Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.6.6.102 By Nicolas Coolman (2016/06/06)
~ Run by Adrian (Administrator) (2016/06/12 16:39:15)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version KO
~ Mode: Scan
~ Report: C:\Users\Adrian\Desktop\ZHPDiag.txt
~ Report: C:\Users\Adrian\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (2) - 0s
OPIE: Opera 38.0.2220.29
MSIE: Internet Explorer v11.0.9600.18282
---\\ Windows Product Information (4) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System protection software (1) - 2s
Malwarebytes Anti-Malware version 2.1.8.1057
---\\ Surveillance software (2) - 2s
Adobe Flash Player 21 PPAPI
Adobe Reader XI
---\\ Sharing software PeerToPeer (1) - 2s
µTorrent v3.4.7.42330
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4078.956 MB (44% free)
System Restore: Activé (Enable)
System drive C: has 41 GB () free of 476 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: ADRIAN-PC
~ User Name: Adrian
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 41 GB free of 476 GB (System)
~ Drive E: has GB free of 4 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (25) - 1s
[MD5.9D77CC4A36FEEA644D002CFB9B2D42C0] - 22/01/2016 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [3231232] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.D2E3B1DEDF6F6177D8C32B2516703A93] - 31/03/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2596864] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 24/04/2011 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 24/04/2011 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 24/04/2011 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 24/04/2011 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.ACEC16415275E1AD6F7983EF472810E3] - 18/03/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.09594D1089C523423B32A4229263F068] - 24/04/2011 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation
[MD5.47B2D0B31BDC3EBE6090228E2BA3764D] - 11/01/2016 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1684416] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 24/04/2011 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 24/04/2011 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 24/04/2011 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (8) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe =>.Broadcom Corporation®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: DW WLAN Tray Service (wltrysvc) . (.Dell Inc. - DW WLAN Card Wireless Network Service.) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE =>.Dell Inc.
---\\ Services not Microsoft (SR=Run, SS=Stop) (11) - 42s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [17/11/2009] [ 98208] Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
SR - Auto [21/09/2013] [ 1008344] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe =>.Broadcom Corporation®
SS - Demand [15/10/2012] [ 277024] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Demand [30/11/2015] [ 1368408] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe =>.Disc Soft Ltd®
SR - Auto [30/08/2013] [ 15720] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
SS - Auto [18/06/2015] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [23/11/2012] [ 201872] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
SS - Auto [11/12/2014] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [23/07/2014] [ 48128] DW WLAN Tray Service (wltrysvc) . (.Dell Inc..) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE =>.Dell Inc.
---\\ Task Planned Automatically (8) - 7s
[MD5.00000000000000000000000000000000] [APT] [TaskName] (...) -- Task To Run (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.A69361C2D172496A291AE2B23DF42654] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe [1173184] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.E49FD011745BFC5621C586CCD07FF81E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6564776] (.Activate.) =>.Piriform Ltd®
[MD5.38D8E53137D8A62FFF6140F03618F17C] [APT] [Opera scheduled Autoupdate 1450557477] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [755240] (.Activate.) =>.Opera Software ASA®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [892] =>.Adobe Systems Incorporated®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [3890] =>.Adobe Systems Incorporated®
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2794] =>.Piriform Ltd®
O39 - APT: Opera scheduled Autoupdate 1450557477 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1450557477 [3874] =>.Opera Software ASA®
---\\ Process running (36) - 4s
[MD5.A10CF010E1A2B4337230B4929E0FE4A1] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201872] [PID.1140] =>.Realtek Semiconductor Corp®
[MD5.E9752E0CD9FB37612474B23973443FC9] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1253520] [PID.1164] =>.Realtek Semiconductor Corp®
[MD5.CF31A8CEF7CF4CCB992F5E8F100DA19F] - (.Dell Inc. - DW WLAN Card Wireless Network Service.) -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [48128] [PID.1400] =>.Dell Inc.
[MD5.E8B27CD4320EDE5D5A8AEA68FE2FBFF3] - (.Dell Inc. - DW WLAN Card Wireless Network Controller.) -- C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE [6170624] [PID.1460] =>.Dell Inc.
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1796] =>.Adobe Systems, Incorporated®
[MD5.D1E343BC00136CE03C4D403194D06A80] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [98208] [PID.1860] =>.Andrea Electronics®
[MD5.3AFFE6D9D144F65985CCD28035A5F081] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [1008344] [PID.1884] =>.Broadcom Corporation®
[MD5.483BAA4246B80BDE1EA562C618BBA4A1] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [171040] [PID.2792] =>.Intel Corporation - pGFX®
[MD5.40CAEC9DBC892ED1915704CC54CB382E] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [399392] [PID.2800] =>.Intel Corporation - pGFX®
[MD5.C88B01661694F2013F8DF1BD66B8B39E] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [441888] [PID.2812] =>.Intel Corporation - pGFX®
[MD5.DB333A5F69B00A6B550901A5C854929F] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6846096] [PID.2892] =>.Realtek Semiconductor Corp®
[MD5.E9752E0CD9FB37612474B23973443FC9] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1253520] [PID.2900] =>.Realtek Semiconductor Corp®
[MD5.DEC0C877FC3EEAC8A7787A0D3D41FD44] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2796272] [PID.2908] =>.Synaptics Incorporated®
[MD5.53B4C9F8E8DB6ABE4051D332C340D413] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [199408] [PID.3040] =>.Synaptics Incorporated®
[MD5.50B3A4B1B04BF4865C22EA69D9EF7168] - (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE [8921600] [PID.1000] =>.Dell Inc.
[MD5.E30987C26979B7D45DABAD46E512569F] - (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe [5762408] [PID.2332] =>.Compal Electronics, Inc.®
[MD5.B05E1CE24CC555E189FCEB1AD07DFCED] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8551848] [PID.2404] =>.Piriform Ltd®
[MD5.C34B0A111632044D9999D5F42F65254F] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [1395928] [PID.1816] =>.Broadcom Corporation®
[MD5.796227FCA947A0B8E3D6A097B27F2363] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088] [PID.2496] =>.Intel Corporation®
[MD5.059B8158C08C82C78DC6A8153A2467A4] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992] [PID.2080] =>.Oracle America, Inc.®
[MD5.92731491BB3170A9AFA99834FB5C0F57] - (.Security Stronghold - Stronghold AntiMalware.) -- C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe [8122552] [PID.2732] {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
[MD5.A3B1076615D6B83826CB8C963EC16043] - (.Disc Soft Ltd - Disc Soft Bus Service.) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408] [PID.3484] =>.Disc Soft Ltd®
[MD5.F93E4DC33900B8F2A82BD22FFAF21C96] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592] [PID.3996] =>.Intel Corporation - Intel® Rapid Storage Technology®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3776] =>.Opera Software ASA®
[MD5.F295838FA2D0326789FA5A92A3A81C94] - (.Opera Software - Opera crash-reporter.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera_crashreporter.exe [592424] [PID.816] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.2652] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3064] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.2108] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3504] =>.Opera Software ASA®
[MD5.B64E1D5BABD095C13A382838F9DCC77F] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.4508] =>.Intel Corporation - Intel® Rapid Storage Technology®
[MD5.F91EBA6FBDB6953F951A0FC109CB6FFE] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.1036] =>.Adobe Systems, Incorporated®
[MD5.F91EBA6FBDB6953F951A0FC109CB6FFE] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.4488] =>.Adobe Systems, Incorporated®
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] [PID.3260] =>.Adobe Systems, Incorporated®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3468] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.4548] =>.Opera Software ASA®
[MD5.CC0AD099C20DE19FB336AE3E6712DBEE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Adrian\AppData\Local\Temp\scoped_dir3776_19872\ZHPDiag3.exe [2213888] [PID.6132] =>.Nicolas Coolman
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (7) - 3s
P2 - EXT: (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll =>.Adobe Systems, Incorporated®
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT FILE: (...) -- C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\o4ag5t1s.default-1447685367813\extensions\LDSI_plashcor@gmail.com.xpi
P2 - EXT FILE: (...) -- C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\o4ag5t1s.default-1447685367813\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
P2 - EXT: (.AnchorFree Inc - Hotspot Shield Extension.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com
P2 - EXT: (.Vicente Amor - Flash and Video Download.) -- C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\o4ag5t1s.default-1447685367813\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} =>.Vicente Amor
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll =>.Adobe Systems Incorporated
---\\ Opera, Plugins,Start,Search (1) - 1s
B2 - EXT: [Opera Stable] C:\Users\Adrian\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp
---\\ Internet Explorer Extensions, Start, Search (14) - 0s
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKEY_USERS\S-1-5-21-4055709356-1465872850-4113285666-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (1) - 0s
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
---\\ Auto loading programs from Registry and folders (20) - 2s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation - pGFX®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation - pGFX®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation - pGFX®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated®
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE =>.Dell Inc.
