15:08 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{FB7C3172-4B66-4CDA-9E25-B6A9C62ABF4F}
O43 - CFD: 2013/01/10 23:25:13 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{FCA64875-313A-4B06-84A8-95B0F624114C}
O43 - CFD: 2012/08/05 01:13:51 - [0] D -- C:\Users\dell.dell-PC\AppData\Local\{FCF6A3A7-CFDE-44FD-B0D5-06F1E56D3E05}
O43 - CFD: 2009/07/14 08:54:32 - [] RD -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/07/08 21:27:43 - [] RD -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/09/29 22:00:50 - [0] D -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat =>PUP.Optional.MegaSearch
O43 - CFD: 2012/03/05 19:45:48 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 2011/10/19 14:01:02 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2009/07/14 08:49:38 - [] RD -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/08 21:27:43 - [] RD -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2014/12/26 20:13:54 - [] D -- C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ ShareTools MSconfig StartupReg (4) - 1s
O53 - SMSR:HKLM\...\startupreg\AutorunRemover.exe [Key] . (...) -- C:\Program Files (x86)\AutorunRemover\AutorunRemover.exe
O53 - SMSR:HKLM\...\startupreg\PCAppStore_AppStoreDeskTool [Key] . (...) -- C:\Program Files (x86)\PC App Store\4.10.1.7607\AppStoreDeskTool.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\QuickSet [Key] . (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe ©
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ©

---\\ System Drivers List (88) - 81s
O58 - SDL:2009/07/14 05:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 05:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 05:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 05:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/03/11 10:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/14 05:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/03/11 10:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/14 05:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 05:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2011/10/19 15:27:45 A . (...) -- C:\Windows\System32\drivers\atksgt.sys [310728]
O58 - SDL:2009/06/11 00:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2010/02/03 10:13:08 A . (.Broadcom Corporation - Broadcom iLine10(tm) PCI Network Adapter Pr.) -- C:\Windows\System32\drivers\bcm42rly.sys [22520] ©
O58 - SDL:2010/02/03 10:13:08 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter Virtual Wir.) -- C:\Windows\System32\drivers\bcmvwl64.sys [20984] ©
O58 - SDL:2010/02/03 10:13:06 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [3058168] ©
O58 - SDL:2009/06/11 00:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/11 00:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 05:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/11 00:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/11 00:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/11 00:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/07/03 10:26:34 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [98344] ©
O58 - SDL:2009/07/03 10:26:34 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [132648] ©
O58 - SDL:2009/07/03 10:26:34 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [35104] ©
O58 - SDL:2009/07/03 10:26:34 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21160] ©
O58 - SDL:2009/06/11 00:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/06/23 12:00:00 A . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224] ©
O58 - SDL:2009/06/23 12:00:00 A . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - McAfee Personal Firewall IDS Plugin.) -- C:\Windows\System32\drivers\cfwids.sys [63056] ©
O58 - SDL:2009/07/14 05:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2009/05/28 19:49:00 A . (.Creative Technology Ltd. - Advanced Audio FX Driver (64-bit).) -- C:\Windows\System32\drivers\CtAudDrv.sys [224768] ©
O58 - SDL:2009/06/15 22:06:42 A . (.Creative Technology Ltd. - Video Class Upper Filter Driver (64-bit).) -- C:\Windows\System32\drivers\CtClsFlt.sys [172704] ©
O58 - SDL:2011/04/27 13:09:04 A . (.ESET - Amon monitor.) -- C:\Windows\System32\drivers\eamonm.sys [199992] ©
O58 - SDL:2011/04/20 09:47:16 A . (.ESET - ESET Helper driver.) -- C:\Windows\System32\drivers\ehdrv.sys [146432] ©
O58 - SDL:2009/07/14 05:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2011/04/20 09:47:36 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfw.sys [182976] ©
O58 - SDL:2011/04/20 09:47:36 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [34704] ©
O58 - SDL:2011/04/20 09:47:38 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfwwfp.sys [56304] ©
O58 - SDL:2009/06/11 00:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/11 00:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/03/18 01:33:06 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] ©
O58 - SDL:2010/11/20 17:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2012/03/27 01:45:18 A . (.AnchorFree Inc. - Hotspot Shield Routing Driver.) -- C:\Windows\System32\drivers\hssdrv.sys [56832] ©
