cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.6.30.77 by Nicolas Coolman (2015\06\30)
~ Run by Stanislas (Administrator) (2015/07/01 04:08:13)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scan
~ Report : C:\Users\Stanislas\Desktop\ZHPDiag.txt
~ UAC : Deactivate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (2) - 0s
MFIE: Mozilla v38.0.5
MSIE: Internet Explorer v11.0.9600.17633

---\\ Windows Product Information (4) - 57s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : KO
Windows Activation Technologies : KO

---\\ Information on the system (6) - 0s
~ Operating System: AMD64 Family 21 Model 1 Stepping 2, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 8387036
~ System Restore: Activé (Enable)
~ System drive C: has 534 GB free of 953 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: STANISLAS-PC
~ User Name: Stanislas
~ Logged in as Administrator

---\\ Enumeration of the disk units (5) - 0s
~ Drive C: has 534 GB free of 953 GB (System)
~ Drive D: has GB free of 0 GB
~ Drive E: has GB free of 1 GB
~ Drive F: has 568 GB free of 1907 GB
~ Drive H: has 451 GB free of 953 GB

---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Search Generic System Files (22) - 7s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.9DFE41A69DF70AAB75CB5BA8C1109EA2] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [2358272]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]

---\\ Process running (29) - 7s
[MD5.2A4F832243E869FD7564AA90402D74BD] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 350.1.) -- C:\Windows\system32\nvvsvc.exe [936264] [PID.908]
[MD5.F82B2FC221CA0E408874884787491667] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [410952] [PID.932]
[MD5.5CDE98ED7F771C6B51CF8576B137CBD5] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1251144] [PID.1256]
[MD5.2A4F832243E869FD7564AA90402D74BD] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 350.1.) -- C:\Windows\system32\nvvsvc.exe [936264] [PID.1264]
[MD5.73F5C13B431915BAE35254B4E95DFB71] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344] [PID.1488]
[MD5.612CB66D93ED0F2F21BB109840C7D813] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128] [PID.1880]
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.1932]
[MD5.FC1D0475DF9F4919BBFE15FDA0174593] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [388824] [PID.1960]
[MD5.46EC4C71B5838655F08D82F0563FD51E] - (.BlueStack Systems, Inc. - BlueStacks Updater Service.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [794328] [PID.2004]
[MD5.EBF714703106C1D5BC3E7B4C389A5828] - (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144] [PID.2524]
[MD5.1A650CBAC8C5A90791B45FF7B9F72572] - (.Hi-Rez Studios - HiPatchService.) -- F:\Jeux\HiRez\HiPatchService.exe [9216] [PID.2616]
[MD5.08DFA176E4FC0E63ACD8EC854449D2B0] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1676344] [PID.1520]
[MD5.D6BF6FD055BD719F3D62E51B90857159] - (.LogMeIn, Inc. - LMIGuardianSvc.) -- C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552] [PID.1232]
[MD5.3D6FBDA921D079E1260938260B3C268A] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2447688] [PID.2024]
[MD5.26B558B2D31C7425B455B00E562EAD93] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [4085896] [PID.1080]
[MD5.638644168D9B5B5093AD84C9C162B550] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296] [PID.3104]
[MD5.32ECE52E4C4A5FC2115279D7B13E6270] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304] [PID.3140]
[MD5.1BA5D2F5D1245303E897FFBE878D0EE4] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600] [PID.3304]
[MD5.205E1B699FD3F2F9B036EEA2EC30C620] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76888] [PID.3416]
[MD5.4CF1DD55403ECD98EEEBD7FC07157C11] - (.NVIDIA Corporation - OpenAutomate wrapper cache.) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [628664] [PID.3460]
[MD5.524F4F1D43101DCDCEE90988571EE964] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [7896720] [PID.3780]
[MD5.1BA5D2F5D1245303E897FFBE878D0EE4] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600] [PID.3788]
[MD5.A903E5C565A2677F3960E4AAB7B42280] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056] [PID.4044]
[MD5.03CABA844BC03C99DB84146BF51A9259] - (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2490216] [PID.4208]
[MD5.F4A755E3A99F4F2324FC2138D30F01B4] - (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600] [PID.4640]
[MD5.E40FEB48AB3512A24BF194FBE746E556] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer.exe [17905424] [PID.5792]
[MD5.8B3487B1FDB95A444A7B9880012041DA] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\tv_w32.exe [229136] [PID.6000]
[MD5.514392A07161F5045BAD17A620FE1E10] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\tv_x64.exe [263952] [PID.6008]
[MD5.00ED54DF10866D6F3AF62F110920E25B] - (.SAP AG - SAPSetup Automatic Workstation Update Tool.) -- C:\Program Files (x86)\SAP\SapSetup\setup\Updater\NwSapAutoWorkstationUpdateService.exe [193144] [PID.2500]

---\\ Google Chrome, Start,Search,Extensions (G0,G1,G2) (10) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] "http://google.fr/"
G0 - GCSP: Preferences [User Data\Default][HomePage] "http://suggest.seccint.com/"
G0 - GCSP: Preferences [User Data\Default][HomePage] "http://www.trovi.com/" =>Hijacker.Trovigo
G0 - GCSP: Preferences [User Data\Default][HomePage] "https://www.googleapis.com/"
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://www.trovi.com/?gd=&ctid=CT3325281&octid=EB_ORIGINAL_CTID&ISID=IFD15A2BC-FD6D-417A-8610-66FA7D1AFBEC&SearchSource=55&CUI=&UM=8&UP=SP0CF46E1F-7A86-4550-B95E-39DF1FB984EF&D=063015&SSPV=" =>Hijacker.Trovigo
G2 - GCE: Extension [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Extension [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock
G2 - GCE: Extension [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Extension [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Skype Click to Call
G2 - GCE: Extension [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3) (32) - 5s
P2 - EXT: (.Apple Inc. - The QuickTime Plugin allows you to view a w.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - EXT: (.Apple Inc. - The QuickTime Plugin allows you to view a w.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - EXT: (.Apple Inc. - The QuickTime Plugin allows you to view a w.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - EXT: (.Apple Inc. - The QuickTime Plugin allows you to view a w.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - EXT: (.Apple Inc. - The QuickTime Plugin allows you to view a w.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - EXT: (.Nullsoft, Inc. - Winamp Application Detector.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npwachk.dll
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKCU] [@onlive.com/OnLiveGameClientDetector,version=1.0.0] - (.OnLive.) -- C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited.) -- C:\Users\Stanislas\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS.) -- C:\Users\Stanislas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (.Ubisoft.) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_190.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@esn/npbattlelog,version=2.6.2] - (.EA Digital Illusions CE AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.9.2] - (.Oracle Corporation.) -- C:\Windows\SysWOW64\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.9.2] - (.Oracle Corporation.) -- C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks Inc..) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
P2 - FPN: [HKLM] [@raidcall.en/RCplugin] - (.Raidcall.) -- C:\Users\Stanislas\AppData\Roaming\raidcall\plugins\nprcplugin.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN.) -- C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1) (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nmd.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis F0, F1, F2, F3 - IniFiles, Auto loading programs (3) - 1s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (17)

---\\ Browser Helper Object (BHO) (O2) (4) - 0s
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (...) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll (.not file.)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (...) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (.not file.)
O2 - BHO: (no name) [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (.not file.)
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (...) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (.not file.)

---\\ Auto loading programs from Registry and folders (O4) (10) - 1s
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-263082750-2348022060-508732130-1001\..\Run: [AdobeBridge] (Orphean)
O4 - HKUS\S-1-5-21-263082750-2348022060-508732130-1001\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
O4 - HKUS\S-1-5-21-263082750-2348022060-508732130-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe

---\\ Lop.com/Domain Hijackers (O17) (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4

---\\ Non Microsoft non disabled Windows XP/NT/2000 Services (O23) (22) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc. - BlueStacks Service.) - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service;gadgetDataDir=F:\Logiciel\blue s (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: DisplayFusionService (DisplayFusionService) . (...) - F:\Program\Dysplay fusion\DisplayFusion\DisplayFusionService.exe (.not file.)
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) . (.Hi-Rez Studios - HiPatchService.) - F:\Jeux\HiRez\HiPatchService.exe
O23 - Service: LMIGuardianSvc (LMIGuardianSvc) . (.LogMeIn, Inc. - LMIGuardianSvc.) - C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - F:\Program\Malwarebytes\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 350.1.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: SAPSetup Automatic Workstation Update Service (NWSAPAutoWorkstationUpdateSvc) . (.SAP AG - SAPSetup Automatic Workstation Update Tool.) - C:\Program Files (x86)\SAP\SapSetup\setup\Updater\NwSapAutoWorkstationUpdateService.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\System32\PnkBstrA.exe (.not file.)
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

---\\ Task Planned Automatically (O39) (17) - 3s
[MD5.6259A5B669AE018A5E53247259A101C3] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268464]
[MD5.320681DF28D82CDCA7E3EED0846625DB] [APT] [AdobeAAMUpdater-1.0-Stanislas-PC-Stanislas] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904]
[MD5.FAAE091936E04BDE3B6041AB5C16BC7B] [APT] [avast! Emergency Update] (.Avast Software s.r.o..) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1298776]
[MD5.4999625054FFA2AFFCAFD085C1218307] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3611416]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-263082750-2348022060-508732130-1001Core] (.Facebook Inc..) -- C:\Users\Stanislas\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-263082750-2348022060-508732130-1001UA] (.Facebook Inc..) -- C:\Users\Stanislas\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-263082750-2348022060-508732130-1001Core] (.Google Inc..) -- C:\Users\Stanislas\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-263082750-2348022060-508732130-1001UA] (.Google Inc..) -- C:\Users\Stanislas\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
O39 - APT: avast! Emergency Update - (.Avast Software s.r.o..) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\SidebarExecute [3246]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{09EF6964-7125-4425-9486-E1528C3A94B2} [3128]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{4C21032B-B476-4FA6-891E-262DE9A55170} [3136]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{5BE43086-E111-4355-808A-9BB9516E221C} [3074]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{9E7ADD3A-5E4E-4CD1-A60C-84609E47DDAA} [3172]

