Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-09-2017 01 Ran by Vivicaca (15-09-2017 11:43:15) Running from C:\Users\Vivicaca\Charlotte\Desktop Windows 10 Pro Version 1703 (X64) (2017-07-27 20:36:30) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= 7EA13DE99CFB48349845 (S-1-5-21-2317999798-2289613410-81454934-1010 - Limited - Enabled) Administrator (S-1-5-21-2317999798-2289613410-81454934-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2317999798-2289613410-81454934-503 - Limited - Disabled) Guest (S-1-5-21-2317999798-2289613410-81454934-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2317999798-2289613410-81454934-1002 - Limited - Enabled) Vivicaca (S-1-5-21-2317999798-2289613410-81454934-1001 - Administrator - Enabled) => C:\Users\Vivicaca ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (HKLM\...\{377672F0-6B8A-467D-8DDC-79338BCCD531}) (Version: 8.2.2 - Hewlett-Packard) Hidden Acoustica MP3 To Wave Converter PLUS (HKLM-x32\...\Acoustica MP3 To Wave Converter PLUS) (Version: 2.6 b25 - Acoustica, Inc.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.) Adobe Audition CS5.5 (HKLM-x32\...\{D5B1535A-FDFC-4B40-B2E2-21DA83D9CB57}) (Version: 4.0 - Adobe Systems Incorporated) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.) Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}) (Version: 5.0 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated) AKAI professional DCVocoder 1.0 (HKLM-x32\...\AKAI professional DCVocoder 1.0) (Version: - ) Allok 3GP PSP MP4 iPod Video Converter 6.2.0603 (HKLM-x32\...\Allok 3GP PSP MP4 iPod Video Converter_is1) (Version: - Allok Soft Inc) AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Antares Autotune VST RTAS TDM v5.08 (HKLM-x32\...\Antares Autotune VST RTAS TDM_is1) (Version: - Team AiR 2007) Apple Application Support (32 bits) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{C41300B9-185D-475E-BFEC-39EF732F19B1}) (Version: 2.1.2.120 - Apple Inc.) Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation) Application Profiles (HKLM-x32\...\{A2FAA2D9-C3FD-3AF5-4D80-4E0162D24F53}) (Version: 2.0.4029.18630 - ATI Technologies, Inc.) ATI AVIVO64 Codecs (HKLM\...\{90AB246D-A0A0-29EA-199A-4B07841E0737}) (Version: 11.6.0.51125 - ATI Technologies Inc.) Hidden ATI Catalyst Registration (HKLM-x32\...\{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}) (Version: 3.00.0000 - ATI Technologies Inc.) Hidden ATI Problem Report Wizard (HKLM\...\{A9C6CA47-D937-D61D-4BD3-7CFAB7A5BA56}) (Version: 3.0.804.0 - ATI Technologies) Hidden Avid Core Runtime (HKLM-x32\...\{29E44AFF-790B-46B8-8CA6-A0EE6EFC9D7A}) (Version: 6.1.0 - Avid Technology, Inc.) Avid DIO Runtime (HKLM-x32\...\{15E44F0D-2B0E-4F2E-B931-920F4D8D2DCA}) (Version: 6.1.0 - Avid Technology, Inc.) Avid Effects (HKLM-x32\...\{A86F1158-A7F7-4E8C-98E3-88F4996E85EB}) (Version: 10.3 - Avid Technology, Inc.) Avid HD Driver (x64) (HKLM\...\{658E112A-8776-4430-A275-D9248732DFB9}) (Version: 10.3 - Avid Technology, Inc.) Avid Pro Tools (HKLM-x32\...\{8E60BB71-7EF3-42ED-9F10-AA041F25841A}) (Version: 10.3 - Avid Technology, Inc.) Avid Studio (HKLM-x32\...\{B35DC076-CEF2-4631-9EF7-45380E27C841}) (Version: 1.1.0.2887 - Avid) Azure AD Authentication Connected Service (HKLM-x32\...\{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden Brewtarget-2.3.0 (HKLM-x32\...\Brewtarget-2.3.0) (Version: 2.3.0 - Philip G. Lee) Camel Audio Alchemy (HKLM-x32\...\Camel Audio Alchemy) (Version: 1.55.0 - Camel Audio) Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dark Souls: Prepare to Die Edition (HKLM\...\Steam App 211420) (Version: - FromSoftware) Dota 2 (HKLM\...\Steam App 570) (Version: - Valve) Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32\...\{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version: - ) EZdrummer (HKLM-x32\...\{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}) (Version: 1.0 - Toontrack) EZXClaustrophobic (HKLM-x32\...\{8094F7AE-CA21-4AF2-A256-BC918CE0E796}) (Version: 1.0 - Toontrack) EZXCocktail (HKLM-x32\...\{147567F0-8575-4BE0-B5B3-62706C67FA5A}) (Version: 1.0 - Toontrack) EZXTwisted (HKLM-x32\...\{D1EBF11E-8CE3-4EF5-8E2D-FD5B8D6BD294}) (Version: 1.0 - Toontrack) EZXVintage (HKLM-x32\...\{430399DC-98BC-4A7F-8F8E-77981CABAE05}) (Version: 1.0 - Toontrack) FileZilla Client 3.22.2.2 (HKLM-x32\...\FileZilla Client) (Version: 3.22.2.2 - Tim Kosse) FLV to AVI MPEG WMV 3GP MP4 iPod Converter (HKLM-x32\...\FLV to AVI MPEG WMV 3GP MP4 iPod Converter) (Version: - ) FMOD Studio 1.08.08 (64bit) (HKLM\...\FMOD Studio 1.08.08 (64bit)) (Version: - Firelight Technologies Pty Ltd) FMOD Studio 1.09.05 (64bit) (HKLM\...\FMOD Studio 1.09.05 (64bit)) (Version: - Firelight Technologies Pty Ltd) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Freeplayer (HKLM-x32\...\Freeplayer) (Version: 20070531 - Free) Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.5.0.0.1003 - Genesys Logic) Google Chrome (HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\Google Chrome) (Version: 60.0.3112.113 - Google Inc.) Google Drive (HKLM-x32\...\{A90339B3-2C3F-492E-B3A7-0BDFC691E526}) (Version: 2.34.6425.2548 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Gpg4win (2.2.6) (HKLM-x32\...\GPG4Win) (Version: 2.2.6 - The Gpg4win Project) Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.) Guitar Pro 5.2 (HKLM-x32\...\Guitar Pro 5_is1) (Version: - Arobas Music) Heroes of Newerth (HKLM-x32\...\hon) (Version: 2.3.0 - S2 Games) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.20.286 - SurfRight B.V.) HP LaserJet 200 color MFP M275 (HKLM-x32\...\{43E99CBA-D12F-45D8-B21C-4455D6ED4E5D}) (Version: - Hewlett-Packard) HP LaserJet 200 color MFP M275 Digital Filing (HKLM-x32\...\{2EE37716-2A3C-4C34-9BA6-6CCE62D099D4}) (Version: 26.0.157.0 - Hewlett-Packard Co.) HP Support Assistant (HKLM-x32\...\{56D27851-B9A6-430F-875A-E2D7A3802C7B}) (Version: 8.3.34.7 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{446AA6E0-104D-40FB-A18A-A3431AED2F14}) (Version: 12.5.32.37 - HP Inc.) HP Update (HKLM-x32\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard) hpbDSService (HKLM-x32\...\{62022DCB-BA92-4EC2-AE03-9B946E4DBF12}) (Version: 002.002.07399 - Hewlett-Packard) Hidden hpbM275DSService (HKLM-x32\...\{BCCB8D27-FAF5-4353-B975-DCCD8FD4A0B8}) (Version: 001.001.05874 - Hewlett-Packard) Hidden HPLaserJet200colorMFP-M275_HelpLearnCenter_SI (HKLM-x32\...