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe =>.Compal Electronics, Inc.®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe =>.Intel Corporation®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Stronghold AntiMalware] . (.Security Stronghold - Stronghold AntiMalware.) -- C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4055709356-1465872850-4113285666-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-4055709356-1465872850-4113285666-1000\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
---\\ Global shortcuts Startup (39) - 11s
O4 - GS\Desktop [Administrator]: Audacity.lnk . (...) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\Desktop [Administrator]: AVI ReComp.lnk . (.Mateusz Gola (aka Prozac) - The tool for re-encoding AVI clips.) C:\Program Files (x86)\AVI ReComp\AVIReComp.exe
O4 - GS\Desktop [Administrator]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Administrator]: Stronghold AntiMalware.lnk . (.Security Stronghold - Stronghold AntiMalware.) C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - GS\Desktop [Administrator]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Adrian\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\Desktop [Adrian]: Audacity.lnk . (...) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\Desktop [Adrian]: AVI ReComp.lnk . (.Mateusz Gola (aka Prozac) - The tool for re-encoding AVI clips.) C:\Program Files (x86)\AVI ReComp\AVIReComp.exe
O4 - GS\Desktop [Adrian]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Adrian]: Stronghold AntiMalware.lnk . (.Security Stronghold - Stronghold AntiMalware.) C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - GS\Desktop [Adrian]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Adrian\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Adrian]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Adrian]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Adrian]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Adrian]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\Desktop [Guest]: Audacity.lnk . (...) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\Desktop [Guest]: AVI ReComp.lnk . (.Mateusz Gola (aka Prozac) - The tool for re-encoding AVI clips.) C:\Program Files (x86)\AVI ReComp\AVIReComp.exe
O4 - GS\Desktop [Guest]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Guest]: Stronghold AntiMalware.lnk . (.Security Stronghold - Stronghold AntiMalware.) C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - GS\Desktop [Guest]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Adrian\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - GS\CommonDesktop [Public]: DAEMON Tools Lite.lnk . (.Disc Soft Ltd - .) C:\Program Files (x86)\DAEMON Tools Lite\DTLauncher.exe =>.Disc Soft Ltd
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Mp3tag.lnk . (.Florian Heidenreich - Mp3tag - the universal Tag editor.) C:\Program Files (x86)\Mp3tag\Mp3tag.exe =>.Florian Heidenreich®
O4 - GS\CommonDesktop [Public]: OpenOffice 4.1.1.lnk . (.Apache Software Foundation - OpenOffice 4.1.1.) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe =>.Apache Software Foundation
O4 - GS\CommonDesktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Startup [Public]: Bluetooth.lnk . (.Broadcom Corporation. - .) C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe =>.Broadcom Corporation.
O4 - GS\Programs [Public]: FileHippo App Manager.lnk . (...) C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc
---\\ Lop.com/Domain Hijackers (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{12AA26AC-4392-403A-9A14-02CD4B939AC0}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{12AA26AC-4392-403A-9A14-02CD4B939AC0}: DhcpDomain = lan
---\\ Extra protocols (21) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
---\\ Software installed (44) - 27s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: Adobe Flash Player 21 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 21 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.13) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824161310} =>.Adobe Systems Incorporated
O42 - Logiciel: Audacity 1.2.6 - (...) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: AVI ReComp 1.5.6 - (.Mateusz Gola (aka Prozac).) [HKLM][64Bits] -- AVI ReComp
O42 - Logiciel: AviSynth 2.5 - (...) [HKLM][64Bits] -- Avisynth
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} =>.Cisco Systems, Inc.
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.Disc Soft Ltd®
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 9204f5692a8faf3b =>.Dell
O42 - Logiciel: Dell Touchpad - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: DW WLAN Card Utility - (.Dell Inc..) [HKLM][64Bits] -- DW WLAN Card Utility =>.Dell Inc.
O42 - Logiciel: FileZilla Client 3.16.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {96714280-14E6-4DF7-BACD-F797C0F17C3D} =>.Intel Corporation
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} =>.Intel Corporation
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} =>.Intel Corporation®
O42 - Logiciel: Java 8 Update 91 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218091F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: LibreOffice 4.2.5.2 - (.The Document Foundation.) [HKLM][64Bits] -- {93AD8CBD-C32E-4318-90BB-A294BE2D712C} =>.The Document Foundation
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes Corporation
O42 - Logiciel: Mp3tag v2.61d - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag =>.Florian Heidenreich
O42 - Logiciel: MPC-HC 1.7.10 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Open Source Developer, Fotis ZAFIROPOULOS®
O42 - Logiciel: OpenOffice 4.1.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {121727D5-FDF3-4723-BA57-EB383440ED72} =>.Apache Software Foundation
O42 - Logiciel: Opera Stable 38.0.2220.29 - (.Opera Software.) [HKLM][64Bits] -- Opera 38.0.2220.29 =>.Opera Software ASA®
O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} =>.Dell Inc.
O42 - Logiciel: Realtek Ethernet Controller All-In-One Windows Driver - (.Realtek.) [HKLM][64Bits] -- {F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} =>.Skype Technologies S.A.