---\\ Software installed (O42) (233) - 23s
O42 - Logiciel: Nexus Mod Manager - (.Black Tree Gaming.) [HKLM][64Bits] -- 6af12c54-643b-4752-87d0-8335503010de_is1
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CPUID CPU-Z 1.72 - (...) [HKLM][64Bits] -- CPUID CPU-Z_is1
O42 - Logiciel: CPUID HWMonitor 1.27 - (...) [HKLM][64Bits] -- CPUID HWMonitor_is1
O42 - Logiciel: Désinstaller l'imprimante EPSON SX510W Series - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX510W Series
O42 - Logiciel: GIMP 2.8.2 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1
O42 - Logiciel: Master PDF Editor 1.7.55 - (.Code Industry LTD..) [HKLM][64Bits] -- Master PDF Editor 1.7.55_is1
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: Windows XP Mode - (.Microsoft Corporation.) [HKLM][64Bits] -- {1374CC63-B520-4f3f-98E8-E9020BF01CFF}
O42 - Logiciel: Java(TM) 6 Update 31 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416031FF}
O42 - Logiciel: Java 7 Update 25 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86417025FF}
O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM][64Bits] -- {309768A4-A2BB-4930-A5A2-8169678C9B4C}
O42 - Logiciel: Microsoft LifeCam - (.Microsoft Corporation.) [HKLM][64Bits] -- {5CE7E3F5-9803-4F32-AA89-2D8848A80109}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {93F2A022-6C37-48B8-B241-FFABD9F60C30}
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C5A08BF-BB99-4998-81BD-F6CC32483B34}
O42 - Logiciel: LINGO 13.0/x64 - (.Lindo Systems Inc.) [HKLM][64Bits] -- {AADADAD4-3086-43E8-9CB0-187265989761}
O42 - Logiciel: NVIDIA 3D Vision Driver 350.12 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Graphics Driver 350.12 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA GeForce Experience 2.4.1.21 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA 3D Vision Controller Driver 349.95 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB
O42 - Logiciel: NVIDIA PhysX System Software 9.15.0324 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA HD Audio Driver 1.3.33.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {C4123106-B685-48E6-B9BD-E4F911841EB4}
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D7B824DE-DA32-4772-9E5E-39C5158136A7}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 17 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 17 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Aeria Ignite - (.Aeria Games & Entertainment.) [HKLM][64Bits] -- Aeria Ignite 1.13.3296
O42 - Logiciel: Microsoft Age of Empires II - (...) [HKLM][64Bits] -- Age of Empires 2.0
O42 - Logiciel: Microsoft Age of Empires II : The Conquerors Expansion - (...) [HKLM][64Bits] -- Age of Empires II: The Conquerors Expansion 1.0
O42 - Logiciel: Age of Mythology - (...) [HKLM][64Bits] -- Age of Mythology 1.0
O42 - Logiciel: avast! Free Antivirus v9.0.2021 - (.AVAST Software.) [HKLM][64Bits] -- avast
O42 - Logiciel: DisplayFusion 6.1.2 - (.Binary Fortress Software.) [HKLM][64Bits] -- B076073A-5527-4f4f-B46B-B10692277DA2_is1
O42 - Logiciel: Banished 1.0 - (.Cat-A-Cat.) [HKLM][64Bits] -- Banished 1.0
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net
O42 - Logiciel: Battlelog Web Plugins - (.EA Digital Illusions CE AB.) [HKLM][64Bits] -- Battlelog Web Plugins
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Cheat Engine 6.3 - (.Cheat Engine.) [HKLM][64Bits] -- Cheat Engine 6.3_is1
O42 - Logiciel: Cities Skylines - (.????? ?? R.G. Steamgames.) [HKLM][64Bits] -- Cities Skylines_is1
O42 - Logiciel: Cities XL 2011 - (.Focus Home Interactive.) [HKLM][64Bits] -- Cities XL 2011
O42 - Logiciel: Adobe Story - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe® Content Viewer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.dmp.contentviewer
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: Dishonored - (...) [HKLM][64Bits] -- Dishonored_is1
O42 - Logiciel: doubleTwist Sync - (.doubleTwist Corporation.) [HKLM][64Bits] -- doubleTwist
O42 - Logiciel: Eden Eternal - (...) [HKLM][64Bits] -- Eden Eternal
O42 - Logiciel: EPSON Scan - (...) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: F1 2012 - (...) [HKLM][64Bits] -- F1 2012_is1
O42 - Logiciel: Fraps (remove only) - (...) [HKLM][64Bits] -- Fraps
O42 - Logiciel: Free DVD Video Converter version 2.0.20.623 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free DVD Video Converter_is1
O42 - Logiciel: Free YouTube to MP3 Converter version 3.12.54.128 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube to MP3 Converter_is1
O42 - Logiciel: GameSpy Arcade - (...) [HKLM][64Bits] -- GameSpy Arcade
O42 - Logiciel: Grand Theft Auto III 1.1 - (...) [HKLM][64Bits] -- Grand Theft Auto III 1.1
O42 - Logiciel: Hasard version 1.30 (beta) - (.PMEtool.) [HKLM][64Bits] -- Hasard_is1
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm
O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}
O42 - Logiciel: Fable - The Lost Chapters - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{C3C9EB3D-24FA-4462-B784-0EC6AAFCD2DD}
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- LogMeIn Hamachi
O42 - Logiciel: LOLReplay - (.www.leaguereplays.com.) [HKLM][64Bits] -- LOLReplay
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Minecraft1.4.7 - (...) [HKLM][64Bits] -- Minecraft1.4.7
O42 - Logiciel: MKV Player 2.1.17 - (...) [HKLM][64Bits] -- MKV Player_is1
O42 - Logiciel: Duel of Champions - (.Ubisoft.) [HKLM][64Bits] -- MMDoC-PDCLive
O42 - Logiciel: Mozilla Firefox 38.0.5 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 38.0.5 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird 38.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Need for Speed Underground 2 - (...) [HKLM][64Bits] -- Need for Speed Underground 2
O42 - Logiciel: No-IP DUC - (.Vitalwerks Internet Solutions LLC.) [HKLM][64Bits] -- NoIPDUC
O42 - Logiciel: Notepad++ - (...) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: Microsoft Access 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.Access
O42 - Logiciel: Microsoft Project Professionnel 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PRJPROR
O42 - Logiciel: Microsoft Publisher 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PUBLISHER
O42 - Logiciel: Microsoft Visio Professionnel 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.VISIOR
O42 - Logiciel: OnLive - (.OnLive.) [HKLM][64Bits] -- OnLive
O42 - Logiciel: Open Broadcaster Software - (...) [HKLM][64Bits] -- Open Broadcaster Software
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin
O42 - Logiciel: PCSX2 - Playstation 2 Emulator - (...) [HKLM][64Bits] -- pcsx2-r4600
O42 - Logiciel: PCSX2 - Playstation 2 Emulator - (...) [HKLM][64Bits] -- pcsx2-r5875
O42 - Logiciel: Portal - (...) [HKLM][64Bits] -- Portal
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: RaidCall - (.raidcall.com.) [HKLM][64Bits] -- RaidCall
O42 - Logiciel: RAR Password Cracker 4.12 - (.dnSoft Research Group.) [HKLM][64Bits] -- RAR Password Cracker
O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club
O42 - Logiciel: RPG Maker VX RTP - (.Enterbrain.) [HKLM][64Bits] -- RPG Maker VX RTP_is1
O42 - Logiciel: RPG Maker VX 1.2 Nino - (.Ultimaking.) [HKLM][64Bits] -- RPG Maker VX_is1
O42 - Logiciel: RPG MAKER VX Ace - (.Enterbrain.) [HKLM][64Bits] -- RPGVXAce_E_is1
O42 - Logiciel: RPG MAKER VX Ace RTP - (.Enterbrain.) [HKLM][64Bits] -- RPGVXAce_RTP_is1
O42 - Logiciel: SNC Client Encryption - (.SAP AG.) [HKLM][64Bits] -- SAP Channel Encryption
O42 - Logiciel: SAP Business Explorer - (.SAP AG.) [HKLM][64Bits] -- SAPBI
O42 - Logiciel: SAP GUI for Windows 7.30 - (.SAP AG.) [HKLM][64Bits] -- SAPGUI710
O42 - Logiciel: Engineering Client Viewer 7.0 - (.SAP AG.) [HKLM][64Bits] -- SAP_Engineering Client Viewer 7.0
O42 - Logiciel: SAP JNet - (.SAP AG.) [HKLM][64Bits] -- SAP_JNet
O42 - Logiciel: SAP Netweaver Business Client 4.0 - (.SAP AG.) [HKLM][64Bits] -- SAP_NWBC40
O42 - Logiciel: SAPSetup Automatic Workstation Update Service - (.SAP AG.) [HKLM][64Bits] -- SAP_WUS
O42 - Logiciel: Call of Duty: Modern Warfare 2 - (.Infinity Ward.) [HKLM][64Bits] -- Steam App 10180
O42 - Logiciel: Call of Duty: Modern Warfare 2 - Multiplayer - (.Infinity Ward.) [HKLM][64Bits] -- Steam App 10190
O42 - Logiciel: DayZ - (.Bohemia Interactive.) [HKLM][64Bits] -- Steam App 221100
O42 - Logiciel: Age of Empires II: HD Edition - (.Hidden Path Entertainment, Ensemble Studios.) [HKLM][64Bits] -- Steam App 221380
O42 - Logiciel: Insurgency - (.New World Interactive.) [HKLM][64Bits] -- Steam App 222880
O42 - Logiciel: Marvel Heroes - (.Gazillion Entertainment.) [HKLM][64Bits] -- Steam App 226320
O42 - Logiciel: Company of Heroes 2 - (.Relic Entertainment.) [HKLM][64Bits] -- Steam App 231430
O42 - Logiciel: War Thunder - (.Gaijin Entertainment.) [HKLM][64Bits] -- Steam App 236390
O42 - Logiciel: The Mighty Quest For Epic Loot - (.Ubisoft Montreal.) [HKLM][64Bits] -- Steam App 239220
O42 - Logiciel: Counter-Strike: Source - (.Valve.) [HKLM][64Bits] -- Steam App 240
O42 - Logiciel: 8BitMMO - (.Archive Entertainment.) [HKLM][64Bits] -- Steam App 250420
O42 - Logiciel: Rust - (.Facepunch Studios.) [HKLM][64Bits] -- Steam App 252490
O42 - Logiciel: Robocraft - (.Freejam.) [HKLM][64Bits] -- Steam App 301520
O42 - Logiciel: ArcheAge - (.XLGAMES.) [HKLM][64Bits] -- Steam App 304030
O42 - Logiciel: Dirty Bomb - (.Splash Damage®.) [HKLM][64Bits] -- Steam App 333930
O42 - Logiciel: Rising Storm/Red Orchestra 2 Multiplayer - (.Tripwire Interactive.) [HKLM][64Bits] -- Steam App 35450
O42 - Logiciel: Garry's Mod - (.Facepunch Studios.) [HKLM][64Bits] -- Steam App 4000
O42 - Logiciel: Bulletstorm - (.People Can Fly.) [HKLM][64Bits] -- Steam App 99810
O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF
O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer
O42 - Logiciel: TI-Nspire CAS Student Software - (.Texas Instruments.) [HKLM][64Bits] -- TI-Nspire CAS Student Software
O42 - Logiciel: TI-Nspire Student Software - (.Texas Instruments.) [HKLM][64Bits] -- TI-Nspire Student Software
O42 - Logiciel: TubeMaster++ 2.7 - (.GgSofts.) [HKLM][64Bits] -- TubeMaster++
O42 - Logiciel: Tunatic - (...) [HKLM][64Bits] -- Tunatic
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay
O42 - Logiciel: Virtual DJ - Atomix Productions - (...) [HKLM][64Bits] -- Virtual DJ - Atomix Productions
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Wakfu - (.Ankama Games.) [HKLM][64Bits] -- Wakfu
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: Archiveur WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM][64Bits] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13}
O42 - Logiciel: PxMergeModule - (.Your Company Name.) [HKLM][64Bits] -- {024521CF-C07E-4F8E-8481-0D75695E03AF}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Battlefield 2(TM) - (...) [HKLM][64Bits] -- {04858915-9F49-4B2A-AED4-DC49A7DE6A7B}
O42 - Logiciel: Adobe Premiere Pro CS5.5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0497EAED-70DA-4BBE-BEB3-AF77FD8788EA}
O42 - Logiciel: CamStudio version 2.7 - (.CamStudio Open Source.) [HKLM][64Bits] -- {04B83666-3A62-452B-85D3-70F8117F2329}_is1
O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- {08B3869E-D282-424C-9AFC-870E04A4BA14}
O42 - Logiciel: Overwolf - (.Overwolf.) [HKLM][64Bits] -- {0A337036-B73E-4C85-8D32-3851F84B7CFE}
O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM][64Bits] -- {1111706F-666A-4037-7777-211328764D10}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Minecraft - (.Mojang.) [HKLM][64Bits] -- {1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: RomStation - (.RomStation.) [HKLM][64Bits] -- {223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1
O42 - Logiciel: Microsoft redistributable runtime DLLs VS2010 SP1 (x86) - (.SAP.) [HKLM][64Bits] -- {2385C070-EC26-4AB9-8718-E605C977C0ED}
O42 - Logiciel: Skype™ 7.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Java(TM) 7 Update 4 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217004F0}
O42 - Logiciel: Java 7 Update 9 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217009FF}
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}
O42 - Logiciel: DHTML Editing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {2EA870FA-585F-4187-903D-CB9FFD21E2E0}
O42 - Logiciel: DLLEscort version 2014 - (...) [HKLM][64Bits] -- {2F13CA65-0FFB-4760-824B-D459836AACFE}_is1
O42 - Logiciel: Battlefield: Bad Company™ 2 - (.Electronic Arts.) [HKLM][64Bits] -- {3AC8457C-0385-4BEA-A959-E095F05D6D67}
O42 - Logiciel: Smite - (.Hi-Rez Studios.) [HKLM][64Bits] -- {3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}
O42 - Logiciel: Hi-Rez Studios Authenticate and Update Service - (.Hi-Rez Studios.) [HKLM][64Bits] -- {3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: Star Wars Battlefront II - (.LucasArts.) [HKLM][64Bits] -- {3D374523-CFDE-461A-827E-2A102E2AB365}
O42 - Logiciel: SimCity 4 Deluxe - (...) [HKLM][64Bits] -- {3F0D0ABE-CDAF-431A-00BC-CBBE018EA74E}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {4FCF716C-CEB4-499D-AFB8-A5375105EC2A}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {52E225FC-FCB4-41F7-837B-6E37FB05BD7B}
O42 - Logiciel: Frontline Excel Solvers V12.5 - (.Frontline Systems, Inc..) [HKLM][64Bits] -- {565D2A3B-5664-4AE0-8074-12F256D4DCBC}
O42 - Logiciel: Antidote HD - (.Druide informatique inc..) [HKLM][64Bits] -- {56CDB4FE-895F-4E0D-8BB4-9A8D4310898D}
O42 - Logiciel: Grand Theft Auto IV - (.Rockstar Games.) [HKLM][64Bits] -- {579BA58C-F33D-4970-9953-B94B43768AC3}
O42 - Logiciel: CryptoPrevent v6.1.0 - (.Foolish IT LLC.) [HKLM][64Bits] -- {5C5B24E7-4694-4049-A222-CCE7D3FAC63F}_is1
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: XSplit Broadcaster - (.SplitMediaLabs.) [HKLM][64Bits] -- {6459F338-FE52-4034-BCA7-74772DA0F24D}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Secure Download Manager - (.Kivuto Solutions Inc..) [HKLM][64Bits] -- {6DEC47B2-CAF8-484A-B482-851BB8C1657B}
O42 - Logiciel: Battlefield 3™ - (.Electronic Arts.) [HKLM][64Bits] -- {76285C16-411A-488A-BCE3-C83CB933D8CF}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM][64Bits] -- {80EE9168-BB59-4F87-BF1A-57C137EAF714}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: SUPER © v2014.build.61+Recorder (2014/06/19) version v2014.buil - (.eRightSoft.) [HKLM][64Bits] -- {8E2A18E2-96AF-8549-4DE7-5C06B75719A4}_is1
O42 - Logiciel: Microsoft Access database engine 2010 (French) - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00D1-040C-0000-0000000FF1CE}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {92606477-9366-4D3B-8AE3-6BE4B29727AB}
O42 - Logiciel: Project64 1.6 - (.Project64.) [HKLM][64Bits] -- {9559F7CA-5E34-4237-A2D9-D856464AD727}
O42 - Logiciel: SPORE™ - (.Electronic Arts.) [HKLM][64Bits] -- {9DF0196F-B6B8-4C3A-8790-DE42AA530101}
O42 - Logiciel: Frontline Systems Solver Engines V12.0 - (.Frontline Systems, Inc..) [HKLM][64Bits] -- {A2959D5B-79F2-4EB5-A74D-56CB807894C0}
O42 - Logiciel: FIFA 13 - (.Electronic Arts.) [HKLM][64Bits] -- {A29E18C2-7AB1-4b6b-848C-5D5E2C85F0C0}
O42 - Logiciel: Microsoft redistributable runtime DLLs VS2008 SP1(x86) - (.SAP AG.) [HKLM][64Bits] -- {A47A9101-6EB5-4314-BDA1-297880FBB908}
O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-F400-7760-000000000005}
O42 - Logiciel: Adobe Reader XI (11.0.11) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AB0000000001}
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {AFA1153A-F547-409B-B837-3A0D6C5A3FEC}
O42 - Logiciel: Game Character Hub version 2.0b - (.Sébastien Bini.) [HKLM][64Bits] -- {B22C5250-4C70-4B95-B834-87D50E3EC082}_is1
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}
O42 - Logiciel: Mumble 1.2.3 - (.Thorvald Natvig.) [HKLM][64Bits] -- {B4E343DD-BAAB-4D59-AD9C-DEA0AFE09DF1}
O42 - Logiciel: Adobe® Content Viewer - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BA731FF4-DA48-D1D7-2BF6-E155339D9A27}
O42 - Logiciel: Arena 14.00.00000 - (.Rockwell Automation, Inc..) [HKLM][64Bits] -- {BD78DE74-95DB-429D-A66F-6306BCEDA640}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: Les Sims™ 3 - (.Electronic Arts.) [HKLM][64Bits] -- {C05D8CDB-417D-4335-A38C-A0659EDFD6B8}
O42 - Logiciel: Adobe Story - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {C28DD992-5B7B-D195-6841-4EC57DF512BD}
O42 - Logiciel: Safari - (.Apple Inc..) [HKLM][64Bits] -- {C779648B-410E-4BBA-B75B-5815BCEFE71D}
O42 - Logiciel: MP3 Skype Recorder - (.Alexander Nikiforov.) [HKLM][64Bits] -- {CB606F47-7D0E-40DF-95BB-0E5413A1295F}
O42 - Logiciel: Microsoft redistributable runtime DLLs VS2005 SP1(x86) - (.SAP.) [HKLM][64Bits] -- {CEC7A786-A9C8-4EF7-BB59-6518E3B3C878}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: GTA San Andreas - (.Rockstar Games.) [HKLM][64Bits] -- {D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}
O42 - Logiciel: Grand Theft Auto V - (.Rockstar Games.) [HKLM][64Bits] -- {E01FA564-2094-4833-8F2F-1FFEC6AFCC46}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Far Cry 3 - (.Ubisoft.) [HKLM][64Bits] -- {E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}
O42 - Logiciel: Microsoft WSE 3.0 Runtime - (.Microsoft Corp..) [HKLM][64Bits] -- {E3E71D07-CD27-46CB-8448-16D4FB29AA13}
O42 - Logiciel: MorphVOX Junior - (.Screaming Bee.) [HKLM][64Bits] -- {E6C7380F-15DD-445E-BA02-B7A180BA0A5A}
O42 - Logiciel: Need for Speed™ Undercover - (.Electronic Arts.) [HKLM][64Bits] -- {E6D22FE1-AB5F-42CA-9480-6F70B96DDD88}
O42 - Logiciel: Adobe Creative Suite 6 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}
O42 - Logiciel: Warframe - (.Digital Extremes.) [HKLM][64Bits] -- {EAF4385F-5D8A-41F2-9A7C-DD8DA00AB8C0}
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM][64Bits] -- {F97E3841-CA9D-4964-9D64-26066241D26F}
O42 - Logiciel: Aeria Ignite - (.Aeria Games & Entertainment.) [HKLM][64Bits] -- {FE2D627E-D7E0-46EA-93A6-8583420285FA}
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox
O42 - Logiciel: GameMaker-Studio 1.1 - (.YoYo Games Ltd..) [HKCU][64Bits] -- GameMaker-Studio11
O42 - Logiciel: GameRanger - (.GameRanger Technologies.) [HKCU][64Bits] -- GameRanger
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome
O42 - Logiciel: PhotoFiltre 7 - (...) [HKCU][64Bits] -- PhotoFiltre 7
O42 - Logiciel: gamelauncher-ps2-live - (.Sony Online Entertainment.) [HKCU][64Bits] -- SOE-C:/Users/Public/Sony Online Entertainment/Installed Games/PlanetSide 2
O42 - Logiciel: applicationupdater - (.Sony Online Entertainment.) [HKCU][64Bits] -- SOE-C:/Users/Stanislas/AppData/Local/Sony Online Entertainment/ApplicationUpdater
O42 - Logiciel: PlanetSide 2 - (.Sony Online Entertainment.) [HKCU][64Bits] -- soe-PlanetSide 2
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: Détection de l'application Winamp - (.Nullsoft, Inc.) [HKCU][64Bits] -- Winamp Detect
O42 - Logiciel: Grand Theft Auto Vice City - (...) [HKCU][64Bits] -- {4B35F00C-E63D-40DC-9839-DF15A33EAC46}