\{42D075F7-1DB1-481A-AAE0-2B2D6280830A}) (Version: 1.00.0000 - Hewlett-Packard) HPLJDXPHelper (HKLM-x32\...\{5E4DD8C2-A906-4F1B-94B6-4F6A51D625B2}) (Version: 020.021.004 - HP) Hidden HPLJUTCore (HKLM-x32\...\{568C5D3E-5B79-47EC-A34B-8D7C8AEF1F8F}) (Version: 3.00.0003 - HP) Hidden HPLJUTM275 (HKLM-x32\...\{F9F9016F-488C-4D8B-A309-85E6FEFF516F}) (Version: 1.02.0013 - HP) Hidden hppLaserJetService (HKLM-x32\...\{5BF278AE-B851-41A7-9874-C6EC5AF2BD91}) (Version: 009.022.00813 - Hewlett-Packard) Hidden hppM275LaserJetService (HKLM-x32\...\{BC6E765C-C6C9-48B5-AACB-00FB039648CE}) (Version: 007.016.00104 - Hewlett-Packard) Hidden hppToolboxProxyM275 (HKLM-x32\...\{F6A09B5D-94E0-42C4-9BD1-689E1E7962C6}) (Version: 035.024.006 - HP) Hidden hpStatusAlerts (HKLM-x32\...\{44EB02F5-16E5-42BD-9183-C23EF7620CF3}) (Version: 035.039.0004 - Hewlett Packard) Hidden hpStatusAlertsM275 (HKLM-x32\...\{819EB55C-EBFE-4D76-8E2A-C081E3E3F971}) (Version: 035.026.0004 - Hewlett-Packard) Hidden HTC BMP USB Driver (HKLM-x32\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC) HTC Driver Installer (HKLM-x32\...\{6D6664A9-3342-4948-9B7E-034EFE366F0F}) (Version: 3.0.0.021 - HTC Corporation) IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) IL Minihost Modular (HKLM-x32\...\IL Minihost Modular) (Version: - Image-Line) IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version: - Image-Line) IL Vocodex (HKLM-x32\...\IL Vocodex) (Version: - Image-Line) InstanceFinder (HKLM-x32\...\{32C0FD10-8FB4-427E-A16F-ED57C9343CF0}) (Version: 020.021.004 - HP) Hidden Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.8.5 - PACE Anti-Piracy) Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle) Java(TM) 6 Update 30 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.300 - Sun Microsystems, Inc.) Knoll Light Factory EZ Studio (HKLM-x32\...\Knoll Light Factory EZ Studio) (Version: - ) LibUSB-Win32-0.1.10.1 (HKLM-x32\...\LibUSB-Win32_is1) (Version: 0.1.10.1 - LibUSB-Win32) LJDXPHelperUI (HKLM-x32\...\{EAECD0D7-F27D-4F13-8312-A9C0B5C5F1B7}) (Version: 020.021.004 - HP) Hidden LPK25 Editor (HKLM-x32\...\LPK25Editor) (Version: - ) Magic Bullet Looks Studio (HKLM-x32\...\Magic Bullet Looks Studio) (Version: - ) M-Audio ProFire 6.1.1 (x64) (HKLM\...\{0230235F-CEC7-4EBD-9CB4-2C54FA61FE15}) (Version: 6.1.1 - M-Audio) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.334.1 - McAfee, Inc.) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation) Microsoft Office Accounting 2008 Equifax Addin (HKLM-x32\...\{0C2AF762-0565-4C91-9F55-B8B53BB82A38}) (Version: 3.0.8231.0 - Microsoft Corporation) Microsoft Office Accounting 2008 Fixed Asset Manager (HKLM-x32\...\{E3DF6916-2472-43D9-8B3C-9F2F0AAB01B5}) (Version: 3.0.8231.0 - Microsoft Corporation) Microsoft Office Accounting 2008 PayPal Addin (HKLM-x32\...\{B391EECE-DFEA-4FC5-9D40-47FA43E2DBE6}) (Version: 3.0.8231.0 - Microsoft Corporation) Microsoft Office Accounting ADP Payroll Addin (HKLM-x32\...\{5FA793A6-0071-42C1-9355-8F69A428C44F}) (Version: 0.0.0.0 - ADP) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Small Business Connectivity Components (HKLM-x32\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft SQL Server Native Client (HKLM\...\{9ACF3FDB-C8E6-444C-8C64-13A221F7BFFD}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server Setup Support Files (English) (HKLM-x32\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft SQL Server VSS Writer (HKLM\...\{B636C9B9-A3F2-4DCE-ADCC-72E095018385}) (Version: 9.00.5000.00 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2015 Tools for Unity (HKLM-x32\...\{E02DF945-0531-4E5E-9C6B-2B660C0AE66D}) (Version: 2.8.0.0 - Microsoft Corporation) Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation) Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft) Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft) Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 55.0.3 (x64 fr) (HKLM\...\Mozilla Firefox 55.0.3 (x64 fr)) (Version: 55.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.3 - Mozilla) MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation) Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: - Native Instruments) Native Instruments Acoustic Refractions (HKLM-x32\...\Native Instruments Acoustic Refractions) (Version: - Native Instruments) Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: - Native Instruments) Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: - Native Instruments) Native Instruments Guitar Rig 4 (HKLM-x32\...\Native Instruments Guitar Rig 4) (Version: - Native Instruments) Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: - Native Instruments) Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version: - Native Instruments) Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version: - Native Instruments) Native Instruments GuitarRig Mobile IO Driver (HKLM-x32\...\Native Instruments GuitarRig Mobile IO Driver) (Version: - Native Instruments) Native Instruments Kontakt 4 (HKLM-x32\...\Native Instruments Kontakt 4) (Version: - Native Instruments) Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.0.409 - Native Instruments) Native Instruments Kore Player (HKLM-x32\...\Native Instruments Kore Player) (Version: - Native Instruments) Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: - Native Instruments) Native Instruments Rammfire (HKLM-x32\...\Native Instruments Rammfire) (Version: - Native Instruments) Native Instruments Reaktor 5 (HKLM-x32\...\Native Instruments Reaktor 5) (Version: - Native Instruments) Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version: - Native Instruments) Native Instruments Reaktor Spark R2 (HKLM-x32\...\Native Instruments Reaktor Spark R2) (Version: - Native Instruments) Native Instruments Reflektor (HKLM-x32\...\Native Instruments Reflektor) (Version: - Native Instruments) Native Instruments Replika (HKLM-x32\...\Native Instruments Replika) (Version: 1.2.0.699 - Native Instruments) Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version: - Native Instruments) Native Instruments Rig Kontrol 3 Driver (HKLM-x32\...\Native Instruments Rig Kontrol 3 Driver) (Version: - Native Instruments) Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.6.0.137 - Native Instruments) Native Instruments Session Guitarist - Strummed Acoustic 2 (HKLM-x32\...\Native Instruments Session Guitarist - Strummed Acoustic 2) (Version: 1.0.0.10 - Native Instruments) Native Instruments Session IO Driver (HKLM-x32\...