~ ZHPDiag v2015.8.20.122 By Nicolas Coolman (2015/08/20)
~ Run by moose (Administrator) (2015/08/20 17:58:16)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\moose\Desktop\ZHPDiag.txt
~ Report: C:\Users\moose\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v44.0.2403.155
MFIE: Mozilla Firefox 39.0.3 (x86 en-US) v39.0.3
MSIE: Internet Explorer v9.0.8112.16421

---\\ Windows Product Information (5) - 4s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Key Management Service client information : KO
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK

---\\ System protection software (3) - 3s
Check Point Deployment Shell v8.00.0000
Kaspersky Anti-Virus 2013 v13.0.1.4190
Windows Defender W7 (Activate)

---\\ System optimization software (1) - 3s
CCleaner v5.07

---\\ Surveillance software (2) - 3s
Adobe Flash Player 10 ActiveX
Adobe Reader XI

---\\ Sharing software PeerToPeer (2) - 4s
Pando Media Booster v2.6.0.7
µTorrent v3.3.0.29625

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 7972.824 MB (23% free)
~ System Restore: Activé (Enable)
~ System drive C: has 4 GB free of 223 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: MOOSE-THINK
~ User Name: moose
~ Logged in as Administrator

---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 4 GB free of 223 GB (System)
~ Drive D: has GB free of 0 GB
~ Drive G: has 10 GB free of 61 GB
~ Drive Q: has 6 GB free of 17 GB

---\\ State of the Windows Security Center (14) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Search Generic System Files (22) - 1s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.115705BBED3CACDCEEFDA25E516A92A1] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [1392128]
[MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.79059559E89D06E8B80CE2944BE20228] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]

---\\ Process running (83) - 3s
[MD5.3F9866B4AD7EF4666006BF9C799F39E4] - (.AuthenTec, Inc - TrueSuite Service.) -- C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139944] [PID.672]
[MD5.5A1E3B4BA187327DF5FF122F96FA753A] - (.Lenovo. - Lenovo Power Management Service.) -- C:\Windows\system32\ibmpmsvc.exe [68440] [PID.1060]
[MD5.C355E18A892271574976DFEC962A66C5] - (.Lenovo - ThinkVantage Access Connections Profile Man.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe [133360] [PID.1352]
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1372]
[MD5.650D03E40F93FAE323CB841F80368E5C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [60744] [PID.2080]
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.2196]
[MD5.EB0F8E672B34A162E9901262A903A75A] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384728] [PID.2232]
[MD5.BE8262465886573E161666CC0955AE01] - (.BlueStack Systems, Inc. - BlueStacks Updater Service.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [777944] [PID.2284]
[MD5.26A80D7ACA49E03A403806418B5FED46] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [957216] [PID.2380]
[MD5.6B3087E2BBC73F902C03EFBF696A7A0C] - (.Check Point Software Technologies - .) -- C:\Program Files (x86)\CheckPoint\SSL Network Extender\slimsvc.exe [366712] [PID.2488]
[MD5.F160B26B26BA4AFE8CECC12ED5AC231E] - (.Conexant Systems Inc. - Conexant Audio Message Service.) -- C:\Windows\system32\CxAudMsg64.exe [198784] [PID.2540]
[MD5.375640F39F2D613B6FDCF8C2F956205A] - (.Apache Software Foundation - Apache HTTP Server.) -- c:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe [24636] [PID.2584]
[MD5.B443D3D1B6F21C2B424E49491B65C488] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [163608] [PID.2696]
[MD5.C59715BFC9DB2A17ABE92577DFF6A2B8] - (.Phase Five Systems - Jump Desktop Service.) -- C:\Program Files (x86)\Jump Desktop\JumpService.exe [7680] [PID.2752]
[MD5.4A0235E9822B220339E34D8C122BB6D1] - (.Lenovo Group Limited - Camera Mute Control Service for ThinkPad.) -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe [58224] [PID.2812]
[MD5.93921A19D885755B9751C3744DBCB8FD] - (.Lenovo Group Limited - Microphone volume control service.) -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [61296] [PID.2852]
[MD5.79F99A4D59825839B7E563B4BCF52C5E] - (.Lenovo Group Limited - ThinkVantage Virtual Camera Controller.) -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568] [PID.2876]
[MD5.F7DE50781DC4D162C1005EB30D98F931] - (.Lenovo Group Limited - Auto Scroll Start Service.) -- C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [133992] [PID.3012]
[MD5.375640F39F2D613B6FDCF8C2F956205A] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe [24636] [PID.1140]
[MD5.648625BA9C540F26EFA7E27A9312D73B] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\Windows\SysWOW64\NLSSRV32.EXE [70152] [PID.4336]
[MD5.0540796C11792D4368C2210992ED714A] - (.Conexant Systems, Inc. - SmartAudio Service Application.) -- C:\Windows\SysWOW64\SASrv.exe [446592] [PID.4420]
[MD5.667EF334C512416712F14118E3382919] - (.Lenovo Group Limited - On screen display Fn+Fx handler.) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe [126512] [PID.4620]
[MD5.BE788A747457E6916586C410EC0111E7] - (.Ulead Systems, Inc. - ULCDRSvr.) -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [61440] [PID.4684]
[MD5.FEDE77E3F60D381F1601ABF3F9C2B8AC] - (.Lenovo Group Limited - NumLock indicator for ThinkPad.) -- C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe [144432] [PID.4708]
[MD5.295010C3EDECCAF760853544D0C92C03] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [437976] [PID.4772]
[MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.4824]
[MD5.59997CDE434376E03384C2659728DA17] - (.Lenovo - ThinkVantage Access Connections Main Servic.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe [276720] [PID.4900]
[MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.4968]
[MD5.BC381F006A302D01D20B0B5768AE3A94] - (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe [110128] [PID.4864]
[MD5.78705F920CA665F55EAD64715A0817A2] - (.Lenovo Group Limited - Lenovo Auto Scroll Utility.) -- C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe [109632] [PID.5240]
[MD5.3B4250CB21F95FFA64162389106F39BA] - (.Lenovo Group Limited - ThinkPad Message Client Loader.) -- C:\Program Files\Lenovo\HOTKEY\tphkload.exe [124400] [PID.5788]
[MD5.1AA9C2331234786211A261C8FC69EB25] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [86744] [PID.5960]
[MD5.B1792BAC62AB3262C26204C500140F1A] - (.Lenovo Group Limited - NumLock on screen display for ThinkPad.) -- C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe [237616] [PID.6052]
[MD5.A2DA476DECC5DC9C23955330649A90D6] - (.Lenovo Group Limited - ThinkPad Message Receiver for changing F1-F.) -- C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe [70704] [PID.5728]
[MD5.A999C2F729F0C80F92E3DEA9C46C3650] - (.Lenovo Group Limited - On screen display drawer.) -- C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe [567856] [PID.5740]
[MD5.E9535458589FF8643109D9201E0FAB32] - (.Lenovo Group Limited - ThinkPad Message Receiver for Shortcut Hot.) -- C:\Program Files\Lenovo\HOTKEY\shtctky.exe [123376] [PID.5572]
[MD5.7EEBDDF76D013181E21592D2FFD66A98] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [359128] [PID.5108]
[MD5.41FAE6618768DC93D98DDAF3F8282D3E] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906432] [PID.2712]
[MD5.D14B3B8E28F8D210598C7F416FBE8210] - (.Lenovo - ThinkVantage Access Connections Service GUI.) -- C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe [616688] [PID.6768]
[MD5.3BE3B4153A5E37739D8731DE55649A0F] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [398656] [PID.1752]
[MD5.6B23053FF8D50E6B222076B8404E0501] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [440128] [PID.1216]
[MD5.F404A27DD1223345B0DB0A9A381AAC22] - (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [564352] [PID.5708]
[MD5.42361B4BD80768E82B80285851037665] - (.Copyright (C) 2010 - FMAPP Application.) -- C:\Program Files\CONEXANT\ForteConfig\fmapp.exe [49056] [PID.4836]
[MD5.D1D974B76EB4ACE2978837CFED7833E6] - (.Lenovo. - ThinkVantage Active Protection System.) -- C:\Windows\System32\TpShocks.exe [228744] [PID.2964]
[MD5.98D545CE59F64C2C4D005A4A61BB0835] - (.Lenovo Group Limited - Communications Utility launcher.) -- C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe [290160] [PID.5888]
[MD5.4AD32D1373448FE5C9D573B6D0CE904D] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2881336] [PID.6940]
[MD5.72C3147427605C9A08521204E6C26202] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe [2991856] [PID.7060]
[MD5.35D303B68370462AEDD4C1871073AD1D] - (.http://tortoisesvn.net - TortoiseSVN status cache.) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe [335600] [PID.1640]
[MD5.837CFE3679904A8A5DD592ACD6C50B8F] - (.Synaptics Incorporated - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [156984] [PID.7248]
[MD5.71207B783B99403275FE1E9E01297339] - (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe [232688] [PID.7808]
[MD5.0EF0822810009D58118CCDFD098FA9F4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480] [PID.8472]
[MD5.E1EAA6D07F53BC7EBE4E43F8288FA34C] - (.Lenovo - Lenovo Solution Center Notifications.) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1360672] [PID.9176]
[MD5.0D6A5008D22A4C59003B5E045685B546] - (.AuthenTec, Inc. - TrueAPI Server.) -- C:\Program Files\Common Files\AuthenTec\TrueService.exe [401704] [PID.8656]
[MD5.0D6A5008D22A4C59003B5E045685B546] - (.AuthenTec, Inc. - TrueAPI Server.) -- C:\Program Files\Common Files\AuthenTec\TrueService.exe [401704] [PID.9256]
[MD5.21A2AF869AD972456EF2BADC2B9734D3] - (.Lenovo - Message Center Plus Scheduler.) -- C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [65336] [PID.9628]
[MD5.7FAE5B6CDB18B0B2E81F32869F595022] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [643880] [PID.9812]
[MD5.4D66A97F71D94DDA8A53A2D37CD469F5] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [123192] [PID.10040]
[MD5.9BE23DF9B1FC56F58DD0F28CC187E713] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.8680]
[MD5.F036CFB275D0C55F4E45FBBF5F98B3C8] - (.Protexis Inc. - PsiService PsiService.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [193824] [PID.2576]
[MD5.30FF46EABCA1BB18E4F357492A8F7FC9] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.6324]
[MD5.1CA070F6D26FB7191D9308367F955512] - (...) -- C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe [705760] [PID.11312] =>PUP.Optional.CrossRider
[MD5.C75FBC6E329DCD512BCDAE40AF8CDBA3] - (...) -- C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe [1190624] [PID.7684] =>PUP.Optional.CrossRider
[MD5.EA5B870671079786F335AC7C10846C4F] - (.Adobe Systems Incorporated - AAM Updates Notifier Application.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe [295584] [PID.21488]
[MD5.F83D92EA69649B1986FEC6DA99AD025D] - (.Lenovo - Access Connections Deskband Helper Module.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcDeskBandHlpr.exe [850160] [PID.33640]
[MD5.15D2DB9BFA8E833ED31FAB2BB088FDDA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356128] [PID.33296]
[MD5.15D2DB9BFA8E833ED31FAB2BB088FDDA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356128] [PID.30348]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.23724]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.34496]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.34284]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.33148]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.7044]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.34624]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.33488]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.33184]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.35788]
[MD5.345886D0A81F2318E6FB4362E480BF97] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.37108]
[MD5.345886D0A81F2318E6FB4362E480BF97] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.37688]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.41024]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.41356]
[MD5.F7CEB1E5F0000FDEEE04B046BBDE1D4E] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.40440]
[MD5.8F9D6A8DEEAEF5CDAF54A6EF9661EF47] - (.AuthenTec Inc. - TouchControl.) -- C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe [2905384] [PID.45416]
[MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.48144]
[MD5.63E20985B61368A6172D93D0245DC9F8] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\moose\Downloads\ZHPDiag3.exe [1895424] [PID.48740]