O42 - Logiciel: Stronghold AntiMalware - (.Security Stronghold.) [HKLM][64Bits] -- Stronghold AntiMalware_is1 =>.Security Stronghold
O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF =>.Krzysztof Kowalczyk®
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker =>.Cedrick Collomb
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {A1439D4F-FD46-47F2-A1D3-FEE097C29A09} =>.Broadcom Corporation
O42 - Logiciel: Windows Resource Kit Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {FA237125-51FF-408C-8BB8-30C2B3DFFF9C} =>.Microsoft Corporation
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VobSub 2.23 - (.Gabest.) [HKLM][64Bits] -- VobSub =>.Gabest
O42 - Logiciel: Xvid Video Codec - (.Xvid Team.) [HKLM][64Bits] -- Xvid Video Codec 1.3.2 =>.Xvid Team
---\\ HKCU & HKLM Software Keys (123) - 27s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Amazon
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\AVI ReComp
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\BcmSetup
HKLM\SOFTWARE\Wow6432Node\C07ft5Y
HKLM\SOFTWARE\Wow6432Node\Data Fellows
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\Dropbox
HKLM\SOFTWARE\Wow6432Node\DropboxUpdate
HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Florian Heidenreich
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Huawei technologies
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LibreOffice
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mindscape
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mtControl
HKLM\SOFTWARE\Wow6432Node\mtSaveCode
HKLM\SOFTWARE\Wow6432Node\NCH Software
HKLM\SOFTWARE\Wow6432Node\NCH Swift Sound
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\perforce
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\The Document Foundation
HKLM\SOFTWARE\Wow6432Node\tueagles
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Xvid Team
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Amazon
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\AVD
HKCU\SOFTWARE\AVI ReComp
HKCU\SOFTWARE\BcmSetup
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Broadcom
HKCU\SOFTWARE\Bytescout
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CoolROM
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DjVuLibre
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\EuroSoft Software Development
HKCU\SOFTWARE\Freeware
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hiro Software Factory
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JaboSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\malavida
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\mtControl
HKCU\SOFTWARE\mtSaveCode
HKCU\SOFTWARE\N64 Emulation
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\NCH Swift Sound
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\perforce
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Security Stronghold
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sports Interactive Ltd
HKCU\SOFTWARE\Streaming Video Recorder
HKCU\SOFTWARE\SUPERAntiSpyware.com
HKCU\SOFTWARE\SUU Design
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\The Document Foundation
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Un peu de géographie
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VideoLAN
HKCU\SOFTWARE\Vkontakte.dj
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contents of the Common Files folders (226) - 53s
O43 - CFD: 31/08/2015 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files
O43 - CFD: 06/12/2015 - [] D -- C:\Program Files\DAEMON Tools Lite =>.Disc Soft Ltd®
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\Dell =>.Compal Electronics, Inc.®
O43 - CFD: 25/04/2011 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 22/12/2015 - [] D -- C:\Program Files\Intel =>.Intel Corporation - Intel® Rapid Storage Technology®
O43 - CFD: 14/04/2016 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation®
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files\MI2
O43 - CFD: 03/06/2016 - [] D -- C:\Program Files\MPC-HC =>.Open Source Developer, Fotis ZAFIROPOULOS®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 07/01/2016 - [] D -- C:\Program Files\Unlocker
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\WIDCOMM =>.Broadcom Corporation®
O43 - CFD: 26/07/2014 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 11/03/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 19/12/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files (x86)\Adware Removal Tool by TSA
O43 - CFD: 16/11/2015 - [0] D -- C:\Program Files (x86)\Amazon
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files (x86)\Apowersoft
O43 - CFD: 01/09/2014 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\AVI ReComp
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\AviSynth 2.5
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 10/08/2015 - [] D -- C:\Program Files (x86)\Disc Soft
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Dropbox
O43 - CFD: 19/12/2015 - [] D -- C:\Program Files (x86)\Elisa M-internet
O43 - CFD: 08/04/2016 - [] D -- C:\Program Files (x86)\FileZilla FTP Client =>.Tim Kosse®
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\Gabest
O43 - CFD: 16/11/2015 - [] D -- C:\Program Files (x86)\GEOGRAPHIE
O43 - CFD: 04/01/2016 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files (x86)\Hide My IP 6
O43 - CFD: 19/02/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Realtek Semiconductor Corp®
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 14/04/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 03/08/2015 - [0] D -- C:\Program Files (x86)\IrfanView
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 30/07/2014 - [] D -- C:\Program Files (x86)\LibreOffice 4
O43 - CFD: 06/12/2015 - [] D -- C:\Program Files (x86)\Lionhead Studios Ltd
O43 - CFD: 17/08/2015 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 08/10/2015 - [] D -- C:\Program Files (x86)\Movie Maker 2.6
O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 01/08/2014 - [] D -- C:\Program Files (x86)\Mp3tag =>.Florian Heidenreich®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 24/05/2015 - [] D -- C:\Program Files (x86)\mupen64 0.5
O43 - CFD: 16/11/2015 - [] D -- C:\Program Files (x86)\NCH Software
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 10/06/2016 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA®
O43 - CFD: 16/04/2016 - [] D -- C:\Program Files (x86)\Project64 1.6
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 26/05/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 24/08/2014 - [] D -- C:\Program Files (x86)\Solent
O43 - CFD: 11/06/2016 - [] D -- C:\Program Files (x86)\Stronghold AntiMalware {1121DAA68066FB83F8591C05E61A0A74B0BA}
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\SumatraPDF
O43 - CFD: 23/07/2014 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 26/07/2014 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 11/03/2016 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 23/08/2014 - [] D -- C:\Program Files (x86)\Windows Resource Kits
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\Xvid
O43 - CFD: 23/07/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
O43 - CFD: 31/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Domination
O43 - CFD: 22/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
O43 - CFD: 08/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 22/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 30/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 22/12/2015 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.2
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
O43 - CFD: 03/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 22/12/2015 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
O43 - CFD: 08/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 17/08/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 22/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 11/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stronghold AntiMalware
O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Thumbnails Maker
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 02/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Resource Kit Tools
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 02/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
O43 - CFD: 11/01/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 30/04/2015 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\DatacardService
O43 - CFD: 23/07/2014 - [] D -- C:\ProgramData\Dell
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 04/10/2015 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 15/09/2014 - [] D -- C:\ProgramData\Elisa M-internet
O43 - CFD: 14/02/2016 - [] D -- C:\ProgramData\Exorcist DS
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\F-Secure
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 23/07/2014 - [] D -- C:\ProgramData\Intel
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 06/12/2015 - [] D -- C:\ProgramData\Lionhead Studios
O43 - CFD: 17/08/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 28/02/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 30/05/2016 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 12/12/2014 - [] D -- C:\ProgramData\Robin Hood
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\SaveCode
O43 - CFD: 15/04/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 23/01/2015 - [] D -- C:\ProgramData\Sun
O43 - CFD: 12/12/2014 - [0] D -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 27/07/2015 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/08/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 01/08/2014 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 18/09/2014 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 26/07/2014 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 11/01/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Adobe
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Anvsoft
O43 - CFD: 17/11/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Apowersoft
O43 - CFD: 02/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\AVI ReComp
O43 - CFD: 25/08/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\avidemux
O43 - CFD: 11/01/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\com.universcine.player.ifcinema
O43 - CFD: 07/01/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 04/10/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Dropbox
O43 - CFD: 16/08/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\dvdcss
O43 - CFD: 26/01/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Easy Thumbnails
O43 - CFD: 28/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\FileZilla
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Identities
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Intel Corporation
O43 - CFD: 03/08/2015 - [0] D -- C:\Users\Adrian\AppData\Roaming\IrfanView
O43 - CFD: 28/11/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\KastorAllVideoDownloader
O43 - CFD: 30/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\LibreOffice
O43 - CFD: 19/02/2016 - [0] D -- C:\Users\Adrian\AppData\Roaming\Lionhead Studios
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Macromedia
O43 - CFD: 16/04/2016 - [] SD -- C:\Users\Adrian\AppData\Roaming\Microsoft
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Mozilla
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Mp3tag
O43 - CFD: 03/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\MPC-HC
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\NCH Software
O43 - CFD: 31/07/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\OpenOffice
O43 - CFD: 30/07/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Opera Software
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Profiles