---\\ HKCU & HKLM Software Keys (271) - 23s
HKLM\SOFTWARE\Wow6432Node\Activision
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Ankama
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\Battle.net
HKLM\SOFTWARE\Wow6432Node\Battlelog Web Plugins
HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\Bohemia Interactive Studio
HKLM\SOFTWARE\Wow6432Node\bulletstorm
HKLM\SOFTWARE\Wow6432Node\Bunndle
HKLM\SOFTWARE\Wow6432Node\BVRP Software
HKLM\SOFTWARE\Wow6432Node\C07ft5Y
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Crystal Decisions
HKLM\SOFTWARE\Wow6432Node\DICE
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft
HKLM\SOFTWARE\Wow6432Node\EA Games
HKLM\SOFTWARE\Wow6432Node\EA Sports
HKLM\SOFTWARE\Wow6432Node\EasyAntiCheat
HKLM\SOFTWARE\Wow6432Node\Elan
HKLM\SOFTWARE\Wow6432Node\Elcom
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\Enterbrain
HKLM\SOFTWARE\Wow6432Node\EPSON
HKLM\SOFTWARE\Wow6432Node\FNOnlineFB
HKLM\SOFTWARE\Wow6432Node\Focus Home Interactive
HKLM\SOFTWARE\Wow6432Node\Fraps
HKLM\SOFTWARE\Wow6432Node\Fraps2
HKLM\SOFTWARE\Wow6432Node\FrontlineSystems
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Hi-Rez Studios
HKLM\SOFTWARE\Wow6432Node\HiRez Studios
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LINDO Systems, Inc.
HKLM\SOFTWARE\Wow6432Node\LogMeIn Hamachi
HKLM\SOFTWARE\Wow6432Node\LOLReplay
HKLM\SOFTWARE\Wow6432Node\LucasArts
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Maxis
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Minnetonka Audio Software
HKLM\SOFTWARE\Wow6432Node\Mojang
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\My Company Name
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Novell
HKLM\SOFTWARE\Wow6432Node\Nullsoft
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OnLive
HKLM\SOFTWARE\Wow6432Node\Open Broadcaster Software
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\Oracle
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\Overwolf
HKLM\SOFTWARE\Wow6432Node\Pando Networks
HKLM\SOFTWARE\Wow6432Node\Paradox Interactive
HKLM\SOFTWARE\Wow6432Node\PDFCreator
HKLM\SOFTWARE\Wow6432Node\PocketSoft
HKLM\SOFTWARE\Wow6432Node\Portal
HKLM\SOFTWARE\Wow6432Node\RCEN
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Research In Motion
HKLM\SOFTWARE\Wow6432Node\Riot Games
HKLM\SOFTWARE\Wow6432Node\Rockstar Games
HKLM\SOFTWARE\Wow6432Node\Rockwell Software
HKLM\SOFTWARE\Wow6432Node\RPC2
HKLM\SOFTWARE\Wow6432Node\Runic Games
HKLM\SOFTWARE\Wow6432Node\SAP
HKLM\SOFTWARE\Wow6432Node\Screaming Bee
HKLM\SOFTWARE\Wow6432Node\SILVERRUN
HKLM\SOFTWARE\Wow6432Node\Simba
HKLM\SOFTWARE\Wow6432Node\Sims
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SplitMediaLabs
HKLM\SOFTWARE\Wow6432Node\Sports Interactive Ltd
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\Texas Instruments
HKLM\SOFTWARE\Wow6432Node\Turbine
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Unreal
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WinPcap
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\Even Balance
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\5tudio
HKCU\SOFTWARE\AC3Filter
HKCU\SOFTWARE\Acronis
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Aeria Games
HKCU\SOFTWARE\AhnLab
HKCU\SOFTWARE\Akamai
HKCU\SOFTWARE\Ankama
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Arkane
HKCU\SOFTWARE\Avast Software
HKCU\SOFTWARE\Battle.net
HKCU\SOFTWARE\Binary Fortress Software
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Bohemia Interactive Studio
HKCU\SOFTWARE\Bugsplat
HKCU\SOFTWARE\Burda
HKCU\SOFTWARE\CamStudioOpenSource for Nick
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\CDDB
HKCU\SOFTWARE\Ceiling
HKCU\SOFTWARE\Cheat Engine
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\ClassesB
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\CMP
HKCU\SOFTWARE\Code Industry
HKCU\SOFTWARE\Colossal Order
HKCU\SOFTWARE\Common
HKCU\SOFTWARE\CPUID
HKCU\SOFTWARE\Crystal Decisions
HKCU\SOFTWARE\Deep Silver
HKCU\SOFTWARE\Digital Extremes
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\doubleTwist Corporation
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\Druide informatique inc.
HKCU\SOFTWARE\DSS
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\e-academy Inc.
HKCU\SOFTWARE\EA Games
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Elcom
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\ElswordINT
HKCU\SOFTWARE\Emjysoft
HKCU\SOFTWARE\Emulators
HKCU\SOFTWARE\Enterbrain
HKCU\SOFTWARE\EPSON
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\Facepunch Studios
HKCU\SOFTWARE\Facepunch Studios LTD
HKCU\SOFTWARE\FatefulProductions
HKCU\SOFTWARE\FLEXlm License Manager
HKCU\SOFTWARE\FLT
HKCU\SOFTWARE\Flute
HKCU\SOFTWARE\Fraps3
HKCU\SOFTWARE\Freejam
HKCU\SOFTWARE\FrontlineSystems
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\Gaijin
HKCU\SOFTWARE\Game Maker
HKCU\SOFTWARE\GameRanger
HKCU\SOFTWARE\GameSpy
HKCU\SOFTWARE\GMStudio
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GOG.com
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HmelyoffLabs
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JaboSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Kivuto Solutions Inc.
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LINDO Systems, Inc.
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\LOLReplay
HKCU\SOFTWARE\LucasArts
HKCU\SOFTWARE\LunarianConcepts
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\Minnetonka Audio Software
HKCU\SOFTWARE\Mojang
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Mumble
HKCU\SOFTWARE\N64 Emulation
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NRage
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\NWI
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OnLive
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Overwolf
HKCU\SOFTWARE\PACE Anti-Piracy
HKCU\SOFTWARE\Pando Networks
HKCU\SOFTWARE\PCSX2
HKCU\SOFTWARE\PDFCreator
HKCU\SOFTWARE\PhotoFiltre 7
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PMEtool
HKCU\SOFTWARE\Protexis
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RAR Password Cracker
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Research In Motion
HKCU\SOFTWARE\Riot Games
HKCU\SOFTWARE\Rockstar Games
HKCU\SOFTWARE\Rockwell Software
HKCU\SOFTWARE\Runic Games
HKCU\SOFTWARE\SAP
HKCU\SOFTWARE\Screamer Radio
HKCU\SOFTWARE\Screaming Bee
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\Shining Rock Software LLC
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\SplitMediaLabs
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TeamSpeak 3 Client
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\The Creative Assembly
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\VirtualDub.org
HKCU\SOFTWARE\Vision Thing
HKCU\SOFTWARE\Vitalwerks
HKCU\SOFTWARE\Wargaming.net
HKCU\SOFTWARE\Wildbits
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wondershare
HKCU\SOFTWARE\Xilisoft
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Contents of the Common Files folders (O43) (535) - 28s
O43 - CFD: 2015/06/30 - 12:26:47 - [] D -- C:\Program Files (x86)\Activision
O43 - CFD: 2014/02/04 - 14:19:39 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2012/09/29 - 21:35:21 - [] D -- C:\Program Files (x86)\Adobe Story
O43 - CFD: 2012/12/12 - 19:46:32 - [] D -- C:\Program Files (x86)\Aeria Games
O43 - CFD: 2014/11/21 - 13:07:51 - [0] D -- C:\Program Files (x86)\alaplaya
O43 - CFD: 2012/03/28 - 20:27:26 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2012/08/31 - 13:31:02 - [] D -- C:\Program Files (x86)\AviSynth 2.5
O43 - CFD: 2012/06/19 - 11:37:09 - [] D -- C:\Program Files (x86)\AviSynth 2.6
O43 - CFD: 2015/06/23 - 10:45:05 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 2015/03/16 - 12:58:50 - [] D -- C:\Program Files (x86)\Battlelog Web Plugins
O43 - CFD: 2014/11/21 - 13:00:47 - [0] D -- C:\Program Files (x86)\Bethesda Softworks
O43 - CFD: 2015/04/10 - 17:05:20 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 2015/04/15 - 16:24:06 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2015/06/25 - 22:03:54 - [] D -- C:\Program Files (x86)\Cheat Engine 6.3
O43 - CFD: 2015/01/12 - 13:54:19 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2014/03/31 - 11:04:08 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2013/01/09 - 03:59:54 - [] D -- C:\Program Files (x86)\Diablo II
O43 - CFD: 2012/04/19 - 03:15:20 - [] D -- C:\Program Files (x86)\Diablo II Lord of Destruction (v1.13c)
O43 - CFD: 2015/04/18 - 18:20:13 - [] D -- C:\Program Files (x86)\DLLEscort
O43 - CFD: 2014/07/11 - 21:48:49 - [] D -- C:\Program Files (x86)\doubleTwist
O43 - CFD: 2012/07/24 - 21:20:18 - [] D -- C:\Program Files (x86)\Druide
O43 - CFD: 2014/07/06 - 18:31:11 - [] D -- C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 2014/11/18 - 18:26:07 - [] D -- C:\Program Files (x86)\EA Games
O43 - CFD: 2012/10/08 - 02:52:56 - [0] D -- C:\Program Files (x86)\ElcomSoft
O43 - CFD: 2014/11/18 - 18:23:10 - [0] D -- C:\Program Files (x86)\Electronic Arts
O43 - CFD: 2012/08/26 - 11:14:58 - [] D -- C:\Program Files (x86)\Enterbrain
O43 - CFD: 2012/04/13 - 16:35:02 - [] D -- C:\Program Files (x86)\epson
O43 - CFD: 2014/06/24 - 18:13:37 - [] D -- C:\Program Files (x86)\eRightSoft
O43 - CFD: 2014/07/24 - 10:38:32 - [] D -- C:\Program Files (x86)\Foolish IT
O43 - CFD: 2013/02/06 - 03:47:32 - [] D -- C:\Program Files (x86)\Fraps
O43 - CFD: 2015/02/14 - 20:48:02 - [] D -- C:\Program Files (x86)\Free Codec Pack
O43 - CFD: 2013/03/22 - 19:21:11 - [] D -- C:\Program Files (x86)\Frontline Systems
O43 - CFD: 2012/05/05 - 22:49:47 - [] D -- C:\Program Files (x86)\GameSpy Arcade
O43 - CFD: 2013/12/11 - 13:34:52 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2013/11/04 - 12:22:12 - [] D -- C:\Program Files (x86)\Hasard
O43 - CFD: 2015/06/23 - 10:47:48 - [] D -- C:\Program Files (x86)\Hearthstone
O43 - CFD: 2015/06/02 - 18:21:36 - [] D -- C:\Program Files (x86)\Heroes of the Storm
O43 - CFD: 2015/04/23 - 16:01:28 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/02/12 - 14:32:37 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2014/04/16 - 18:46:31 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 2015/04/15 - 16:31:40 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2012/08/22 - 23:37:14 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/03/31 - 09:57:34 - [] D -- C:\Program Files (x86)\LogMeIn Hamachi
O43 - CFD: 2014/07/21 - 14:14:34 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/07/21 - 14:14:32 - [0] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 2014/11/18 - 18:22:33 - [0] D -- C:\Program Files (x86)\Maxis
O43 - CFD: 2012/04/01 - 21:43:36 - [] D -- C:\Program Files (x86)\McAfee Security Scan
O43 - CFD: 2012/11/20 - 04:13:07 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2012/03/28 - 22:37:17 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 2014/11/18 - 22:57:40 - [] D -- C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 2015/05/05 - 16:45:14 - [] D -- C:\Program Files (x86)\Microsoft Chart Controls
O43 - CFD: 2014/11/18 - 18:22:47 - [] D -- C:\Program Files (x86)\Microsoft Games
O43 - CFD: 2015/01/12 - 13:55:41 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 2012/04/14 - 19:18:27 - [] D -- C:\Program Files (x86)\Microsoft LifeCam
O43 - CFD: 2014/06/21 - 08:37:49 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2014/11/18 - 11:33:22 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2013/10/30 - 16:58:52 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2013/10/30 - 16:59:17 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 2014/09/30 - 14:20:00 - [] D -- C:\Program Files (x86)\Microsoft WSE
O43 - CFD: 2014/07/27 - 08:34:53 - [] D -- C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 2012/04/16 - 15:19:58 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/06/02 - 18:18:07 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/06/19 - 13:04:40 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/06/19 - 04:07:36 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2012/09/18 - 20:23:44 - [] D -- C:\Program Files (x86)\MP3 Skype Recorder
O43 - CFD: 2009/07/14 - 01:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/04/18 - 14:01:22 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2014/04/02 - 15:46:45 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2012/03/31 - 21:16:28 - [] D -- C:\Program Files (x86)\Mumble
O43 - CFD: 2012/09/29 - 21:34:27 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 2013/01/26 - 18:50:58 - [] D -- C:\Program Files (x86)\No-IP
O43 - CFD: 2013/02/06 - 05:04:40 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2015/05/02 - 02:07:19 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 2015/04/20 - 21:12:46 - [] D -- C:\Program Files (x86)\OBS
O43 - CFD: 2012/08/08 - 22:05:04 - [] D -- C:\Program Files (x86)\OnLive
O43 - CFD: 2012/10/07 - 23:30:57 - [] D -- C:\Program Files (x86)\OpenAL
O43 - CFD: 2015/06/30 - 13:04:12 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 2012/06/21 - 23:13:25 - [] D -- C:\Program Files (x86)\Oracle
O43 - CFD: 2015/06/04 - 18:36:18 - [] D -- C:\Program Files (x86)\Origin
O43 - CFD: 2014/05/31 - 15:49:18 - [] D -- C:\Program Files (x86)\Origin Games
O43 - CFD: 2013/11/18 - 07:10:45 - [] D -- C:\Program Files (x86)\Overwolf
O43 - CFD: 2014/04/22 - 05:57:07 - [0] D -- C:\Program Files (x86)\Pando Networks
O43 - CFD: 2015/02/17 - 20:11:47 - [0] D -- C:\Program Files (x86)\Paradox Interactive
O43 - CFD: 2012/05/26 - 20:38:27 - [] D -- C:\Program Files (x86)\PCSX2 0.9.8
O43 - CFD: 2015/06/25 - 11:51:15 - [] D -- C:\Program Files (x86)\PCSX2 1.2.1