---\\ Google Chrome, Start,Search,Extensions (19) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com/
G2 - GCE: Preference [User Data\Default] [bhmmomiinigofkjcapegjjndpbikblnp] WOT: Web of Trust Website Reputation Ratings
G2 - GCE: Preference [User Data\Default] [bkkbcggnhapdmkeljlodobbkopceiche] Poper Blocker
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Preference [User Data\Default] [ckibcdccnfeookdmbahgiakhnjcddpki] __MSG_name__
G2 - GCE: Preference [User Data\Default] [coonecdghnepgiblpccbbihiahajndda] Tab Manager
G2 - GCE: Preference [User Data\Default] [dchlnpcodkpfdpacogkljefecpegganj] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [dllkocilcinkggkchnjgegijklcililc] Google News
G2 - GCE: Preference [User Data\Default] [edacconmaakjimmfgnblocblbcdcpbko] Session Buddy
G2 - GCE: Preference [User Data\Default] [eiimnmioipafcokbfikbljfdeojpcgbh] Block site
G2 - GCE: Preference [User Data\Default] [fdpohaocaechififmbbbbbknoalclacl] Full Page Screen Capture
G2 - GCE: Preference [User Data\Default] [gcbommkclmclpchllfjekcdonpmejbdp] __MSG_about_ext_name__
G2 - GCE: Preference [User Data\Default] [iicapmagmhahddefgokbabbgieiogjop] Facebook Unseen
G2 - GCE: Preference [User Data\Default] [jmolcgpienlcieaajfkkdamlngancncm] IDM Integration
G2 - GCE: Preference [User Data\Default] [khgabmflimjjbclkmljlpmgaleanedem] SparkChess 8
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [obciceimmggglbmelaidpjlmodcebijb] __MSG_manifest_name__
G2 - GCE: Preference [User Data\Default] [pfcgjlglddicjopgimohdcbmabacamll] Antidote

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (44) - 5s
M0 - MFSP: prefs.js [moose - x5l3ec3k.default] http://ca.search.yahoo.com/?fr=hp-ddc-bd&type=bl-bfr-sw-rhb-34__alt__ddc_dsssyc_bd_com
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\firebug@software.joehewitt.com.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\jid1-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\langpack-fr@firefox.mozilla.org.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\save-as-pdf-ff@pdfcrowd.com.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\translator@zoli.bod.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\unplug@compunach.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\unseen@tangrs.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\vdpure@link64.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{4de8639f-553b-4afc-98c4-3089e56100ba}.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{85E85FF9-E50C-42DE-8A3D-61485FD6C8DB}.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\search-simple.xml =>PUP.Optional.SearchSimple
P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazondotcom.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia.xml
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.Druide informatique inc. - Module d'Antidote.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\antidote7_win_firefox_103@druide.com
P2 - EXT: (.Microsoft Corporation - Bing Search Engine.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\bingsearch.full@microsoft.com
P2 - EXT: (.Olivier R. - Dictionnaires français.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\fr-dicollecte@dictionaries.addons.mozilla.org
P2 - EXT: (.Liono - DebrideurStreaming - Add-On.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack
P2 - EXT: (.Nuclear Coffee Software - VideoGet FireFox extension.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{85E85FF9-E50C-42DE-8A3D-61485FD6C8DB}
P2 - EXT: (.V@no - Cookies Manager+.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d}
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited.) -- C:\Users\moose\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google.) -- C:\Users\moose\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O1DPlugin] - (.Google.) -- C:\Users\moose\AppData\Roaming\Mozilla\plugins\npo1d.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS.) -- C:\Users\moose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google.) -- C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

---\\ Internet Explorer Extensions, Start, Search (13) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer, Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)

---\\ Browser Helper Object (BHO) (2) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
O2 - BHO: Freecorder extension x64 [64Bits] - {B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} . (...) -- C:\Program Files\Freecorder extension x64\ScriptHost.dll (.not file.) =>PUP.Optional.FreecorderExtension

---\\ Auto loading programs from Registry and folders (46) - 1s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe
O4 - HKLM\..\Run: [ForteConfig] . (.Copyright (C) 2010 - FMAPP Application.) -- C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
O4 - HKLM\..\Run: [TpShocks] . (.Lenovo. - ThinkVantage Active Protection System.) -- C:\Windows\System32\TpShocks.exe
O4 - HKLM\..\Run: [LENOVO.TPKNRRES] . (.Lenovo Group Limited - Communications Utility launcher.) -- C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AcWin7Hlpr] . (.Lenovo - Access Connections Toolbar Enabler Module.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe
O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
O4 - HKLM\..\Run: [Firebird] (Orphean)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O4 - HKLM\..\Run: [SmartAudio] . (.Conexant Systems, Inc. - SmartAudio CPL (32bit).) -- C:\Program Files\CONEXANT\SAII\SACpl.exe
O4 - HKLM\..\Run: [InstallerLauncher] C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe (.not file.)
O4 - HKLM\..\Run: [AgentAntidote32] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe
O4 - HKLM\..\Run: [AgentAntidote64] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe
O4 - HKLM\..\Run: [combofix] C:\ComboFix\CF27191.3XE /c C:\ComboFix\Combobatch.bat (.not file.)
O4 - HKLM\..\RunOnce: [combofix] C:\ComboFix\CF27191.3XE /c C:\ComboFixCombobatch.bat (.not file.)
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [JumiController] (Orphean)
O4 - HKCU\..\Run: [MP3 Skype Recorder] . (.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\moose\AppData\Local\FluxSoftware\Flux\flux.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\moose\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKLM\..\Wow6432Node\Run: [Nwpi] (Orphean)
O4 - HKLM\..\Wow6432Node\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXMediaServer] . (.DivX, LLC - DivX Media Server Launcher.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (.not file.)
O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet] C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe (.not file.)
O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Application Agent] C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Application Agent] C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (.not file.)
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [AdobeBridge] (Orphean)
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [JumiController] (Orphean)
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [MP3 Skype Recorder] . (.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\moose\AppData\Local\FluxSoftware\Flux\flux.exe
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\moose\AppData\Local\Microsoft\BingSvc\BingSvc.exe

---\\ Lop.com/Domain Hijackers (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1

---\\ AppInit_DLLs Registry value Autorun (1) - 0s
O20 - AppInit_DLLs: . (.Jaksta Technologies Pty Ltd - Jaksta audio capture.) - C:\Program Files\Common Files\Jaksta Technologies\Audio Capture\jaudcap64.dll

---\\ Non Microsoft non disabled Windows Services (40) - 2s
O23 - Service: (AcPrfMgrSvc) . (.Lenovo - ThinkVantage Access Connections Profile Man.) - C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
O23 - Service: (AcSvc) . (.Lenovo - ThinkVantage Access Connections Main Servic.) - C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc. - BlueStacks Service.) - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Check Point SSL Network Extender (cpextender) . (.Check Point Software Technologies - .) - C:\Program Files (x86)\CheckPoint\SSL Network Extender\slimsvc.exe
O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc. - Conexant Audio Message Service.) - C:\Windows\system32\CxAudMsg64.exe
O23 - Service: doliwampapache (doliwampapache) . (.Apache Software Foundation - Apache HTTP Server.) - c:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: doliwampmysqld (doliwampmysqld) . (...) - c:\dolibarr\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe
O23 - Service: TrueSuiteService (FPLService) . (.AuthenTec, Inc - TrueSuite Service.) - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HyperW7 Service (HyperW7Svc) . (.Lenovo Group Limited - RapidBoot Shield Service.) - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
O23 - Service: Lenovo PM Service (IBMPMSVC) . (.Lenovo. - Lenovo Power Management Service.) - C:\Windows\system32\ibmpmsvc.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Jump Desktop Service (JumpDesktop) . (.Phase Five Systems - Jump Desktop Service.) - C:\Program Files (x86)\Jump Desktop\JumpService.exe
O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) . (.Lenovo Group Limited - Camera Mute Control Service for ThinkPad.) - C:\Program Files\Lenovo\Communications Utility\CamMute.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe
O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) . (.Lenovo Group Limited - Microphone volume control service.) - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
O23 - Service: ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) . (.Lenovo Group Limited - ThinkVantage Virtual Camera Controller.) - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) . (.Lenovo Group Limited - Auto Scroll Start Service.) - C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.)
O23 - Service: Service Mgr ResultsHub (Service Mgr ResultsHub) . (...) - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub*
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited - ThinkPad Message Client Loader.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe
O23 - Service: On Screen Display (TPHKSVC) . (.Lenovo Group Limited - On screen display Fn+Fx handler.) - C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc. - ULCDRSvr.) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update Mgr ResultsHub (Update Mgr ResultsHub) . (...) - C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub*
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
O23 - Service: VMware DHCP Service (VMnetDHCP) . (...) - C:\Windows\System32\vmnetdhcp.exe (.not file.)
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (...) - C:\Windows\System32\vmnat.exe (.not file.)

---\\ Task Planned Automatically (52) - 6s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.1315C5C5C54CE2AA37A155F97027DB59] [APT] [AdobeAAMUpdater-1.0-moose-THINK-moose] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392]
[MD5.6313BA5D7F348576758CE789AF7E548A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6405912]
[MD5.00000000000000000000000000000000] [APT] [DiskUpdate] (...) -- C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core] (...) -- C:\Users\moose\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA] (...) -- C:\Users\moose\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core] (.Google Inc..) -- C:\Users\moose\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA] (.Google Inc..) -- C:\Users\moose\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.C7AAC31A910E4BBFDF94D3786ED13E71] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224]
[MD5.C7AAC31A910E4BBFDF94D3786ED13E71] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224]
[MD5.A2908AB124DF92C98605E3021F942435] [APT] [PMTask] (.Lenovo Group Limited.) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMIDTSV.EXE [3561536]
[MD5.00000000000000000000000000000000] [APT] [{40700CFF-660B-4FFF-BBEA-524F811881B9}] (...) -- C:\Program Files (x86)\Counter-Strike Source\hl2.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{7F31FE32-F9FC-408F-A037-A30F7A3E3197}] (...) -- C:\Program Files (x86)\Counter-Strike Source\hl2.exe (.not file.) [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
[MD5.46837220233C6C852C95D7471381C0E0] [APT] [Lenovo\LSC\LSCHardwareScan] (...) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148768]
[MD5.46837220233C6C852C95D7471381C0E0] [APT] [Lenovo\LSC\LSCHardwareScanPostpone] (...) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148768]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated
O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core.job [906]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA.job [928]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core.job [1026] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA.job [1078] =>.Google Inc.
O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job [828] =>.Intel Corporation
O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job [830] =>.Intel Corporation
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] =>.Adobe Systems Incorporated
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated
O39 - APT: AdobeAAMUpdater-1.0-moose-THINK-moose - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-moose-THINK-moose [3508] =>.Adobe Systems Incorporated
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Browser Manager [3434]
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2772] =>.Piriform Ltd
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Cuire le msemen [3454]
O39 - APT: DiskUpdate - (...) -- C:\Windows\System32\Tasks\DiskUpdate [2836]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core [3536]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA [3904]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3812] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core [3656] =>.Google Inc.
O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA [4052] =>.Google Inc.
O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d [3492] =>.Intel Corporation
O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [3188] =>.Intel Corporation
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for moose-THINK-moose moose-THINK [4982]
O39 - APT: PMTask - (.Lenovo Group Limited.) -- C:\Windows\System32\Tasks\PMTask [2958] =>.Lenovo Group Limited
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{1B3F5F6D-EDAC-4583-81FF-F3686EA10AB4} [3208]
O39 - APT: {40700CFF-660B-4FFF-BBEA-524F811881B9} - (...) -- C:\Windows\System32\Tasks\{40700CFF-660B-4FFF-BBEA-524F811881B9} [2976]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{5265436A-1034-4339-965B-1458A7E96BB0} [3134]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{7B41C9C4-0507-499A-B6C8-EDFDB36ECE06} [3202]
O39 - APT: {7F31FE32-F9FC-408F-A037-A30F7A3E3197} - (...) -- C:\Windows\System32\Tasks\{7F31FE32-F9FC-408F-A037-A30F7A3E3197} [2976]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{C6217C08-286C-4C60-8C4D-2DCB115005B6} [3356]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{CC9907ED-01F1-4CE3-9015-5B19EF089A94} [3108]