O43 - CFD: 12/12/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Robin Hood
O43 - CFD: 23/10/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\ScummVM
O43 - CFD: 09/04/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Skype
O43 - CFD: 12/12/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Sudden Games LLC
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\SumatraPDF
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Sun
O43 - CFD: 18/03/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Unity
O43 - CFD: 12/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\uTorrent
O43 - CFD: 05/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\vlc
O43 - CFD: 24/08/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\WebCam Recorder
O43 - CFD: 29/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\WinRAR
O43 - CFD: 24/08/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\XMedia Recode
O43 - CFD: 12/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\ZHP
O43 - CFD: 27/05/2016 - [] D -- C:\Users\Adrian\AppData\Local\Adobe
O43 - CFD: 27/03/2015 - [] D -- C:\Users\Adrian\AppData\Local\Amazon
O43 - CFD: 23/07/2014 - [0] SHD -- C:\Users\Adrian\AppData\Local\Application Data
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Apps
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Broadcom
O43 - CFD: 23/07/2014 - [0] D -- C:\Users\Adrian\AppData\Local\Deployment
O43 - CFD: 10/08/2015 - [] D -- C:\Users\Adrian\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Adrian\AppData\Local\Dropbox
O43 - CFD: 26/01/2015 - [] D -- C:\Users\Adrian\AppData\Local\DVDVideoSoft_Ltd
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Adrian\AppData\Local\ElevatedDiagnostics
O43 - CFD: 14/11/2014 - [] SHD -- C:\Users\Adrian\AppData\Local\EmieBrowserModeList
O43 - CFD: 22/10/2014 - [] SHD -- C:\Users\Adrian\AppData\Local\EmieSiteList
O43 - CFD: 22/10/2014 - [] SHD -- C:\Users\Adrian\AppData\Local\EmieUserList
O43 - CFD: 16/11/2015 - [] D -- C:\Users\Adrian\AppData\Local\F-Secure
O43 - CFD: 25/08/2014 - [] D -- C:\Users\Adrian\AppData\Local\Facebook
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Adrian\AppData\Local\FastReport
O43 - CFD: 15/09/2015 - [] D -- C:\Users\Adrian\AppData\Local\Google
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Adrian\AppData\Local\GWX
O43 - CFD: 23/07/2014 - [0] SHD -- C:\Users\Adrian\AppData\Local\History
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Macromedia
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Local\Microsoft
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Mozilla
O43 - CFD: 30/07/2015 - [] D -- C:\Users\Adrian\AppData\Local\Opera Software
O43 - CFD: 28/08/2014 - [] D -- C:\Users\Adrian\AppData\Local\Programs
O43 - CFD: 09/12/2014 - [] D -- C:\Users\Adrian\AppData\Local\Shalsoft
O43 - CFD: 04/08/2014 - [] D -- C:\Users\Adrian\AppData\Local\Skype
O43 - CFD: 12/06/2016 - [] D -- C:\Users\Adrian\AppData\Local\Temp
O43 - CFD: 23/07/2014 - [0] SHD -- C:\Users\Adrian\AppData\Local\Temporary Internet Files
O43 - CFD: 20/05/2015 - [0] D -- C:\Users\Adrian\AppData\Local\Unity
O43 - CFD: 23/11/2014 - [] D -- C:\Users\Adrian\AppData\Local\Western Digital
O43 - CFD: 06/04/2016 - [0] D -- C:\Users\Adrian\AppData\Local\WMTools Downloaded Files
O43 - CFD: 28/08/2014 - [0] D -- C:\Users\Adrian\AppData\Local\Programs\Common
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/02/2016 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVI ReComp
O43 - CFD: 02/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 10/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/02/2016 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ System Drivers List (74) - 14s
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2014/04/09 22:05:52 A . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920] =>.APOWERSOFT LIMITED®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2014/09/11 16:32:50 A . (.Windows (R) Win 7 DDK provider - Example ATR Filter Driver.) -- C:\Windows\System32\drivers\atrfiltr.sys [16224] {6888A2E25F737E4A7E3D769D61CB63F8} =>.Windows (R) Win 7 DDK provider
O58 - SDL:2009/06/10 23:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2014/07/23 20:19:26 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [170200] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:23 A . (.Broadcom Corporation - Broadcom iLine10(tm) PCI Network Adapter Pr.) -- C:\Windows\System32\drivers\bcm42rly.sys [23760] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:24 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [9082064] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 04:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [598808] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [184144] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [210984] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [39976] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21544] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 23:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 04:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2014/05/14 13:32:12 A . (.HID Global Corporation - PC/SC IFD-Handler for CCID compliant Reader.) -- C:\Windows\System32\drivers\cxbu0x64.sys [191224] {5E38C9FDFD3A168F17BCC13599035452}
O58 - SDL:2015/12/06 14:35:42 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtlitescsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2015/12/06 14:37:08 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual USB Bus Driver.) -- C:\Windows\System32\drivers\dtliteusbbus.sys [46392] =>.Disc Soft Ltd®
O58 - SDL:2009/07/14 04:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2016/06/11 17:06:31 A . (...) -- C:\Windows\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC®
O58 - SDL:2009/06/10 23:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/06/10 23:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2012/07/17 18:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] =>.Intel Corporation®
O58 - SDL:2011/04/24 15:05:59 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2013/08/30 21:18:02 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStorA.sys [644968] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/30 21:18:02 A . (.Intel Corporation - Intel Rapid Storage Technology Filter drive.) -- C:\Windows\System32\drivers\iaStorF.sys [28008] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2011/03/11 09:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2012/10/15 23:09:10 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [5343584] =>.Intel Corporation
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2012/06/19 05:10:50 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [342528] =>.Intel(R) Corporation
O58 - SDL:2013/02/23 04:40:14 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [20464] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/02/23 04:40:14 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [358896] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/02/23 04:40:14 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [792560] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2015/06/18 09:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/06/18 09:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/06/10 16:12:26 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2015/06/18 09:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2014/07/23 20:19:23 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [35344] =>.CACE Technologies, Inc.®
O58 - SDL:2011/03/11 09:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2012/08/09 13:49:02 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [726160] =>.Realtek Semiconductor Corp®
O58 - SDL:2012/11/27 19:22:20 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4222096] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 23:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 04:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2013/11/22 15:36:52 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [31472] =>.Synaptics Incorporated®
O58 - SDL:2009/07/14 04:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2013/11/22 15:36:52 A . (.Synaptics Incorporated - Synaptics Touchpad 64-bit Driver.) -- C:\Windows\System32\drivers\SynTP.sys [540912] =>.Synaptics Incorporated®
O58 - SDL:2016/05/27 11:34:54 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42064] =>.AnchorFree Inc®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2008/05/06 16:06:00 A . (.Western Digital Technologies - WD SCSI Architecture Model (SAM) driver.) -- C:\Windows\System32\drivers\wdcsam64.sys [14464] =>.Western Digital Technologies
---\\ File Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
---\\ Start Menu Internet (5) - 0s
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe =>.Opera Software ASA®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
---\\ Search Browser Infection (2) - 19s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
---\\ Search Svchost Services (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2610688] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation
---\\ Additional Scan (O88) (1) - 0s
~ No malicious or unnecessary items found.
---\\ Summary of the elements found (1) - 0s
~ No malicious or unnecessary items found.
~ End of the scan, 18784 items in 00h05mn37s (792)(0)
~ Run by Adrian (Administrator) (2016/06/12 16:39:15)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version KO
~ Mode: Scan
~ Report: C:\Users\Adrian\Desktop\ZHPDiag.txt
~ Report: C:\Users\Adrian\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (2) - 0s
OPIE: Opera 38.0.2220.29
MSIE: Internet Explorer v11.0.9600.18282
---\\ Windows Product Information (4) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System protection software (1) - 2s
Malwarebytes Anti-Malware version 2.1.8.1057
---\\ Surveillance software (2) - 2s
Adobe Flash Player 21 PPAPI
Adobe Reader XI
---\\ Sharing software PeerToPeer (1) - 2s
µTorrent v3.4.7.42330
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4078.956 MB (44% free)
System Restore: Activé (Enable)
System drive C: has 41 GB () free of 476 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: ADRIAN-PC
~ User Name: Adrian
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 41 GB free of 476 GB (System)
~ Drive E: has GB free of 4 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (25) - 1s
[MD5.9D77CC4A36FEEA644D002CFB9B2D42C0] - 22/01/2016 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [3231232] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.D2E3B1DEDF6F6177D8C32B2516703A93] - 31/03/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2596864] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 24/04/2011 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 24/04/2011 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 24/04/2011 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 24/04/2011 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.ACEC16415275E1AD6F7983EF472810E3] - 18/03/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.09594D1089C523423B32A4229263F068] - 24/04/2011 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation
[MD5.47B2D0B31BDC3EBE6090228E2BA3764D] - 11/01/2016 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1684416] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 24/04/2011 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 24/04/2011 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 24/04/2011 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (8) - 2s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe =>.Broadcom Corporation®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: DW WLAN Tray Service (wltrysvc) . (.Dell Inc. - DW WLAN Card Wireless Network Service.) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE =>.Dell Inc.
