cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.1.27.21 By Nicolas Coolman (2016/01/27)
~ Run by houci (Administrator) (2016/01/29 18:44:39)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\houci\Desktop\ZHPDiag.txt
~ Report: C:\Users\houci\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10586)

---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v49.0.2623.28
MFIE: Mozilla Firefox 43.0.3 (x64 en-US)
MSIE: Internet Explorer v11.63.10586.0

---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ System protection software (3) - 5s
ESET Smart Security v9.0.349.0
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender (Deactivate)

---\\ System optimization software (1) - 5s
CCleaner v5.12

---\\ Surveillance software (2) - 5s
Adobe Flash Player 20 NPAPI
Adobe Reader XI

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4192.756 MB (42% free)
System Restore: Activé (Enable)
System drive C: has 124 GB () free of 233 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: MAGH
~ User Name: houci
~ Logged in as Administrator

---\\ Enumeration of the disk units (3) - 6s
~ Drive C: has 124 GB free of 233 GB (System)
~ Drive D: has 168 GB free of 186 GB
~ Drive F: has 277 GB free of 290 GB

---\\ State of the Windows Security Center (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Search Generic System Files (24) - 1s
[MD5.4572EB3DDBD2DFA10DE7A037A6CC6D53] - 30/10/2015 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [4502864] =>.Microsoft Windows®
[MD5.0DCB89B1F3689BC6262FF30BBD603171] - 30/10/2015 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [59392] =>.Microsoft Corporation
[MD5.CAD491DD9EC00BB841EA407D9C498C4A] - 30/10/2015 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [290856] =>.Microsoft Windows Publisher®
[MD5.AB4C1A9F37C0B8467AC923ED4AD727D6] - 22/11/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2647552] =>.Microsoft Corporation
[MD5.7B24B823404D53DA4748F21AD2BF04C9] - 05/01/2016 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [584704] =>.Microsoft Corporation
[MD5.9EEAA1B69DC3FD620AE576CC8F4147DC] - 30/10/2015 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [430592] =>.Microsoft Corporation
[MD5.E7B524818100B0FDE2B057C74B0C0DCD] - 30/10/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [686984] =>.Microsoft Windows®
[MD5.2796C0957F6F05A528DD64B8591371B6] - 30/10/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [535088] =>.Microsoft Windows®
[MD5.70148EFA9A562E7185B75BBE7D376BF7] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [578912] =>.Microsoft Windows®
[MD5.492B99D2E3D5D7BFD5F0AE1BE7BD37DD] - 30/10/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.7F9C7226D743B232907ED2537B8A574F] - 30/10/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation
[MD5.82D97776BF982AA143BDC7DFB5054EA8] - 30/10/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [173568] =>.Microsoft Corporation
[MD5.C9478D7DB7BE5D7ACE65CB1167F07320] - 30/10/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [148480] =>.Microsoft Corporation
[MD5.84BC034B6BB763733C1949B7B9BAF976] - 30/10/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [79872] =>.Microsoft Corporation
[MD5.53FDD9E69189E546DE4740F8C4D8AB2F] - 30/10/2015 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation
[MD5.9E5E8F2A1996F23B7E9687846AA81B01] - 30/10/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation
[MD5.61F9F27A8C3D7BCD287FE98A440421CE] - 30/10/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [430944] =>.Microsoft Windows®
[MD5.F51C02D992A8D6BC5EC4D990F227D4C7] - 30/10/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [279552] =>.Microsoft Corporation
[MD5.EFEFC245B884B1BE0401931398DCD707] - 01/12/2015 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [2152800] =>.Microsoft Windows®
[MD5.7D0FC96264C0F8F2C1321E33E8EB646C] - 30/10/2015 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation
[MD5.381B8F2311A0375676B635EA5E7C8AB0] - 30/10/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation
[MD5.1DC2CC74B51E4DC4CD5A20C1021E4010] - 30/10/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [173056] =>.Microsoft Corporation
[MD5.91D3F2A6253EF83EFBD7903028F58C4D] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118624] =>.Microsoft Windows®
[MD5.E1F91A727A04C9F8199D04FF3BBBF63C] - 30/10/2015 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [414560] =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (18) - 4s
O23 - Service: Adguard Service (Adguard Service) . (.Performix LLC - Adguard for Windows.) - C:\Program Files (x86)\Adguard\AdguardSvc.exe {11217943575E821301807A43EAC9AE8FE273}
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: ESET Service (ekrn) . (.ESET - ESET Service.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe =>.ESET, spol. s r.o.®
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Hola Better Internet Engine (hola_svc) . (.Hola Networks Ltd. - Hola Better Internet Engine.) - C:\Program Files\Hola\app\hola_svc.exe =>.Hola Networks Ltd.®
O23 - Service: Hola Better Internet Updater (hola_updater) . (.Hola Networks Ltd. - Hola Better Internet Engine.) - C:\Program Files\Hola\app\hola_updater.exe =>.Hola Networks Ltd.®
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2014 - .) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co., Ltd.®
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.9.) - C:\Windows\System32\nvvsvc.exe =>.NVIDIA Corporation®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®