O58 - SDL:2013/12/18 01:11:50 A . (.AnchorFree Inc. - Hotspot Shield Routing Driver.) -- C:\Windows\System32\drivers\hssdrv6.sys [44744] ©
O58 - SDL:2009/12/17 19:42:08 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [538136] ©
O58 - SDL:2011/03/11 10:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2011/08/31 19:53:22 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [12306848] ©
O58 - SDL:2009/07/14 05:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2010/02/27 04:32:12 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [158976] ©
O58 - SDL:2010/02/03 18:38:30 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [271872] ©
O58 - SDL:2011/10/19 15:26:54 A . (...) -- C:\Windows\System32\drivers\lirsgt.sys [42696]
O58 - SDL:2009/07/14 05:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 05:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 05:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 05:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2009/07/14 05:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 05:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - Access Protection Filter Driver.) -- C:\Windows\System32\drivers\mfeapfk.sys [121376] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\System32\drivers\mfeavfk.sys [190520] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - McAfee Driver Cleaning Driver.) -- C:\Windows\System32\drivers\mfeclnk.sys [9984] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - McAfee Core Firewall Engine Driver.) -- C:\Windows\System32\drivers\mfefirek.sys [441840] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - McAfee Link Driver.) -- C:\Windows\System32\drivers\mfehidk.sys [530304] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - McAfee NDIS Light Filter Driver.) -- C:\Windows\System32\drivers\mfenlfk.sys [75160] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - McAfee Code Analysis Driver.) -- C:\Windows\System32\drivers\mferkdet.sys [94992] ©
O58 - SDL:2011/04/14 14:01:38 A . (.McAfee, Inc. - Anti-Virus Mini-Firewall Driver.) -- C:\Windows\System32\drivers\mfewfpk.sys [283744] ©
O58 - SDL:2009/07/14 05:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2010/02/03 10:13:10 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [47632] ©
O58 - SDL:2011/03/11 10:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2011/03/11 10:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/09 12:00:00 A . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [55280] ©
O58 - SDL:2009/07/14 05:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 05:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2010/03/18 01:41:48 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [325152] ©
O58 - SDL:2010/03/18 01:29:52 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUStor.sys [232480] ©
O58 - SDL:2009/06/11 00:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/14 05:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 05:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2013/06/04 09:15:02 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [103448] ©
O58 - SDL:2013/06/04 09:15:00 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [203672] ©
O58 - SDL:2009/07/14 05:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2010/03/18 01:27:14 A . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\drivers\stwrt64.sys [505856] ©
O58 - SDL:2010/03/18 01:44:44 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [301104] ©
O58 - SDL:2012/03/27 01:45:14 A . (.AnchorFree Inc - TAP-Win32 Virtual Network Driver.) -- C:\Windows\System32\drivers\taphss.sys [37888]
O58 - SDL:2013/04/24 23:28:08 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42184] ©
O58 - SDL:2009/11/02 21:48:02 A . (...) -- C:\Windows\System32\drivers\TurboB.sys [13784]
O58 - SDL:2009/07/14 05:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 05:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
O58 - SDL:2009/06/11 00:35:33 A . (.Marvell - Miniport Driver for Marvell Yukon Ethernet.) -- C:\Windows\System32\drivers\yk62x64.sys [389120] ©
O58 - SDL:2014/09/29 05:23:56 A . (.StdLib - StdLib.) -- C:\Windows\System32\drivers\{ec3b464a-97da-43ec-b8d8-6d9d0bc1b9c5}Gw64.sys [48728] =>PUP.Optional.LinkiDoo

---\\ Last modified or created user files (1) - 40s
O61 - LFC: 2015/09/14 21:48:06 A . (..) -- C:\Users\dell.dell-PC\Downloads\Firefox Setup Stub 40.0.3.exe [243056]

---\\ File Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\WINDOWS\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\WINDOWS\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©

---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Opera\Opera.exe www.mystartsearch.com/ =>PUP.Optional.StartSearch
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files (x86)\Opera\Opera.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files (x86)\Opera\Opera.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files (x86)\Opera\Opera.exe (.not file.)