---\\ Services not Microsoft (SR=Run, SS=Stop) (11) - 42s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [17/11/2009] [ 98208] Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics®
SR - Auto [21/09/2013] [ 1008344] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe =>.Broadcom Corporation®
SS - Demand [15/10/2012] [ 277024] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Demand [30/11/2015] [ 1368408] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe =>.Disc Soft Ltd®
SR - Auto [30/08/2013] [ 15720] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
SS - Auto [18/06/2015] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [23/11/2012] [ 201872] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp®
SS - Auto [11/12/2014] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [23/07/2014] [ 48128] DW WLAN Tray Service (wltrysvc) . (.Dell Inc..) - C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE =>.Dell Inc.
---\\ Task Planned Automatically (8) - 7s
[MD5.00000000000000000000000000000000] [APT] [TaskName] (...) -- Task To Run (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.A69361C2D172496A291AE2B23DF42654] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_21_0_0_242_pepper.exe [1173184] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.E49FD011745BFC5621C586CCD07FF81E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6564776] (.Activate.) =>.Piriform Ltd®
[MD5.38D8E53137D8A62FFF6140F03618F17C] [APT] [Opera scheduled Autoupdate 1450557477] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [755240] (.Activate.) =>.Opera Software ASA®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [892] =>.Adobe Systems Incorporated®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [3890] =>.Adobe Systems Incorporated®
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2794] =>.Piriform Ltd®
O39 - APT: Opera scheduled Autoupdate 1450557477 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1450557477 [3874] =>.Opera Software ASA®
---\\ Process running (36) - 4s
[MD5.A10CF010E1A2B4337230B4929E0FE4A1] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [201872] [PID.1140] =>.Realtek Semiconductor Corp®
[MD5.E9752E0CD9FB37612474B23973443FC9] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1253520] [PID.1164] =>.Realtek Semiconductor Corp®
[MD5.CF31A8CEF7CF4CCB992F5E8F100DA19F] - (.Dell Inc. - DW WLAN Card Wireless Network Service.) -- C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE [48128] [PID.1400] =>.Dell Inc.
[MD5.E8B27CD4320EDE5D5A8AEA68FE2FBFF3] - (.Dell Inc. - DW WLAN Card Wireless Network Controller.) -- C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE [6170624] [PID.1460] =>.Dell Inc.
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1796] =>.Adobe Systems, Incorporated®
[MD5.D1E343BC00136CE03C4D403194D06A80] - (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [98208] [PID.1860] =>.Andrea Electronics®
[MD5.3AFFE6D9D144F65985CCD28035A5F081] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [1008344] [PID.1884] =>.Broadcom Corporation®
[MD5.483BAA4246B80BDE1EA562C618BBA4A1] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [171040] [PID.2792] =>.Intel Corporation - pGFX®
[MD5.40CAEC9DBC892ED1915704CC54CB382E] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [399392] [PID.2800] =>.Intel Corporation - pGFX®
[MD5.C88B01661694F2013F8DF1BD66B8B39E] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [441888] [PID.2812] =>.Intel Corporation - pGFX®
[MD5.DB333A5F69B00A6B550901A5C854929F] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6846096] [PID.2892] =>.Realtek Semiconductor Corp®
[MD5.E9752E0CD9FB37612474B23973443FC9] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1253520] [PID.2900] =>.Realtek Semiconductor Corp®
[MD5.DEC0C877FC3EEAC8A7787A0D3D41FD44] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2796272] [PID.2908] =>.Synaptics Incorporated®
[MD5.53B4C9F8E8DB6ABE4051D332C340D413] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [199408] [PID.3040] =>.Synaptics Incorporated®
[MD5.50B3A4B1B04BF4865C22EA69D9EF7168] - (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE [8921600] [PID.1000] =>.Dell Inc.
[MD5.E30987C26979B7D45DABAD46E512569F] - (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe [5762408] [PID.2332] =>.Compal Electronics, Inc.®
[MD5.B05E1CE24CC555E189FCEB1AD07DFCED] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8551848] [PID.2404] =>.Piriform Ltd®
[MD5.C34B0A111632044D9999D5F42F65254F] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [1395928] [PID.1816] =>.Broadcom Corporation®
[MD5.796227FCA947A0B8E3D6A097B27F2363] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088] [PID.2496] =>.Intel Corporation®
[MD5.059B8158C08C82C78DC6A8153A2467A4] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595992] [PID.2080] =>.Oracle America, Inc.®
[MD5.92731491BB3170A9AFA99834FB5C0F57] - (.Security Stronghold - Stronghold AntiMalware.) -- C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe [8122552] [PID.2732] {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
[MD5.A3B1076615D6B83826CB8C963EC16043] - (.Disc Soft Ltd - Disc Soft Bus Service.) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408] [PID.3484] =>.Disc Soft Ltd®
[MD5.F93E4DC33900B8F2A82BD22FFAF21C96] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592] [PID.3996] =>.Intel Corporation - Intel® Rapid Storage Technology®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3776] =>.Opera Software ASA®
[MD5.F295838FA2D0326789FA5A92A3A81C94] - (.Opera Software - Opera crash-reporter.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera_crashreporter.exe [592424] [PID.816] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.2652] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3064] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.2108] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3504] =>.Opera Software ASA®
[MD5.B64E1D5BABD095C13A382838F9DCC77F] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.4508] =>.Intel Corporation - Intel® Rapid Storage Technology®
[MD5.F91EBA6FBDB6953F951A0FC109CB6FFE] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.1036] =>.Adobe Systems, Incorporated®
[MD5.F91EBA6FBDB6953F951A0FC109CB6FFE] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.4488] =>.Adobe Systems, Incorporated®
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] [PID.3260] =>.Adobe Systems, Incorporated®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.3468] =>.Opera Software ASA®
[MD5.BB2949D4690822E25166022C263A1639] - (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\38.0.2220.29\opera.exe [710184] [PID.4548] =>.Opera Software ASA®
[MD5.CC0AD099C20DE19FB336AE3E6712DBEE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Adrian\AppData\Local\Temp\scoped_dir3776_19872\ZHPDiag3.exe [2213888] [PID.6132] =>.Nicolas Coolman
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (7) - 3s
P2 - EXT: (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll =>.Adobe Systems, Incorporated®
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT FILE: (...) -- C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\o4ag5t1s.default-1447685367813\extensions\LDSI_plashcor@gmail.com.xpi
P2 - EXT FILE: (...) -- C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\o4ag5t1s.default-1447685367813\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
P2 - EXT: (.AnchorFree Inc - Hotspot Shield Extension.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com
P2 - EXT: (.Vicente Amor - Flash and Video Download.) -- C:\Users\Adrian\AppData\Roaming\Mozilla\Firefox\Profiles\o4ag5t1s.default-1447685367813\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} =>.Vicente Amor
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll =>.Adobe Systems Incorporated
---\\ Opera, Plugins,Start,Search (1) - 1s
B2 - EXT: [Opera Stable] C:\Users\Adrian\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp
---\\ Internet Explorer Extensions, Start, Search (14) - 0s
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKEY_USERS\S-1-5-21-4055709356-1465872850-4113285666-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (1) - 0s
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
---\\ Auto loading programs from Registry and folders (20) - 2s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation - pGFX®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation - pGFX®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation - pGFX®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated®
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] . (.Dell Inc. - DW WLAN Card Wireless Network Tray Applet.) -- C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE =>.Dell Inc.