\Native Instruments Session IO Driver) (Version: - Native Instruments) Native Instruments The Giant (HKLM-x32\...\Native Instruments The Giant) (Version: - Native Instruments) Native Instruments Traktors 12 (HKLM-x32\...\Native Instruments Traktors 12) (Version: - Native Instruments) NOT A HERO (HKLM\...\Steam App 274270) (Version: - Roll7) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) Ohm Force - Symptohm PE RTAS (HKLM-x32\...\Symptohm PE RTAS) (Version: - ) OhmForce Frohmage RTAS (HKLM-x32\...\Frohmage RTAS) (Version: - ) OpenOffice.org 3.4 (HKLM-x32\...\{2F90A789-DD1E-41CE-BFCA-BD78213BABC7}) (Version: 3.4.9590 - OpenOffice.org) Origin (HKLM-x32\...\Origin) (Version: 9.3.1.4482 - Electronic Arts, Inc.) PACE License Support Win64 (HKLM\...\{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.) Hidden PACE License Support Win64 (HKLM-x32\...\InstallShield_{72ad9d51-0903-4fe7-af5d-33b3185fa6e9}) (Version: 2.4.7.0852 - PACE Anti-Piracy, Inc.) paint.net (HKLM\...\{6AC1101E-7561-43C9-BEEA-4AB1D220D8FF}) (Version: 4.0.13 - dotPDN LLC) PCM Native Reverb VST Plug-in (HKLM-x32\...\{B4691C58-2A6A-4AFA-960E-AEB767639E44}) (Version: 1.0.0 - Lexicon) Hidden PCM Native Reverb VST Plug-in (HKLM-x32\...\PCM Native Reverb VST Plug-in) (Version: - Lexicon) PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden Pilote vidéo Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems) Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden PowerISO (HKLM-x32\...\PowerISO) (Version: 5.4 - Power Software Ltd) PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden PSP 84 v1.0 (HKLM-x32\...\PSP 84 v1.0) (Version: - ) PSP Nitro 1.1.2 (HKLM-x32\...\PSP Nitro 1.1.2) (Version: 1.1.2 - PSPaudioware.com) Rapture 1.2.2 (HKLM-x32\...\Rapture_x64_is1) (Version: 18.0 - Cakewalk Music Software) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.19.24735 - Razer Inc.) REAPER (x64) (HKLM\...\REAPER) (Version: - ) Red Giant ToonIt Studio (HKLM-x32\...\Red Giant ToonIt Studio) (Version: - ) Registrar Registry Manager 5.66 (HKLM\...\Registrar_is1) (Version: - Resplendence Software Projects Sp.) Roslyn Language Services - x86 (HKLM-x32\...\{6970C7E1-F99D-388D-8903-DF8FCE677FED}) (Version: 14.0.25431 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.5.0 - SAMSUNG Electronics Co., Ltd.) Shaker Maker (HKLM-x32\...\Shaker Maker) (Version: - ) Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.) Slack (HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\slack) (Version: 2.8.0 - Slack Technologies) SONAR 8.0 Producer Edition (HKLM-x32\...\SONAR8Producer_x64_is1) (Version: 17.0 - Cakewalk Music Software) Sony PC Companion (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.188 - Sony) SoundToys Little AlterBoy 64 bit (HKLM\...\Little AlterBoy 64 bit_is1) (Version: - SoundToys Inc) Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version: - Valve) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) SurCode for Dolby Digital (HKLM-x32\...\SurCode for Dolby Digital) (Version: - ) SurCode for Dolby Pro Logic II (HKLM-x32\...\SurCode for Dolby Pro Logic II) (Version: - ) Team Explorer for Microsoft Visual Studio 2015 Update 3.1 (HKLM-x32\...\{7A95671A-759E-3B83-B763-4289D1D24D73}) (Version: 14.102.25619 - Microsoft) Hidden Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden The Lord of the Rings FREE Trial (HKLM-x32\...\{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden The Mighty Quest For Epic Loot version 1.237368 (HKLM-x32\...\The Mighty Quest For Epic Loot_is1) (Version: 1.237368 - ) The Witness (HKLM\...\Steam App 210970) (Version: - Thekla, Inc.) ToolboxProxy (HKLM-x32\...\{B64E0B43-A452-4B25-93DD-E5C6645A534A}) (Version: 035.024.006 - HP) Hidden TortoiseSVN 1.9.5.27581 (64 bit) (HKLM\...\{1655E9E4-04C9-414E-8581-6D1162DFB802}) (Version: 1.9.27581 - TortoiseSVN) Trapcode 3DStroke Studio (HKLM-x32\...\Trapcode 3DStroke Studio) (Version: - ) Trapcode Particular Studio (HKLM-x32\...\Trapcode Particular Studio) (Version: - ) Trapcode Shine Studio (HKLM-x32\...\Trapcode Shine Studio) (Version: - ) TurboV EVO (HKLM-x32\...\{491D92A9-69CA-4EB4-81D3-0106F9337957}) (Version: 1.02.31 - ) TypeScript Power Tool (HKLM-x32\...\{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{BA5762C7-D35F-4725-A4BD-525854127018}) (Version: 1.8.36.0 - Microsoft Corporation) Hidden Unity (HKLM-x32\...\Unity) (Version: 2017.1.0f3 - Unity Technologies ApS) Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft) Vegas Pro 10.0 (64-bit) (HKLM\...\{C754112E-11F5-11E0-B477-0013D3D69929}) (Version: 10.0.470 - Sony) VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation) VLC media player 1.1.7 (HKLM-x32\...\VLC media player) (Version: 1.1.7 - VideoLAN) Voxengo SPAN (HKLM\...\Voxengo SPAN_is1) (Version: 2.7 - Voxengo) VS Update core components (HKLM-x32\...\{B2918D01-1D89-34D3-87EF-A28121BC6EB7}) (Version: 14.0.25431 - Microsoft Corporation) Hidden vs_update3notification (HKLM-x32\...\{AB3DF932-C990-34D4-BF43-970F760DA3CD}) (Version: 14.0.25431 - Microsoft Corporation) Hidden WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden WinDirStat 1.1.2 (HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\WinDirStat) (Version: - ) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17323 - Microsoft Corporation) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) WN111v2 (HKLM-x32\...\{1C0E9C6B-D4D5-4D3C-8A10-F10A3E7BEEA5}) (Version: 3.0.0.5 - NETGEAR) Hidden Zerius Vocoder (remove only) (HKLM-x32\...