---\\ Software installed (327) - 19s
O42 - Logiciel: Windows Driver Package - Intel (iaStor) hdc (11/29/2011 11.0.0.1032) - (.Intel.) [HKLM][64Bits] -- 64A62163FE43328D13305746CB8BCC93F2DF6545
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA
O42 - Logiciel: CPUID HWMonitor 1.27 - (...) [HKLM][64Bits] -- CPUID HWMonitor_is1
O42 - Logiciel: Firebird 2.5.2.26540 (x64) - (.Firebird Project.) [HKLM][64Bits] -- FBDBServer_2_5_x64_is1
O42 - Logiciel: Windows Driver Package - Lenovo 1.65.05.21 (01/11/2012 1.65.05.21) - (.Lenovo.) [HKLM][64Bits] -- FD2ED46D31CE7DF190049D079E92DE03D347A634
O42 - Logiciel: GIMP 2.8.4 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1
O42 - Logiciel: Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2546951
O42 - Logiciel: Service Pack 1 for SQL Server 2012 (KB2674319) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2674319
O42 - Logiciel: GDR 3128 for SQL Server 2012 (KB2793634) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2793634
O42 - Logiciel: Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB968369
O42 - Logiciel: Lenovo Auto Scroll Utility - (...) [HKLM][64Bits] -- LenovoAutoScrollUtility
O42 - Logiciel: Modèle objet Microsoft Team Foundation Server 2010 - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Team Foundation Server 2010 Object Model - FRA
O42 - Logiciel: On Screen Display - (...) [HKLM][64Bits] -- OnScreenDisplay
O42 - Logiciel: Lenovo Power Management Driver - (...) [HKLM][64Bits] -- Power Management Driver
O42 - Logiciel: Process Hacker 2.32 (r5524) - (.wj32.) [HKLM][64Bits] -- Process_Hacker2_is1
O42 - Logiciel: ScanMaster-ELM 2.1.104.771 - (.WGSoft.de.) [HKLM][64Bits] -- ScanMaster-ELM_is1
O42 - Logiciel: Logitech SetPoint 6.52 - (.Logitech.) [HKLM][64Bits] -- sp6
O42 - Logiciel: ThinkPad UltraNav Driver - (...) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: WinHTTrack Website Copier 3.48-3 (x64) - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1
O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {033DFDB6-AAFA-4AF0-B5CA-93276FA910EF}
O42 - Logiciel: Lenovo Patch Utility 64 bit - (.Lenovo Group Limited.) [HKLM][64Bits] -- {0369F866-2CE0-4EB9-B426-88FA122C6E82}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34}
O42 - Logiciel: Web Deployment Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {0F37D969-1260-419E-B308-EF7D29ABDE20}
O42 - Logiciel: Visual Studio 2012 Prerequisites - ENU Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {13417784-A359-3CDD-8DE1-B7108707D647}
O42 - Logiciel: Microsoft Sync Framework Runtime v1.0 SP1 (x64) fr - (.Microsoft Corporation.) [HKLM][64Bits] -- {13BC74A0-C04A-4D91-8D5A-911DF4A7D6EE}
O42 - Logiciel: SQL Server 2012 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D411379-9CE0-4B13-A19B-72D3222DD620}
O42 - Logiciel: SQL Server 2012 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {202AAF1F-69AA-442A-B59F-6B54B1AD07C6}
O42 - Logiciel: SQL Server 2012 Master Data Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {20642C29-DF87-44A7-BD0C-66903C9FC6AE}
O42 - Logiciel: MaxiVista Demo Server v4.0.12 - (.Bartels Media GmbH.) [HKLM][64Bits] -- {211654D1-F7F8-4FF6-B008-354354354365}_is1
O42 - Logiciel: SQL Server 2012 Integration Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {22BCA430-2A68-4678-9824-184F3839948F}
O42 - Logiciel: Oracle VM VirtualBox 4.2.18 - (.Oracle Corporation.) [HKLM][64Bits] -- {230C9C86-26A9-437F-8152-34D5F4C3F680}
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000}
O42 - Logiciel: SQL Server 2012 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {26773F6F-E7B5-4F58-9347-0347C998BA7D}
O42 - Logiciel: SQL Server 2012 Management Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {26BFF1F1-5C03-4C55-9C7C-FD65889AFA70}
O42 - Logiciel: Windows Software Development Kit for Windows Store Apps DirectX x64 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {27EF252D-800C-ED42-9904-459FE0046225}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}
O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {3652FFB5-6F97-4113-9420-1A09A13FDDC8}
O42 - Logiciel: Microsoft Web Deploy 3.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3674F088-9B90-473A-AAC3-20A00D8D810C}
O42 - Logiciel: SQL Server 2012 Integration Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {36BF5D42-BF68-4E0C-A165-A4C6E9841F4A}
O42 - Logiciel: Message Center Plus - (.Lenovo Group Limited.) [HKLM][64Bits] -- {3849486C-FF09-4F5D-B491-3E179D58EE15}
O42 - Logiciel: SQL Server 2012 Data quality client - (.Microsoft Corporation.) [HKLM][64Bits] -- {3C50A8F3-6BB8-44E8-9B8B-D3696561DF2E}
O42 - Logiciel: Microsoft VSS Writer for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}
O42 - Logiciel: Windows App Certification Kit Native Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {3FA063D7-EDC1-AFA8-54AF-0563C7DEE070}
O42 - Logiciel: SQL Server 2012 Data quality service - (.Microsoft Corporation.) [HKLM][64Bits] -- {41203545-7D2E-48AE-81E9-E407BD87B703}
O42 - Logiciel: ThinkVantage Active Protection System - (.Lenovo.) [HKLM][64Bits] -- {46A84694-59EC-48F0-964C-7E76E9F8A2ED}
O42 - Logiciel: Lenovo Solution Center - (.Lenovo Group Limited.) [HKLM][64Bits] -- {4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1}
O42 - Logiciel: SQL Server 2012 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {54FF8FAB-DE27-4187-82F1-EBAE6AEE869A}
O42 - Logiciel: MySQL Connector C++ 1.1.3 - (.Oracle and/or its affiliates.) [HKLM][64Bits] -- {5C7A1ED6-DC5F-4017-B363-3E80644B4BD0}
O42 - Logiciel: RapidBoot Shield - (.Lenovo.) [HKLM][64Bits] -- {5E2652DF-743F-482B-A593-C95F431A5769}
O42 - Logiciel: Windows Software Development Kit DirectX x64 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {5FB4C443-6BD6-1514-2717-3827D65AE6FB}
O42 - Logiciel: Visual Studio 2012 Prerequisites - (.Microsoft Corporation.) [HKLM][64Bits] -- {61862D7C-CDBC-48D5-8AE1-3B8BD1E23BC5}
O42 - Logiciel: SQL Server 2012 BI Development Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {656E214E-B73F-458C-AD64-ED316F008207}
O42 - Logiciel: SQL Server 2012 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {6603C2CE-3C54-4F1D-92F9-8390CD4CCCA8}
O42 - Logiciel: Visual Studio 2010 Prerequisites - English - (.Microsoft Corporation.) [HKLM][64Bits] -- {662014D2-0450-37ED-ABAE-157C88127BEB}
O42 - Logiciel: SQL Server 2012 Client Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B3840D6-4B8F-4E74-9202-9CE36DA94E99}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: SQL Server 2012 Documentation Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {7272DF1C-2F88-43AC-A481-84DD67DF9746}
O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {74E7AE48-2396-4779-9642-B4B015A806EC}
O42 - Logiciel: SQL Server 2012 Client Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {7842C220-6E9A-4D5A-AE70-0E138271F883}
O42 - Logiciel: IIS 8.0 Express - (.Microsoft Corporation.) [HKLM][64Bits] -- {7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}
O42 - Logiciel: Fingerprint Reader - (.AuthenTec, Inc..) [HKLM][64Bits] -- {7DD99174-299B-4450-A179-7F27F4C2D042}
O42 - Logiciel: SQL Server 2012 Data quality client - (.Microsoft Corporation.) [HKLM][64Bits] -- {80162C08-0FA6-4656-9685-AD88C6527F0B}
O42 - Logiciel: MySQL Server 5.5 - (.Oracle Corporation.) [HKLM][64Bits] -- {83E02112-D21A-4BC1-B9AB-54A54F8BD093}
O42 - Logiciel: ThinkVantage Communications Utility - (.Lenovo.) [HKLM][64Bits] -- {88C6A6D9-324C-46E8-BA87-563D14021442}_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: SQL Server 2012 RS_SharePoint_SharedService - (.Microsoft Corporation.) [HKLM][64Bits] -- {91C4DE4A-CE48-4F8B-9D73-D2BFB619FB88}
O42 - Logiciel: SQL Server 2012 Analysis Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {9674CB74-4808-4B59-B79D-9AB501F23279}
O42 - Logiciel: Microsoft Sync Framework Services v1.0 SP1 (x64) fr - (.Microsoft Corporation.) [HKLM][64Bits] -- {9869DEA6-6162-4609-9301-6B3E95853016}
O42 - Logiciel: IIS Express Application Compatibility Database for x64 - (...) [HKLM][64Bits] -- {9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {A1439D4F-FD46-47F2-A1D3-FEE097C29A09}
O42 - Logiciel: SQL Server 2012 Management Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {A7037EB2-F953-4B12-B843-195F4D988DA1}
O42 - Logiciel: SQL Server 2012 Documentation Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3192F55-2CE8-4C8E-9E40-D3B4998276B2}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BDD99690-3541-4619-9D2A-3CDDB3E15F9E}
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {BED1EA3D-592D-4305-9D1F-20F03726EFC1}
O42 - Logiciel: Yodot Recovery Software - (.Yodot Software.) [HKLM][64Bits] -- {C129A19E-4C6E-47BF-9F35-B4A3C6F4E394}_is1
O42 - Logiciel: SQL Server 2012 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {C22864D5-FB3F-4609-BF0C-ADBCC70742C4}
O42 - Logiciel: Visual Studio 2010 Prerequisites - English - (.Microsoft Corporation.) [HKLM][64Bits] -- {C3175CF2-1DDD-3740-9AF7-0226CA07C6A0}
O42 - Logiciel: SQL Server 2012 Master Data Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {C9B827F2-6304-41AD-B7A7-54865A3952A1}
O42 - Logiciel: SQL Server 2012 Data quality service - (.Microsoft Corporation.) [HKLM][64Bits] -- {CB1265BA-F77A-4546-A26F-7C2C4C507878}
O42 - Logiciel: SQL Server 2012 Documentation Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {CECA0188-BD7A-43EF-B1F7-DDF719099C46}
O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {D05595D6-8288-4DF8-A911-FD8D76268815}
O42 - Logiciel: TortoiseSVN 1.8.2.24708 (64 bit) - (.TortoiseSVN.) [HKLM][64Bits] -- {D0DC3918-460D-4229-811E-41F22D0CD7E9}
O42 - Logiciel: SQL Server 2012 SQL Data Quality Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {D307B5CF-D1F0-48A4-8DA3-54765F535208}
O42 - Logiciel: MySQL Connector/ODBC 5.2 64bit (community edition) - (.Oracle Corporation.) [HKLM][64Bits] -- {D8053A16-A50E-401C-B162-18119EB7CC33}
O42 - Logiciel: Microsoft Team Foundation Server 2010 Object Model - FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- {DBEB7F64-74E1-382A-AA95-070DEF0905B3}
O42 - Logiciel: SQL Server 2012 Reporting Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCCB1789-1DA0-4E3A-A52F-7815B602CC98}