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe =>.Compal Electronics, Inc.®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe =>.Intel Corporation®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [Stronghold AntiMalware] . (.Security Stronghold - Stronghold AntiMalware.) -- C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4055709356-1465872850-4113285666-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-4055709356-1465872850-4113285666-1000\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe =>.Disc Soft Ltd®
---\\ Global shortcuts Startup (39) - 11s
O4 - GS\Desktop [Administrator]: Audacity.lnk . (...) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\Desktop [Administrator]: AVI ReComp.lnk . (.Mateusz Gola (aka Prozac) - The tool for re-encoding AVI clips.) C:\Program Files (x86)\AVI ReComp\AVIReComp.exe
O4 - GS\Desktop [Administrator]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Administrator]: Stronghold AntiMalware.lnk . (.Security Stronghold - Stronghold AntiMalware.) C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - GS\Desktop [Administrator]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Adrian\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\Desktop [Adrian]: Audacity.lnk . (...) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\Desktop [Adrian]: AVI ReComp.lnk . (.Mateusz Gola (aka Prozac) - The tool for re-encoding AVI clips.) C:\Program Files (x86)\AVI ReComp\AVIReComp.exe
O4 - GS\Desktop [Adrian]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Adrian]: Stronghold AntiMalware.lnk . (.Security Stronghold - Stronghold AntiMalware.) C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - GS\Desktop [Adrian]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Adrian\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Adrian]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Adrian]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Adrian]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Adrian]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\Desktop [Guest]: Audacity.lnk . (...) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\Desktop [Guest]: AVI ReComp.lnk . (.Mateusz Gola (aka Prozac) - The tool for re-encoding AVI clips.) C:\Program Files (x86)\AVI ReComp\AVIReComp.exe
O4 - GS\Desktop [Guest]: MPC-HC x64.lnk . (.MPC-HC Team - .) C:\Program Files (x86)\MPC-HC\mpc-hc64.exe =>.MPC-HC Team
O4 - GS\Desktop [Guest]: Stronghold AntiMalware.lnk . (.Security Stronghold - Stronghold AntiMalware.) C:\Program Files (x86)\Stronghold AntiMalware\StrongholdAntiMalware.exe {1121DAA68066FB83F8591C05E61A0A74B0BA} =>.Security Stronghold
O4 - GS\Desktop [Guest]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Adrian\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\Quicklaunch [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\Adrian\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc®
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - GS\CommonDesktop [Public]: DAEMON Tools Lite.lnk . (.Disc Soft Ltd - .) C:\Program Files (x86)\DAEMON Tools Lite\DTLauncher.exe =>.Disc Soft Ltd
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Mp3tag.lnk . (.Florian Heidenreich - Mp3tag - the universal Tag editor.) C:\Program Files (x86)\Mp3tag\Mp3tag.exe =>.Florian Heidenreich®
O4 - GS\CommonDesktop [Public]: OpenOffice 4.1.1.lnk . (.Apache Software Foundation - OpenOffice 4.1.1.) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe =>.Apache Software Foundation
O4 - GS\CommonDesktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Startup [Public]: Bluetooth.lnk . (.Broadcom Corporation. - .) C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe =>.Broadcom Corporation.
O4 - GS\Programs [Public]: FileHippo App Manager.lnk . (...) C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc
---\\ Lop.com/Domain Hijackers (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{12AA26AC-4392-403A-9A14-02CD4B939AC0}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{12AA26AC-4392-403A-9A14-02CD4B939AC0}: DhcpDomain = lan
---\\ Extra protocols (21) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: skypec2c [64Bits] - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll =>.Skype Software Sarl®
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
---\\ Software installed (44) - 27s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: Adobe Flash Player 21 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 21 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.13) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824161310} =>.Adobe Systems Incorporated
O42 - Logiciel: Audacity 1.2.6 - (...) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: AVI ReComp 1.5.6 - (.Mateusz Gola (aka Prozac).) [HKLM][64Bits] -- AVI ReComp
O42 - Logiciel: AviSynth 2.5 - (...) [HKLM][64Bits] -- Avisynth
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} =>.Cisco Systems, Inc.
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.Disc Soft Ltd®
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 9204f5692a8faf3b =>.Dell
O42 - Logiciel: Dell Touchpad - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: DW WLAN Card Utility - (.Dell Inc..) [HKLM][64Bits] -- DW WLAN Card Utility =>.Dell Inc.
O42 - Logiciel: FileZilla Client 3.16.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {96714280-14E6-4DF7-BACD-F797C0F17C3D} =>.Intel Corporation
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} =>.Intel Corporation
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} =>.Intel Corporation®
O42 - Logiciel: Java 8 Update 91 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218091F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: LibreOffice 4.2.5.2 - (.The Document Foundation.) [HKLM][64Bits] -- {93AD8CBD-C32E-4318-90BB-A294BE2D712C} =>.The Document Foundation
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes Corporation
O42 - Logiciel: Mp3tag v2.61d - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag =>.Florian Heidenreich
O42 - Logiciel: MPC-HC 1.7.10 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.Open Source Developer, Fotis ZAFIROPOULOS®
O42 - Logiciel: OpenOffice 4.1.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {121727D5-FDF3-4723-BA57-EB383440ED72} =>.Apache Software Foundation
O42 - Logiciel: Opera Stable 38.0.2220.29 - (.Opera Software.) [HKLM][64Bits] -- Opera 38.0.2220.29 =>.Opera Software ASA®
O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} =>.Dell Inc.
O42 - Logiciel: Realtek Ethernet Controller All-In-One Windows Driver - (.Realtek.) [HKLM][64Bits] -- {F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} =>.Skype Technologies S.A.