---\\ Services not Microsoft (SR=Run, SS=Stop) (22) - 26s

SR - Auto [05/07/2015] [ 119832] Adguard Service (Adguard Service) . (.Performix LLC.) - C:\Program Files (x86)\Adguard\AdguardSvc.exe {11217943575E821301807A43EAC9AE8FE273}
SR - Auto [27/09/2015] [ 81088] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [20/01/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [19/11/2015] [ 2521080] ESET Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET Smart Security\ekrn.exe =>.ESET, spol. s r.o.®
SS - Auto [02/01/2016] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [02/01/2016] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [20/01/2016] [ 8126592] Hola Better Internet Engine (hola_svc) . (.Hola Networks Ltd..) - C:\Program Files\Hola\app\hola_svc.exe =>.Hola Networks Ltd.®
SR - Auto [09/01/2016] [ 8126592] Hola Better Internet Updater (hola_updater) . (.Hola Networks Ltd..) - C:\Program Files\Hola\app\hola_updater.exe =>.Hola Networks Ltd.®
SR - Auto [05/10/2015] [ 1513784] (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
SR - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [20/08/2014] [ 242256] Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2014.) - C:\ProgramData\MobileBrServ\mbbservice.exe =>.Huawei Technologies Co., Ltd.®
SS - Demand [11/01/2016] [ 167880] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [13/10/2015] [ 1706128] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
SR - Auto [13/10/2015] [ 933168] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [13/10/2015] [ 416432] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
SR - Auto [25/11/2015] [ 89792] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [ 358080] VMware DHCP Service (VMnetDHCP) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnetdhcp.exe =>.VMware, Inc.®
SR - Auto [06/11/2015] [ 906944] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [ 392896] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\SysWOW64\vmnat.exe =>.VMware, Inc.®
SR - Auto [25/11/2015] [12462784] VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc.®

---\\ Task Planned Automatically (12) - 3s
[MD5.295A5BFCE8D225D014DB4E6E69336279] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.5C35525CEBE7B59FAFA05D5E98D7EDEF] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6602152] =>.Piriform Ltd®
[MD5.88FBBB1C601A6BC42054E57C2897FA45] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.88FBBB1C601A6BC42054E57C2897FA45] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] =>.Apple Inc.®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [924] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [928] =>.Google Inc.
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3816] =>.Adobe Systems Incorporated
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2870] =>.Piriform Ltd
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3754] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3986] =>.Google Inc.

---\\ Process running (37) - 3s
[MD5.2C2469FF10F51572D1F6573751E40462] - (.ESET - ESET Service.) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2521080] [PID.744] =>.ESET, spol. s r.o.®
[MD5.F3A837A403C0E92A7475913659DECF94] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.9.) -- C:\Windows\System32\nvvsvc.exe [933168] [PID.1048] =>.NVIDIA Corporation®
[MD5.7FFEE5D79695C7392DBF3EA1F18A1E67] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [416432] [PID.1056] =>.NVIDIA Corporation®
[MD5.4A9EEAB7073682B2ADC80A3F583CB150] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1201456] [PID.1328] =>.NVIDIA Corporation®
[MD5.F3A837A403C0E92A7475913659DECF94] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 341.9.) -- C:\Windows\System32\nvvsvc.exe [933168] [PID.1336] =>.NVIDIA Corporation®
[MD5.A225E7D8CC78D0713186A2F83736649E] - (.Hola Networks Ltd. - Hola Better Internet Engine.) -- C:\Program Files\Hola\app\hola_updater.exe [8126592] [PID.2076] =>.Hola Networks Ltd.®
[MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.2112] =>.Adobe Systems, Incorporated®
[MD5.AB176B9E59C0435499D83047D84EDD59] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784] [PID.2136] =>.Malwarebytes Corporation®
[MD5.40C126CB15FAB7D6C66490DCA9C1AED2] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416] [PID.2164] =>.Malwarebytes Corporation®
[MD5.533AA4A69EE91B1C53910EF57E314DEF] - (.Copyright (C) 2014 - .) -- C:\ProgramData\MobileBrServ\mbbservice.exe [242256] [PID.2176] =>.Huawei Technologies Co., Ltd.®
[MD5.FE392E13FB5C8BE2CE9128449885BCB5] - (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\AdguardSvc.exe [119832] [PID.2184] {11217943575E821301807A43EAC9AE8FE273}
[MD5.93C82F365F9C0A2058A211E305A5CCFA] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128] [PID.2224] =>.NVIDIA Corporation®
[MD5.5F9CBD6D40E32CAEB55DB4A0799EBA72] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe [89792] [PID.2532] =>.VMware, Inc.®
[MD5.DF89A1667D769377CA5441A6F62F9031] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [392896] [PID.2616] =>.VMware, Inc.®
[MD5.C84A6FA836262BD7CBE611F08B554E8B] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [358080] [PID.2644] =>.VMware, Inc.®
[MD5.B30B940E999CC59A701B564A7E359D09] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906944] [PID.2676] =>.VMware, Inc.®
[MD5.6B5BB4F597113997DBE1BE6091675F6C] - (...) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12462784] [PID.3520] =>.VMware, Inc.®
[MD5.36308FBC82BBC18D454BCA671692300F] - (.ESET - ESET Main GUI.) -- C:\Program Files\ESET\ESET Smart Security\egui.exe [5544648] [PID.4164] =>.ESET, spol. s r.o.®
[MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.4228] =>.Malwarebytes Corporation®
[MD5.AF674E6080EFFB366744D9CCE63D9C23] - (.Hola Networks Ltd. - Hola Better Internet.) -- C:\Program Files\Hola\app\hola.exe [2031232] [PID.4908] =>.Hola Networks Ltd.®
[MD5.1036A5756F04CBA6C7F01DEEEECF8AC6] - (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe [2015768] [PID.5872] {11217943575E821301807A43EAC9AE8FE273}
[MD5.65F39E4C0A0119E5BA5911C524EAA9A7] - (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [104128] [PID.5896] =>.VMware, Inc.®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.3548] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.4488] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.6932] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.5664] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.2916] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.5800] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.5676] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.3404] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.6080] =>.Google Inc®
[MD5.FD4F75EDE8BDB5A85711D56C4B4DE732] - (.Hola Networks Ltd. - Hola Better Internet Engine.) -- C:\Program Files\Hola\app\hola_svc.exe [8126592] [PID.5728] =>.Hola Networks Ltd.®
[MD5.FE2D34B7621705DC6F5A61D5EEAE442F] - (.Yodo1 - Crossy Road.) -- C:\Program Files\WindowsApps\Yodo1Ltd.CrossyRoad_1.2.1.0_x86__s3s3f300emkze\Crossy Road.exe [16896] [PID.6252]
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.2124] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.2628] =>.Google Inc®
[MD5.64F4434917C522FB0A26F0A7D538A9CA] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1004872] [PID.6668] =>.Google Inc®
[MD5.AD0F16DEF98337C3F11E69DCFDD9928E] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\houci\Downloads\ZHPDiag3.exe [2097152] [PID.7920] =>.Nicolas Coolman