---\\ Search Browser Infection (242) - 24s
O69 - SBI: C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("AppGraffiti.installdate", "1384172373000"); =>PUP.Optional.AppGraffiti
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("AppGraffiti.installed", "true"); =>PUP.Optional.AppGraffiti
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("AppGraffiti.subid", ""); =>PUP.Optional.AppGraffiti
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("AppGraffiti.tbid", "61019"); =>PUP.Optional.AppGraffiti
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("AppGraffiti.tuid", "-7956328506001173844"); =>PUP.Optional.AppGraffiti
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.1000082.isDisplayHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.1000082.isPlayDisplay", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.1000082.shrinkState", "shrinked"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.1000082.state", "{\"state\":\"stopped\",\"text\":\"Danceradio\",\"description\":\"Danceradio\",\"url\":\"http[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.CBOpenMAMSettings.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.CT1561552_MarketCh_First.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.FF19Solved", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.Facebook_Mode.enc", "Mg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.Facebook_User_Locale.enc", "ZW4="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.FirstTime", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.FirstTimeFF3", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.GK_AF_NOTIF_SENT_OFFER.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.GK_HotspotShield_NOTIF_26_02_SENT.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.HotspotShieldElite_NOTIF_SENT_TrustE.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LAST_CLIENT_STATS_SUBMIT_2.enc", "MTM3MjY4NDMyNg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_LAST_SUBMIT_6.enc", "MTM3NzI5MTY2MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_SITE_IRRELEVANT.enc", "MTU="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_SITE_NEW.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_SITE_NOT_SUPPORTED.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_SITE_SUPPORTED.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_USE_HISTORY.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_USE_POP.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_USE_RELATED.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_STATS_STATS_USE_TYPED.enc", "MA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_THROTTLE_BASEadd_stats0LOCAL_COOKIE_STATS_STATS_SITE_IRRELEVANT.enc", "MTM3NzI5MzM4NQ=="); =>PUP.Optional.Conduit
LOCAL_COOKIE_STATS_STATS_SITE_SUPPORTED.enc", "MTM3NDk2Mjg5Mg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_THROTTLE_BASEincrSEARCH_CLONE_CNT.enc", "MTM3NzI5MTkzOA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LOCAL_COOKIE_THROTTLE_BASEloopbackhttp://up.autocompleteplus.com/up?q=%D8%A7%D9%84%D8%AC%D9%8A%D8%B4%20%D8%A[...] =>PUP.Optional.Conduit
http://up.autocompleteplus.com/up?q=%D8%A7%D9%84%D9%85%D9%86%D8%AA%D8%AF%D[...] =>PUP.Optional.Conduit
http://up.autocompleteplus.com/up?q=%D8%A7%D9%84%D9%87%D8%B1%D9%85%D8%AC%D[...] =>PUP.Optional.Conduit
http://up.autocompleteplus.com/up?q=%D8%B3%D9%88%D8%B1%D9%8A%D8%A7%20%D9%8[...] =>PUP.Optional.Conduit
http://up.autocompleteplus.com/up?q=%D9%85%D8%B9%D8%B1%D8%B6%20%D8%AF%D9%8[...] =>PUP.Optional.Conduit
http://up.autocompleteplus.com/up?q=%D9%88%D9%81%D8%A7%D8%A9%20%D8%AE%D8%A[...] =>PUP.Optional.Conduit
http://up.autocompleteplus.com/up?q=%D9%8A%D9%88%D8%AA%D9%8A%D9%88%D8%A8&l[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.LoginRevertSettingsEnabled", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.PG_ENABLE", "dHJ1ZQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.PG_ENABLE.enc", "dHJ1ZQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.RevertSettingsEnabled", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.SEARCH_CLONE_CNT.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.SF_JUST_INSTALLED.enc", "RkFMU0U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.SF_STATUS.enc", "RU5BQkxFRA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.SF_USER_ID.enc", "Y2lkXzE1NTIwMTMxOTE3Mjc5NzIzODI0"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.SearchAppState.enc", "Mw=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.SearchAppTracking.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&q=&SearchSource=2"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.UserID", "UN10663258014440846"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.acp_personal.appstate.enc", "ZW5hYmxl"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.addressBarTakeOverEnabledInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.browser.search.defaultthis.engineName", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.cb_experience_000.enc", "MTI="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.cb_firstuse0100.