O43 - CFD: 2013/06/16 - 16:28:01 - [] D -- C:\Program Files (x86)\PDFCreator
O43 - CFD: 2012/08/27 - 10:20:33 - [] D -- C:\Program Files (x86)\PhotoFiltre 7
O43 - CFD: 2013/03/31 - 18:39:37 - [] D -- C:\Program Files (x86)\Portal
O43 - CFD: 2012/04/07 - 03:57:14 - [] D -- C:\Program Files (x86)\Project64 1.6
O43 - CFD: 2015/04/15 - 16:25:42 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2013/11/16 - 21:35:38 - [] D -- C:\Program Files (x86)\RaidCall
O43 - CFD: 2012/10/08 - 02:43:15 - [] D -- C:\Program Files (x86)\RAR Password Cracker
O43 - CFD: 2012/02/03 - 18:49:35 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 - 01:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/06/10 - 23:39:13 - [] D -- C:\Program Files (x86)\Rockstar Games
O43 - CFD: 2014/02/14 - 07:27:47 - [] D -- C:\Program Files (x86)\Rockwell Software
O43 - CFD: 2014/12/02 - 21:40:12 - [] D -- C:\Program Files (x86)\RomStation
O43 - CFD: 2012/08/25 - 20:42:09 - [] D -- C:\Program Files (x86)\RPG Maker VX
O43 - CFD: 2012/06/29 - 00:10:31 - [] D -- C:\Program Files (x86)\Safari
O43 - CFD: 2014/04/02 - 15:49:10 - [] D -- C:\Program Files (x86)\SAP
O43 - CFD: 2014/07/13 - 12:45:58 - [] D -- C:\Program Files (x86)\Sharepod
O43 - CFD: 2015/05/27 - 22:48:57 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2014/05/05 - 09:41:07 - [] D -- C:\Program Files (x86)\SplitMediaLabs
O43 - CFD: 2015/06/01 - 17:26:55 - [] D -- C:\Program Files (x86)\Spotify
O43 - CFD: 2015/06/30 - 13:18:40 - [] D -- C:\Program Files (x86)\Steam
O43 - CFD: 2015/03/20 - 00:14:14 - [] D -- C:\Program Files (x86)\SumatraPDF
O43 - CFD: 2015/06/29 - 10:42:42 - [] D -- C:\Program Files (x86)\TeamViewer
O43 - CFD: 2012/02/03 - 18:50:03 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2012/04/05 - 01:14:07 - [] D -- C:\Program Files (x86)\TI Education
O43 - CFD: 2014/06/24 - 12:56:15 - [] D -- C:\Program Files (x86)\TubeMaster++
O43 - CFD: 2014/06/24 - 17:41:16 - [] D -- C:\Program Files (x86)\Tunatic
O43 - CFD: 2013/01/31 - 06:18:40 - [] D -- C:\Program Files (x86)\TunnelBear
O43 - CFD: 2014/11/18 - 18:35:01 - [] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 2009/07/14 - 00:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2013/12/16 - 07:22:26 - [] D -- C:\Program Files (x86)\uTorrent
O43 - CFD: 2012/03/28 - 13:15:23 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2013/01/29 - 07:56:54 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2014/11/25 - 13:20:59 - [] D -- C:\Program Files (x86)\Wakfu
O43 - CFD: 2014/07/29 - 01:24:46 - [] D -- C:\Program Files (x86)\Winamp
O43 - CFD: 2014/11/18 - 11:39:33 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2012/07/29 - 17:06:09 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2010/11/21 - 03:06:51 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2014/11/18 - 11:40:02 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 - 01:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2010/11/21 - 03:06:51 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010/11/20 - 23:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2010/11/21 - 03:06:51 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2011/11/07 - 20:42:50 - [] D -- C:\Program Files (x86)\Windows Virtual PC
O43 - CFD: 2013/01/12 - 02:29:18 - [] D -- C:\Program Files (x86)\WinPcap
O43 - CFD: 2012/03/28 - 13:15:35 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2013/04/18 - 12:02:08 - [] D -- C:\Program Files (x86)\XBlast TNT
O43 - CFD: 2014/03/22 - 07:17:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/04/09 - 09:29:32 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
O43 - CFD: 2012/05/06 - 01:49:24 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2012/09/29 - 21:38:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
O43 - CFD: 2013/01/30 - 18:04:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
O43 - CFD: 2012/12/22 - 07:29:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
O43 - CFD: 2014/11/18 - 17:47:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 2012/11/12 - 02:56:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 2012/05/06 - 00:07:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArenaWars
O43 - CFD: 2014/06/01 - 07:59:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 2014/11/22 - 19:58:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
O43 - CFD: 2014/02/26 - 08:31:53 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Bad Company 2
O43 - CFD: 2013/06/29 - 11:10:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
O43 - CFD: 2015/04/10 - 17:05:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 2012/10/07 - 23:30:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
O43 - CFD: 2014/04/02 - 15:48:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Business Explorer
O43 - CFD: 2015/03/23 - 12:19:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio 2.7
O43 - CFD: 2012/04/04 - 21:20:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2014/05/05 - 18:12:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.3
O43 - CFD: 2015/03/21 - 03:34:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cities Skylines
O43 - CFD: 2015/03/17 - 23:27:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2014/03/31 - 11:05:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2014/10/05 - 19:02:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
O43 - CFD: 2015/04/18 - 18:19:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DLL Escort 2014
O43 - CFD: 2015/02/13 - 02:22:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Domination
O43 - CFD: 2014/07/11 - 21:48:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\doubleTwist
O43 - CFD: 2013/11/01 - 22:19:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Duel of Champions Launcher
O43 - CFD: 2015/02/14 - 20:48:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 2012/05/05 - 20:40:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
O43 - CFD: 2014/09/30 - 14:19:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
O43 - CFD: 2012/05/08 - 01:24:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 2013/04/25 - 14:43:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\F1 2012
O43 - CFD: 2012/10/01 - 01:53:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Final Fantasy VII
O43 - CFD: 2012/03/29 - 04:00:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Focus Home Interactive
O43 - CFD: 2014/07/24 - 10:38:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foolish IT
O43 - CFD: 2013/03/22 - 19:21:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frontline Systems
O43 - CFD: 2015/06/29 - 21:48:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Character Hub
O43 - CFD: 2015/01/12 - 13:55:45 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2012/05/05 - 22:49:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
O43 - CFD: 2013/12/11 - 13:34:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 2013/11/04 - 12:22:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hasard
O43 - CFD: 2014/06/01 - 08:03:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 2015/04/14 - 12:33:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
O43 - CFD: 2014/12/06 - 11:58:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
O43 - CFD: 2015/04/15 - 16:26:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
O43 - CFD: 2015/04/15 - 16:32:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2015/03/31 - 09:57:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
O43 - CFD: 2015/04/23 - 16:01:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts
O43 - CFD: 2009/07/14 - 00:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/06/03 - 19:21:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2012/10/15 - 17:48:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Master PDF Editor
O43 - CFD: 2015/01/18 - 22:16:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxis
O43 - CFD: 2012/04/01 - 21:43:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 2013/03/13 - 20:43:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
O43 - CFD: 2015/01/12 - 13:55:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
O43 - CFD: 2012/04/14 - 19:18:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft LifeCam
O43 - CFD: 2015/03/24 - 14:29:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2014/11/17 - 23:02:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/02/06 - 17:50:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
O43 - CFD: 2014/11/15 - 23:59:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MKV Player
O43 - CFD: 2012/03/28 - 13:17:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
O43 - CFD: 2012/03/31 - 21:16:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
O43 - CFD: 2013/01/16 - 01:28:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
O43 - CFD: 2013/02/06 - 05:04:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2015/05/02 - 02:06:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 2012/08/08 - 22:05:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OnLive
O43 - CFD: 2014/02/24 - 12:01:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
O43 - CFD: 2015/06/24 - 22:20:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
O43 - CFD: 2012/10/15 - 17:51:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 2012/08/27 - 10:20:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 2013/03/31 - 18:39:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Portal
O43 - CFD: 2015/04/15 - 16:25:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2013/11/16 - 21:34:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RaidCall
O43 - CFD: 2012/04/20 - 20:15:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Cracker
O43 - CFD: 2012/12/22 - 15:53:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razor 1911
O43 - CFD: 2012/03/28 - 19:52:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
O43 - CFD: 2015/04/23 - 17:46:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
O43 - CFD: 2014/02/14 - 07:28:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockwell Software
O43 - CFD: 2013/08/24 - 15:58:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation
O43 - CFD: 2012/08/25 - 20:42:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RPG Maker VX
O43 - CFD: 2012/08/26 - 11:15:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RPG MAKER VX Ace
O43 - CFD: 2014/04/02 - 15:49:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAP Front End
O43 - CFD: 2015/02/02 - 17:38:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Screaming Bee
O43 - CFD: 2014/10/04 - 05:47:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2015/06/30 - 12:58:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2012/03/30 - 19:42:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2014/06/24 - 18:13:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © - by eRightSoft
O43 - CFD: 2010/11/21 - 03:16:41 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2012/04/19 - 20:44:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 2012/04/05 - 02:24:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TI Tools
O43 - CFD: 2013/01/30 - 15:49:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear
O43 - CFD: 2014/06/28 - 09:24:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2013/01/29 - 07:56:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual DJ
O43 - CFD: 2013/02/28 - 16:33:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wakfu
O43 - CFD: 2014/07/13 - 17:02:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
O43 - CFD: 2012/07/29 - 17:07:35 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2011/11/07 - 20:43:45 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
O43 - CFD: 2013/01/12 - 02:29:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 2012/03/28 - 13:15:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2014/05/05 - 09:50:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
O43 - CFD: 2015/03/21 - 03:35:07 - [] D -- C:\ProgramData\.mono
O43 - CFD: 2015/04/15 - 16:31:25 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2014/02/04 - 13:49:06 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/11/18 - 17:46:32 - [] D -- C:\ProgramData\Aeria Games
O43 - CFD: 2012/12/22 - 07:20:52 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 2015/04/15 - 16:23:15 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2012/03/28 - 20:27:57 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 - 01:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/10/03 - 05:52:19 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2014/06/01 - 07:53:26 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 2014/10/05 - 19:02:04 - [] D -- C:\ProgramData\Binary Fortress Software
O43 - CFD: 2015/04/14 - 12:36:16 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 2015/04/10 - 17:05:16 - [0] D -- C:\ProgramData\BlueStacks
O43 - CFD: 2015/04/22 - 09:59:23 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 2013/04/25 - 14:48:28 - [] D -- C:\ProgramData\Codemasters
O43 - CFD: 2014/03/31 - 11:05:22 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2009/07/14 - 01:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2015/04/18 - 18:19:32 - [] D -- C:\ProgramData\dllescort
O43 - CFD: 2009/07/14 - 01:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/04/15 - 16:32:17 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 2014/11/22 - 22:43:16 - [] D -- C:\ProgramData\EA Core
O43 - CFD: 2014/11/23 - 00:49:49 - [] D -- C:\ProgramData\EA Logs
O43 - CFD: 2014/11/22 - 22:43:18 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 2012/05/08 - 01:24:57 - [] D -- C:\ProgramData\EPSON