---\\ Google Chrome, Start,Search,Extensions (13) - 1s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__ =>.AdblocPlus Plugin
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gaedmjdfmmahhbjefcbgaolhhanlaolb] Authy
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [jepibmfmhopgkplegmkjgifmhabbjadg] Custom Google™ Background
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (4) - 1s
P2 - EXT FILE: (...) -- C:\Users\houci\AppData\Roaming\Mozilla\Firefox\Profiles\z534dx91.default\extensions\firefox@zenmate.com.xpi
P2 - EXT FILE: (...) -- C:\Users\houci\AppData\Roaming\Mozilla\Firefox\Profiles\z534dx91.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - FPN: [HKCU] [@hola.org/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Users\houci\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_286.dll =>.Adobe Systems Incorporated

---\\ Internet Explorer Extensions, Start, Search (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (2) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object (BHO) (3) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation®

---\\ Auto loading programs from Registry and folders (18) - 3s
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [hola] . (.Hola Networks Ltd. - Hola Better Internet.) -- C:\Program Files\Hola\app\hola.exe =>.Hola Networks Ltd.®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\houci\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKCU\..\Run: [Adguard] . (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe {11217943575E821301807A43EAC9AE8FE273}
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3196543050-738170314-2791931962-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\houci\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3196543050-738170314-2791931962-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - HKUS\S-1-5-21-3196543050-738170314-2791931962-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - HKUS\S-1-5-21-3196543050-738170314-2791931962-1001\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-3196543050-738170314-2791931962-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - HKUS\S-1-5-21-3196543050-738170314-2791931962-1001\..\Run: [Adguard] . (.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\Adguard.exe {11217943575E821301807A43EAC9AE8FE273}