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.cb_user_id_000.enc", "Q0I4NTM4NTc0NDc2N18xMzU2NTMxNjMxNjY1X0ZpcmVmb3g="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.cbcountry_001.enc", "VVM="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.cbfirsttime.enc", "U2F0IE5vdiAxNyAyMDEyIDAyOjMzOjQ4IEdNVCswNDAwIChBcmFiaWFuIFN0YW5kYXJkIFRpbWUp"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.countryCode", "AE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.discover-experiments-photopop.enc", "eyJuYW1lIjoicGhvdG9wb3BfbmEiLCJ2ZXJzaW9uIjoxMH0="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.discover-periodic-reports.enc", "eyJwaW5nXzAiOlsxMzc1MjE2OTMzNDMwLDE0NDAwMDAwXX0="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.discover-user-id.enc", "IjlkNmNmMWQwLTc3MTctNDhlYS04NzBjLTg0ZDBjN2Y0Zjg2NCI="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.embeddedsData", "[{\"appId\":\"128491907208256770\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFra[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.enableAlerts", "always"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.enableFix404ByUser", "TRUE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.firstTimeDialogOpened", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.fixPageNotFoundErrorByUser", "TRUE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.fixPageNotFoundErrorInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.fixUrls", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.fullUserID", "UN10663258014440846.XX.20130626211513"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.ground-country-code.enc", "IkFFIg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___facebook_conduitapps_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPTAsaHNjcm9sbD0wLHZzY3JvbGw9MCx0aXRsZWJhc[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com._report_slog_ping_3.enc", "MTM1NzgyNTMxMzIwMQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.ab-group.enc", "Y29ybmVyLTE="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.ab-version.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.glb-id.enc", "MjEwODg4YzgtZDM2Zi00Y2JkLWExOWItOTJhMGExNDFlNGFm"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.past-reports.enc", "e30="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.sac-user-geo.enc", "eyJMb2NhdGlvbiI6eyJJUCI6IjIxNy4xNjQuMTIwLjQyIiwiQ291bnRyeSI6IlVOS[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.sac-user-id.enc", "IjBhNmVlNzRiLTMwYzctNDE5ZS1iYmFjLTEwZjk2ZGJmZGY5MyI="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.slog-user-id.enc", "MzU1ODI1YzAtMzc1Zi00ODRjLWExNDAtMGRmY2RiZDA0MjIz"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.tyts-periodic-reports.enc", "eyJ0eXRzX3BpbmdfMCI6WzEzNTQxOTI0ODk3NTAsNDMyMDAwMDBdfQ==[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.tyts-user-ab-groups.enc", "eyJsb2NhdGlvbiI6NjYsInRyaWdnZXIiOjE4fQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___find_conduit_com.tyts_closed_count.enc", "bnVsbA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___pinterest_aot_im.isEnabled.enc", "WQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES.enc", "b3BlbnBvc2l0aW9uPW9mZnNldDo1[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.http___youtube_conduitapps_com_v3_3_0.APP_WIN_FEATURES.enc", "c2F2ZXJlc2l6ZWRzaXplPTAsaHNjcm9sbD0wLHZzY3JvbGw[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installDate", "05/12/2013 23:52:04"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installId", "ConduitStubGeneric"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installSessionId", "-1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installSp", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installType", "ConduitStubIntegration"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installUsage", "05/12/2013 23:51:52"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installUsageEarly", "05/12/2013 23:51:52"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.installerVersion", "1.8.1.4"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.isCheckedStartAsHidden", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.isFirstTimeToolbarLoading", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.isNewTabEnabled", false); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.isPerformedSmartBarTransition", "true"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.keyword", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT1561552&octid=CT[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.lastVersion", "10.16.70.505"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_appStateReportTime.enc", "MTM3NzI5MTYzNDA5Nw=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_appState_CouponBuddy.enc", "b24="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_appState_Easytobook.enc", "b24="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_appState_Easytobook_targeted.enc", "b24="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_appState_PriceGong.enc", "b24="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_appsData.enc", "eyJhcHBzIjpbeyJpZCI6IkNvdXBvbkJ1ZGR5IiwidXJsIjoiaHR0cDovL3d3dy5zb2NpYWxncm93dGh0ZWNobm[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_appsDefaultEnabled.enc", "bnVsbA=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_calledSetupService.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_configuration.enc", "eyJjb25maWd1cmF0aW9uIjpbeyJpZCI6IlBpY2xpY2tWMi1XZWJTZWFyY2giLCJjcml0ZXJpYXMiOlt7I[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_currentBadgeValue.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_currentVersion.enc", "MS4xMC4yLjU="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_existingUsersRecoveryDone.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_first_time.