O42 - Logiciel: Stronghold AntiMalware - (.Security Stronghold.) [HKLM][64Bits] -- Stronghold AntiMalware_is1 =>.Security Stronghold
O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF =>.Krzysztof Kowalczyk®
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker =>.Cedrick Collomb
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {A1439D4F-FD46-47F2-A1D3-FEE097C29A09} =>.Broadcom Corporation
O42 - Logiciel: Windows Resource Kit Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {FA237125-51FF-408C-8BB8-30C2B3DFFF9C} =>.Microsoft Corporation
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: VobSub 2.23 - (.Gabest.) [HKLM][64Bits] -- VobSub =>.Gabest
O42 - Logiciel: Xvid Video Codec - (.Xvid Team.) [HKLM][64Bits] -- Xvid Video Codec 1.3.2 =>.Xvid Team
---\\ HKCU & HKLM Software Keys (123) - 27s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Amazon
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\AVI ReComp
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\BcmSetup
HKLM\SOFTWARE\Wow6432Node\C07ft5Y
HKLM\SOFTWARE\Wow6432Node\Data Fellows
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\Dropbox
HKLM\SOFTWARE\Wow6432Node\DropboxUpdate
HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Florian Heidenreich
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Huawei technologies
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LibreOffice
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mindscape
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mtControl
HKLM\SOFTWARE\Wow6432Node\mtSaveCode
HKLM\SOFTWARE\Wow6432Node\NCH Software
HKLM\SOFTWARE\Wow6432Node\NCH Swift Sound
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\perforce
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Software
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\The Document Foundation
HKLM\SOFTWARE\Wow6432Node\tueagles
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Xvid Team
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Amazon
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\AVD
HKCU\SOFTWARE\AVI ReComp
HKCU\SOFTWARE\BcmSetup
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Broadcom
HKCU\SOFTWARE\Bytescout
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CoolROM
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DjVuLibre
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\EuroSoft Software Development
HKCU\SOFTWARE\Freeware
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hiro Software Factory
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JaboSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JEDI-VCL
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\malavida
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\mtControl
HKCU\SOFTWARE\mtSaveCode
HKCU\SOFTWARE\N64 Emulation
HKCU\SOFTWARE\NCH Software
HKCU\SOFTWARE\NCH Swift Sound
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\perforce
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Security Stronghold
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Software
HKCU\SOFTWARE\Sports Interactive Ltd
HKCU\SOFTWARE\Streaming Video Recorder
HKCU\SOFTWARE\SUPERAntiSpyware.com
HKCU\SOFTWARE\SUU Design
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\The Document Foundation
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Un peu de géographie
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VideoLAN
HKCU\SOFTWARE\Vkontakte.dj
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contents of the Common Files folders (226) - 53s
O43 - CFD: 31/08/2015 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files
O43 - CFD: 06/12/2015 - [] D -- C:\Program Files\DAEMON Tools Lite =>.Disc Soft Ltd®
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\Dell =>.Compal Electronics, Inc.®
O43 - CFD: 25/04/2011 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 22/12/2015 - [] D -- C:\Program Files\Intel =>.Intel Corporation - Intel® Rapid Storage Technology®
O43 - CFD: 14/04/2016 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation®
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files\MI2
O43 - CFD: 03/06/2016 - [] D -- C:\Program Files\MPC-HC =>.Open Source Developer, Fotis ZAFIROPOULOS®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 07/01/2016 - [] D -- C:\Program Files\Unlocker
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files\WIDCOMM =>.Broadcom Corporation®
O43 - CFD: 26/07/2014 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 11/03/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 19/12/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files (x86)\Adware Removal Tool by TSA
O43 - CFD: 16/11/2015 - [0] D -- C:\Program Files (x86)\Amazon
O43 - CFD: 17/11/2014 - [] D -- C:\Program Files (x86)\Apowersoft
O43 - CFD: 01/09/2014 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\AVI ReComp
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\AviSynth 2.5
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 10/08/2015 - [] D -- C:\Program Files (x86)\Disc Soft
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Dropbox
O43 - CFD: 19/12/2015 - [] D -- C:\Program Files (x86)\Elisa M-internet
O43 - CFD: 08/04/2016 - [] D -- C:\Program Files (x86)\FileZilla FTP Client =>.Tim Kosse®
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\Gabest
O43 - CFD: 16/11/2015 - [] D -- C:\Program Files (x86)\GEOGRAPHIE
O43 - CFD: 04/01/2016 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files (x86)\Hide My IP 6
O43 - CFD: 19/02/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Realtek Semiconductor Corp®
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 14/04/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 03/08/2015 - [0] D -- C:\Program Files (x86)\IrfanView
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 30/07/2014 - [] D -- C:\Program Files (x86)\LibreOffice 4
O43 - CFD: 06/12/2015 - [] D -- C:\Program Files (x86)\Lionhead Studios Ltd
O43 - CFD: 17/08/2015 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 08/10/2015 - [] D -- C:\Program Files (x86)\Movie Maker 2.6
O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 01/08/2014 - [] D -- C:\Program Files (x86)\Mp3tag =>.Florian Heidenreich®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 24/05/2015 - [] D -- C:\Program Files (x86)\mupen64 0.5
O43 - CFD: 16/11/2015 - [] D -- C:\Program Files (x86)\NCH Software
O43 - CFD: 30/07/2015 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 10/06/2016 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA®
O43 - CFD: 16/04/2016 - [] D -- C:\Program Files (x86)\Project64 1.6
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 26/05/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 24/08/2014 - [] D -- C:\Program Files (x86)\Solent
O43 - CFD: 11/06/2016 - [] D -- C:\Program Files (x86)\Stronghold AntiMalware {1121DAA68066FB83F8591C05E61A0A74B0BA}
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\SumatraPDF
O43 - CFD: 23/07/2014 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 26/07/2014 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 11/03/2016 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 23/08/2014 - [] D -- C:\Program Files (x86)\Windows Resource Kits
O43 - CFD: 24/04/2011 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 02/05/2016 - [] D -- C:\Program Files (x86)\Xvid
O43 - CFD: 23/07/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
O43 - CFD: 31/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Audio
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Domination
O43 - CFD: 22/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DW WLAN
O43 - CFD: 08/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 22/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 30/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 22/12/2015 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.2
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
O43 - CFD: 03/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 22/12/2015 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
O43 - CFD: 08/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 17/08/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 22/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 11/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stronghold AntiMalware
O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Thumbnails Maker
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 02/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VobSub
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Resource Kit Tools
O43 - CFD: 22/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 02/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
O43 - CFD: 11/01/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 30/04/2015 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\DatacardService
O43 - CFD: 23/07/2014 - [] D -- C:\ProgramData\Dell
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 04/10/2015 - [] D -- C:\ProgramData\Dropbox
O43 - CFD: 15/09/2014 - [] D -- C:\ProgramData\Elisa M-internet
O43 - CFD: 14/02/2016 - [] D -- C:\ProgramData\Exorcist DS
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\F-Secure
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 23/07/2014 - [] D -- C:\ProgramData\Intel
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 06/12/2015 - [] D -- C:\ProgramData\Lionhead Studios
O43 - CFD: 17/08/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 28/02/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\NCH Software
O43 - CFD: 30/05/2016 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 12/12/2014 - [] D -- C:\ProgramData\Robin Hood
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\SaveCode
O43 - CFD: 15/04/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 23/01/2015 - [] D -- C:\ProgramData\Sun
O43 - CFD: 12/12/2014 - [0] D -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 27/07/2015 - [] D -- C:\ProgramData\WildTangent
O43 - CFD: 24/07/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/08/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 23/07/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 01/08/2014 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 18/09/2014 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 26/07/2014 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 11/01/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Adobe
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Anvsoft
O43 - CFD: 17/11/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Apowersoft
O43 - CFD: 02/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\AVI ReComp
O43 - CFD: 25/08/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\avidemux
O43 - CFD: 11/01/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\com.universcine.player.ifcinema
O43 - CFD: 07/01/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 04/10/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Dropbox