O43 - CFD: 2009/07/14 - 01:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/07/24 - 10:38:33 - [] D -- C:\ProgramData\Foolish IT
O43 - CFD: 2013/03/22 - 19:16:24 - [] D -- C:\ProgramData\Frontline Systems
O43 - CFD: 2014/12/06 - 11:58:01 - [] D -- C:\ProgramData\Hi-Rez Studios
O43 - CFD: 2014/04/16 - 18:47:10 - [] D -- C:\ProgramData\IObit
O43 - CFD: 2013/10/02 - 05:29:00 - [] D -- C:\ProgramData\LogMeIn
O43 - CFD: 2014/07/21 - 14:14:32 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2012/03/29 - 15:32:36 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2012/03/29 - 15:32:36 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 2014/11/18 - 00:50:44 - [] ASD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/03/24 - 14:30:26 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2012/05/09 - 20:52:13 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/07/01 - 04:05:01 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2014/09/30 - 09:21:42 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 2013/09/30 - 10:57:01 - [] D -- C:\ProgramData\Orbit
O43 - CFD: 2015/06/11 - 14:44:58 - [] D -- C:\ProgramData\Origin
O43 - CFD: 2013/11/17 - 11:02:26 - [] D -- C:\ProgramData\Overwolf
O43 - CFD: 2012/09/29 - 21:39:30 - [] D -- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 2015/06/19 - 14:49:52 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2014/12/03 - 07:04:16 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 2015/06/30 - 12:47:14 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2013/03/22 - 19:26:51 - [] AD -- C:\ProgramData\Reprise
O43 - CFD: 2014/06/07 - 11:36:27 - [] D -- C:\ProgramData\REVOLT
O43 - CFD: 2014/07/21 - 00:48:24 - [] D -- C:\ProgramData\Riot Games
O43 - CFD: 2014/02/14 - 07:58:29 - [] D -- C:\ProgramData\Rockwell Automation
O43 - CFD: 2014/02/14 - 07:28:42 - [] D -- C:\ProgramData\Rockwell Software
O43 - CFD: 2012/04/01 - 15:55:17 - [] D -- C:\ProgramData\SafeNet Sentinel
O43 - CFD: 2014/04/02 - 15:49:12 - [] D -- C:\ProgramData\SAP
O43 - CFD: 2015/06/28 - 14:41:49 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2014/05/05 - 09:41:07 - [] D -- C:\ProgramData\SplitMediaLabs
O43 - CFD: 2009/07/14 - 01:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/12/16 - 07:30:05 - [] D -- C:\ProgramData\Steam
O43 - CFD: 2012/03/29 - 14:11:44 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2009/07/14 - 01:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/04/05 - 01:14:44 - [] D -- C:\ProgramData\TI-Nspire
O43 - CFD: 2012/04/01 - 15:58:04 - [] D -- C:\ProgramData\TI-Nspire CAS
O43 - CFD: 2012/10/31 - 14:33:11 - [] D -- C:\ProgramData\Ubisoft
O43 - CFD: 2014/07/25 - 17:46:01 - [] D -- C:\ProgramData\WarThunder
O43 - CFD: 2014/07/13 - 16:01:23 - [] D -- C:\ProgramData\WindSolutions
O43 - CFD: 2014/04/13 - 10:02:11 - [0] D -- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 2012/03/28 - 20:28:08 - [] D -- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
O43 - CFD: 2014/02/04 - 14:19:40 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/02/04 - 14:13:13 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2015/04/15 - 16:31:23 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2015/06/27 - 23:03:36 - [] D -- C:\Program Files (x86)\Common Files\BattlEye
O43 - CFD: 2014/07/29 - 13:34:48 - [] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 2014/02/14 - 07:27:51 - [] D -- C:\Program Files (x86)\Common Files\Crystal Decisions
O43 - CFD: 2014/11/17 - 23:42:44 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2015/02/14 - 20:48:12 - [] D -- C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 2014/11/22 - 19:58:22 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 2012/08/26 - 11:15:14 - [] D -- C:\Program Files (x86)\Common Files\Enterbrain
O43 - CFD: 2012/09/30 - 20:07:16 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2012/11/17 - 21:48:26 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2014/11/18 - 00:29:33 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2013/11/18 - 07:10:44 - [] D -- C:\Program Files (x86)\Common Files\Overwolf
O43 - CFD: 2013/05/10 - 17:38:09 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2014/04/02 - 15:47:03 - [] D -- C:\Program Files (x86)\Common Files\SAP Shared
O43 - CFD: 2009/07/13 - 23:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/09/07 - 08:40:47 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2012/09/29 - 21:34:27 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 2009/07/13 - 23:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2014/10/05 - 04:49:54 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2012/09/30 - 19:42:39 - [0] D -- C:\Program Files (x86)\Common Files\SWF Studio
O43 - CFD: 2012/03/30 - 06:24:28 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2012/04/05 - 01:15:06 - [] D -- C:\Program Files (x86)\Common Files\TI Shared
O43 - CFD: 2011/11/07 - 20:25:16 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2015/01/12 - 13:54:19 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 2014/07/12 - 13:04:48 - [] D -- C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 2015/05/21 - 00:45:41 - [] D -- C:\Users\Stanislas\AppData\Roaming\.minecraft
O43 - CFD: 2015/03/19 - 12:46:05 - [] D -- C:\Users\Stanislas\AppData\Roaming\.mono
O43 - CFD: 2013/09/02 - 20:30:47 - [] D -- C:\Users\Stanislas\AppData\Roaming\3909 LLC
O43 - CFD: 2013/12/19 - 20:08:14 - [] D -- C:\Users\Stanislas\AppData\Roaming\8BitMMO
O43 - CFD: 2014/04/09 - 07:01:16 - [] D -- C:\Users\Stanislas\AppData\Roaming\Acronis
O43 - CFD: 2012/12/22 - 07:36:49 - [] D -- C:\Users\Stanislas\AppData\Roaming\Adobe
O43 - CFD: 2012/12/21 - 05:57:05 - [] D -- C:\Users\Stanislas\AppData\Roaming\Apple Computer
O43 - CFD: 2014/10/05 - 04:52:38 - [] D -- C:\Users\Stanislas\AppData\Roaming\AVAST Software
O43 - CFD: 2014/09/15 - 11:28:22 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Awesomium
O43 - CFD: 2014/06/01 - 08:03:05 - [] D -- C:\Users\Stanislas\AppData\Roaming\Battle.net
O43 - CFD: 2014/09/10 - 07:17:22 - [0] HD -- C:\Users\Stanislas\AppData\Roaming\C6B66473
O43 - CFD: 2015/03/21 - 03:35:07 - [] D -- C:\Users\Stanislas\AppData\Roaming\Colossal Order
O43 - CFD: 2012/09/30 - 23:28:36 - [] D -- C:\Users\Stanislas\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 2014/10/05 - 19:02:14 - [] SHD -- C:\Users\Stanislas\AppData\Roaming\Common
O43 - CFD: 2015/06/29 - 21:09:44 - [] D -- C:\Users\Stanislas\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2014/10/05 - 19:02:12 - [0] D -- C:\Users\Stanislas\AppData\Roaming\DisplayFusion
O43 - CFD: 2015/05/12 - 17:14:08 - [] D -- C:\Users\Stanislas\AppData\Roaming\Dropbox
O43 - CFD: 2012/07/24 - 21:10:50 - [] D -- C:\Users\Stanislas\AppData\Roaming\Druide
O43 - CFD: 2015/02/14 - 20:48:31 - [] D -- C:\Users\Stanislas\AppData\Roaming\DVDVideoSoft
O43 - CFD: 2012/10/24 - 18:29:33 - [] D -- C:\Users\Stanislas\AppData\Roaming\e-academy Inc
O43 - CFD: 2012/08/26 - 11:17:22 - [] D -- C:\Users\Stanislas\AppData\Roaming\Enterbrain
O43 - CFD: 2012/11/09 - 00:34:31 - [] D -- C:\Users\Stanislas\AppData\Roaming\EPSON
O43 - CFD: 2013/03/14 - 01:06:17 - [] D -- C:\Users\Stanislas\AppData\Roaming\Firefly Studios
O43 - CFD: 2013/08/14 - 18:07:05 - [] D -- C:\Users\Stanislas\AppData\Roaming\GameMaker-Studio
O43 - CFD: 2015/04/23 - 15:52:39 - [] D -- C:\Users\Stanislas\AppData\Roaming\GameRanger
O43 - CFD: 2012/03/28 - 16:09:28 - [] D -- C:\Users\Stanislas\AppData\Roaming\Identities
O43 - CFD: 2013/03/04 - 23:56:21 - [] D -- C:\Users\Stanislas\AppData\Roaming\InstallShield Installation Information
O43 - CFD: 2014/04/13 - 17:25:50 - [] D -- C:\Users\Stanislas\AppData\Roaming\IObit
O43 - CFD: 2015/02/06 - 17:51:40 - [] D -- C:\Users\Stanislas\AppData\Roaming\java
O43 - CFD: 2012/03/30 - 23:08:16 - [] D -- C:\Users\Stanislas\AppData\Roaming\Leadertech
O43 - CFD: 2012/03/28 - 21:02:16 - [] D -- C:\Users\Stanislas\AppData\Roaming\LolClient
O43 - CFD: 2012/05/24 - 21:59:43 - [] D -- C:\Users\Stanislas\AppData\Roaming\LolClient2
O43 - CFD: 2012/03/28 - 21:02:15 - [] D -- C:\Users\Stanislas\AppData\Roaming\Macromedia
O43 - CFD: 2014/07/21 - 14:14:35 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Malwarebytes
O43 - CFD: 2010/11/21 - 03:16:41 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/03/24 - 15:06:39 - [] SD -- C:\Users\Stanislas\AppData\Roaming\Microsoft
O43 - CFD: 2014/04/22 - 06:00:20 - [] D -- C:\Users\Stanislas\AppData\Roaming\Mozilla
O43 - CFD: 2012/09/18 - 20:23:51 - [] D -- C:\Users\Stanislas\AppData\Roaming\MP3SkypeRecorder
O43 - CFD: 2015/06/30 - 11:25:17 - [] D -- C:\Users\Stanislas\AppData\Roaming\Mumble
O43 - CFD: 2014/09/09 - 10:44:41 - [] D -- C:\Users\Stanislas\AppData\Roaming\Naydy
O43 - CFD: 2012/07/11 - 01:29:03 - [] D -- C:\Users\Stanislas\AppData\Roaming\Need for Speed World
O43 - CFD: 2013/02/06 - 05:09:52 - [] D -- C:\Users\Stanislas\AppData\Roaming\Notepad++
O43 - CFD: 2012/09/29 - 21:39:21 - [] D -- C:\Users\Stanislas\AppData\Roaming\NVIDIA
O43 - CFD: 2015/06/20 - 19:37:27 - [] D -- C:\Users\Stanislas\AppData\Roaming\OBS
O43 - CFD: 2012/08/08 - 22:05:04 - [] D -- C:\Users\Stanislas\AppData\Roaming\OnLive App
O43 - CFD: 2015/06/30 - 12:59:30 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Opera Software
O43 - CFD: 2014/02/24 - 15:22:55 - [] D -- C:\Users\Stanislas\AppData\Roaming\Origin
O43 - CFD: 2012/09/29 - 21:39:30 - [] D -- C:\Users\Stanislas\AppData\Roaming\PACE Anti-Piracy
O43 - CFD: 2012/08/27 - 10:38:24 - [] D -- C:\Users\Stanislas\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 2013/11/16 - 21:34:49 - [] D -- C:\Users\Stanislas\AppData\Roaming\raidcall
O43 - CFD: 2012/09/30 - 20:19:18 - [] D -- C:\Users\Stanislas\AppData\Roaming\ResourceCentral.E6E1B28A311BC518DB6C6883EA3757FDE0E90ADC.1
O43 - CFD: 2014/02/14 - 07:58:32 - [] D -- C:\Users\Stanislas\AppData\Roaming\Rockwell Software
O43 - CFD: 2014/04/02 - 15:57:13 - [] D -- C:\Users\Stanislas\AppData\Roaming\SAP
O43 - CFD: 2015/02/02 - 17:39:18 - [] D -- C:\Users\Stanislas\AppData\Roaming\Screaming Bee
O43 - CFD: 2012/03/29 - 03:37:31 - [] RHD -- C:\Users\Stanislas\AppData\Roaming\SecuROM
O43 - CFD: 2015/06/08 - 04:31:38 - [] D -- C:\Users\Stanislas\AppData\Roaming\Shooter
O43 - CFD: 2015/06/30 - 19:48:54 - [] D -- C:\Users\Stanislas\AppData\Roaming\Skype
O43 - CFD: 2014/05/05 - 09:40:14 - [] D -- C:\Users\Stanislas\AppData\Roaming\SplitMediaLabs
O43 - CFD: 2012/04/20 - 03:38:23 - [] D -- C:\Users\Stanislas\AppData\Roaming\SPORE
O43 - CFD: 2013/10/23 - 11:10:15 - [] D -- C:\Users\Stanislas\AppData\Roaming\Sports Interactive
O43 - CFD: 2015/06/23 - 01:41:43 - [] D -- C:\Users\Stanislas\AppData\Roaming\Spotify
O43 - CFD: 2012/09/29 - 21:40:13 - [] D -- C:\Users\Stanislas\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2015/03/21 - 03:35:05 - [] D -- C:\Users\Stanislas\AppData\Roaming\Steam
O43 - CFD: 2014/02/06 - 16:37:30 - [] D -- C:\Users\Stanislas\AppData\Roaming\StunlockStudios
O43 - CFD: 2015/03/20 - 00:14:28 - [] D -- C:\Users\Stanislas\AppData\Roaming\SumatraPDF
O43 - CFD: 2015/05/12 - 05:50:41 - [] D -- C:\Users\Stanislas\AppData\Roaming\TeamViewer
O43 - CFD: 2013/02/27 - 23:36:33 - [] D -- C:\Users\Stanislas\AppData\Roaming\Teeworlds
O43 - CFD: 2012/04/05 - 01:15:38 - [] D -- C:\Users\Stanislas\AppData\Roaming\Texas Instruments
O43 - CFD: 2012/09/25 - 01:23:36 - [] D -- C:\Users\Stanislas\AppData\Roaming\The Creative Assembly
O43 - CFD: 2012/11/10 - 22:51:13 - [] D -- C:\Users\Stanislas\AppData\Roaming\Thinstall
O43 - CFD: 2012/03/28 - 19:18:51 - [] D -- C:\Users\Stanislas\AppData\Roaming\Thunderbird
O43 - CFD: 2012/04/01 - 16:08:17 - [0] D -- C:\Users\Stanislas\AppData\Roaming\TI-Nspire
O43 - CFD: 2013/05/10 - 17:39:48 - [] D -- C:\Users\Stanislas\AppData\Roaming\Todae
O43 - CFD: 2015/06/30 - 14:22:48 - [] D -- C:\Users\Stanislas\AppData\Roaming\TS3Client
O43 - CFD: 2013/11/01 - 22:19:31 - [] D -- C:\Users\Stanislas\AppData\Roaming\Ubisoft
O43 - CFD: 2014/09/18 - 11:59:11 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Ugnie
O43 - CFD: 2015/03/29 - 14:13:37 - [] D -- C:\Users\Stanislas\AppData\Roaming\Unity
O43 - CFD: 2015/06/29 - 21:09:39 - [] D -- C:\Users\Stanislas\AppData\Roaming\uTorrent
O43 - CFD: 2012/07/26 - 01:11:17 - [] D -- C:\Users\Stanislas\AppData\Roaming\VirtuaWin
O43 - CFD: 2015/06/30 - 15:47:22 - [] D -- C:\Users\Stanislas\AppData\Roaming\vlc
O43 - CFD: 2012/08/19 - 01:57:45 - [] D -- C:\Users\Stanislas\AppData\Roaming\wargaming.net
O43 - CFD: 2014/10/15 - 12:32:35 - [] D -- C:\Users\Stanislas\AppData\Roaming\Winamp
O43 - CFD: 2014/07/13 - 16:15:11 - [] D -- C:\Users\Stanislas\AppData\Roaming\WindSolutions
O43 - CFD: 2012/03/29 - 03:38:35 - [0] D -- C:\Users\Stanislas\AppData\Roaming\WinRAR
O43 - CFD: 2014/07/12 - 13:04:29 - [] D -- C:\Users\Stanislas\AppData\Roaming\Wondershare
O43 - CFD: 2013/11/01 - 22:19:53 - [] SHD -- C:\Users\Stanislas\AppData\Roaming\wyUpdate AU
O43 - CFD: 2014/07/12 - 05:23:27 - [] D -- C:\Users\Stanislas\AppData\Roaming\Xilisoft
O43 - CFD: 2015/07/01 - 04:09:31 - [] D -- C:\Users\Stanislas\AppData\Roaming\ZHP
O43 - CFD: 2014/06/26 - 11:58:12 - [] D -- C:\Users\Stanislas\AppData\Local\4921
O43 - CFD: 2015/07/01 - 02:00:16 - [] D -- C:\Users\Stanislas\AppData\Local\Adobe
O43 - CFD: 2014/11/18 - 17:47:39 - [] D -- C:\Users\Stanislas\AppData\Local\Aeria Games
O43 - CFD: 2015/02/16 - 00:54:43 - [] D -- C:\Users\Stanislas\AppData\Local\Akamai
O43 - CFD: 2012/09/18 - 20:23:51 - [] D -- C:\Users\Stanislas\AppData\Local\Alexander_Nikiforov
O43 - CFD: 2014/10/04 - 18:41:05 - [] D -- C:\Users\Stanislas\AppData\Local\Ankama