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_lastLoginTime.enc", "MTM3NzI5MTYyNzM1Mg=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_localization.enc", "eyJnYWRnZXRDb250ZW50UG9saWN5Ijp7IlRleHQiOiLYs9mK2KfYs9ipINin2YTZhdit2KrZiNmJIn0sIm[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_mamEnabled.enc", "ZmFsc2U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_newApps.enc", "W10="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_settings1.10.2.5.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiNDlfMC[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_settings1.4.4.6.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiMjYxXy0[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_settings1.6.0.1.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiMjYxXy0[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_settings1.8.0.4.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiNDlfMCI[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_settings1.8.0.999.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiNDlfM[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_settings1.9.0.4.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVydmFsIjoyNDAsInN0YW1wIjoiNDlfMCI[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_showCloseButton.enc", "dHJ1ZQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_showWelcomeGadget.enc", "ZmFsc2U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_userId.enc", "MTcxNmQwZDEtMmQ0Zi00MmM1LWJlMjUtMTFkNmMzYmVmNTA4"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_user_approval_interacted.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.mam_gk_welcomeDialogMode.enc", "MQ=="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.migrateAppsAndComponents", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"10\",\"EB_MAIN_FRAME_URL\":\"http%3A%2F%2Fwww.youtube.com%2Fwa[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.openThankYouPage", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&SearchSource=2&CUI=UN106[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.originalSearchEngine", "Hotspot Shield Customized Web Search"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.originalSearchEngineName", "Hotspot Shield Customized Web Search"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\\"11\\\\/17\\\\/2012 01\\\"}\"[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.price-gong.isManagedApp", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.search.searchAppId", "128491907208256770"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.search.searchCount", "2"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.searchInNewTabEnabled", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.searchInNewTabEnabledByUser", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.searchInNewTabEnabledInHidden", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.searchRevert", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.searchSuggestEnabledByUser", "True"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.searchUninstallUserMode", "1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.searchUserMode", "1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT1561552\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"http://HotspotS[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Hotspot Shield\[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"1\"}"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_Configuration_lastUpdate", "1377291737303"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1377291739112"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_appTracking_lastUpdate", "1353107070526"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_appsMetadata_lastUpdate", "1377291627242"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1377291737688"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_location_lastUpdate", "1372093327614"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.13.40.15_lastUpdate", "1358701876843"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.14.40.128_lastUpdate", "1359289164000"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.14.42.7_lastUpdate", "1360689458947"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.14.65.43_lastUpdate", "1364146420464"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.15.0.562_lastUpdate", "1365877145560"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.15.2.523_lastUpdate", "1367949228051"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.16.1.521_lastUpdate", "1368537097198"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.16.2.509_lastUpdate", "1372093327477"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.16.4.519_lastUpdate", "1374318633105"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_login_10.16.70.505_lastUpdate", "1377291739035"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1377291737593"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_searchAPI_lastUpdate", "1377291738098"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_serviceMap_lastUpdate", "1377291736879"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_setupAPI_lastUpdate", "1364151240977"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_toolbarContextMenu_lastUpdate", "1377291737647"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_toolbarSettings_lastUpdate", "1377291627366"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_translation_lastUpdate", "1377291738006"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.serviceLayer_services_userApps_lastUpdate", "1366655027658"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.settingsINI", true); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.shouldFirstTimeDialog", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.showToolbarPermission", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.smartbar.CTID", "CT1561552"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.smartbar.Uninstall", "0"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.smartbar.toolbarName", "Hotspot