\VocoderGUI) (Version: - ) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\ChromeHTML: -> C:\Users\Vivicaca\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-2317999798-2289613410-81454934-1001_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2317999798-2289613410-81454934-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll (Google Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google) ShellIconOverlayIdentifiers: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File ShellIconOverlayIdentifiers-x32: [ Tortoise1Normal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise2Modified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise3Conflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise4Locked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise5ReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise6Deleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise7Added] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise8Ignored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ShellIconOverlayIdentifiers-x32: [ Tortoise9Unversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files\TortoiseOverlays\TortoiseOverlays.dll [2015-08-25] (hxxp://tortoisesvn.net) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google) ContextMenuHandlers1: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\GNU\GnuPG\bin\gpgex.dll [2015-09-09] (g10 Code GmbH) ContextMenuHandlers1: [LavasoftShellExt] -> {DCE027F7-16A4-4BEE-9BE7-74F80EE3738F} => -> No File ContextMenuHandlers1-x32: [M2WShlExMenu] -> {DC6FA7E0-6666-11D5-8CE2-444553540000} => C:\Program Files (x86)\Acoustica MP3 To Wave Converter PLUS\M2WShlEx.dll -> No File ContextMenuHandlers1-x32: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files (x86)\TortoiseSVN\bin\TortoiseStub.dll [2016-11-26] (hxxp://tortoisesvn.net) ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers2: [LavasoftShellExt] -> {DCE027F7-16A4-4BEE-9BE7-74F80EE3738F} => -> No File ContextMenuHandlers2: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files (x86)\TortoiseSVN\bin\TortoiseStub.dll [2016-11-26] (hxxp://tortoisesvn.net) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google) ContextMenuHandlers4: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\GNU\GnuPG\bin\gpgex.dll [2015-09-09] (g10 Code GmbH) ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File ContextMenuHandlers4: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files (x86)\TortoiseSVN\bin\TortoiseStub.dll [2016-11-26] (hxxp://tortoisesvn.net) ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File ContextMenuHandlers5: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files (x86)\TortoiseSVN\bin\TortoiseStub.dll [2016-11-26] (hxxp://tortoisesvn.net) ContextMenuHandlers6: [LavasoftShellExt] -> {DCE027F7-16A4-4BEE-9BE7-74F80EE3738F} => -> No File ContextMenuHandlers6-x32: [MP3ToWave] -> {DC6FA7E0-6666-11D5-8CE2-444553540000} => C:\Program Files (x86)\Acoustica MP3 To Wave Converter PLUS\M2WShlEx.dll -> No File ContextMenuHandlers6-x32: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File ContextMenuHandlers6-x32: [TortoiseSVN] -> {30351349-7B7D-4FCC-81B4-1E394CA267EB} => C:\Program Files (x86)\TortoiseSVN\bin\TortoiseStub.dll [2016-11-26] (hxxp://tortoisesvn.net) ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal) ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {10A56E03-0EB1-44C3-91FF-1B783A4390F1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {13B02774-A0DA-4430-BD45-2315D6A778A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-07-04] (HP Inc.) Task: {15BA2AF3-75F7-413B-812A-1FE5D1041B4B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {17FA5BB8-3A14-4E14-9722-252CB9B00558} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {1C3C1042-FA38-4F77-A470-47C715D3BD76} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1C47F40D-E37F-4CC4-9B08-21454A674361} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.) Task: {1F0C3AE3-41BA-44DA-B17A-3966C1772D6F} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {20ECD0F1-58B3-49CF-8792-E18826EE8ACD} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {2263476A-50E1-4107-B9D3-A84CAEEF6118} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {23D1EE92-B8E3-49F7-80CD-D0C03653195D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION Task: {2F1B4A66-E225-48BA-BCF8-F00E16375254} - System32\Tasks\AdobeAAMUpdater-1.0-Vivicaca-PC-Vivicaca => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated) Task: {2F452C07-4366-4029-8E80-1B39BB84997A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-victorparent@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated) Task: {3A17FE2C-2A5D-4CC4-87C6-585953BB33D2} - System32\Tasks\{2FCD658D-1AFD-407C-BF23-9D16F4B7E8A1} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Desura\\desura.exe" -c desura://uninstall/games/19850 Task: {3D35EF5A-9FE3-4248-B20D-A7769F4D33D8} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2011-09-16] (Hewlett Packard) Task: {408AC0C6-F8B5-41F5-8D1D-F2D8CA1CF9FF} - System32\Tasks\{F0845EEE-340B-4961-AB58-8F95C8FBF066} => C:\Windows\system32\pcalua.exe -a "C:\Users\Vivicaca\Downloads\Office Accounting Professional 2008 (x86) - CD (English - United States)\setup.exe" -d "C:\Users\Vivicaca\Downloads\Office Accounting Professional 2008 (x86) - CD (English - United States)" Task: {425D2AF8-ADF7-4C6F-A455-4D1CDBE37FED} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {4C9CE750-0E24-46D2-B5D2-A4F51FEB7E50} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION Task: {55A3B336-13AF-41B9-9262-DE556DDC41D8} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation) Task: {57F40137-0581-4591-8FFD-38DBF6900608} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {5B3A8773-F8E2-45E1-8E22-B9A6E9DE1AF9} - System32\Tasks\{ED7A2774-8EED-4171-A7A2-C3636A0339B1} => C:\Windows\system32\pcalua.exe -a C:\Windows\Installer\{B35DC076-CEF2-4631-9EF7-45380E27C841}\AvidStudio.EX_51EFF7DE84DF4CEDA9047F37C01FB11D.exe Task: {5C517293-6B71-4D27-93C8-21348FA2FE31} - System32\Tasks\ASUS\TurboVHelp => C:\Program Files (x86)\ASUS\TurboV EVO\TurboVHELP.exe Task: {5DF95100-7270-4464-BD67-E204B6EF9D9F} - System32\Tasks\{460E3E27-B80D-461C-99D8-7A9840CD9FE2} => C:\Windows\system32\pcalua.exe -a C:\Users\Vivicaca\Downloads\msn-messenger_msn_messenger_7.5_version_compatible_windows_2000_anglais_13499.exe -d C:\Users\Vivicaca\Downloads Task: {60C14C0A-7F05-48FC-9385-4171521E4644} - System32\Tasks\{FA7F7C7B-1879-49AB-AD3D-A68F8337A157} => C:\Windows\system32\pcalua.exe -a "G:\Jeux\FarCry 4\GDFInstall.exe" -d "G:\Jeux\FarCry 4" Task: {61749E01-E4D5-4109-BED9-4C09851C7D85} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe Task: {645AC93E-12BC-49E2-AB3D-991E86CBC62E} - System32\Tasks\{2B05DCB0-78F1-4F0B-BD53-9D4A8D344515} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2017-07-28] (Skype Technologies S.A.) Task: {65D54EB9-8DC4-4952-AA00-E46B5DC9F32D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-19] (Piriform Ltd) Task: {6D0969FE-F1E5-416C-8626-E6CA7CD9A575} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe Task: {6E81DBF0-58CB-4132-A2AD-1C15035433F3} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {781A9B94-21C7-48B4-AC2F-05B85560CCB7} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {7A2FA361-3D4F-43C9-8F3E-04AE08E89F9E} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION Task: {7DA853A4-7602-487C-9324-115ADC578E6E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {7EA0130F-DCEC-4149-B089-1133CAAEDA14} - System32\Tasks\{37C5E7CC-667E-4AAC-886C-9BD9B1E941AC} => C:\Windows\system32\pcalua.exe -a "E:\Audio\Plug-ins 2014\installzeriusvocoder13.exe" -d "E:\Audio\Plug-ins 2014" Task: {7EFB8562-7BE0-4D53-ADA0-F6718F113284} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe Task: {7F6683E1-AD2E-464B-85BF-28D7B5264097} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.) Task: {816BAD1E-C8A8-4036-BBE4-BA940CAADCC7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {869982F7-8906-4A6E-AF7C-1E7F6B8745E6} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {89F3627D-DAC2-4ABE-B233-7B25D5AABF2F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {8C59D2EA-515F-4BEF-A0EE-1A819189F583} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {8CE5E02A-9ADB-4F52-B9D8-970B924096ED} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2317999798-2289613410-81454934-1001UA => C:\Users\Vivicaca\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {9222CB2C-565F-4768-B291-1168CBB05577} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION Task: {978023D9-DF80-4542-9266-2B21E4D8AED2} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A4B5C1E9-0956-4091-B7C3-0756A7220A7F} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe Task: {A526CADB-1AE9-4D2E-8E35-00CD827A966D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION Task: {AEB54C57-108B-4BB0-B8F4-9A5BA46202B0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION Task: {AFEE2668-D467-46C1-A87A-929208888D0A} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {B12E4BAC-0766-4993-A1B5-5D264F23DDA6} - System32\Tasks\{99DBD2ED-CAE6-48CB-BA00-BEF0AF768A95} => C:\Windows\system32\pcalua.exe -a D:\Jeux\Install_Samorost2.exe -d D:\Jeux Task: {B14EEFC5-8971-4EA6-A3D9-8AE4A0AF97EC} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B9B5DBE4-E911-43D5-AEE5-B02CC487663F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C7B0EB4D-61BA-4CEE-80B1-860E4BECBDCE} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C8D5A649-4022-4A73-82EB-477A114B127F} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2317999798-2289613410-81454934-1001Core => C:\Users\Vivicaca\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {D05309CE-0AE2-49B2-B1AA-C2CE46BC9BD2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.) Task: {DD192F72-9FC5-4368-9371-B0767516380A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {DD8C8756-10BB-4BC9-B0A8-C5402E0935E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {DE363AE5-AAD7-4135-86BB-748E1B1425E8} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DF044B42-B278-4FEA-B01D-C8D50D12FE6B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-15] (Adobe Systems Incorporated) Task: {E25ECDA4-BEB6-4FDF-9DDA-1056942FC3D4} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E7F1A80D-98C3-429F-97C8-75BAFFC4976D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {EF3EA2BA-6A83-45E8-B308-882C6E33E9F6} - System32\Tasks\{1782D766-0DE7-4AF6-85F8-E8203DEC649C} => C:\Windows\system32\pcalua.exe -a C:\Users\Vivicaca\Downloads\Install_Samorost2.exe -d C:\Users\Vivicaca\Downloads Task: {F15F2B6D-540C-48CF-99E2-AA041F6A80FF} - System32\Tasks\{16BAA353-A996-4B71-A2FB-D9F14585320D} => C:\Windows\system32\pcalua.exe -a C:\Users\Vivicaca\Downloads\Ad-Aware96Install.exe Task: {F501EC7F-8B76-42D0-8126-8ED1C7AE94FB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {FCF3C462-1971-4B96-ACCF-1A78CA2F5585} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION Task: {FE658067-406B-45A9-A7E2-8E34619B7B44} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) Shortcut: C:\Users\Vivicaca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\firefox.exe (Mozilla Corporation) Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\firefox.exe (Mozilla Corporation) ==================== Loaded Modules (Whitelisted) ============== 2015-09-09 12:52 - 2015-09-09 12:52 - 000216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe 2010-09-02 08:40 - 2010-06-24 14:19 - 000109056 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2016-11-26 14:48 - 2016-11-26 14:48 - 000095184 _____ () C:\Program Files (x86)\TortoiseSVN\bin\libsasl.dll 2017-03-18 22:59 - 2017-03-19 04:30 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-11-05 18:01 - 2014-08-06 03:04 - 001441792 _____ () C:\Program Files\Everything\Everything.exe 2015-09-09 12:40 - 2015-09-09 12:40 - 000221696 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll 2015-09-09 12:28 - 2015-09-09 12:28 - 000050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll 2015-09-09 12:39 - 2015-09-09 12:39 - 000072192 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll 2015-09-09 12:42 - 2015-09-09 12:42 - 000744448 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll 2015-09-09 12:34 - 2015-09-09 12:34 - 000087040 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1 [154] AlternateDataStreams: C:\Users\Vivicaca\Cookies:uQymcuHDGIHhXXduRi [2378] ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\51184113.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\90753202.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\51184113.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\90753202.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2012-09-21 20:45 - 2017-08-18 16:42 - 000000891 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 activate.adobe.