O42 - Logiciel: VMware Player - (.VMware, Inc..) [HKLM][64Bits] -- {E452E727-86B8-4233-8CC3-41FD817AFAFF}
O42 - Logiciel: SQL Server 2012 BI Development Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {EE1B54D1-BFBC-4C19-8D66-E0AF3E967896}
O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054}
O42 - Logiciel: SQL Server 2012 Full text search - (.Microsoft Corporation.) [HKLM][64Bits] -- {F02F102E-85FC-405B-A6DF-73B0BF644AF0}
O42 - Logiciel: Microsoft System CLR Types for SQL Server 2012 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F1949145-EB64-4DE7-9D81-E6D27937146C}
O42 - Logiciel: SQL Server 2012 Analysis Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FB1349FD-D102-4722-9F0A-2543670FF7FB}
O42 - Logiciel: SQL Server 2012 Reporting Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FCD81E1A-6ED6-4F19-A572-82FFE102654E}
O42 - Logiciel: IIS Express Application Compatibility Database for x86 - (...) [HKLM][64Bits] -- {fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Any Video Converter 5.8.3 - (.Any-Video-Converter.com.) [HKLM][64Bits] -- Any Video Converter_is1
O42 - Logiciel: Ardаmаx Keylogger 4.0.5 - (...) [HKLM][64Bits] -- Ardаmаx Keylogger 4.0.5
O42 - Logiciel: Audacity 2.0.6 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Balabolka - (.Ilya Morozov.) [HKLM][64Bits] -- Balabolka
O42 - Logiciel: Balsamiq Mockups For Desktop - (.Balsamiq SRL.) [HKLM][64Bits] -- BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player
O42 - Logiciel: Burn4Free DVD Burning 5.8.0.0 - (.Ikysasoft s.r.l. uninominale.) [HKLM][64Bits] -- Burn4Free DVD Burning_is1
O42 - Logiciel: CamStudio 2.0 Fr - (...) [HKLM][64Bits] -- CamStudio 2.0 Fr_is1
O42 - Logiciel: Cisco Packet Tracer 5.3.3 - (.Cisco Systems, Inc..) [HKLM][64Bits] -- Cisco Packet Tracer 5.3.3_is1
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: DivX Setup - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
O42 - Logiciel: DoliWamp-3.6.2 - (.NLTechno.) [HKLM][64Bits] -- doliwamp_is1
O42 - Logiciel: RapidBoot HDD Accelerator - (.Lenovo.) [HKLM][64Bits] -- Fastboot
O42 - Logiciel: FileZilla Client 3.7.3 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: FileZilla Server - (.FileZilla Project.) [HKLM][64Bits] -- FileZilla Server
O42 - Logiciel: Freecorder 8 Applications (8.0.1.0) - (.Applian Technologies.) [HKLM][64Bits] -- Freecorder 8 Applications
O42 - Logiciel: Freecorder extension - (.Applian Technologies Inc..) [HKLM][64Bits] -- Freecorder extension
O42 - Logiciel: Freecorder extension for Chrome - (.Applian Technologies, Inc..) [HKLM][64Bits] -- Freecorder extension for Chrome
O42 - Logiciel: Freecorder extension for Firefox - (.Applian Technologies, Inc..) [HKLM][64Bits] -- Freecorder extension for Firefox
O42 - Logiciel: Freecorder extension x64 - (.Applian Technologies Inc..) [HKLM][64Bits] -- Freecorder extension x64
O42 - Logiciel: GanttProject - (...) [HKLM][64Bits] -- GanttProject
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: IHMC CmapTools v5.06 - (.Institute for Human & Machine Cognition.) [HKLM][64Bits] -- IHMC CmapTools v5.06
O42 - Logiciel: Corel DVD MovieFactory Lenovo Edition - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{50F68032-B5B7-4513-9116-C978DBD8F27A}
O42 - Logiciel: Corel Burn.Now Lenovo Edition - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{A3BE3F1E-2472-4211-8735-E8239BE49D9F}
O42 - Logiciel: Direct DiscRecorder - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81}
O42 - Logiciel: Kaspersky Anti-Virus 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Intel AppUp(SM) center - (.Intel.) [HKLM][64Bits] -- Intel AppUp(SM) center 33057
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- League of Legends 3.0.1
O42 - Logiciel: Mozilla Firefox 39.0.3 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0.3 (x86 en-US)
O42 - Logiciel: Mozilla Thunderbird 31.7.0 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 31.7.0 (x86 en-US)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: mp3splt-gtk - (...) [HKLM][64Bits] -- mp3splt-gtk
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: Microsoft Visio Premium 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.VISIO
O42 - Logiciel: Microsoft Project Professionnel 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office15.PRJPROR
O42 - Logiciel: Microsoft Visio Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office15.VISPRO
O42 - Logiciel: PIXELRULER - (.Mioplanet.) [HKLM][64Bits] -- PIXELRULER
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: Resource Hacker Version 3.6.0 - (...) [HKLM][64Bits] -- ResourceHacker_is1
O42 - Logiciel: Results Hub - (.Results Hub.) [HKLM][64Bits] -- Results Hub
O42 - Logiciel: SecureCam 0.9 - (...) [HKLM][64Bits] -- SecureCam_is1
O42 - Logiciel: PcToPc_Chat - (...) [HKLM][64Bits] -- ST6UNST #1
O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF
O42 - Logiciel: Unlocker 1.9.1 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent
O42 - Logiciel: Nuclear Coffee - VideoGet - (.Nuclear Coffee.) [HKLM][64Bits] -- VideoGet_is1
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: VMware Player - (.VMware, Inc.) [HKLM][64Bits] -- VMware_Player
O42 - Logiciel: WampServer 2.2 - (.Hervé Leclerc (HeL).) [HKLM][64Bits] -- WampServer 2_is1
O42 - Logiciel: Webcam Zone Trigger - (.Omega Unfold inc.) [HKLM][64Bits] -- Webcam Zone Trigger
O42 - Logiciel: Windows Grep 2.3 - (...) [HKLM][64Bits] -- Windows Grep_is1
O42 - Logiciel: WindowSpace - (.NTWind Software.) [HKLM][64Bits] -- WindowSpace
O42 - Logiciel: WinHTTrack Website Copier 3.48-21 - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1
O42 - Logiciel: Zip Password Tool v. 2.3 - (.FDRLab Data Recovery Centre.) [HKLM][64Bits] -- Zip Password Tool_is1
O42 - Logiciel: Microsoft NuGet - Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {00EC8ABC-3C5A-40F8-A8CB-E7DCD5ABFA05}
O42 - Logiciel: Windows App Certification Kit x64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {02213A81-CB13-7262-5ABE-1FFA2C75559F}
O42 - Logiciel: Antidote 8 - (.Druide informatique inc..) [HKLM][64Bits] -- {09AAAB09-6DBA-4DD9-9865-54597D3FBCA8}
O42 - Logiciel: Entity Framework Designer for Visual Studio 2012 - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {0A1A1D48-DB23-443A-BC7B-49255D138020}
O42 - Logiciel: Balsamiq Mockups For Desktop - (.Balsamiq SRL.) [HKLM][64Bits] -- {0A2B82D6-1A9B-48F9-6865-5E0477A94D1A}
O42 - Logiciel: WCF Data Services 5.0 (for OData v3) Primary Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BCC836F-0B28-4090-B58A-64883BAA3B2F}
O42 - Logiciel: MySQL for Visual Studio 1.0.2 - (.Oracle.) [HKLM][64Bits] -- {0D406BCC-D62A-46FB-9AB7-A7BF10FB8B31}
O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {112C23F2-C036-4D40-BED4-0CB47BF5555C}
O42 - Logiciel: Lenovo User Guide - (.Lenovo Group Limited.) [HKLM][64Bits] -- {13F59938-C595-479C-B479-F171AB9AF64F}
O42 - Logiciel: Tools for .Net 3.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1690CE56-2231-4E59-9006-A0876D949EA8}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Microsoft Silverlight 4 SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {189AEA94-DAFB-487A-8CEE-F9D3DDE0A748}
O42 - Logiciel: Dotfuscator Software Services - Community Edition - (.PreEmptive Solutions.) [HKLM][64Bits] -- {1AA5BD63-6614-44B2-88A7-605191EDB835}
O42 - Logiciel: Microsoft Report Viewer Add-On for Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1DB43E5A-2F24-4F51-92B0-A2C0EBF5C742}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: Windows Software Development Kit DirectX x86 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {23176E97-26CB-C72A-19EB-BFB21AC1D15A}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Skype™ 7.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Lenovo System Update - (.Lenovo.) [HKLM][64Bits] -- {25C64847-B900-48AD-A164-1B4F9B774650}
O42 - Logiciel: Java 7 Update 55 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF}
O42 - Logiciel: PreEmptive Analytics Visual Studio Components - (.PreEmptive Solutions.) [HKLM][64Bits] -- {2C76E3DA-BA76-4FAD-B1B1-72B46D639028}
O42 - Logiciel: Lenovo Welcome - (.Lenovo Group Limited.) [HKLM][64Bits] -- {2DC26D10-CC6A-494F-BEA3-B5BC21126D5E}
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2280741
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2284668
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2295689
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2420513
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2452649
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2455033
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2485545
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB982517
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB982721
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB983233
O42 - Logiciel: Microsoft Sync Framework SDK v1.0 SP1 fr - (.Microsoft Corporation.) [HKLM][64Bits] -- {32071917-189D-4C08-8F7F-F27520EE6680}
O42 - Logiciel: Java SE Development Kit 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0170510}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {34927EBC-98D4-4D53-98BE-510DF5999F50}
O42 - Logiciel: Dotfuscator and Analytics Community Edition - (.PreEmptive Solutions.) [HKLM][64Bits] -- {372D17F6-A54E-4A01-B264-1314890FFE61}
O42 - Logiciel: MySQL Connector Net 6.8.3 - (.Oracle.) [HKLM][64Bits] -- {38157422-F952-42F7-88AA-CC16A63CD109}
O42 - Logiciel: WCF RIA Services V1.0 SP2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3A523AF9-D32F-4C85-8388-0335731F3405}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: MySQL Examples and Samples 5.5 - (.Oracle Corporation.) [HKLM][64Bits] -- {3D6A37F0-B9BA-48CD-8B19-9D0CD9A1C268}
O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}
O42 - Logiciel: Microsoft Silverlight 3 SDK - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- {3FF37A38-3781-493E-8EBF-BB143C843796}
O42 - Logiciel: Windows Software Development Kit for Windows Store Apps DirectX x86 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {42F61556-29ED-8122-F39E-6F04EA5FF279}