O43 - CFD: 2012/03/28 - 20:27:27 - [] D -- C:\Users\Stanislas\AppData\Local\Apple
O43 - CFD: 2012/06/18 - 22:37:28 - [] D -- C:\Users\Stanislas\AppData\Local\Apple Computer
O43 - CFD: 2012/03/28 - 16:09:20 - [0] SHD -- C:\Users\Stanislas\AppData\Local\Application Data
O43 - CFD: 2013/07/19 - 11:32:24 - [] D -- C:\Users\Stanislas\AppData\Local\ApplicationHistory
O43 - CFD: 2012/04/02 - 19:01:49 - [] D -- C:\Users\Stanislas\AppData\Local\Apps
O43 - CFD: 2012/10/08 - 15:44:43 - [] D -- C:\Users\Stanislas\AppData\Local\ArmA
O43 - CFD: 2015/06/28 - 04:03:16 - [] D -- C:\Users\Stanislas\AppData\Local\Battle.net
O43 - CFD: 2013/01/16 - 01:28:16 - [] D -- C:\Users\Stanislas\AppData\Local\Black_Tree_Gaming
O43 - CFD: 2014/06/01 - 08:34:53 - [] D -- C:\Users\Stanislas\AppData\Local\Blizzard
O43 - CFD: 2014/06/01 - 07:59:30 - [] D -- C:\Users\Stanislas\AppData\Local\Blizzard Entertainment
O43 - CFD: 2015/04/10 - 16:57:35 - [] D -- C:\Users\Stanislas\AppData\Local\Bluestacks
O43 - CFD: 2012/09/25 - 02:28:40 - [] D -- C:\Users\Stanislas\AppData\Local\Chromium
O43 - CFD: 2012/09/29 - 21:39:30 - [] HD -- C:\Users\Stanislas\AppData\Local\COgu37ExI2CwDi
O43 - CFD: 2015/03/21 - 03:35:07 - [] D -- C:\Users\Stanislas\AppData\Local\Colossal Order
O43 - CFD: 2015/06/30 - 12:23:23 - [] D -- C:\Users\Stanislas\AppData\Local\CrashDumps
O43 - CFD: 2015/06/27 - 23:03:43 - [] D -- C:\Users\Stanislas\AppData\Local\DayZ
O43 - CFD: 2012/10/01 - 12:27:50 - [0] D -- C:\Users\Stanislas\AppData\Local\Diagnostics
O43 - CFD: 2014/10/05 - 19:14:57 - [] D -- C:\Users\Stanislas\AppData\Local\DisplayFusion
O43 - CFD: 2014/07/11 - 21:49:08 - [] D -- C:\Users\Stanislas\AppData\Local\doubleTwist Corporation
O43 - CFD: 2012/10/24 - 18:29:33 - [] D -- C:\Users\Stanislas\AppData\Local\e-academy Inc
O43 - CFD: 2013/02/28 - 17:14:04 - [] D -- C:\Users\Stanislas\AppData\Local\eclipse
O43 - CFD: 2012/07/10 - 22:51:39 - [] D -- C:\Users\Stanislas\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 2015/03/08 - 02:16:17 - [0] D -- C:\Users\Stanislas\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2014/11/19 - 09:12:33 - [] SHD -- C:\Users\Stanislas\AppData\Local\EmieBrowserModeList
O43 - CFD: 2014/11/19 - 09:12:33 - [] SHD -- C:\Users\Stanislas\AppData\Local\EmieSiteList
O43 - CFD: 2014/11/19 - 09:12:33 - [] SHD -- C:\Users\Stanislas\AppData\Local\EmieUserList
O43 - CFD: 2014/11/22 - 22:44:58 - [] D -- C:\Users\Stanislas\AppData\Local\ESN
O43 - CFD: 2013/09/17 - 18:14:13 - [] D -- C:\Users\Stanislas\AppData\Local\Facebook
O43 - CFD: 2013/04/25 - 14:48:28 - [] D -- C:\Users\Stanislas\AppData\Local\FLT
O43 - CFD: 2012/03/29 - 03:58:58 - [] D -- C:\Users\Stanislas\AppData\Local\Focus Home Interactive
O43 - CFD: 2012/08/27 - 10:37:13 - [] D -- C:\Users\Stanislas\AppData\Local\fontconfig
O43 - CFD: 2013/08/14 - 18:07:18 - [] D -- C:\Users\Stanislas\AppData\Local\GameMaker-Studio
O43 - CFD: 2013/03/14 - 01:06:24 - [] D -- C:\Users\Stanislas\AppData\Local\Geckofx
O43 - CFD: 2012/08/27 - 10:37:12 - [] D -- C:\Users\Stanislas\AppData\Local\gegl-0.2
O43 - CFD: 2012/04/12 - 23:49:36 - [] D -- C:\Users\Stanislas\AppData\Local\Google
O43 - CFD: 2012/03/28 - 16:09:20 - [0] SHD -- C:\Users\Stanislas\AppData\Local\History
O43 - CFD: 2015/02/14 - 15:01:02 - [] D -- C:\Users\Stanislas\AppData\Local\Introversion
O43 - CFD: 2013/10/02 - 05:29:00 - [] D -- C:\Users\Stanislas\AppData\Local\LogMeIn
O43 - CFD: 2015/07/01 - 04:05:49 - [] D -- C:\Users\Stanislas\AppData\Local\LogMeIn Hamachi
O43 - CFD: 2012/06/10 - 15:59:28 - [] D -- C:\Users\Stanislas\AppData\Local\Macromedia
O43 - CFD: 2014/07/13 - 12:40:39 - [] D -- C:\Users\Stanislas\AppData\Local\Macroplant,_LLC
O43 - CFD: 2015/03/21 - 03:34:06 - [] D -- C:\Users\Stanislas\AppData\Local\Microsoft
O43 - CFD: 2012/03/28 - 13:19:06 - [0] D -- C:\Users\Stanislas\AppData\Local\Microsoft Help
O43 - CFD: 2013/09/19 - 02:23:36 - [] D -- C:\Users\Stanislas\AppData\Local\Mozilla
O43 - CFD: 2012/03/31 - 21:16:36 - [] D -- C:\Users\Stanislas\AppData\Local\Mumble
O43 - CFD: 2015/06/28 - 04:27:58 - [] D -- C:\Users\Stanislas\AppData\Local\NFS Underground 2
O43 - CFD: 2014/09/30 - 09:23:42 - [] D -- C:\Users\Stanislas\AppData\Local\NVIDIA
O43 - CFD: 2014/09/30 - 09:21:46 - [] D -- C:\Users\Stanislas\AppData\Local\NVIDIA Corporation
O43 - CFD: 2015/06/30 - 12:59:30 - [0] D -- C:\Users\Stanislas\AppData\Local\Opera Software
O43 - CFD: 2014/02/26 - 08:32:58 - [] D -- C:\Users\Stanislas\AppData\Local\Origin
O43 - CFD: 2014/10/10 - 10:32:17 - [] D -- C:\Users\Stanislas\AppData\Local\Overwolf
O43 - CFD: 2012/09/29 - 21:39:30 - [0] D -- C:\Users\Stanislas\AppData\Local\PACE Anti-Piracy
O43 - CFD: 2012/10/15 - 17:48:53 - [] D -- C:\Users\Stanislas\AppData\Local\PDF Maker
O43 - CFD: 2013/01/29 - 19:04:59 - [] D -- C:\Users\Stanislas\AppData\Local\Programs
O43 - CFD: 2015/05/05 - 16:48:18 - [] D -- C:\Users\Stanislas\AppData\Local\PunkBuster
O43 - CFD: 2015/04/23 - 17:51:21 - [] D -- C:\Users\Stanislas\AppData\Local\Rockstar Games
O43 - CFD: 2014/04/02 - 15:45:19 - [] D -- C:\Users\Stanislas\AppData\Local\SAP
O43 - CFD: 2012/12/03 - 16:28:02 - [] D -- C:\Users\Stanislas\AppData\Local\SCE
O43 - CFD: 2013/08/12 - 17:33:51 - [] D -- C:\Users\Stanislas\AppData\Local\Screamer Radio
O43 - CFD: 2014/04/02 - 15:47:09 - [] D -- C:\Users\Stanislas\AppData\Local\SIJAB-logs
O43 - CFD: 2013/10/23 - 11:14:13 - [] D -- C:\Users\Stanislas\AppData\Local\SKIDROW
O43 - CFD: 2014/03/16 - 07:53:33 - [] D -- C:\Users\Stanislas\AppData\Local\Skype
O43 - CFD: 2012/12/22 - 16:13:07 - [] D -- C:\Users\Stanislas\AppData\Local\Skyrim
O43 - CFD: 2012/12/03 - 16:28:00 - [] D -- C:\Users\Stanislas\AppData\Local\Sony Online Entertainment
O43 - CFD: 2014/05/05 - 09:41:31 - [] D -- C:\Users\Stanislas\AppData\Local\SplitMediaLabs
O43 - CFD: 2013/10/23 - 11:10:15 - [] D -- C:\Users\Stanislas\AppData\Local\Sports Interactive
O43 - CFD: 2015/06/22 - 12:11:50 - [] D -- C:\Users\Stanislas\AppData\Local\Spotify
O43 - CFD: 2015/02/20 - 01:31:24 - [] D -- C:\Users\Stanislas\AppData\Local\Steam
O43 - CFD: 2015/02/24 - 17:18:15 - [] D -- C:\Users\Stanislas\AppData\Local\TeamViewer
O43 - CFD: 2015/07/01 - 04:08:04 - [] D -- C:\Users\Stanislas\AppData\Local\Temp
O43 - CFD: 2012/03/28 - 16:09:20 - [0] SHD -- C:\Users\Stanislas\AppData\Local\Temporary Internet Files
O43 - CFD: 2013/01/29 - 17:19:37 - [] D -- C:\Users\Stanislas\AppData\Local\The Lord of the Rings Online
O43 - CFD: 2012/11/10 - 22:51:13 - [] D -- C:\Users\Stanislas\AppData\Local\Thinstall
O43 - CFD: 2015/01/13 - 17:47:45 - [] D -- C:\Users\Stanislas\AppData\Local\Thunderbird
O43 - CFD: 2013/07/19 - 11:33:04 - [] D -- C:\Users\Stanislas\AppData\Local\Turbine
O43 - CFD: 2013/11/01 - 22:25:14 - [] D -- C:\Users\Stanislas\AppData\Local\Ubisoft
O43 - CFD: 2013/09/30 - 10:55:54 - [] D -- C:\Users\Stanislas\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 2015/03/29 - 14:11:55 - [] D -- C:\Users\Stanislas\AppData\Local\Unity
O43 - CFD: 2012/05/06 - 01:50:22 - [] D -- C:\Users\Stanislas\AppData\Local\VirtualStore
O43 - CFD: 2013/01/26 - 18:51:01 - [] D -- C:\Users\Stanislas\AppData\Local\Vitalwerks
O43 - CFD: 2015/04/23 - 12:58:50 - [] D -- C:\Users\Stanislas\AppData\Local\Warframe
O43 - CFD: 2014/07/25 - 17:46:01 - [0] D -- C:\Users\Stanislas\AppData\Local\WarThunder
O43 - CFD: 2014/10/06 - 09:37:02 - [] D -- C:\Users\Stanislas\AppData\Local\Windows Live
O43 - CFD: 2014/07/12 - 13:04:52 - [] D -- C:\Users\Stanislas\AppData\Local\Wondershare
O43 - CFD: 2013/08/14 - 18:07:12 - [] D -- C:\Users\Stanislas\AppData\Local\YoYo_Games_Ltd
O43 - CFD: 2009/07/14 - 00:54:32 - [] RD -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/30 - 13:22:29 - [] RD -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/11/19 - 07:52:25 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
O43 - CFD: 2014/03/31 - 12:30:52 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Banished 1.0
O43 - CFD: 2015/05/12 - 17:13:39 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 2013/05/10 - 17:40:45 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Détection de l'application Winamp
O43 - CFD: 2013/02/06 - 03:44:11 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
O43 - CFD: 2013/08/14 - 18:06:06 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameMaker-Studio 1.1
O43 - CFD: 2015/06/28 - 04:25:47 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2012/05/05 - 22:49:36 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameSpy Arcade
O43 - CFD: 2013/01/11 - 19:07:00 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2009/07/14 - 00:49:38 - [] RD -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2013/01/27 - 06:58:33 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
O43 - CFD: 2013/01/26 - 18:50:58 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\No-IP DUC
O43 - CFD: 2013/02/06 - 05:04:38 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2014/05/06 - 13:02:25 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
O43 - CFD: 2013/11/09 - 08:09:41 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
O43 - CFD: 2012/08/27 - 10:20:33 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 2013/03/31 - 18:39:37 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portal
O43 - CFD: 2012/04/07 - 03:57:30 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\project64 1.6
O43 - CFD: 2013/11/16 - 21:34:43 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RaidCall
O43 - CFD: 2012/04/20 - 20:15:56 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RAR Password Cracker
O43 - CFD: 2013/03/04 - 23:56:21 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
O43 - CFD: 2013/08/12 - 17:27:46 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screamer Radio
O43 - CFD: 2015/02/02 - 17:38:49 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screaming Bee
O43 - CFD: 2015/06/30 - 13:23:12 - [] RD -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/06/22 - 12:09:32 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 2014/06/24 - 11:43:24 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TubeMaster++
O43 - CFD: 2013/09/30 - 10:33:13 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
O43 - CFD: 2013/01/29 - 07:56:52 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual DJ
O43 - CFD: 2013/02/28 - 16:33:27 - [0] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wakfu
O43 - CFD: 2014/12/13 - 11:12:14 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Warframe
O43 - CFD: 2012/03/28 - 13:15:36 - [] D -- C:\Users\Stanislas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ ShareTools MSconfig StartupReg (SMSR) (O53) (30) - 1s
O53 - SMSR:HKLM\...\startupreg\20131121 [Key] . (.AVAST Software - avast! Emergency Update.) -- C:\Program Files\AVAST Software\Avast\Setup\emupdate\7c73ff97-bd9d-41aa-b6b2-92b75886bc4f.exe
O53 - SMSR:HKLM\...\startupreg\Acrobat Assistant 8.0 [Key] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Acrobat Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O53 - SMSR:HKLM\...\startupreg\AdobeCS5.5ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS5.5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
O53 - SMSR:HKLM\...\startupreg\AdobeCS6ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
O53 - SMSR:HKLM\...\startupreg\Aeria Ignite [Key] . (.Aeria Games & Entertainment - Aeria Ignite.) -- C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
O53 - SMSR:HKLM\...\startupreg\agentantidote.exe [Key] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe
O53 - SMSR:HKLM\...\startupreg\Akamai NetSession Interface [Key] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Stanislas\AppData\Local\Akamai\netsession_win.exe
O53 - SMSR:HKLM\...\startupreg\APSDaemon [Key] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O53 - SMSR:HKLM\...\startupreg\BCSSync [Key] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O53 - SMSR:HKLM\...\startupreg\DisplayFusion [Key] . (...) -- F:\Program\Dysplay fusion\DisplayFusion\DisplayFusion.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\EPSON SX510W Series [Key] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE
O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (.Facebook Inc. - Facebook Installer.) -- C:\Users\Stanislas\AppData\Local\Facebook\Update\FacebookUpdate.exe
O53 - SMSR:HKLM\...\startupreg\fssui [Key] . (.Microsoft Corporation - Windows Live Family Safety Filter.) -- C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
O53 - SMSR:HKLM\...\startupreg\Google Update [Key] . (.Google Inc. - Google Installer.) -- C:\Users\Stanislas\AppData\Local\Google\Update\GoogleUpdate.exe
O53 - SMSR:HKLM\...\startupreg\iTunesHelper [Key] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O53 - SMSR:HKLM\...\startupreg\LifeCam [Key] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
O53 - SMSR:HKLM\...\startupreg\LogMeIn Hamachi Ui [Key] . (.LogMeIn Inc. - Hamachi Client Application.) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O53 - SMSR:HKLM\...\startupreg\MobileDocuments [Key] . (...) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O53 - SMSR:HKLM\...\startupreg\NvBackend [Key] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O53 - SMSR:HKLM\...\startupreg\Nvtmru [Key] . (...) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Overwolf [Key] . (.Overwolf - Overwolf.) -- C:\Program Files (x86)\Overwolf\Overwolf.exe
O53 - SMSR:HKLM\...\startupreg\Pando Media Booster [Key] . (...) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O53 - SMSR:HKLM\...\startupreg\RGSC [Key] . (.Take-Two Interactive Software, Inc. - RGSCLauncher.) -- C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