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2317999798-2289613410-81454934-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Vivicaca\AppData\Roaming\Microsoft\Windows Photo Viewer\Windows Photo Viewer Wallpaper.jpg DNS Servers: 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Windows Firewall is disabled. ==================== MSCONFIG/TASK MANAGER disabled items == MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AMD External Events Utility => 2 MSCONFIG\Services: Desura Install Service => 3 MSCONFIG\Services: DigiRefresh => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: Razer Game Scanner Service => 2 MSCONFIG\Services: SQLBrowser => 2 MSCONFIG\Services: SQLWriter => 2 MSCONFIG\Services: WPCSvc => 3 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^NETGEAR WG311v3 Smart Wizard.lnk => C:\Windows\pss\NETGEAR WG311v3 Smart Wizard.lnk.CommonStartup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: DigidesignMMERefresh => C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe MSCONFIG\startupreg: f.lux => "C:\Users\Vivicaca\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow MSCONFIG\startupreg: Google Update => "C:\Users\Vivicaca\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart MSCONFIG\startupreg: Lycosa => "C:\Program Files (x86)\Razer\Lycosa\razerhid.exe" MSCONFIG\startupreg: M-Audio Taskbar Icon => C:\Windows\system32\MAFWDITray.exe MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background MSCONFIG\startupreg: Razer Synapse => "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe" MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: SSDMonitor => C:\Program Files (x86)\Common Files\PC Tools\sMonitor\SSDMonitor.exe MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk" HKLM\...\StartupApproved\Run: => "UMonit" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "Everything" HKLM\...\StartupApproved\Run: => "WindowsDefender" HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp" HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager" HKLM\...\StartupApproved\Run32: => "M-Audio Taskbar Icon" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "SwitchBoard" HKLM\...\StartupApproved\Run32: => "StatusAlerts" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\StartupApproved\Run: => "Google Update" HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\StartupApproved\Run: => "com.squirrel.slack.slack" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{0A39ABAE-50E3-4CA6-93AC-10BD5403B909}] => (Allow) C:\Program Files (x86)\firefox.exe FirewallRules: [{6A8BEC8A-B56D-40EF-AF6F-E1E3C3E87D91}] => (Allow) C:\Program Files (x86)\firefox.exe FirewallRules: [{43F64E05-F54C-41E7-9BD9-93E020876E18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{101A9690-5BA7-4B40-8C21-9D688AEAE7AA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{08315455-867B-406C-8C1B-202244888F02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8FD49D22-4B16-4F76-B471-439EE5995DF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{080B60B7-4EC3-40B2-B8A3-F5070F796773}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FC97059D-140A-4E69-B795-B0D6285F06B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{334C98D8-73F6-4AC3-9835-E1077FC06446}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{0E7D85A4-49E9-4A10-807A-03BD9DAEC56A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{27FB1BCD-1DA2-40FD-9247-391820B61368}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4180EFCC-90DD-4461-AD5F-52D758DAE749}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DD5EF61A-62BB-40AC-8DEF-71E5AC41F9E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{59731C0B-0EEB-4F12-9DCF-13DACAACA877}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{379C3551-A1C9-4410-9068-83BB6D46268F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe FirewallRules: [{7B84DD0B-410B-4122-AA39-56565AA31980}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dark Souls Prepare to Die Edition\DATA\DARKSOULS.exe FirewallRules: [{2A09A09E-D0B7-4435-A2E2-CBC354E93808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{357C3A91-8048-44DB-87C3-BDE7712EF19F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{FE137B6D-2DFC-45B1-B722-4E03E621DC7A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{79D792BE-CD37-4447-AD39-F5DF2371616D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{90D6F9A4-D77B-4630-A45C-93D63AC8A081}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{4B1445C6-E941-48A3-83A4-E4CB26877B9C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C5A8C870-D8B6-4A9E-8A14-645AB4E1A1B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A59A97DF-8198-4231-9F21-D7BB8081B52A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{B80438D0-A422-468D-8127-EF8D32D4F6A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{83052AB7-F18E-44F9-8329-5D3FB76F2544}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A7165AD5-CEE6-4DAD-B2D0-C84D13174880}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F50B6D4E-88A9-42FD-BDFB-77B6FC300DC8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A4E523F0-D837-4B4F-ADBC-DA35F1F1D13A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F44B4BFC-AB8E-4738-802A-0C6A5EE56CBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E688F066-2CDE-4C67-BF1E-063B2DC85327}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{97AE67AF-20EE-484A-B6B4-88BE8BD95BD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F30847EA-592B-475A-AE2F-231126A09EAC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{15D2AB99-EE56-4E53-B612-698373BCE199}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{DEB22042-7F96-4FF3-9ECB-691BC04DDA9D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{58C2EF01-C06E-4923-BDF0-C0AE681F30F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3D4E54FB-3E9D-4D95-8B63-7E883382144F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{A30BE80D-FB0B-4037-8556-E47A63D43375}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9ED017F0-880A-4FD4-A11A-056AC7CB1A3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8FFCF344-63AB-4BF4-897A-4FE7C0B8CAC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9927707F-ACA4-4CA0-AB4D-08EEF484F533}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{009D6AF6-DC8B-4A9E-A1CC-29A3CA2F5F8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CE54A077-909E-4A4B-88D0-7FD4606A8A0C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{291B45F0-6212-445B-B9B5-CCB538FA7C2E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E2BD025A-621D-4D02-B066-8FB5ABC22FA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{C6906952-EEA1-4976-AC2A-A99E3273ECF6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Path of Exile\PathOfExileSteam.exe FirewallRules: [{945883B8-64B3-4B85-AC39-31CE835CC3B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CDEE66E7-6138-4CF6-81A6-2E3E056C73F1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{377FB49C-FD33-4512-A5BA-832F4132AD24}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{2FACAD7F-67E6-42BD-A050-9B6C9103C1AE}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4DB10F73-2A7E-4FB2-A3D9-49FC6F060BF6}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3565FA0C-79EB-403D-B234-48914B91ADB3}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F5C21959-9B7B-4013-8D90-F23C3C515E96}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CE39DF8F-A26E-499C-8295-31FD5089DE67}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7F73BF88-3068-4817-B84D-940FBA9566A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{D4CEC77D-26A5-4DA4-9771-BE747BF2DD27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{39677734-68BB-480A-8C59-36F023A3F503}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{66160E92-D9D5-45D5-BBCD-0C612C71A984}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{CB1DF84F-51BD-4826-BDBA-BD174800C563}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{8D9FF82F-2F2F-4718-8734-9DB7E65E5BEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{B22B8272-23E5-4EB4-BAE9-E634922FE694}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{3DE5D226-9173-4A65-9BFC-40718E9E9981}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{80A594C5-9085-43BD-9B1C-82F95567BBD0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{9640A58E-2A11-4F27-AAC7-BC5524ADB4C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{1EB32CBA-9E04-42E8-A579-4C96D28983E6}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 200 color MFP M275\Bin\HPNetworkCommunicator.exe FirewallRules: [{AE26E022-B6FE-4EEA-857D-6F7A1B9AD686}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 200 color MFP M275\bin\DigitalWizards.exe FirewallRules: [{FDE9B0C2-10D1-4D31-875B-234839387379}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witness\witness_d3d11.exe FirewallRules: [{8D0C0B31-1755-4152-92A2-B5F29AB95808}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witness\witness_d3d11.exe FirewallRules: [{1844378E-1DC8-4548-9D42-32ACF50D9FEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{76E8FD52-CD0E-4B1E-A96B-59C83E14D124}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{97C8B05B-E602-4EC7-90A2-4AAE41D979DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C08EE23C-7517-4E68-AE97-1715335952B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{C3FF39D0-5E57-4FFF-B6B6-7D39AC48B5C5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{6D2E0C90-F62C-4ADA-8FF1-BE6E707D0FC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{06D6B298-9BA9-4D71-A264-9BA0C310B912}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{D1BA3F35-6C3E-4091-9DC2-7CE0B365AECB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{14FBABBD-9FF6-40EF-9ABB-07750570E71C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{ECBCA6C4-F672-492D-9747-1498DD302E6D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2cfg.exe FirewallRules: [{86321591-8DAC-46D3-8DF9-A1C94E1676C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Not a Hero\LEGACY.exe FirewallRules: [{A4CA10A0-7CDC-4DCA-943A-D1EBBBDDE17A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Not a Hero\LEGACY.exe FirewallRules: [{73952791-9FE2-4086-A356-7107CF00D7DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Not a Hero\NOT A HERO.exe FirewallRules: [{8AC8B753-6D38-4972-BBA7-F866D3B2BD38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Not a Hero\NOT A HERO.exe FirewallRules: [{3883DB40-2DD2-4088-9A30-9F5F5822FDDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{AC370485-D0B8-4801-BAE0-515E83F9BB9B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{44D4907D-89C7-401E-A4D2-D8C018B6AFD9}] => (Allow) C:\Users\Vivicaca\AppData\Local\Google\Chrome\Application\chrome.exe FirewallRules: [{8859B3AA-577F-47E3-ADE9-346145EEC0E3}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [{DAF30D51-3576-4A88-9F7B-0B0FF101CE6F}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{216DC194-2E43-436D-B0CF-FC104187374A}] => (Allow) LPort=1900 FirewallRules: [{2311E715-6374-4A22-B63E-0C233829745B}] => (Allow) LPort=2869 FirewallRules: [{A719A038-EEA1-4390-AD07-9A66B1C342A4}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{6DE36DE6-7085-4B84-8C7D-E61ED3B0F982}] => (Allow) G:\Jeux\FarCry 4\bin\IGE_WPF64.exe FirewallRules: [{4F94E9F9-25D6-4A7D-99A1-DB0781F724D9}] => (Allow) G:\Jeux\FarCry 4\bin\IGE_WPF64.exe FirewallRules: [{58497F0F-D168-4E11-8A93-BA71EA89616B}] => (Allow) G:\Jeux\FarCry 4\bin\FarCry4.exe FirewallRules: [{C765A1C2-83AD-4258-8132-204D140B7BF8}] => (Allow) G:\Jeux\FarCry 4\bin\FarCry4.exe FirewallRules: [{35124B67-8D73-4E7D-95A3-5B22524F4813}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{070DB9A8-C43E-428D-9438-F0299B27F9B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Source SDK Base 2007\hl2.exe FirewallRules: [{673AD49C-0610-4169-9036-3875A789E492}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Source SDK Base 2007\hl2.exe FirewallRules: [{1990B477-73DA-451C-8638-7B8713018C54}] => (Allow) C:\Users\Vivicaca\Downloads\uTorrent.exe FirewallRules: [{566AB771-223B-40C1-A4F3-AC0D38AAB05C}] => (Allow) C:\Users\Vivicaca\Downloads\uTorrent.exe FirewallRules: [{E6AE98EC-4BF6-4991-8379-F99743FB78FD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{941BB80F-6B67-41F7-9BB1-D3E99B9F52C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{C44C4D1C-D4DB-4FB1-AB4C-3B4F2A90C8C9}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{2F1B646E-AFAA-403E-A69B-F95353BF99DF}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{26A4A43C-8432-42F9-AFB7-4DDC89EFA8A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{F20F312E-01D3-44F4-B0A8-E68EA1429D96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{A04E066D-42D3-4FEB-9F67-A3203C394BFC}C:\program files\fmod soundsystem\fmod studio 1.09.05\fmod studio.exe] => (Allow) C:\program files\fmod soundsystem\fmod studio 1.09.05\fmod studio.exe FirewallRules: [UDP Query User{5E7495D4-7DC4-477E-B325-C4C6025D7D91}C:\program files\fmod soundsystem\fmod studio 1.09.05\fmod studio.exe] => (Allow) C:\program files\fmod soundsystem\fmod studio 1.09.05\fmod studio.exe FirewallRules: [{887E26C3-06F0-4780-9A8F-2B78F7476287}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [{E9744E58-8C63-42B7-BCDD-61CDED3D7ECB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe FirewallRules: [TCP Query User{FD64AB13-15B0-412A-976E-808582E618A4}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe FirewallRules: [UDP Query User{186B3F2F-2C9D-420D-8F4B-9C301BFB7CAD}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe FirewallRules: [{50081A08-F72E-450C-94C1-5A2C4EA50F3E}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D8937119-A6B9-4200-AB6C-FB1F6895A129}] => (Allow) C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe ==================== Restore Points ========================= 07-09-2017 22:13:47 JRT Pre-Junkware Removal 13-09-2017 11:58:27 Windows Update 14-09-2017 21:59:05 Removed QuickTime 7 ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/14/2017 11:03:13 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: The program HPSF.exe version 8.3.34.7 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: 18dc Start Time: 01d32d9898d39c73 Termination Time: 3434 Application Path: C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe Report Id: 4a74524d-c337-440c-a198-5cafa8660403 Faulting package full name: Faulting package-relative application ID: Error: (09/14/2017 10:57:47 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: VIVICACA-PC) Description: Package Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe+App was terminated because it took too long to suspend. Error: (09/14/2017 09:59:22 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Access is denied. . Error: (09/14/2017 11:44:13 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: svchost.exe_AppReadiness, version: 10.0.15063.0, time stamp: 0x02799ef5 Faulting module name: ntdll.dll, version: 10.0.15063.608, time stamp: 0x8274fd8b Exception code: 0xc0000374 Fault offset: 0x00000000000f775f Faulting process id: 0x16a0 Faulting application start time: 0x01d32d3dd275c6f2 Faulting application path: C:\WINDOWS\System32\svchost.exe Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll Report Id: 1fc02e43-f98f-4c48-be94-8470570e9f66 Faulting package full name: Faulting package-relative application ID: Error: (09/14/2017 09:14:36 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: The Open Procedure for service "BITS" in DLL "C:\Windows\System32\bitsperf.dll" failed. Performance data for this service will not be available. The first four bytes (DWORD) of the Data section contains the error code. Error: (09/14/2017 09:11:46 AM) (Source: Perflib) (EventID: 1023) (User: ) Description: Windows cannot load the extensible counter DLL MSSQL$MSSMLBIZ. The first four bytes (DWORD) of the Data section contains the Windows error code. Error: (09/13/2017 12:08:55 PM) (Source: Windows Search Service) (EventID: 3007) (User: ) Description: Performance monitoring cannot be initialized for the gatherer object, because the counters are not loaded or the shared memory object cannot be opened. This only affects availability of the perfmon counters. Restart the computer. Context: Application, SystemIndex Catalog Error: (09/13/2017 11:59:18 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol. System Error: Access is denied. . Error: (09/13/2017 11:08:32 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: VIVICACA-PC) Description: Activation of app Microsoft.Windows.Photos_8wekyb3d8bbwe!App failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information. Error: (09/12/2017 11:40:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: VIVICACA-PC) Description: Package Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe+App was terminated because it took too long to suspend. System errors: ============= Error: (09/15/2017 11:36:41 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Norton PC Checkup Application Launcher service terminated unexpectedly. It has done this 1 time(s). Error: (09/15/2017 11:20:46 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The PCCUJobMgr service terminated with the following service-specific error: %%4294967295 Error: (09/15/2017 11:20:41 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it. Error: (09/15/2017 11:20:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Apple Mobile Device Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Error: (09/15/2017 11:20:41 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Apple Mobile Device Service service to connect. Error: (09/15/2017 11:20:37 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The CldFlt service failed to start due to the following error: The request is not supported. Error: (09/15/2017 11:19:55 AM) (Source: NTFS) (EventID: 137) (User: ) Description: The default transaction resource manager on volume \\?\Volume{de3fa690-0000-0000-0000-808cae000000} encountered a non-retryable error and could not start. The data contains the error code. Error: (09/15/2017 11:19:55 AM) (Source: Disk) (EventID: 7) (User: ) Description: The device, \Device\Harddisk0\DR0, has a bad block. Error: (09/14/2017 11:56:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Norton PC Checkup Application Launcher service terminated unexpectedly. It has done this 1 time(s). Error: (09/14/2017 11:09:14 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The PCCUJobMgr service terminated with the following service-specific error: %%4294967295 CodeIntegrity: =================================== Date: 2017-09-10 16:38:38.437 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-08 05:40:16.270 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-07 11:52:49.603 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-01 23:18:38.098 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-08-21 02:59:31.945 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-08-19 22:49:18.978 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-08-19 13:25:56.066 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-08-18 16:39:52.962 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-08-16 12:25:54.151 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-08-10 12:21:40.214 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5 CPU 750 @ 2.67GHz Percentage of memory in use: 64% Total physical RAM: 2046.05 MB Available physical RAM: 721.62 MB Total Virtual: 8190.05 MB Available Virtual: 6329.88 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:502.88 GB) (Free:65.43 GB) NTFS Drive f: () (Fixed) (Total:195.21 GB) (Free:103.26 GB) NTFS Drive h: (SAMSUNG) (Fixed) (Total:931.51 GB) (Free:116.47 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: DE3FA690) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=502.9 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 2042630B) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== End of Addition.txt ============================