O43 - CFD: 16/08/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\dvdcss
O43 - CFD: 26/01/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Easy Thumbnails
O43 - CFD: 28/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\FileZilla
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Identities
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Intel Corporation
O43 - CFD: 03/08/2015 - [0] D -- C:\Users\Adrian\AppData\Roaming\IrfanView
O43 - CFD: 28/11/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\KastorAllVideoDownloader
O43 - CFD: 30/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\LibreOffice
O43 - CFD: 19/02/2016 - [0] D -- C:\Users\Adrian\AppData\Roaming\Lionhead Studios
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Macromedia
O43 - CFD: 16/04/2016 - [] SD -- C:\Users\Adrian\AppData\Roaming\Microsoft
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Mozilla
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Mp3tag
O43 - CFD: 03/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\MPC-HC
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\NCH Software
O43 - CFD: 31/07/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\OpenOffice
O43 - CFD: 30/07/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Opera Software
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Profiles
O43 - CFD: 12/12/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Robin Hood
O43 - CFD: 23/10/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\ScummVM
O43 - CFD: 09/04/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Skype
O43 - CFD: 12/12/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\Sudden Games LLC
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\SumatraPDF
O43 - CFD: 30/11/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Sun
O43 - CFD: 18/03/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Unity
O43 - CFD: 12/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\uTorrent
O43 - CFD: 05/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\vlc
O43 - CFD: 24/08/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\WebCam Recorder
O43 - CFD: 29/07/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\WinRAR
O43 - CFD: 24/08/2014 - [] D -- C:\Users\Adrian\AppData\Roaming\XMedia Recode
O43 - CFD: 12/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\ZHP
O43 - CFD: 27/05/2016 - [] D -- C:\Users\Adrian\AppData\Local\Adobe
O43 - CFD: 27/03/2015 - [] D -- C:\Users\Adrian\AppData\Local\Amazon
O43 - CFD: 23/07/2014 - [0] SHD -- C:\Users\Adrian\AppData\Local\Application Data
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Apps
O43 - CFD: 23/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Broadcom
O43 - CFD: 23/07/2014 - [0] D -- C:\Users\Adrian\AppData\Local\Deployment
O43 - CFD: 10/08/2015 - [] D -- C:\Users\Adrian\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Adrian\AppData\Local\Dropbox
O43 - CFD: 26/01/2015 - [] D -- C:\Users\Adrian\AppData\Local\DVDVideoSoft_Ltd
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Adrian\AppData\Local\ElevatedDiagnostics
O43 - CFD: 14/11/2014 - [] SHD -- C:\Users\Adrian\AppData\Local\EmieBrowserModeList
O43 - CFD: 22/10/2014 - [] SHD -- C:\Users\Adrian\AppData\Local\EmieSiteList
O43 - CFD: 22/10/2014 - [] SHD -- C:\Users\Adrian\AppData\Local\EmieUserList
O43 - CFD: 16/11/2015 - [] D -- C:\Users\Adrian\AppData\Local\F-Secure
O43 - CFD: 25/08/2014 - [] D -- C:\Users\Adrian\AppData\Local\Facebook
O43 - CFD: 04/06/2016 - [] D -- C:\Users\Adrian\AppData\Local\FastReport
O43 - CFD: 15/09/2015 - [] D -- C:\Users\Adrian\AppData\Local\Google
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Adrian\AppData\Local\GWX
O43 - CFD: 23/07/2014 - [0] SHD -- C:\Users\Adrian\AppData\Local\History
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Macromedia
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Local\Microsoft
O43 - CFD: 24/07/2014 - [] D -- C:\Users\Adrian\AppData\Local\Mozilla
O43 - CFD: 30/07/2015 - [] D -- C:\Users\Adrian\AppData\Local\Opera Software
O43 - CFD: 28/08/2014 - [] D -- C:\Users\Adrian\AppData\Local\Programs
O43 - CFD: 09/12/2014 - [] D -- C:\Users\Adrian\AppData\Local\Shalsoft
O43 - CFD: 04/08/2014 - [] D -- C:\Users\Adrian\AppData\Local\Skype
O43 - CFD: 12/06/2016 - [] D -- C:\Users\Adrian\AppData\Local\Temp
O43 - CFD: 23/07/2014 - [0] SHD -- C:\Users\Adrian\AppData\Local\Temporary Internet Files
O43 - CFD: 20/05/2015 - [0] D -- C:\Users\Adrian\AppData\Local\Unity
O43 - CFD: 23/11/2014 - [] D -- C:\Users\Adrian\AppData\Local\Western Digital
O43 - CFD: 06/04/2016 - [0] D -- C:\Users\Adrian\AppData\Local\WMTools Downloaded Files
O43 - CFD: 28/08/2014 - [0] D -- C:\Users\Adrian\AppData\Local\Programs\Common
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/02/2016 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVI ReComp
O43 - CFD: 02/05/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 10/06/2016 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/02/2016 - [] RD -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 22/12/2015 - [] D -- C:\Users\Adrian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft
---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
---\\ System Drivers List (74) - 14s
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2014/04/09 22:05:52 A . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920] =>.APOWERSOFT LIMITED®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2014/09/11 16:32:50 A . (.Windows (R) Win 7 DDK provider - Example ATR Filter Driver.) -- C:\Windows\System32\drivers\atrfiltr.sys [16224] {6888A2E25F737E4A7E3D769D61CB63F8} =>.Windows (R) Win 7 DDK provider
O58 - SDL:2009/06/10 23:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2014/07/23 20:19:26 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [170200] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:23 A . (.Broadcom Corporation - Broadcom iLine10(tm) PCI Network Adapter Pr.) -- C:\Windows\System32\drivers\bcm42rly.sys [23760] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:24 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [9082064] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 04:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [598808] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [184144] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [210984] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [39976] =>.Broadcom Corporation®
O58 - SDL:2014/07/23 20:19:25 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21544] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 23:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 04:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2014/05/14 13:32:12 A . (.HID Global Corporation - PC/SC IFD-Handler for CCID compliant Reader.) -- C:\Windows\System32\drivers\cxbu0x64.sys [191224] {5E38C9FDFD3A168F17BCC13599035452}
O58 - SDL:2015/12/06 14:35:42 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\Windows\System32\drivers\dtlitescsibus.sys [30264] =>.Disc Soft Ltd®
O58 - SDL:2015/12/06 14:37:08 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual USB Bus Driver.) -- C:\Windows\System32\drivers\dtliteusbbus.sys [46392] =>.Disc Soft Ltd®
O58 - SDL:2009/07/14 04:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2016/06/11 17:06:31 A . (...) -- C:\Windows\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC®
O58 - SDL:2009/06/10 23:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/06/10 23:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2012/07/17 18:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] =>.Intel Corporation®
O58 - SDL:2011/04/24 15:05:59 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2013/08/30 21:18:02 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStorA.sys [644968] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2013/08/30 21:18:02 A . (.Intel Corporation - Intel Rapid Storage Technology Filter drive.) -- C:\Windows\System32\drivers\iaStorF.sys [28008] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2011/03/11 09:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2012/10/15 23:09:10 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [5343584] =>.Intel Corporation
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2012/06/19 05:10:50 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [342528] =>.Intel(R) Corporation
O58 - SDL:2013/02/23 04:40:14 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [20464] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/02/23 04:40:14 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [358896] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2013/02/23 04:40:14 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [792560] =>.Intel Corporation - Software and Firmware Products®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2015/06/18 09:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/06/18 09:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/06/10 16:12:26 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2015/06/18 09:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2014/07/23 20:19:23 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [35344] =>.CACE Technologies, Inc.®
O58 - SDL:2011/03/11 09:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2012/08/09 13:49:02 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [726160] =>.Realtek Semiconductor Corp®
O58 - SDL:2012/11/27 19:22:20 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4222096] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 23:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 04:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2013/11/22 15:36:52 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [31472] =>.Synaptics Incorporated®
O58 - SDL:2009/07/14 04:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2013/11/22 15:36:52 A . (.Synaptics Incorporated - Synaptics Touchpad 64-bit Driver.) -- C:\Windows\System32\drivers\SynTP.sys [540912] =>.Synaptics Incorporated®
O58 - SDL:2016/05/27 11:34:54 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42064] =>.AnchorFree Inc®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2008/05/06 16:06:00 A . (.Western Digital Technologies - WD SCSI Architecture Model (SAM) driver.) -- C:\Windows\System32\drivers\wdcsam64.sys [14464] =>.Western Digital Technologies
---\\ File Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (5) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (2) - 19s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
---\\ Search Svchost Services (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2610688] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation
---\\ Additional Scan (O88) (1) - 0s
~ No malicious or unnecessary items found.
---\\ Summary of the elements found (1) - 0s
~ No malicious or unnecessary items found.
~ End of the scan, 18784 items in 00h05mn37s (792)(0)