Shield "); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.startPage", "userChanged"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.toolbarBornServerTime", "17-11-2012"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.toolbarCurrentServerTime", "24-8-2013"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.toolbarDisabled", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.toolbarLoginClientTime", "Mon Mar 25 2013 22:02:56 GMT+0400 (Arabian Standard Time)"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.twitter_v1.8.0_twitter_app_open_t_f.enc", "ZmFsc2U="); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.url_history0001.enc", "aHR0cDovL3d3dy5nb29nbGUuYWUvdXJsP3NhPXQmcmN0PWomcT0lRDglQTclRDklODQlRDklODclRDglQjElRD[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.versionFromInstaller", "10.22.5.10"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552.xpeMode", "0"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("CT1561552_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1377291611524,\"isWithState\"[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("Smartbar.ConduitSearchEngineList", "Hotspot Shield Customized Web Search"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("Smartbar.ConduitSearchUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&q=&SearchSource=2"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&SearchSource=2&CUI=UN[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("Smartbar.keywordURLSelectedCTID", "CT1561552"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&CUI=UN10663258014440846&UM=1&Sear[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.a39ed7c16185d4f88b976666d4928ba01fe4550c17a4f4a62ad1c45e0afdf81a4com48559.48559.description", "Apps Hat is t[...] =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.a39ed7c16185d4f88b976666d4928ba01fe4550c17a4f4a62ad1c45e0afdf81a4com48559.48559.name", "Apps Hat"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.description", "iWebar"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bundledUrls.expiration", "Fri Fe[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealp[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bundledWithHash.expiration", "Fr[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_bundledWithHash.value", "null"); =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_notBundledArr_.expiration", "Fri[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_notBundledArr_.value", "%5B%5D")[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_regBundledWithSoftware.expiratio[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.internaldb.monetization_plugin_regBundledWithSoftware.value", "[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.name", "iWebar1.1"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.aROUAILDE73397174UXGZI17268980com65123.65123.publisher", "iWebar"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_bundledUrls.expiration", "Fri Feb 01 2030[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_bundledWithHash.expiration", "Fri Feb 01 [...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_bundledWithHash.value", "null"); =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_notBundledArr_.expiration", "Fri Feb 01 2[...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_notBundledArr_.value", "%5B%5D"); =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_regBundledWithSoftware.expiration", "Fri [...] =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.internaldb.monetization_plugin_regBundledWithSoftware.value", "%7B%7D"); =>PUP.Optional.Monetization
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.awarnerrobertshotmailcom61915.61915.publisher", "Object Browser"); =>PUP.Optional.ObjectBrowser
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("extensions.crossrider.bic", "14a8762bd47a37631bc83e34b3ebe1ab"); =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("smartbar.addressBarOwnerCTID", "CT1561552"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("smartbar.conduitSearchAddressUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid=CT1561552&q=&SearchSource=2,http[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("smartbar.defaultSearchOwnerCTID", "CT1561552"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("smartbar.machineId", "VF1HUXJCCUM8BNGMWOQ09YQ6YQSC6DJHANMKM16CEMDV6D2ITYRPND/49B7710LCNDS0HXTTLWARUBFKZCVYSW"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("smartbar.originalSearchAddressUrl", ""); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [dell - b99fnewd.default] user_pref("smartbar.originalSearchEngine", false); =>PUP.Optional.SmartBar
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (mystartsearch) - www.mystartsearch.com/ =>PUP.Optional.StartSearch