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}
O42 - Logiciel: SQL Server Browser for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B9E6EB0-0EED-4E74-9479-F982C3254F71}
O42 - Logiciel: MySQL Connector J - (.Oracle Corporation.) [HKLM][64Bits] -- {4C5FFB59-6222-45CA-9257-EFB93D5E1756}
O42 - Logiciel: Create Recovery Media - (.Lenovo Group Limited.) [HKLM][64Bits] -- {50DC5136-21E8-48BC-97E5-1AD055F6B0B6}
O42 - Logiciel: Data Lifeguard Diagnostic for Windows 1.24 - (.Western Digital Corporation.) [HKLM][64Bits] -- {519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE}
O42 - Logiciel: Blend for Visual Studio 2012 ENU resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {532DBCC8-9468-435C-AEF6-30B7F50735A2}
O42 - Logiciel: Kaspersky Anti-Virus 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- {560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Blend for Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {57F20F04-014D-453F-B6A3-AE9485C4DFAB}
O42 - Logiciel: RealSpeak Solo pour la voix francaise Virginie - (.ScanSoft.) [HKLM][64Bits] -- {58B0F3ED-6FAE-486C-9AB9-1C06514097B4}
O42 - Logiciel: Lenovo Solutions for Small Business Customizations - (.Lenovo Group Limited.) [HKLM][64Bits] -- {5B5DEF99-85E9-423D-A1A3-B83202697B09}
O42 - Logiciel: Corel WinDVD - (.Corel Inc..) [HKLM][64Bits] -- {5C1F18D2-F6B7-4242-B803-B5A78648185D}
O42 - Logiciel: Secure Download Manager - (.Kivuto Solutions Inc..) [HKLM][64Bits] -- {60232A95-0B96-4BBB-9798-85A6AB6F8210}
O42 - Logiciel: Windows Software Development Kit - (.Microsoft Corporation.) [HKLM][64Bits] -- {60D5EF2A-4E0C-2C30-38F6-59C26E134F4A}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: MySQL Workbench 6.0 CE - (.Oracle Corporation.) [HKLM][64Bits] -- {654A0779-F661-4D7C-B0EB-0DDF3CEDE963}
O42 - Logiciel: Check Point Deployment Shell - (.Check Point.) [HKLM][64Bits] -- {67032d10-1968-4866-883b-feda77e4d74b}
O42 - Logiciel: Lenovo Registration - (.Lenovo Inc..) [HKLM][64Bits] -- {6707C034-ED6B-4B6A-B21F-969B3606FBDE}
O42 - Logiciel: MySQL Utilities - (.Oracle.) [HKLM][64Bits] -- {6A494EFD-CFC6-4534-9E14-26D3F7D888DE}
O42 - Logiciel: MySQL Installer - (.Oracle Corporation.) [HKLM][64Bits] -- {6BAE8549-2823-4919-B73A-19886411140F}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Lenovo Patch Utility - (.Lenovo Group Limited.) [HKLM][64Bits] -- {6E6E7725-C7BC-4C39-8B3F-14B67331A120}
O42 - Logiciel: Microsoft LightSwitch for Visual Studio 2012 Core - (.Microsoft Corporation.) [HKLM][64Bits] -- {7437A4B9-314F-3B8F-827B-22909146E471}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {79BF4901-1EC4-4726-B3C2-A7859706C6E7}
O42 - Logiciel: Check Point SSL Network Extender Service - (.CheckPoint.) [HKLM][64Bits] -- {7df0a49a-a935-46b6-b12e-0c3a92bff1fc}
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2280741
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2284668
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2295689
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2420513
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2452649
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2455033
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2485545
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB982517
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB982721
O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB983233
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}
O42 - Logiciel: Nalpeiron License Management - (.Nalpeiron.) [HKLM][64Bits] -- {86148F87-2666-42F9-A712-1306176C525C}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: MySQL For Excel 1.1.1 - (.Oracle.) [HKLM][64Bits] -- {88C06BF4-9A84-42FE-A0B2-CB3A49DDBBF0}
O42 - Logiciel: Visual Studio Extensions for Windows Library for JavaScript - (.Microsoft Corporation.) [HKLM][64Bits] -- {89B4532E-19CE-4FA9-9692-10BFD5A38532}
O42 - Logiciel: MySQL Documents 5.5 - (.Oracle Corporation.) [HKLM][64Bits] -- {8AD8784C-F05C-43DD-BDB8-C53D0BAED345}
O42 - Logiciel: Stronghold Crusader Extreme - (.Firefly Studios.) [HKLM][64Bits] -- {8C3727F2-8E37-49E4-820C-03B1677F53B6}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: ThinkVantage Access Connections - (.Lenovo.) [HKLM][64Bits] -- {8E537894-A559-4D60-B3CB-F4485E3D24E3}
O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Visio Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0051-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Visio MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0054-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Project MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00B4-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-0000-0000000FF1CE}
O42 - Logiciel: AbelCam - (.Seiz System Engineering.) [HKLM][64Bits] -- {90758578-DD0A-4FC6-B1DF-0DF0A2961D03}
O42 - Logiciel: Microsoft Project Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91150000-003B-0000-0000-0000000FF1CE}
O42 - Logiciel: Prerequisites for SSDT - (.Microsoft Corporation.) [HKLM][64Bits] -- {9169C939-ED01-446A-BD0C-29873BAF4E48}
O42 - Logiciel: Assistant de téléchargement - (.Druide informatique inc..) [HKLM][64Bits] -- {92154A3C-9BB7-49D7-A571-4EB6373FA5AD}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E}
O42 - Logiciel: FFmpeg (Windows) for Audacity version 2.2.2 - (...) [HKLM][64Bits] -- {9C7E31E3-017F-434C-AC40-24431A354A1E}_is1
O42 - Logiciel: Microsoft Report Viewer 2012 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {9CCE40CE-A9E6-4916-8729-B008558EEF3F}
O42 - Logiciel: Js Debug 1.0 - (.ayound.) [HKLM][64Bits] -- {9F76BE1B-53D6-4274-AF3C-38B333B9B05F}_is1
O42 - Logiciel: Intel(R) Manageability Engine Firmware Recovery Agent - (.Intel Corporation.) [HKLM][64Bits] -- {A6C48A9F-694A-4234-B3AA-62590B668927}
O42 - Logiciel: Integrated Camera Driver Installer Package Ver.1.2.1.18 - (.RICOH.) [HKLM][64Bits] -- {A78800AF-1779-4AE8-8EBE-16E1BE727C71}
O42 - Logiciel: MSI to redistribute MS VS2005 CRT libraries - (.The Firebird Project.) [HKLM][64Bits] -- {A8D93648-9F7F-407D-915C-62044644C3DA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Crystal Reports for Visual Studio - (.SAP.) [HKLM][64Bits] -- {AC41D924-8C68-4BD5-A7A1-0AE4176C31A6}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM][64Bits] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {B40D9A2E-C9CA-4402-A0B7-09E33C03B9C5}
O42 - Logiciel: LocalESPCui for en-us - (.Microsoft.) [HKLM][64Bits] -- {B5DA9D49-9BD8-0F2F-52FC-C7E66BC8D944}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {B7B3E9B3-FB14-4927-894B-E9124509AF5A}
O42 - Logiciel: Microsoft Web Developer Tools - Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B96FCD4F-6EDD-4258-8A6D-0FCEA8445E3E}
O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack Language Pack - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {BAD0254F-9BDB-3D14-A5AC-9C0EF51F3D09}
O42 - Logiciel: LocalESPC - (.Microsoft Corporation.) [HKLM][64Bits] -- {BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {C4CAD994-6EA2-3121-8352-DA593150B322}
O42 - Logiciel: Windows Runtime Intellisense Content - en-us - (.Microsoft Corporation.) [HKLM][64Bits] -- {C81452EB-CBCF-B8EB-3124-48C5B3D506B0}
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}
O42 - Logiciel: MP3 Skype Recorder - (.Alexander Nikiforov.) [HKLM][64Bits] -- {CB606F47-7D0E-40DF-95BB-0E5413A1295F}
O42 - Logiciel: Microsoft WebMatrix 3 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D093B71B-8575-4656-9CE0-0E6C006F8818}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Windows Software Development Kit for Windows Store Apps - (.Microsoft Corporation.) [HKLM][64Bits] -- {D11F66FF-82B3-DDB8-1146-525370552BE1}
O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- {D60023FA-3DF1-4537-93DD-13024CC4E366}
O42 - Logiciel: Sandcastle Help File Builder - (.EWSoftware.) [HKLM][64Bits] -- {D7A69447-7186-4507-BC03-C4E7CEEB4FD9}
O42 - Logiciel: MySQL Notifier 1.1.4 - (.Oracle.) [HKLM][64Bits] -- {D7C3E617-EB02-47B3-8D0E-BF3E00D873D5}
O42 - Logiciel: Power Manager - (...) [HKLM][64Bits] -- {DAC01CEE-5BAE-42D5-81FC-B687E84E8405}
O42 - Logiciel: Metric Collection SDK - (.Lenovo Group Limited.) [HKLM][64Bits] -- {DDAA788F-52E6-44EA-ADB8-92837B11BF26}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: 4Videosoft iPhone Transfer Platinum 6.0.12 - (...) [HKLM][64Bits] -- {E16D939E-1E8B-44ca-A57A-9A8768BFAA0E}_is1
O42 - Logiciel: Microsoft Silverlight 5 SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {E1FBB3D4-ADB0-4949-B101-855DA061C735}
O42 - Logiciel: Microsoft System CLR Types for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}
O42 - Logiciel: Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {E4ADE757-7FE9-322D-9CAE-C77D77A2D2BF}
O42 - Logiciel: Microsoft Web Deploy dbSqlPackage Provider - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {E4C33F5B-1B2F-466E-957E-B274F08151A0}
O42 - Logiciel: Jump Desktop - (.Phase Five Systems.) [HKLM][64Bits] -- {E75634FB-B0FD-4759-AFC3-E494FC83F2DA}
O42 - Logiciel: VIP Access - (.VeriSign.) [HKLM][64Bits] -- {E8D46836-CD55-453C-A107-A59EC51CB8DC}
O42 - Logiciel: MSI to redistribute MS VS2005 CRT libraries - (.The Firebird Project.) [HKLM][64Bits] -- {EBFC96E5-4409-426E-88B7-650ADB342E78}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: YAPA - (.Lukasz Banasiak.) [HKLM][64Bits] -- {FA9C131C-3B81-4003-AED6-845C097A2F84}
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Lenovo Warranty Information - (.Lenovo.) [HKLM][64Bits] -- {FD4EC278-C1B1-4496-99ED-C0BE1B0AA521}
O42 - Logiciel: OneKey Recovery Pro - (.Lenovo Group Limited.) [HKLM][64Bits] -- {FF162784-CFFE-4193-AE24-7FC476812ABE}
O42 - Logiciel: Dofus - (.Ankama.) [HKCU][64Bits] -- 2744A393-554C-4E35-A24F-DEF0392B4484-2
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent
O42 - Logiciel: CodeBlocks - (.The Code::Blocks Team.) [HKCU][64Bits] -- CodeBlocks
O42 - Logiciel: f.lux - (...) [HKCU][64Bits] -- Flux
O42 - Logiciel: GameRanger - (.GameRanger Technologies.) [HKCU][64Bits] -- GameRanger
O42 - Logiciel: Kodi - (.XBMC-Foundation.) [HKCU][64Bits] -- Kodi
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber

---\\ HKCU & HKLM Software Keys (270) - 19s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\ADSoft
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Alexander Avdonin
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Applian Technologies
HKLM\SOFTWARE\Wow6432Node\ARK_NET
HKLM\SOFTWARE\Wow6432Node\AuthenTec
HKLM\SOFTWARE\Wow6432Node\Belarc
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\Bunndle
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CheckPoint
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Conexant
HKLM\SOFTWARE\Wow6432Node\Corel
HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions
HKLM\SOFTWARE\Wow6432Node\Digital River
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\DivX
HKLM\SOFTWARE\Wow6432Node\DivXNetworks
HKLM\SOFTWARE\Wow6432Node\Dofus2
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\DRWDemo1
HKLM\SOFTWARE\Wow6432Node\Earth Resource Mapping
HKLM\SOFTWARE\Wow6432Node\EASEUS
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\ERDAS
HKLM\SOFTWARE\Wow6432Node\eSellerate
HKLM\SOFTWARE\Wow6432Node\ESET
HKLM\SOFTWARE\Wow6432Node\FFmpeg for Audacity
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\FileZilla Server
HKLM\SOFTWARE\Wow6432Node\Firefly Studios
HKLM\SOFTWARE\Wow6432Node\Freecorder
HKLM\SOFTWARE\Wow6432Node\GanttProject
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\IBM
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\InterVideo
HKLM\SOFTWARE\Wow6432Node\Jaksta Technologies
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\JumpDesktop
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Lake
HKLM\SOFTWARE\Wow6432Node\Lame For Audacity
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Logitech
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision
HKLM\SOFTWARE\Wow6432Node\Macserlen
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\Mio
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\mp3splt-gtk
HKLM\SOFTWARE\Wow6432Node\MySQL AB
HKLM\SOFTWARE\Wow6432Node\Nalpeiron
HKLM\SOFTWARE\Wow6432Node\NLTechno
HKLM\SOFTWARE\Wow6432Node\Norton
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Novell
HKLM\SOFTWARE\Wow6432Node\Nuclear Coffee
HKLM\SOFTWARE\Wow6432Node\NuGet
HKLM\SOFTWARE\Wow6432Node\Nwpi
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Overwolf
HKLM\SOFTWARE\Wow6432Node\Pando Networks
HKLM\SOFTWARE\Wow6432Node\PowerISO
HKLM\SOFTWARE\Wow6432Node\PreEmptive Solutions
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Red Gate
HKLM\SOFTWARE\Wow6432Node\ResultsHub
HKLM\SOFTWARE\Wow6432Node\RICOH
HKLM\SOFTWARE\Wow6432Node\Riot Games
HKLM\SOFTWARE\Wow6432Node\S3R521
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\ScanSoft
HKLM\SOFTWARE\Wow6432Node\Seagate Software
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Splashtop Inc.
HKLM\SOFTWARE\Wow6432Node\StarUML
HKLM\SOFTWARE\Wow6432Node\Swearware
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\Telerik
HKLM\SOFTWARE\Wow6432Node\ThinkVantage
HKLM\SOFTWARE\Wow6432Node\ThinPrint
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKLM\SOFTWARE\Wow6432Node\TortoiseOverlays
HKLM\SOFTWARE\Wow6432Node\TortoiseSVN
HKLM\SOFTWARE\Wow6432Node\TrendMicro
HKLM\SOFTWARE\Wow6432Node\Ulead Systems
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Visicom Media
HKLM\SOFTWARE\Wow6432Node\VMware, Inc.
HKLM\SOFTWARE\Wow6432Node\Westwood
HKLM\SOFTWARE\Wow6432Node\WinHTTrack Website Copier
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\wvc
HKLM\SOFTWARE\Wow6432Node\Yodot Software
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\4shared
HKCU\SOFTWARE\4Videosoft Studio
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Alexander Avdonin
HKCU\SOFTWARE\Andrew Zhezherun
HKCU\SOFTWARE\Ankama
HKCU\SOFTWARE\Anvsoft
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\AuthenTec
HKCU\SOFTWARE\Balabolka
HKCU\SOFTWARE\Belarc
HKCU\SOFTWARE\Binary Noise
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Burn4Free
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\CheckPoint
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Cisco
HKCU\SOFTWARE\CodeBlocks
HKCU\SOFTWARE\codesnippets
HKCU\SOFTWARE\com.electricplum.ems2012
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\Conexant
HKCU\SOFTWARE\Corel
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DivX
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DriverTuner =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\DriverTuner_Init =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\Druide informatique inc.
HKCU\SOFTWARE\e-academy Inc.
HKCU\SOFTWARE\Earth Resource Mapping
HKCU\SOFTWARE\EaseUS
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\EpmNewsInfo
HKCU\SOFTWARE\ERDAS
HKCU\SOFTWARE\Evernote
HKCU\SOFTWARE\FANiSO
HKCU\SOFTWARE\FileOpen
HKCU\SOFTWARE\FileZilla Server
HKCU\SOFTWARE\Firetrust
HKCU\SOFTWARE\Flux
HKCU\SOFTWARE\Freecorder
HKCU\SOFTWARE\FreeMeter
HKCU\SOFTWARE\GameRanger
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\IBM
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\InterVideo
HKCU\SOFTWARE\ispy
HKCU\SOFTWARE\Jaksta Technologies
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JetBrains
HKCU\SOFTWARE\JumiTech
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\Kivuto Solutions Inc.
HKCU\SOFTWARE\Kodi
HKCU\SOFTWARE\Lake
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Lenovo
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogiShrd
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MapInfo
HKCU\SOFTWARE\MaxiVista
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\MediaLooks
HKCU\SOFTWARE\Michael Herf
HKCU\SOFTWARE\Mio
HKCU\SOFTWARE\mioreader
HKCU\SOFTWARE\MotionDSP
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MySQL
HKCU\SOFTWARE\MySQL AB
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nitro PDF
HKCU\SOFTWARE\None provided
HKCU\SOFTWARE\Norton
HKCU\SOFTWARE\Novell
HKCU\SOFTWARE\Nuclear Coffee
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Omega Unfold
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\Pando Networks
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\pth264
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Red Gate
HKCU\SOFTWARE\Red Gate Software Ltd.
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\Sakari Indie
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\SILVERRUN
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\StarUML
HKCU\SOFTWARE\Symantec
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Systems Internals
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Telerik
HKCU\SOFTWARE\Tenebril
HKCU\SOFTWARE\Thingummy Software
HKCU\SOFTWARE\TimingEditor
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\TortoiseMerge
HKCU\SOFTWARE\TortoiseSVN
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Ulead Systems
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Unity Technologies
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Veoh
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\VMware, Inc.
HKCU\SOFTWARE\Webcam Simulator
HKCU\SOFTWARE\Wget
HKCU\SOFTWARE\WGSoft
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\Windows Grep
HKCU\SOFTWARE\Windows Live Writer
HKCU\SOFTWARE\WinHTTrack Website Copier
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Winternals
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\wvc
HKCU\SOFTWARE\yarpen.cz
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\CheckPoint
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar
HKCU\SOFTWARE\AppDataLow\Software\ThinPrint
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Contents of the Common Files folders (585) - 16s
O43 - CFD: 2013/07/29 21:17:17 - [] D -- C:\Program Files (x86)\4Videosoft Studio
O43 - CFD: 2013/03/10 21:41:06 - [] D -- C:\Program Files (x86)\7-Zip
O43 - CFD: 2014/11/03 14:16:30 - [] D -- C:\Program Files (x86)\AbelCam
O43 - CFD: 2013/07/05 15:39:02 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/08/18 14:58:28 - [] D -- C:\Program Files (x86)\Anvsoft
O43 - CFD: 2013/03/10 21:41:07 - [] D -- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 2013/07/18 15:52:06 - [] D -- C:\Program Files (x86)\Applian Technologies
O43 - CFD: 2013/03/16 17:24:31 - [] D -- C:\Program Files (x86)\Application Verifier
O43 - CFD: 2015/01/23 22:55:45 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 2015/05/01 02:38:51 - [] D -- C:\Program Files (x86)\Balabolka
O43 - CFD: 2014/01/15 17:53:17 - [] D -- C:\Program Files (x86)\Balsamiq Mockups
O43 - CFD: 2014/03/01 00:07:24 - [0] D -- C:\Program Files (x86)\Belarc
O43 - CFD: 2014/09/21 17:19:11 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 2014/01/24 13:13:45 - [] D -- C:\Program Files (x86)\Bonjour
O43 - CFD: 2014/04/21 17:34:36 - [] D -- C:\Program Files (x86)\Burn4Free
O43 - CFD: 2013/03/10 21:41:07 - [] D -- C:\Program Files (x86)\CamStudio
O43 - CFD: 2014/03/03 13:22:18 - [] D -- C:\Program Files (x86)\CheckPoint
O43 - CFD: 2013/03/10 21:41:07 - [] D -- C:\Program Files (x86)\Cisco Packet Tracer 5.3.3
O43 - CFD: 2013/09/24 01:06:22 - [] D -- C:\Program Files (x86)\CodeBlocks
O43 - CFD: 2015/08/20 01:58:02 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/05/16 20:04:17 - [0] D -- C:\Program Files (x86)\Conduit
O43 - CFD: 2012/10/13 23:03:57 - [] D -- C:\Program Files (x86)\Corel
O43 - CFD: 2013/03/18 12:43:26 - [] D -- C:\Program Files (x86)\Counter-Strike 1.6
O43 - CFD: 2012/12/27 14:49:10 - [] D -- C:\Program Files (x86)\Counter-Strike Source
O43 - CFD: 2013/07/22 18:58:45 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2014/12/26 03:57:10 - [] D -- C:\Program Files (x86)\DivX
O43 - CFD: 2013/03/10 21:41:28 - [] D -- C:\Program Files (x86)\Dolby Advanced Audio v2
O43 - CFD: 2015/03/12 14:39:02 - [] D -- C:\Program Files (x86)\Druide
O43 - CFD: 2013/07/22 19:05:51 - [0] D -- C:\Program Files (x86)\dumps
O43 - CFD: 2013/02/22 21:46:06 - [] D -- C:\Program Files (x86)\EA Games
O43 - CFD: 2013/11/01 23:27:57 - [] D -- C:\Program Files (x86)\EA SPORTS
O43 - CFD: 2014/01/01 16:21:19 - [] D -- C:\Program Files (x86)\EaseUS
O43 - CFD: 2013/11/18 14:58:03 - [0] D -- C:\Program Files (x86)\Electric Plum
O43 - CFD: 2014/04/30 09:42:54 - [] D -- C:\Program Files (x86)\EWSoftware
O43 - CFD: 2014/06/24 09:31:30 - [] D -- C:\Program Files (x86)\FDRLab
O43 - CFD: 2015/01/23 22:58:14 - [] D -- C:\Program Files (x86)\FFmpeg for Audacity
O43 - CFD: 2013/10/05 13:10:29 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 2013/10/02 20:23:07 - [] D -- C:\Program Files (x86)\FileZilla Server
O43 - CFD: 2013/05/09 19:54:08 - [] D -- C:\Program Files (x86)\Firefly Studios
O43 - CFD: 2013/04/12 10:00:02 - [] D -- C:\Program Files (x86)\Firetrust
O43 - CFD: 2014/05/23 17:37:26 - [] D -- C:\Program Files (x86)\Freecorder extension =>PUP.Optional.FreecorderExtension
O43 - CFD: 2014/08/03 21:29:06 - [] D -- C:\Program Files (x86)\GanttProject-2.6
O43 - CFD: 2013/12/12 11:16:33 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2013/03/10 21:41:29 - [] D -- C:\Program Files (x86)\HTML Help Workshop
O43 - CFD: 2014/11/24 21:07:55 - [] D -- C:\Program Files (x86)\IHMC CmapTools
O43 - CFD: 2013/03/16 17:19:15 - [] D -- C:\Program Files (x86)\IIS
O43 - CFD: 2013/03/16 17:20:16 - [] D -- C:\Program Files (x86)\IIS Express
O43 - CFD: 2014/01/21 02:29:39 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2013/03/10 21:41:31 - [] D -- C:\Program Files (x86)\Integrated Camera Driver
O43 - CFD: 2013/04/26 21:52:05 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2014/05/23 17:37:25 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 2014/06/12 11:27:58 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2014/11/14 13:37:59 - [] D -- C:\Program Files (x86)\iTunes
O43 - CFD: 2014/05/19 15:28:27 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2013/09/16 14:06:57 - [] D -- C:\Program Files (x86)\JS Debug
O43 - CFD: 2013/07/27 01:50:21 - [] D -- C:\Program Files (x86)\Jumi
O43 - CFD: 2014/03/22 22:36:00 - [] D -- C:\Program Files (x86)\Jump Desktop
O43 - CFD: 2015/08/19 23:57:59 - [] D -- C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 2015/07/22 12:30:46 - [] D -- C:\Program Files (x86)\Kodi
O43 - CFD: 2014/10/28 19:10:44 - [] D -- C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 2015/07/17 13:40:49 - [] D -- C:\Program Files (x86)\Lenovo