---\\ Global shortcuts Startup (80) - 11s
O4 - GS\Desktop [Administrator]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrator]: DCC - Shortcut.lnk . (.BernyR - Dreambox Control Center.) C:\e2\DCC 2.96\DCC.exe =>.BernyR
O4 - GS\Desktop [Administrator]: Dreamset - Shortcut.lnk . (.John V. - Settings Editor (Enigma 1 & 2, Neutrino, Ne.) C:\e2\dreamset\Dreamset.exe
O4 - GS\Desktop [Administrator]: GreenBrowser.lnk . (.MoreQuick.com - GreenBrowser Web Browser.) C:\Program Files (x86)\GreenBrowser\GreenBrowser.exe
O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - GS\Desktop [Administrator]: KMPlayer.lnk . (.PandoraTV - The KMPlayer.) C:\KMPlayer\KMPlayer.exe {106CB8E1A76002B367F8EC4EAD341212}
O4 - GS\Desktop [Administrator]: pes2011 New Gamplay 2 By PRO EGY - Shortcut.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2011.) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2011\pes2011 New Gamplay 2 By PRO EGY.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Desktop [Administrator]: RarmaRadio.lnk . (.Raimersoft - RarmaRadio.) C:\Program Files (x86)\RarmaRadio\RarmaRadio.exe =>.Raimersoft
O4 - GS\Desktop [Administrator]: Smartflix.lnk . (.GitHub - Update.) C:\Users\houci\AppData\Local\smartflix\Update.exe
O4 - GS\Desktop [Administrator]: Xilisoft Video Converter Ultimate.lnk . (...) C:\Program Files (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe {19D3D338471584C131DCF0A4ACC0C5FC}
O4 - GS\Desktop [Administrator]: Your Unin-staller!.lnk . (.URSoft,Inc - Your Uninstaller! - New way to uninstall pr.) C:\Program Files (x86)\Your Uninstaller! 7\urmain.exe {2D52C7CF5E69A633AC3AED0E78F988DC}
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\houci\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrator]: Apple Safari.lnk . (...) C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: GreenBrowser.lnk . (.MoreQuick.com - GreenBrowser Web Browser.) C:\Program Files (x86)\GreenBrowser\GreenBrowser.exe
O4 - GS\Quicklaunch [Administrator]: Xilisoft Video Converter Ultimate.lnk . (...) C:\Program Files (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe {19D3D338471584C131DCF0A4ACC0C5FC}
O4 - GS\Quicklaunch [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Desktop [Guest]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: DCC - Shortcut.lnk . (.BernyR - Dreambox Control Center.) C:\e2\DCC 2.96\DCC.exe =>.BernyR
O4 - GS\Desktop [Guest]: Dreamset - Shortcut.lnk . (.John V. - Settings Editor (Enigma 1 & 2, Neutrino, Ne.) C:\e2\dreamset\Dreamset.exe
O4 - GS\Desktop [Guest]: GreenBrowser.lnk . (.MoreQuick.com - GreenBrowser Web Browser.) C:\Program Files (x86)\GreenBrowser\GreenBrowser.exe
O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - GS\Desktop [Guest]: KMPlayer.lnk . (.PandoraTV - The KMPlayer.) C:\KMPlayer\KMPlayer.exe {106CB8E1A76002B367F8EC4EAD341212}
O4 - GS\Desktop [Guest]: pes2011 New Gamplay 2 By PRO EGY - Shortcut.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2011.) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2011\pes2011 New Gamplay 2 By PRO EGY.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Desktop [Guest]: RarmaRadio.lnk . (.Raimersoft - RarmaRadio.) C:\Program Files (x86)\RarmaRadio\RarmaRadio.exe =>.Raimersoft
O4 - GS\Desktop [Guest]: Smartflix.lnk . (.GitHub - Update.) C:\Users\houci\AppData\Local\smartflix\Update.exe
O4 - GS\Desktop [Guest]: Xilisoft Video Converter Ultimate.lnk . (...) C:\Program Files (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe {19D3D338471584C131DCF0A4ACC0C5FC}
O4 - GS\Desktop [Guest]: Your Unin-staller!.lnk . (.URSoft,Inc - Your Uninstaller! - New way to uninstall pr.) C:\Program Files (x86)\Your Uninstaller! 7\urmain.exe {2D52C7CF5E69A633AC3AED0E78F988DC}
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\houci\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Guest]: Apple Safari.lnk . (...) C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: GreenBrowser.lnk . (.MoreQuick.com - GreenBrowser Web Browser.) C:\Program Files (x86)\GreenBrowser\GreenBrowser.exe
O4 - GS\Quicklaunch [Guest]: Xilisoft Video Converter Ultimate.lnk . (...) C:\Program Files (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe {19D3D338471584C131DCF0A4ACC0C5FC}
O4 - GS\Quicklaunch [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Desktop [houci]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [houci]: DCC - Shortcut.lnk . (.BernyR - Dreambox Control Center.) C:\e2\DCC 2.96\DCC.exe =>.BernyR
O4 - GS\Desktop [houci]: Dreamset - Shortcut.lnk . (.John V. - Settings Editor (Enigma 1 & 2, Neutrino, Ne.) C:\e2\dreamset\Dreamset.exe
O4 - GS\Desktop [houci]: GreenBrowser.lnk . (.MoreQuick.com - GreenBrowser Web Browser.) C:\Program Files (x86)\GreenBrowser\GreenBrowser.exe
O4 - GS\Desktop [houci]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.®
O4 - GS\Desktop [houci]: KMPlayer.lnk . (.PandoraTV - The KMPlayer.) C:\KMPlayer\KMPlayer.exe {106CB8E1A76002B367F8EC4EAD341212}
O4 - GS\Desktop [houci]: pes2011 New Gamplay 2 By PRO EGY - Shortcut.lnk . (.Konami Digital Entertainment Co., Ltd. - Pro Evolution Soccer 2011.) C:\Program Files (x86)\KONAMI\Pro Evolution Soccer 2011\pes2011 New Gamplay 2 By PRO EGY.exe =>.Konami Digital Entertainment Co., Ltd.
O4 - GS\Desktop [houci]: RarmaRadio.lnk . (.Raimersoft - RarmaRadio.) C:\Program Files (x86)\RarmaRadio\RarmaRadio.exe =>.Raimersoft
O4 - GS\Desktop [houci]: Smartflix.lnk . (.GitHub - Update.) C:\Users\houci\AppData\Local\smartflix\Update.exe
O4 - GS\Desktop [houci]: Xilisoft Video Converter Ultimate.lnk . (...) C:\Program Files (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe {19D3D338471584C131DCF0A4ACC0C5FC}
O4 - GS\Desktop [houci]: Your Unin-staller!.lnk . (.URSoft,Inc - Your Uninstaller! - New way to uninstall pr.) C:\Program Files (x86)\Your Uninstaller! 7\urmain.exe {2D52C7CF5E69A633AC3AED0E78F988DC}
O4 - GS\Desktop [houci]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\houci\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [houci]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [houci]: Apple Safari.lnk . (...) C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - GS\Quicklaunch [houci]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [houci]: GreenBrowser.lnk . (.MoreQuick.com - GreenBrowser Web Browser.) C:\Program Files (x86)\GreenBrowser\GreenBrowser.exe
O4 - GS\Quicklaunch [houci]: Xilisoft Video Converter Ultimate.lnk . (...) C:\Program Files (x86)\Xilisoft\Video Converter Ultimate\vcloader.exe {19D3D338471584C131DCF0A4ACC0C5FC}
O4 - GS\Quicklaunch [houci]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\houci\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [houci]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [houci]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [houci]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Adguard.lnk . (.Performix LLC - Adguard for Windows.) C:\Program Files (x86)\Adguard\Adguard.exe {11217943575E821301807A43EAC9AE8FE273}
O4 - GS\CommonDesktop [Public]: Adobe Application Manager.lnk . (.Adobe Systems Incorporated - Adobe Application Manager.) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - GS\CommonDesktop [Public]: ESET Banking & Payment protection.lnk . (.ESET - .) C:\Program Files (x86)\ESET\ESET Smart Security\ecmd.exe =>.ESET
O4 - GS\CommonDesktop [Public]: Euro Truck Simulator 2.lnk . (.SCS Software - Euro Truck Simulator 2 - Steam.) C:\Program Files (x86)\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe =>.SCS Software
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: MiniTool Partition Wizard Professional Edition.lnk . (.MiniTool Solution Ltd. - MiniTool Partition Wizard.) C:\Program Files (x86)\MiniTool Partition Wizard Professional Edition 9.1\PartitionWizard.exe {1121FE616769A8C3C0A0EDC5507542AE320D} =>.MiniTool Solution Ltd.
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Mp3tag.lnk . (.Florian Heidenreich - Mp3tag - the universal Tag editor.) C:\Program Files (x86)\Mp3tag\Mp3tag.exe {00DB71B0770CA8E10635C9F965878AA7DF} =>.Florian Heidenreich
O4 - GS\CommonDesktop [Public]: Safari.lnk . (...) C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: UltraISO.lnk . (.EZB Systems, Inc. - UltraISO Premium.) C:\Program Files (x86)\UltraISO\UltraISO.exe {11211B6C1D7687D789B2B9118C0D9622C42F}
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files\VideoLAN\VLC\vlc.exe =>.VideoLAN
O4 - GS\CommonDesktop [Public]: VMware Workstation Pro.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.®
O4 - GS\Programs [Public]: Start Tor Browser.lnk . (...) C:\Users\houci\Desktop\Tor Browser\Browser\firefox.exe

---\\ Lop.com/Domain Hijackers (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{68863fd5-9f8d-4c59-8935-edcc93fa1b3b}: DhcpNameServer = 192.168.8.1 192.168.8.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{d1082001-8f8e-48ae-9639-7494556fd41f}: DhcpNameServer = 192.168.1.1 0.0.0.0