O69 - SBI: SearchScopes [HKCU] {c99fdc39-a1ae-4b24-8d71-e5274f8d7c54} - (Private Search) - http://search.hotspotshield.com/

---\\ Search Svchost Services (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\WINDOWS\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2553856] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\WINDOWS\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] ©

---\\ Firewall Active Exception List (4) - 1s
O87 - FAEL: "{B64C2DF4-85A1-48C5-88B2-B3F091691B91}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{BE85FC18-5C95-4D2E-9925-1C3D96267A5E}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{202DB6CB-5CF9-4B1E-991B-40EF26B4897B}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{5884EB3B-43BF-4451-983E-D1514F185847}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe

---\\ Services not Microsoft (SR=Run, SS=Stop) (30) - 19s

SS - Demand [2015/09/12 22:46:57] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [2010/03/18 01:29:08] [ 89600] Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation.) - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\AESTSr64.exe ©
SR - Auto [2014/10/17 14:17:44] [ 208928] Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc..) - C:\Program Files (x86)\Baidu Security\MoboMarket\1.2.8.3351\bassvc.exe ©
SR - Auto [2009/07/02 03:54:02] [ 864032] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe ©
SR - Auto [2013/11/27 12:26:14] [ 3105144] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
SR - Auto [2009/06/09 18:11:14] [ 155648] Dock Login Service (DockLoginService) . (.Stardock Corporation.) - C:\Program Files\Dell\DellDock\DockLogin.exe ©
SR - Auto [2011/04/20 09:47:18] [ 958464] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe ©
SS - Demand [2011/04/20 09:48:00] [ 184512] ESET SHA Service (ESHASRV) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\EShaSrv.exe ©
SS - Demand [2009/06/06 04:07:28] [ 250616] GameConsoleService (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe ©
SS - Auto [2015/09/12 20:51:20] [ 144200] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SS - Demand [2015/09/12 20:51:20] [ 144200] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
SR - Auto [2013/12/18 22:23:04] [ 920872] Hotspot Shield Service (hshld) . (.AnchorFree Inc..) - C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe ©
SR - Auto [2013/12/18 22:17:48] [ 555304] Hotspot Shield Monitoring Service (HssWd) . (...) - C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
SR - Auto [2009/12/24 02:39:04] [ 13336] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe ©
SR - Auto [2010/03/18 01:34:12] [ 268824] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
SS - Auto [2011/04/14 14:01:38] [ 200056] McShield (McShield) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\SystemCore\mcshield.exe ©
SR - Auto [2011/04/14 14:01:38] [ 245352] McAfee Firewall Core Service (mfefire) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe ©
SR - Auto [2011/04/14 14:01:38] [ 149032] McAfee Validation Trust Protection Service (mfevtp) . (.McAfee, Inc..) - C:\Program Files\Common Files\mcafee\SystemCore\mfevtps.exe ©
SS - Auto [2014/09/29 22:00:42] [ 131480] خدمة Maxiget Update (mglupdate) (mglupdate) . (.Maxiget Ltd..) - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe
SS - Demand [2014/09/29 22:00:42] [ 131480] خدمة Maxiget Update (mglupdatem) (mglupdatem) . (.Maxiget Ltd..) - C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe =>PUP.Optional.Maxiget
SS - Demand [2015/08/26 16:46:30] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [2013/08/14 15:19:22] [ 39056] RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
SR - Auto [2010/05/21 20:58:30] [ 673088] SoftThinks Agent Service (SftService) . (.SoftThinks.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE ©
SS - Auto [2014/12/11 10:30:48] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ©
SR - Auto [2009/05/21 17:59:08] [ 206064] SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc..) - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
SR - Auto [2010/03/18 01:27:52] [ 244736] Audio Service (STacSV) . (.IDT, Inc..) - C:\WINDOWS\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_58afa5ca50c7b5e7\stacsv64.exe ©
SS - Demand [2009/11/02 21:48:18] [ 126352] TurboBoost (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe ©
SR - Auto [2010/03/18 01:37:16] [ 2320920] Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ©
SR - Auto [2010/02/03 10:13:10] [ 48128] DW WLAN Tray Service (wltrysvc) . (.Dell Inc..) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE ©

---\\ Search Tracing Registry Key (2) - 4s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector

---\\ Additional Scan (O88) (73) - 0s
C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\searchplugins\conduit.xml =>PUP.Optional.Conduit
C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\faststartff@gmail.com =>PUP.Optional.FastStart
C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\{4C59F3E5-BBD0-4344-8DD2-30866FA0B31E} =>PUP.Optional.Goobzo
C:\Users\dell.dell-PC\AppData\Roaming\Mozilla\Firefox\Profiles\b99fnewd.default\extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF} =>PUP.Optional.Goobzo
C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} =>PUP.Optional.Goobzo