O43 - CFD: 2013/03/10 21:41:37 - [] D -- C:\Program Files (x86)\Lenovo Registration
O43 - CFD: 2013/10/09 21:09:18 - [] D -- C:\Program Files (x86)\MapInfo
O43 - CFD: 2012/12/07 08:36:25 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 2013/03/16 17:21:44 - [] D -- C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 2014/01/30 01:41:41 - [] D -- C:\Program Files (x86)\Microsoft F#
O43 - CFD: 2013/03/16 17:12:38 - [] D -- C:\Program Files (x86)\Microsoft Help Viewer
O43 - CFD: 2014/02/02 10:14:58 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2013/03/16 17:27:28 - [] D -- C:\Program Files (x86)\Microsoft SDKs
O43 - CFD: 2014/03/12 11:19:45 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2014/02/02 11:14:21 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 2013/03/16 17:25:24 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2012/12/07 08:39:23 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 2012/12/04 08:44:21 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 2014/02/02 09:26:33 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 10.0
O43 - CFD: 2013/03/16 17:30:44 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 11.0
O43 - CFD: 2012/12/07 08:37:18 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2012/12/04 08:22:18 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
O43 - CFD: 2013/03/16 17:19:25 - [] D -- C:\Program Files (x86)\Microsoft WCF Data Services
O43 - CFD: 2013/03/16 17:20:54 - [] D -- C:\Program Files (x86)\Microsoft Web Tools
O43 - CFD: 2014/01/28 08:08:58 - [] D -- C:\Program Files (x86)\Microsoft WebMatrix
O43 - CFD: 2012/12/04 08:49:31 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2013/10/04 14:29:40 - [] D -- C:\Program Files (x86)\Mioplanet
O43 - CFD: 2015/08/20 01:08:54 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/08/20 01:08:54 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/05/20 21:09:17 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2014/04/21 17:34:36 - [] D -- C:\Program Files (x86)\MP3 Skype Recorder
O43 - CFD: 2014/11/08 21:44:56 - [] D -- C:\Program Files (x86)\mp3splt-gtk
O43 - CFD: 2014/02/02 10:05:59 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2012/11/13 23:05:28 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2014/05/02 00:41:13 - [] D -- C:\Program Files (x86)\MySQL
O43 - CFD: 2013/10/09 20:58:39 - [] D -- C:\Program Files (x86)\Northwood
O43 - CFD: 2013/10/10 03:57:56 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 2012/12/31 20:12:07 - [] D -- C:\Program Files (x86)\Nuclear Coffee
O43 - CFD: 2013/03/16 17:19:31 - [] D -- C:\Program Files (x86)\NuGet
O43 - CFD: 2013/11/30 17:18:21 - [] D -- C:\Program Files (x86)\Pando Networks
O43 - CFD: 2013/08/10 12:02:48 - [] D -- C:\Program Files (x86)\PcToPcChat
O43 - CFD: 2013/03/10 21:42:16 - [] D -- C:\Program Files (x86)\PowerISO
O43 - CFD: 2014/11/14 13:40:04 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 2012/10/13 23:13:00 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 01:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2013/03/10 21:42:18 - [] D -- C:\Program Files (x86)\Resource Hacker
O43 - CFD: 2015/08/20 01:08:55 - [] D -- C:\Program Files (x86)\Results Hub
O43 - CFD: 2015/05/01 02:44:29 - [] D -- C:\Program Files (x86)\ScanSoft
O43 - CFD: 2014/11/03 11:41:32 - [] D -- C:\Program Files (x86)\SecureCam
O43 - CFD: 2013/07/22 20:38:52 - [] D -- C:\Program Files (x86)\Sid Meier's Civilization V
O43 - CFD: 2015/05/22 11:24:23 - [] RD -- C:\Program Files (x86)\Skype
O43 - CFD: 2013/05/14 00:14:45 - [] D -- C:\Program Files (x86)\Splashtop
O43 - CFD: 2015/04/13 10:05:22 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 2014/05/23 18:39:07 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 2015/04/16 04:16:33 - [] D -- C:\Program Files (x86)\SumatraPDF
O43 - CFD: 2012/10/13 23:10:03 - [] D -- C:\Program Files (x86)\Symantec
O43 - CFD: 2013/03/10 21:42:18 - [] D -- C:\Program Files (x86)\SymSilent
O43 - CFD: 2013/02/27 21:52:33 - [] D -- C:\Program Files (x86)\Telerik
O43 - CFD: 2012/10/13 22:53:29 - [] D -- C:\Program Files (x86)\ThinkPad
O43 - CFD: 2009/07/14 00:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2013/06/12 10:03:01 - [] D -- C:\Program Files (x86)\Unity
O43 - CFD: 2013/07/25 04:29:41 - [] D -- C:\Program Files (x86)\Unlocker
O43 - CFD: 2013/09/12 19:28:03 - [] D -- C:\Program Files (x86)\uTorrent
O43 - CFD: 2013/01/02 12:11:15 - [] D -- C:\Program Files (x86)\Veoh Networks
O43 - CFD: 2012/12/31 17:56:36 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/04/04 15:13:48 - [] D -- C:\Program Files (x86)\VMware
O43 - CFD: 2014/01/26 23:00:23 - [] D -- C:\Program Files (x86)\Webcam Video Capture 7.0
O43 - CFD: 2014/11/03 11:44:07 - [] D -- C:\Program Files (x86)\Webcam Zone Trigger
O43 - CFD: 2014/01/01 15:48:23 - [] D -- C:\Program Files (x86)\Western Digital Corporation
O43 - CFD: 2013/12/06 05:57:48 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2014/04/01 08:20:06 - [] D -- C:\Program Files (x86)\Windows Grep
O43 - CFD: 2013/03/16 17:17:01 - [] D -- C:\Program Files (x86)\Windows Kits
O43 - CFD: 2013/07/03 21:10:50 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2013/12/11 18:29:10 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 01:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2013/03/10 21:46:33 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/05/03 14:46:31 - [] D -- C:\Program Files (x86)\WinHTTrack
O43 - CFD: 2013/07/12 22:40:02 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2015/01/12 16:25:21 - [] D -- C:\Program Files (x86)\YAPA
O43 - CFD: 2014/04/21 17:34:36 - [] D -- C:\Program Files (x86)\Your Uninstaller! 7
O43 - CFD: 2014/11/24 21:07:55 - [] HD -- C:\Program Files (x86)\Zero G Registry
O43 - CFD: 2013/07/29 21:17:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4Videosoft
O43 - CFD: 2013/03/10 21:42:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 2014/11/03 14:16:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AbelCam
O43 - CFD: 2014/06/26 06:42:05 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/01/28 16:59:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/03/12 14:40:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 2015/08/18 14:59:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft
O43 - CFD: 2013/12/16 01:43:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ardаmаx Keylogger 4.0.5
O43 - CFD: 2014/09/21 17:19:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 2013/07/04 22:53:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Burn4Free
O43 - CFD: 2013/03/10 21:42:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio
O43 - CFD: 2015/04/11 19:44:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer
O43 - CFD: 2013/09/24 01:05:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel DVD MovieFactory Lenovo Edition
O43 - CFD: 2015/04/17 16:53:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
O43 - CFD: 2013/07/22 18:59:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2014/12/26 03:56:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
O43 - CFD: 2015/03/03 20:30:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dofus2
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
O43 - CFD: 2015/03/24 14:55:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolibarr
O43 - CFD: 2013/10/05 13:10:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2013/10/02 20:23:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla Server
O43 - CFD: 2013/06/24 23:09:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firebird 2.5 (x64)
O43 - CFD: 2013/05/09 19:55:24 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2014/08/03 21:29:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GanttProject
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/12/12 11:16:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 2014/11/24 21:07:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IHMC CmapTools
O43 - CFD: 2013/03/10 21:42:51 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(SM) center
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2014/11/14 13:38:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 2014/05/19 15:28:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2013/12/03 00:17:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 2013/09/15 02:44:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Js Debug
O43 - CFD: 2013/07/27 00:28:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jump Desktop
O43 - CFD: 2015/08/20 00:15:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013
O43 - CFD: 2015/02/24 02:06:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 2015/07/17 13:40:52 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools
O43 - CFD: 2013/03/26 18:19:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 2015/01/12 16:25:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lukasz Banasiak
O43 - CFD: 2013/03/10 21:46:34 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/10 01:58:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxiVista Demo Server
O43 - CFD: 2014/01/08 00:48:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2014/08/01 21:48:39 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 2014/03/12 10:54:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK - Français
O43 - CFD: 2013/03/16 17:26:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 4 SDK
O43 - CFD: 2013/03/16 17:26:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK
O43 - CFD: 2014/01/28 12:03:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
O43 - CFD: 2014/01/28 09:12:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 R2
O43 - CFD: 2014/02/02 10:18:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2012
O43 - CFD: 2012/12/04 08:44:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Sync Framework
O43 - CFD: 2014/02/03 10:09:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010
O43 - CFD: 2013/05/21 08:45:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
O43 - CFD: 2014/01/28 08:08:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft WebMatrix
O43 - CFD: 2013/10/04 14:29:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mioplanet
O43 - CFD: 2014/11/08 21:44:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mp3splt-gtk
O43 - CFD: 2014/05/02 00:41:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2013/11/26 14:22:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
O43 - CFD: 2015/07/06 16:12:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Vault
O43 - CFD: 2013/08/10 12:02:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PcToPc_Chat
O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 2013/11/18 14:07:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2
O43 - CFD: 2014/11/14 13:39:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker
O43 - CFD: 2014/04/30 09:43:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandcastle Help File Builder
O43 - CFD: 2014/07/17 22:04:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanMaster-ELM
O43 - CFD: 2014/11/03 11:41:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecureCam
O43 - CFD: 2013/12/08 03:14:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
O43 - CFD: 2014/09/17 16:19:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2014/05/23 17:37:28 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2011/12/08 16:02:50 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/02/21 22:12:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 2015/01/12 17:16:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tomighty
O43 - CFD: 2013/10/28 12:39:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseSVN
O43 - CFD: 2014/04/10 17:50:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity
O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoGet
O43 - CFD: 2014/02/25 01:21:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/04/04 15:14:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
O43 - CFD: 2013/08/27 09:01:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer
O43 - CFD: 2014/01/01 15:48:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
O43 - CFD: 2013/11/17 21:10:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Grep
O43 - CFD: 2013/03/16 17:24:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