---\\ Extra protocols (26) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation

---\\ Software installed (49) - 15s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: 7-Zip 15.14 (x64) - (.Igor Pavlov.) [HKLM][64Bits] -- 7-Zip =>.Igor Pavlov
O42 - Logiciel: Adguard - (.Insoft LLC.) [HKLM][64Bits] -- {617d1f67-a54d-463c-aeae-255b87753e04} {11217943575E821301807A43EAC9AE8FE273}
O42 - Logiciel: Adguard - (.Performix LLC.) [HKLM][64Bits] -- {685F6AB3-7C61-42D1-AE5B-3864E48D1035}
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Premiere Pro CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {38C72D42-0672-43B1-9E05-E7631684F9A1} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.13) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: ESET Smart Security - (.ESET, spol. s r.o..) [HKLM][64Bits] -- {C7967963-BE1C-4ABA-839F-3CB206E50697} =>.ESET, spol. s r.o.
O42 - Logiciel: Euro Truck Simulator 2 - (.Релиз от R.G. Steamgames.) [HKLM][64Bits] -- Euro Truck Simulator 2_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: GreenBrowser - (.MoreQuick.com.) [HKLM][64Bits] -- GreenBrowser_is1
O42 - Logiciel: HashTab 5.2.0.14 - (.Implbits Software.) [HKLM][64Bits] -- HashTab =>.Implbits Software
O42 - Logiciel: Hola™ 1.11.399 - Better Internet - (.Hola Networks Ltd..) [HKLM][64Bits] -- Hola =>.Hola Networks Ltd.®
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: K-Lite Mega Codec Pack 11.1.0 - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: KMPlayer (remove only) - (.PandoraTV.) [HKLM][64Bits] -- The KMPlayer
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: MiniTool Partition Wizard Professional Edition 9.1 - (.MiniTool Solution Ltd..) [HKLM][64Bits] -- {2991A446-D356-44EC-930A-42E8B02A67C0}_is1 {1121FE616769A8C3C0A0EDC5507542AE320D} =>.MiniTool Solution Ltd.
O42 - Logiciel: Mobile Broadband HL Service - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Mobile Broadband HL Service =>.Huawei Technologies Co., Ltd.®
O42 - Logiciel: Mozilla Firefox 43.0.3 (x64 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 43.0.3 (x64 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Mp3tag v2.72 - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag =>.Florian Heidenreich
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: NVIDIA 3D Vision Controller Driver 340.50 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA 3D Vision Driver 341.92 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Control Panel 341.92 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Graphics Driver 341.92 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Network Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo =>.NVIDIA Corporation®
O42 - Logiciel: NVIDIA Virtual Audio 1.2.27 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: RarmaRadio 2.69.1 - (.RaimerSoft.) [HKLM][64Bits] -- RarmaRadio_is1 =>.Raimersoft
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D} =>.Apple Inc.
O42 - Logiciel: Skype™ 7.18 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: Smartflix - (.Smartflix Inc..) [HKCU][64Bits] -- smartflix
O42 - Logiciel: UltraISO Premium V9.6 - (...) [HKLM][64Bits] -- UltraISO_is1
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker =>.Cedrick Collomb
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM][64Bits] -- {0AD91785-F9BD-47FD-84F7-9E27B5A1853D} =>.VMware, Inc.
O42 - Logiciel: WinRAR 5.30 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: Xilisoft Video Converter Ultimate - (.Xilisoft.) [HKCU][64Bits] -- Xilisoft Video Converter Ultimate =>.Xilisoft
O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM][64Bits] -- YU2010_is1 {2D52C7CF5E69A633AC3AED0E78F988DC}