HKLM\SYSTEM\CurrentControlSet\Services\TorchCrashHandler =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iWebar =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mystartsearch uninstall =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\YouTube Accelerator =>PUP.Optional.Goobzo
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps =>PUP.Optional.MegaSearch
HKLM\SOFTWARE\Wow6432Node\Apps Hat =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Apps Hat-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\cbc79570-92ad-422f-b0ff-f8a192c7326a =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\CToolbar =>PUP.Optional.InboxEmail
HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate
HKLM\SOFTWARE\Wow6432Node\Goobzo =>PUP.Optional.Goobzo
HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKLM\SOFTWARE\Wow6432Node\iWebar =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\iWebar-nv =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\ShopperPro =>PUP.Optional.ShopperPro
HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab
HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.WpManager
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\CToolbar =>PUP.Optional.InboxEmail
HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate
HKCU\SOFTWARE\Goobzo =>PUP.Optional.Goobzo
HKCU\SOFTWARE\iLivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\SupHpUISoft =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\WebPlayer =>PUP.Optional.WebPlayer
HKCU\SOFTWARE\AppDataLow\Software\Apps Hat =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\iWebar =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\PriceGong =>PUP.Optional.PriceGong
HKCU\SOFTWARE\AppDataLow\Software\Smartbar =>PUP.Optional.SmartBar
C:\Program Files (x86)\Apps Hat =>PUP.Optional.CrossRider
C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Program Files (x86)\iWebar =>PUP.Optional.CrossRider
C:\Program Files (x86)\SearchCore for Browsers =>PUP.Optional.SearchCore
C:\Program Files (x86)\SupTab =>PUP.Optional.SupTab
C:\Program Files (x86)\SweetIM =>PUP.Optional.SweetIM
C:\Program Files (x86)\Windows iLivid Toolbar =>PUP.Optional.Bandoo
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppsHat =>PUP.Optional.MegaSearch
C:\ProgramData\Datamngr =>PUP.Optional.Datamngr
C:\ProgramData\IePluginServices =>Trojan.SProtector
C:\ProgramData\ShopperPro =>PUP.Optional.ShopperPro
C:\ProgramData\SweetIM =>PUP.Optional.SweetIM
C:\ProgramData\WindowsMangerProtect =>PUP.Optional.WpManager
C:\ProgramData\YTAHelper =>PUP.Optional.Goobzo
C:\Users\dell.dell-PC\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch
C:\Users\dell.dell-PC\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\dell.dell-PC\AppData\Roaming\SupTab =>PUP.Optional.SupTab
C:\Users\dell.dell-PC\AppData\Local\AppsHat Mobile Apps =>PUP.Optional.MegaSearch
C:\Users\dell.dell-PC\AppData\Local\CrashRpt =>.Superfluous.CrashReports
C:\Users\dell.dell-PC\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate
C:\Users\dell.dell-PC\AppData\Local\Installer =>PUP.Optional.InstallPedia
C:\Users\dell.dell-PC\AppData\Local\Media Get LLC =>PUP.Optional.MediaGet
C:\Users\dell.dell-PC\AppData\Local\MediaGet2 =>PUP.Optional.MediaGet
C:\Users\dell.dell-PC\AppData\Local\PackageAware =>PUP.Optional.BearShare
C:\Users\dell.dell-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat =>PUP.Optional.MegaSearch
C:\Windows\System32\drivers\{ec3b464a-97da-43ec-b8d8-6d9d0bc1b9c5}Gw64.sys =>PUP.Optional.LinkiDoo
HKLM\SYSTEM\CurrentControlSet\Services\mglupdatem =>PUP.Optional.Maxiget
C:\Program Files (x86)\Maxiget\Updater\MaxigetUpdater.exe =>PUP.Optional.Maxiget
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector

---\\ Summary of the elements found (33) - 0s
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.Optional.FastStart
http://www.nicolascoolman.fr/pup-goobzo/ =>PUP.Optional.Goobzo
http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.Torch
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-shopperpro/ =>PUP.Optional.ShopperPro
http://www.nicolascoolman.fr/adware-megasearch/ =>PUP.Optional.MegaSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.InboxEmail
http://www.nicolascoolman.fr/blog =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/pup-suptab/ =>PUP.Optional.SupTab
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/adware-bandoo/ =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/blog =>PUP.Optional.WebPlayer
http://www.nicolascoolman.fr/adware-pricegong/ =>PUP.Optional.PriceGong
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchCore
http://www.nicolascoolman.fr/pup-sweetim/ =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/pup-datamngr/ =>PUP.Optional.Datamngr
http://www.nicolascoolman.fr/trojan-sprotector/ =>Trojan.SProtector
http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/blog =>.Superfluous.CrashReports
http://www.nicolascoolman.fr/adware-installpedia/ =>PUP.Optional.InstallPedia
http://www.nicolascoolman.fr/pup-mediaget/ =>PUP.Optional.MediaGet
http://www.nicolascoolman.fr/pup-bearshare/ =>PUP.Optional.BearShare
http://www.nicolascoolman.fr/pup-linkidoo/ =>PUP.Optional.LinkiDoo
http://www.nicolascoolman.fr/pup-appgraffiti/ =>PUP.Optional.AppGraffiti
http://www.nicolascoolman.fr/blog =>PUP.Optional.Monetization
http://www.nicolascoolman.fr/pup-objectbrowser/ =>PUP.Optional.ObjectBrowser
http://www.nicolascoolman.fr/blog =>PUP.Optional.Maxiget
http://www.nicolascoolman.fr/pup-bprotector/ =>PUP.Optional.BProtector

~ End of the scan, 35950 items in 257 seconds (1484)(0)()