---\\ System Drivers List (SDL) (O58) (73) - 9s
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/13 21:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2011/03/11 02:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/13 21:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2011/03/11 02:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2014/10/03 05:54:31 A . (...) -- C:\Windows\System32\drivers\aswHwid.sys [29208]
O58 - SDL:2014/10/03 05:54:31 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [79184]
O58 - SDL:2014/10/03 05:54:31 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93568]
O58 - SDL:2014/10/03 05:54:31 A . (...) -- C:\Windows\System32\drivers\aswRvrt.sys [65776]
O58 - SDL:2014/11/21 12:00:37 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [1041168]
O58 - SDL:2014/10/05 04:59:15 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys [427360]
O58 - SDL:2014/10/03 05:54:31 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [92008]
O58 - SDL:2014/10/03 05:54:31 A . (...) -- C:\Windows\System32\drivers\aswVmm.sys [224896]
O58 - SDL:2009/06/10 16:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/13 21:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 16:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/06/23 06:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224]
O58 - SDL:2009/06/23 06:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224]
O58 - SDL:2009/07/13 21:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2014/03/31 11:04:08 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283064]
O58 - SDL:2009/07/13 21:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 16:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2012/08/21 16:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:2009/03/18 19:35:42 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\drivers\hamachi.sys [33856]
O58 - SDL:2009/06/10 16:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2010/11/20 23:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2011/03/11 02:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2009/07/13 21:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2015/04/14 09:37:42 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816]
O58 - SDL:2015/04/14 09:37:46 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [107736]
O58 - SDL:2015/06/30 14:42:35 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [136408]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2015/04/14 09:37:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704]
O58 - SDL:2009/07/13 21:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2010/06/25 13:07:26 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [35344]
O58 - SDL:2015/04/08 20:58:18 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [195728]
O58 - SDL:2015/04/08 20:58:18 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [10423952]
O58 - SDL:2009/06/10 16:35:35 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvm62x64.sys [408960]
O58 - SDL:2011/03/11 02:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2011/03/11 02:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2014/11/22 06:46:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [38032]
O58 - SDL:2011/11/03 07:01:00 N . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [56208]
O58 - SDL:2009/07/13 21:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/13 21:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2011/07/20 17:58:22 A . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\Windows\System32\drivers\RimSerial_AMD64.sys [44032]
O58 - SDL:2009/06/10 16:35:42 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 64-bit Dr.) -- C:\Windows\System32\drivers\Rt64win7.sys [187392]
O58 - SDL:2010/03/23 08:40:02 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2304416]
O58 - SDL:2012/07/31 12:45:10 A . (.Screaming Bee LLC - Screaming Bee Audio Driver.) -- C:\Windows\System32\drivers\ScreamingBAudio64.sys [38992]
O58 - SDL:2009/06/10 16:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/13 20:00:40 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208]
O58 - SDL:2009/07/13 21:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/13 21:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2009/07/13 21:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2010/11/23 03:34:00 A . (.The OpenVPN Project - TAP-Win32 Virtual Network Driver.) -- C:\Windows\System32\drivers\tap0901.sys [30720]
O58 - SDL:2012/04/01 15:55:01 A . (.Texas Instruments - tinspusb.sys.) -- C:\Windows\System32\drivers\tinspusb.sys [142848]
O58 - SDL:2012/12/13 16:50:36 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784]
O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
O58 - SDL:2015/03/30 15:25:00 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [33856]