---\\ HKCU & HKLM Software Keys (97) - 15s
HKLM\SOFTWARE\Wow6432Node\Acronis
HKLM\SOFTWARE\Wow6432Node\Adguard
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\DC-Unlocker
HKLM\SOFTWARE\Wow6432Node\EasyBoot Systems
HKLM\SOFTWARE\Wow6432Node\ESET
HKLM\SOFTWARE\Wow6432Node\Florian Heidenreich
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Icaros
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\KMPlayer
HKLM\SOFTWARE\Wow6432Node\KONAMI
HKLM\SOFTWARE\Wow6432Node\LAV
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MOVAVI
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\repkasoft
HKLM\SOFTWARE\Wow6432Node\Seagate
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\ThinPrint
HKLM\SOFTWARE\Wow6432Node\Torch =>.Superfluous.Torch
HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
HKLM\SOFTWARE\Wow6432Node\VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adguard
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\ched
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\EasyBoot Systems
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HashTab
HKCU\SOFTWARE\Hola
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\KMPlayer
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madshi
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MiniTool Solution Ltd.
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Raimasoft
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\repkasoft
HKCU\SOFTWARE\SAMSUNG
HKCU\SOFTWARE\Seagate
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\SimpleTV by SergeyVS#3
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SyncEngines
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\Torch =>.Superfluous.Torch
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\UCBrowserPID
HKCU\SOFTWARE\URSoft
HKCU\SOFTWARE\VMware, Inc.
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Xilisoft
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contents of the Common Files folders (185) - 33s
O43 - CFD: 29/01/2016 - [] AD -- C:\Program Files (x86)\Adguard {11217943575E821301807A43EAC9AE8FE273}
O43 - CFD: 31/12/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 31/12/2015 - [0] D -- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 31/12/2015 - [] AD -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.®
O43 - CFD: 29/01/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 16/01/2016 - [] AD -- C:\Program Files (x86)\Euro Truck Simulator 2
O43 - CFD: 02/01/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 31/12/2015 - [] AD -- C:\Program Files (x86)\GreenBrowser
O43 - CFD: 31/12/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc.®
O43 - CFD: 01/01/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 08/01/2016 - [] AD -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 04/01/2016 - [] D -- C:\Program Files (x86)\KONAMI
O43 - CFD: 31/12/2015 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 29/01/2016 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 31/12/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 12/01/2016 - [] AD -- C:\Program Files (x86)\MiniTool Partition Wizard Professional Edition 9.1 {1121FE616769A8C3C0A0EDC5507542AE320D}
O43 - CFD: 08/01/2016 - [0] D -- C:\Program Files (x86)\Movavi Game Capture 4
O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 31/12/2015 - [] D -- C:\Program Files (x86)\Mp3tag {00DB71B0770CA8E10635C9F965878AA7DF}
O43 - CFD: 08/01/2016 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 31/12/2015 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 31/12/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 14/01/2016 - [0] AD -- C:\Program Files (x86)\Project64 1.6
O43 - CFD: 08/01/2016 - [] AD -- C:\Program Files (x86)\RarmaRadio
O43 - CFD: 08/01/2016 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 31/12/2015 - [] AD -- C:\Program Files (x86)\Safari =>.Apple Inc.®
O43 - CFD: 10/01/2016 - [] D -- C:\Program Files (x86)\SAMSUNG
O43 - CFD: 12/01/2016 - [] D -- C:\Program Files (x86)\Seagate
O43 - CFD: 31/12/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\UCBrowser {348A4D46C9A1A9EDC2B4818465A66BED}
O43 - CFD: 03/01/2016 - [] AD -- C:\Program Files (x86)\UltraISO {11211B6C1D7687D789B2B9118C0D9622C42F}
O43 - CFD: 28/01/2016 - [] AD -- C:\Program Files (x86)\VMware =>.VMware, Inc.®
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 30/10/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 05/01/2016 - [] D -- C:\Program Files (x86)\Xilisoft {19D3D338471584C131DCF0A4ACC0C5FC}
O43 - CFD: 31/12/2015 - [] AD -- C:\Program Files (x86)\Your Uninstaller! 7
O43 - CFD: 25/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 28/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adguard
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 24/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
O43 - CFD: 16/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GreenBrowser
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 08/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 12/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Professional Edition 9.1
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
O43 - CFD: 08/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RarmaRadio
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 30/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 03/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 28/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
O43 - CFD: 12/01/2016 - [] D -- C:\ProgramData\Acronis
O43 - CFD: 29/01/2016 - [] D -- C:\ProgramData\Adguard
O43 - CFD: 01/01/2016 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Apple
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 31/12/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 31/12/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 31/12/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 24/01/2016 - [] D -- C:\ProgramData\ESET
O43 - CFD: 31/12/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 05/01/2016 - [] D -- C:\ProgramData\KONAMI
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 10/01/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 25/01/2016 - [] D -- C:\ProgramData\MobileBrServ
O43 - CFD: 29/01/2016 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 29/01/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 01/01/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 29/01/2016 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 06/01/2016 - [0] D -- C:\ProgramData\Reprise
O43 - CFD: 22/01/2016 - [] D -- C:\ProgramData\Skype
O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 31/12/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 28/01/2016 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 31/12/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 01/01/2016 - [] D -- C:\ProgramData\Thunder Network
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 31/12/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 29/01/2016 - [] AD -- C:\ProgramData\VMware
O43 - CFD: 01/01/2016 - [] AD -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 29/01/2016 - [] AD -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 03/01/2016 - [] D -- C:\Program Files (x86)\Common Files\EZB Systems
O43 - CFD: 29/01/2016 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 31/12/2015 - [] AD -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 28/01/2016 - [] AD -- C:\Program Files (x86)\Common Files\ThinPrint
O43 - CFD: 28/01/2016 - [] D -- C:\Program Files (x86)\Common Files\VMware
O43 - CFD: 03/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\.ACEStream
O43 - CFD: 03/01/2016 - [0] D -- C:\Users\houci\AppData\Roaming\ACEStream
O43 - CFD: 01/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Adobe
O43 - CFD: 05/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Apple Computer
O43 - CFD: 28/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\DMCache
O43 - CFD: 20/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Hola =>PUP.Optional.HolaSearch
O43 - CFD: 28/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\IDM
O43 - CFD: 10/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\InfoServ
O43 - CFD: 10/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Intelli-studio
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Roaming\Macromedia
O43 - CFD: 15/01/2016 - [] SD -- C:\Users\houci\AppData\Roaming\Microsoft
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Roaming\Mozilla
O43 - CFD: 25/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\MPC-HC
O43 - CFD: 04/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Notepad++
O43 - CFD: 01/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\NVIDIA
O43 - CFD: 10/01/2016 - [0] D -- C:\Users\houci\AppData\Roaming\OptiFlasher
O43 - CFD: 24/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Performix LLC
O43 - CFD: 08/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\RaimaRadioPro
O43 - CFD: 12/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Seagate
O43 - CFD: 29/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Skype
O43 - CFD: 11/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Smartflix
O43 - CFD: 06/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\TeamViewer
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Roaming\URSoft
O43 - CFD: 27/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\uTorrent
O43 - CFD: 25/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\vlc
O43 - CFD: 28/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\VMware
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Roaming\WinRAR
O43 - CFD: 05/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Xilisoft
O43 - CFD: 04/01/2016 - [0] D -- C:\Users\houci\AppData\Roaming\YoWindow
O43 - CFD: 29/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\ZHP
O43 - CFD: 31/12/2015 - [0] D -- C:\Users\houci\AppData\Local\ActiveSync
O43 - CFD: 01/01/2016 - [] D -- C:\Users\houci\AppData\Local\Adobe
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\Apple
O43 - CFD: 05/01/2016 - [] D -- C:\Users\houci\AppData\Local\Apple Computer
O43 - CFD: 31/12/2015 - [0] SHD -- C:\Users\houci\AppData\Local\Application Data
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\Comms
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\ESET
O43 - CFD: 09/01/2016 - [] D -- C:\Users\houci\AppData\Local\ExpressVPN
O43 - CFD: 02/01/2016 - [] D -- C:\Users\houci\AppData\Local\Google
O43 - CFD: 31/12/2015 - [0] SHD -- C:\Users\houci\AppData\Local\History
O43 - CFD: 09/01/2016 - [] D -- C:\Users\houci\AppData\Local\Hola =>PUP.Optional.HolaSearch
O43 - CFD: 16/01/2016 - [] D -- C:\Users\houci\AppData\Local\Microsoft
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\MicrosoftEdge
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\Mozilla
O43 - CFD: 24/01/2016 - [] D -- C:\Users\houci\AppData\Local\Packages
O43 - CFD: 31/12/2015 - [0] D -- C:\Users\houci\AppData\Local\PackageStaging
O43 - CFD: 31/12/2015 - [0] D -- C:\Users\houci\AppData\Local\PeerDistRepub
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\Programs
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\Publishers
O43 - CFD: 31/12/2015 - [0] D -- C:\Users\houci\AppData\Local\Skype
O43 - CFD: 11/01/2016 - [] D -- C:\Users\houci\AppData\Local\smartflix
O43 - CFD: 11/01/2016 - [] D -- C:\Users\houci\AppData\Local\SquirrelTemp
O43 - CFD: 29/01/2016 - [] D -- C:\Users\houci\AppData\Local\Temp
O43 - CFD: 31/12/2015 - [0] SHD -- C:\Users\houci\AppData\Local\Temporary Internet Files
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Local\TileDataLayer
O43 - CFD: 08/01/2016 - [0] D -- C:\Users\houci\AppData\Local\Torch =>.Superfluous.Torch
O43 - CFD: 05/01/2016 - [] D -- C:\Users\houci\AppData\Local\VirtualStore
O43 - CFD: 28/01/2016 - [0] D -- C:\Users\houci\AppData\Local\VMware
O43 - CFD: 30/10/2015 - [] RD -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 31/12/2015 - [] RD -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 29/01/2016 - [] RD -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 10/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
O43 - CFD: 10/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 30/10/2015 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 31/12/2015 - [0] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 11/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Smartflix Inc
O43 - CFD: 29/01/2016 - [] RD -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 30/10/2015 - [] RD -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 14/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 30/10/2015 - [] RSD -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 31/12/2015 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 05/01/2016 - [] D -- C:\Users\houci\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Xilisoft

---\\ Latest files created in Prefetcher (1) - 11s
O45 - LFCP:[MD5.37D8D6BB4EBA9A015E7B0BFB103ED2F5] 08/01/2016 A -- C:\Windows\Prefetch\TORCH.EXE-4442045B.pf =>.Superfluous.Torch

---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\houci\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\houci\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\houci\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\houci\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\houci\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation®

---\\ System Drivers List (73) - 9s
O58 - SDL:2016/01/24 10:53:53 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\17D91414.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/30 08:17:22 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/06/02 16:38:12 A . (.Copyright (C) Performix LLC 2015 - Adguard TDI network driver.) -- C:\Windows\System32\drivers\adgnetworktdidrv.sys [61432] {11217943575E821301807A43EAC9AE8FE273}
O58 - SDL:2015/10/30 08:17:22 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:22 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:22 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:22 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:22 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/10/30 08:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider
O58 - SDL:2015/10/30 08:17:22 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - Amon monitor.) -- C:\Windows\System32\drivers\eamonm.sys [263528] =>.ESET, spol. s r.o.®
O58 - SDL:2015/07/30 11:41:36 A . (.ESET - ESET ELAM driver.) -- C:\Windows\System32\drivers\eelam.sys [14976] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET Helper driver.) -- C:\Windows\System32\drivers\ehdrv.sys [186784] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET OPP Keyboard Filter.) -- C:\Windows\System32\drivers\ekbdflt.sys [142976] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfw.sys [206312] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - Epfw NDIS LightWeight Filter.) -- C:\Windows\System32\drivers\EpfwLWF.sys [52872] =>.ESET, spol. s r.o.®
O58 - SDL:2015/11/16 12:21:22 A . (.ESET - ESET Personal Firewall driver.) -- C:\Windows\System32\drivers\epfwwfp.sys [69840] =>.ESET, spol. s r.o.®
O58 - SDL:2015/10/30 08:17:22 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2009/09/09 10:23:46 A . (.Intel Corporation - BIOS Update Driver.) -- C:\Windows\System32\drivers\flashud.sys [51712] =>.Intel Corporation
O58 - SDL:2015/11/06 11:57:44 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [57536] =>.VMware, Inc.®
O58 - SDL:2015/10/30 08:17:22 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:18 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation
O58 - SDL:2015/10/30 08:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [165888] =>.Intel Corporation
O58 - SDL:2015/10/30 08:17:18 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/10/30 08:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation
O58 - SDL:2015/10/30 08:17:22 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:22 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2015/12/29 13:18:10 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [199152] =>.Tonec Inc.®
O58 - SDL:2012/03/23 04:33:52 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [6192640] =>.Intel Corporation
O58 - SDL:2015/10/30 08:17:23 A . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabi.) -- C:\Windows\System32\drivers\L1C63x64.sys [121344] =>.Qualcomm Atheros Co., Ltd.
O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108888] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/01/29 18:31:24 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/30 08:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:22 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [64216] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2015/10/13 20:00:02 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [12898992] =>.NVIDIA Corporation®
O58 - SDL:2015/10/30 08:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/10/03 06:06:17 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [50472] =>.NVIDIA Corporation®
O58 - SDL:2015/10/30 08:17:23 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/04/28 19:18:54 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\Windows\System32\drivers\tap0901.sys [27136] =>.The OpenVPN Project
O58 - SDL:2015/12/18 17:08:18 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Host-Only Network Adapt.) -- C:\Windows\System32\drivers\VBoxNetAdp6.sys [117768] =>.Oracle Corporation®
O58 - SDL:2015/12/18 17:08:18 A . (.Oracle Corporation - VirtualBox NDIS 6.0 Lightweight Filter Driv.) -- C:\Windows\System32\drivers\VBoxNetLwf.sys [194976] =>.Oracle Corporation®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [90816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:30 A . (.VMware, Inc. - VMware keyboard filter driver (64-bit).) -- C:\Windows\System32\drivers\VMkbd.sys [33472] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [27328] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [28864] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:51:56 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [48832] =>.VMware, Inc.®
O58 - SDL:2015/11/25 17:52:52 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [26816] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:16 A . (.VMware, Inc. - VMware parallel port driver.) -- C:\Windows\System32\drivers\VMparport.sys [31936] =>.VMware, Inc.®
O58 - SDL:2015/11/25 18:10:28 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [66752] =>.VMware, Inc.®
O58 - SDL:2015/10/30 08:17:23 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/11/05 19:25:42 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [75512] =>.VMware, Inc.®
O58 - SDL:2015/10/30 08:17:23 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2015/11/12 22:50:10 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\Windows\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312®
O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/10/30 08:17:23 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®
O58 - SDL:2013/09/30 15:26:50 N . (...) -- C:\Windows\System32\pwdrvio.sys [19152] =>.MiniTool Solution Ltd®
O58 - SDL:2013/09/30 15:26:48 N . (...) -- C:\Windows\System32\pwdspio.sys [12504] =>.MiniTool Solution Ltd®