---\\ Last modified or created user files (O61) (11) - 89s
O61 - LFC: 2015/06/23 21:41:17 A . (..) -- C:\Users\Stanislas\Documents\Rockstar Games\GTA V\Profiles\01FF65A3\pc_settings.bin [1096]
O61 - LFC: 2015/06/29 21:47:43 A . (.Sébastien Bini.) -- C:\Users\Stanislas\Desktop\gchb_setup.exe [7963424]
O61 - LFC: 2015/06/30 12:45:09 A . (..) -- C:\Users\Stanislas\AppData\Local\PunkBuster\HOS\pb\PnkBstrB.exe [281032]
O61 - LFC: 2015/06/30 19:19:39 A . (..) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\Packages\0000797f\DAO.19722780.exe [5871232]
O61 - LFC: 2015/06/24 19:04:38 A . (..) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\Packages\0000791b\vops-heroes_of_the_storm.19704423.exe [7425912]
O61 - LFC: 2015/06/24 19:02:13 A . (..) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\Packages\00007908\vops-dayz.19704423.exe [3622168]
O61 - LFC: 2015/06/24 19:01:55 A . (..) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\Packages\000078ff\vops-battlefield_bad_company_2.19704423.exe [1172144]
O61 - LFC: 2015/06/30 06:54:32 A . (.NVIDIA Corporation.) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [628664]
O61 - LFC: 2015/06/30 06:54:28 A . (.NVIDIA Corporation.) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984]
O61 - LFC: 2015/06/30 06:54:26 A . (.NVIDIA Corporation.) -- C:\Users\Stanislas\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1357240]
O61 - LFC: 2015/07/01 04:02:47 A . (..) -- C:\Users\Stanislas\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]

---\\ File Associations Shell Spawning (O67) (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- Bad: ("C:\Program Files (x86)\Foolish IT\CryptoPrevent\CryptoPreventFilterMod.exe" "%1" /S %*) Good: ("%1" /S) =>Broken.OpenCommand
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

---\\ Start Menu Internet (SMI) (O68) (16) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Stanislas\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\Stanislas\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Users\Stanislas\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\Stanislas\AppData\Local\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files (x86)\Safari\Safari.exe

---\\ Search Browser Infection (SBI) (O69) (3) - 4s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {51257BB5-821F-4B3F-9380-85C4C8CD16F9} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} - (Bing) - http://www.bing.com/

---\\ Additional Scan (O88) (1) - 0s
~ No malicious items found.

---\\ Summary of the detections found on your workstation (1) - 0s
http://www.nicolascoolman.fr/hijacker-trovigo/ =>Hijacker.Trovigo

~ End of the scan, 74671 items in 266 seconds (1419)(0)()

Publicité


Signaler le contenu de ce document

Publicité