---\\ Last modified or created user files (6) - 26s
O61 - LFC: 2016/01/24 17:40:28 A . (..) -- C:\Users\houci\Downloads\Programs\adguardInstaller.exe [399352] {3EDEB62828DC716E184EA9C2B4704B4E}
O61 - LFC: 2016/01/24 18:36:09 A . (..) -- C:\Users\houci\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [19624]
O61 - LFC: 2016/01/29 16:54:54 A . (..) -- C:\Users\houci\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2016/01/29 18:31:10 A . (..) -- C:\Users\houci\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin [16148]
O61 - LFC: 2016/01/22 15:34:25 A . (..) -- C:\Users\houci\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin [406350]
O61 - LFC: 2016/01/26 00:09:01 A . (..) -- C:\Users\houci\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [122851]

---\\ File Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Start Menu Internet (16) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe =>.Apple Inc.®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe =>.Apple Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe =>.Apple Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe =>.Apple Inc.

---\\ Search Browser Infection (2) - 5s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/

---\\ Search Svchost Services (42) - 1s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [283136] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [1338368] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [957952] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [958464] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [94720] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [112640] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1012224] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [225280] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [134656] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [328192] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [372736] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [96256] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\system32\dcpsvc.dll [186880] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\Windows\system32\wlidsvc.dll [2057216] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\Windows\System32\ncasvc.dll [168960] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\Windows\System32\NetSetupSvc.dll [203776] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [59392] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\system32\RDXService.dll [1073152] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [696320] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [507904] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\sens.dll [73216] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [457728] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2280448] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [1144320] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [608768] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\system32\dmwappushsvc.dll [57856] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [360448] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\system32\XboxNetApiSvc.dll [1035776] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\Windows\system32\usocore.dll [360960] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1130496] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [278016] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [205824] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [912384] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [948224] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation

---\\ Firewall Active Exception List (9) - 3s
O87 - FAEL: "TCP Query User{9466B5A5-E176-4FF8-8619-80A2C117BF2F}F:\dcc 2.96\dcc.exe" [In-None-P6-TRUE] .(...) -- F:\dcc 2.96\dcc.exe (.not file.)
O87 - FAEL: "UDP Query User{D2189CAD-E444-4243-BBFF-B9D756B51C90}F:\dcc 2.96\dcc.exe" [In-None-P17-TRUE] .(...) -- F:\dcc 2.96\dcc.exe (.not file.)
O87 - FAEL: "{0A08E4AC-B91A-4EFA-9E32-D84EAF904CC9}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011 by yait25.exe (.not file.)
O87 - FAEL: "{155F25F3-9A78-42AC-B174-0BC58B70FB16}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011 by yait25.exe (.not file.)
O87 - FAEL: "{29FE7F37-91EF-44CC-B065-610ABEF15C07}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011 New Gamplay 2 By PRO EGY.exe (.not file.)
O87 - FAEL: "{D859274E-476C-4024-AEA8-5F297DDF2F0A}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KONAMI\Pro Evolution Soccer 2011\pes2011 New Gamplay 2 By PRO EGY.exe (.not file.)
O87 - FAEL: "TCP Query User{0419958B-5BFA-4259-92CC-6CEBE75332FC}F:\dreamset\dreamset.exe" [In-None-P6-TRUE] .(...) -- F:\dreamset\dreamset.exe (.not file.)
O87 - FAEL: "UDP Query User{AA9BBC01-AD65-46B7-AAFE-C9EE29834DD8}F:\dreamset\dreamset.exe" [In-None-P17-TRUE] .(...) -- F:\dreamset\dreamset.exe (.not file.)
O87 - FAEL: "{9BA441D8-DE3C-4B9C-AAAD-462559F6F1CB}" [In-None-P17-TRUE] .(.Performix LLC - Adguard for Windows.) -- C:\Program Files (x86)\Adguard\AdguardSvc.exe {11217943575E821301807A43EAC9AE8FE273}

---\\ Additional Scan (O88) (6) - 0s
HKLM\SOFTWARE\Wow6432Node\Torch =>.Superfluous.Torch
HKCU\SOFTWARE\Torch =>.Superfluous.Torch
C:\Users\houci\AppData\Roaming\Hola =>PUP.Optional.HolaSearch
C:\Users\houci\AppData\Local\Hola =>PUP.Optional.HolaSearch
C:\Users\houci\AppData\Local\Torch =>.Superfluous.Torch
C:\Windows\Prefetch\TORCH.EXE-4442045B.pf =>.Superfluous.Torch

---\\ Summary of the elements found (2) - 0s
http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.Torch
http://www.nicolascoolman.fr/?p=1161 =>PUP.Optional.HolaSearch

~ End of the scan, 19127 items in 00h04mn08s (859)(0)

Publicité


Signaler le contenu de ce document

Publicité