O43 - CFD: 2013/12/15 21:22:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WindowSpace
O43 - CFD: 2015/05/03 14:46:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinHTTrack
O43 - CFD: 2014/01/01 16:16:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yodot Hard Drive Recovery
O43 - CFD: 2014/04/21 17:34:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
O43 - CFD: 2014/06/24 09:31:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zip Password Tool
O43 - CFD: 2014/11/14 13:37:13 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2015/08/20 17:39:05 - [] D -- C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656
O43 - CFD: 2013/07/29 21:17:17 - [] D -- C:\ProgramData\4Videosoft Studio
O43 - CFD: 2013/07/06 11:05:33 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2013/06/25 17:26:43 - [] D -- C:\ProgramData\Allmyapps =>PUP.Optional.Generic
O43 - CFD: 2014/04/21 16:44:28 - [] D -- C:\ProgramData\Alwil Software
O43 - CFD: 2014/01/24 13:11:49 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2012/12/14 14:25:02 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2014/06/28 10:14:55 - [] D -- C:\ProgramData\bdch
O43 - CFD: 2014/05/24 08:24:30 - [] D -- C:\ProgramData\BDLogging
O43 - CFD: 2014/09/21 17:19:11 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 2015/04/11 20:10:55 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 2013/05/06 00:51:58 - [] D -- C:\ProgramData\Brother
O43 - CFD: 2014/11/03 14:16:41 - [] D -- C:\ProgramData\Caphyon
O43 - CFD: 2013/01/09 03:14:23 - [] D -- C:\ProgramData\Conexant
O43 - CFD: 2012/10/13 22:56:16 - [] D -- C:\ProgramData\Corel
O43 - CFD: 2013/07/22 19:00:25 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2014/12/26 03:57:10 - [] D -- C:\ProgramData\DivX
O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2014/05/17 13:42:23 - [] D -- C:\ProgramData\Downloaded Installations
O43 - CFD: 2014/11/14 13:38:01 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2012/10/22 15:44:50 - [] D -- C:\ProgramData\FileOpen
O43 - CFD: 2013/10/09 20:40:45 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2012/10/13 23:03:21 - [] D -- C:\ProgramData\Google
O43 - CFD: 2013/01/30 16:12:33 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 2013/03/10 21:42:45 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2012/10/13 22:59:40 - [] D -- C:\ProgramData\InterVideo
O43 - CFD: 2015/08/20 09:01:05 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 2015/07/17 13:41:20 - [] D -- C:\ProgramData\Lenovo
O43 - CFD: 2013/03/26 18:19:36 - [] D -- C:\ProgramData\Logishrd
O43 - CFD: 2013/03/26 18:19:13 - [] D -- C:\ProgramData\Logitech
O43 - CFD: 2013/01/07 23:49:17 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2013/04/19 13:37:29 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/04/11 19:43:23 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/06/02 19:25:03 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2014/01/08 01:15:50 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 2013/03/16 17:50:26 - [] D -- C:\ProgramData\Microsoft Visual Studio
O43 - CFD: 2012/10/22 15:40:03 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2013/10/25 02:33:33 - [] D -- C:\ProgramData\MySQL
O43 - CFD: 2012/10/13 23:08:20 - [] D -- C:\ProgramData\Nitro PDF
O43 - CFD: 2014/02/21 02:06:27 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2013/11/16 02:43:44 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2014/02/26 21:28:24 - [0] D -- C:\ProgramData\Oracle
O43 - CFD: 2015/07/22 11:26:26 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2015/03/19 11:13:47 - [] D -- C:\ProgramData\PMB Files
O43 - CFD: 2012/12/04 08:42:45 - [] D -- C:\ProgramData\PreEmptive Solutions
O43 - CFD: 2013/07/05 15:33:18 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2014/08/01 21:48:16 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 2014/11/03 14:16:19 - [0] D -- C:\ProgramData\regid.2012-03.ch.seiz
O43 - CFD: 2015/02/24 02:10:54 - [] D -- C:\ProgramData\Riot Games
O43 - CFD: 2015/08/20 01:30:20 - [] D -- C:\ProgramData\RogueKiller
O43 - CFD: 2013/12/12 23:57:13 - [] D -- C:\ProgramData\rvlkl =>PUP.Optional.RelevantKnowledge
O43 - CFD: 2014/11/03 14:16:19 - [] D -- C:\ProgramData\Seiz System Engineering
O43 - CFD: 2015/06/05 13:03:27 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2015/04/13 10:05:21 - [] D -- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2012/11/16 23:39:51 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2013/01/14 01:39:06 - [] D -- C:\ProgramData\Telerik
O43 - CFD: 2014/04/27 14:14:14 - [0] AD -- C:\ProgramData\Temp
O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2013/12/16 09:04:52 - [] SHD -- C:\ProgramData\TNBFKU
O43 - CFD: 2015/04/13 01:15:51 - [] D -- C:\ProgramData\UCA
O43 - CFD: 2013/03/10 21:42:58 - [] D -- C:\ProgramData\Ulead Systems
O43 - CFD: 2013/06/12 10:52:52 - [0] D -- C:\ProgramData\Unity
O43 - CFD: 2015/08/20 01:11:13 - [] D -- C:\ProgramData\VMware
O43 - CFD: 2014/01/28 13:27:35 - [] D -- C:\ProgramData\VS
O43 - CFD: 2013/03/16 17:24:26 - [] D -- C:\ProgramData\Windows App Certification Kit
O43 - CFD: 2015/08/20 17:46:01 - [] D -- C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656
O43 - CFD: 2013/07/05 15:31:20 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2015/05/07 13:48:31 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2014/11/14 13:37:21 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 2014/05/17 13:44:46 - [] D -- C:\Program Files (x86)\Common Files\AuthenTec
O43 - CFD: 2014/05/23 18:22:15 - [] D -- C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 2014/05/14 23:02:21 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2014/12/26 03:56:42 - [] D -- C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 2015/05/01 02:43:33 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2012/10/13 22:45:35 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 2013/07/18 15:52:08 - [] D -- C:\Program Files (x86)\Common Files\Jaksta Technologies
O43 - CFD: 2014/02/26 20:10:19 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2014/06/19 20:27:53 - [] D -- C:\Program Files (x86)\Common Files\Lenovo
O43 - CFD: 2013/01/05 03:42:14 - [] D -- C:\Program Files (x86)\Common Files\LogiShrd
O43 - CFD: 2013/10/09 19:28:17 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 2014/02/02 02:56:49 - [] D -- C:\Program Files (x86)\Common Files\Merge Modules
O43 - CFD: 2013/03/16 17:23:34 - [] D -- C:\Program Files (x86)\Common Files\Microsoft
O43 - CFD: 2014/05/06 14:57:19 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2012/10/13 22:43:05 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2012/10/13 22:56:22 - [] D -- C:\Program Files (x86)\Common Files\Protexis
O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/09/17 16:19:45 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 2009/07/13 23:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2013/07/22 19:03:54 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 2014/03/23 16:17:49 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 2014/05/06 14:51:59 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2013/10/28 12:39:03 - [] D -- C:\Program Files (x86)\Common Files\TortoiseOverlays
O43 - CFD: 2012/10/13 22:58:36 - [] D -- C:\Program Files (x86)\Common Files\Ulead Systems
O43 - CFD: 2015/04/04 15:13:48 - [] D -- C:\Program Files (x86)\Common Files\VMware
O43 - CFD: 2014/01/26 23:00:23 - [] D -- C:\Program Files (x86)\Common Files\Webcam Simulator
O43 - CFD: 2012/10/13 23:06:22 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2013/07/06 12:46:16 - [] D -- C:\Users\moose\AppData\Roaming\Adobe
O43 - CFD: 2012/12/26 21:29:16 - [] D -- C:\Users\moose\AppData\Roaming\AnkamaCertificates
O43 - CFD: 2015/08/20 09:43:47 - [] D -- C:\Users\moose\AppData\Roaming\Anvsoft
O43 - CFD: 2013/06/12 10:52:54 - [] D -- C:\Users\moose\AppData\Roaming\Apple Computer
O43 - CFD: 2015/08/19 16:39:25 - [] D -- C:\Users\moose\AppData\Roaming\Audacity
O43 - CFD: 2013/12/01 15:03:13 - [] D -- C:\Users\moose\AppData\Roaming\Balabolka
O43 - CFD: 2015/08/13 03:31:12 - [] D -- C:\Users\moose\AppData\Roaming\BalsamiqMockupsForDesktop
O43 - CFD: 2014/01/13 09:18:22 - [] D -- C:\Users\moose\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1
O43 - CFD: 2015/08/20 01:20:30 - [] D -- C:\Users\moose\AppData\Roaming\BitTorrent
O43 - CFD: 2013/05/30 22:27:45 - [] RD -- C:\Users\moose\AppData\Roaming\Brother
O43 - CFD: 2015/03/10 08:12:48 - [] D -- C:\Users\moose\AppData\Roaming\CmapTools
O43 - CFD: 2014/04/18 00:54:44 - [] D -- C:\Users\moose\AppData\Roaming\CodeBlocks
O43 - CFD: 2015/01/19 19:10:31 - [] D -- C:\Users\moose\AppData\Roaming\com.PomodoroApp.PomodoroApp
O43 - CFD: 2013/06/29 16:25:31 - [] D -- C:\Users\moose\AppData\Roaming\Corel
O43 - CFD: 2013/11/18 15:02:43 - [] D -- C:\Users\moose\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2014/01/26 23:00:38 - [] D -- C:\Users\moose\AppData\Roaming\DivX
O43 - CFD: 2014/11/10 11:30:42 - [] D -- C:\Users\moose\AppData\Roaming\DMCache
O43 - CFD: 2015/07/06 20:44:44 - [] D -- C:\Users\moose\AppData\Roaming\Dofus
O43 - CFD: 2015/03/03 20:34:22 - [] D -- C:\Users\moose\AppData\Roaming\Dofus-2
O43 - CFD: 2015/03/03 20:34:56 - [] D -- C:\Users\moose\AppData\Roaming\Dofus-3
O43 - CFD: 2015/03/07 14:48:33 - [] D -- C:\Users\moose\AppData\Roaming\Dofus-4
O43 - CFD: 2013/01/16 00:33:33 - [] D -- C:\Users\moose\AppData\Roaming\Dofus2
O43 - CFD: 2012/12/26 22:08:50 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting
O43 - CFD: 2012/12/26 21:28:31 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting-2
O43 - CFD: 2012/12/27 14:04:07 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting-3
O43 - CFD: 2012/12/28 04:30:18 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting-4
O43 - CFD: 2014/03/27 00:24:36 - [] D -- C:\Users\moose\AppData\Roaming\Dropbox
O43 - CFD: 2014/04/03 15:52:16 - [] D -- C:\Users\moose\AppData\Roaming\Druide
O43 - CFD: 2013/06/01 23:29:14 - [] D -- C:\Users\moose\AppData\Roaming\dvdcss
O43 - CFD: 2012/11/30 09:14:45 - [] D -- C:\Users\moose\AppData\Roaming\e-academy Inc
O43 - CFD: 2012/10/22 15:44:50 - [] D -- C:\Users\moose\AppData\Roaming\FileOpen
O43 - CFD: 2013/10/05 13:10:54 - [] D -- C:\Users\moose\AppData\Roaming\FileZilla
O43 - CFD: 2013/04/17 12:07:33 - [0] D -- C:\Users\moose\AppData\Roaming\Firetrust
O43 - CFD: 2013/07/18 17:05:36 - [] D -- C:\Users\moose\AppData\Roaming\Freecorder 8 Audio
O43 - CFD: 2015/04/05 23:51:21 - [] D -- C:\Users\moose\AppData\Roaming\GameRanger
O43 - CFD: 2012/11/20 09:18:10 - [] D -- C:\Users\moose\AppData\Roaming\Google
O43 - CFD: 2013/03/10 21:43:17 - [] D -- C:\Users\moose\AppData\Roaming\Groovedown_Uninstall
O43 - CFD: 2014/11/08 21:47:05 - [] D -- C:\Users\moose\AppData\Roaming\gtk-2.0
O43 - CFD: 2012/10/20 06:41:09 - [] D -- C:\Users\moose\AppData\Roaming\Identities
O43 - CFD: 2015/04/11 20:10:55 - [] D -- C:\Users\moose\AppData\Roaming\IDM
O43 - CFD: 2012/12/30 03:04:46 - [] D -- C:\Users\moose\AppData\Roaming\InstallShield
O43 - CFD: 2014/01/26 23:24:23 - [] D -- C:\Users\moose\AppData\Roaming\iSpy
O43 - CFD: 2013/02/15 12:18:11 - [] D -- C:\Users\moose\AppData\Roaming\JetBrains
O43 - CFD: 2013/01/18 10:23:40 - [] D -- C:\Users\moose\AppData\Roaming\JustCode
O43 - CFD: 2013/01/14 02:37:21 - [] D -- C:\Users\moose\AppData\Roaming\JustDecompile
O43 - CFD: 2015/07/22 12:30:43 - [] D -- C:\Users\moose\AppData\Roaming\Kodi
O43 - CFD: 2012/10/20 06:41:50 - [] D -- C:\Users\moose\AppData\Roaming\Leadertech
O43 - CFD: 2014/06/19 20:27:53 - [] D -- C:\Users\moose\AppData\Roaming\Lenovo
O43 - CFD: 2013/07/29 21:18:22 - [] D -- C:\Users\moose\AppData\Roaming\libimobiledevice
O43 - CFD: 2013/07/29 21:18:16 - [] D -- C:\Users\moose\AppData\Roaming\log
O43 - CFD: 2013/01/05 03:39:18 - [] D -- C:\Users\moose\AppData\Roaming\Logishrd
O43 - CFD: 2013/01/05 03:42:41 - [] D -- C:\Users\moose\AppData\Roaming\Logitech
O43 - CFD: 2013/11/30 22:33:53 - [] D -- C:\Users\moose\AppData\Roaming\LolClient
O43 - CFD: 2015/04/12 01:25:12 - [] D -- C:\Users\moose\AppData\Roaming\LSC
O43 - CFD: 2012/10/13 22:54:29 - [] D -- C:\Users\moose\AppData\Roaming\Macromedia
O43 - CFD: 2013/01/07 23:49:28 - [] D -- C:\Users\moose\AppData\Roaming\Malwarebytes
O43 - CFD: 2013/10/09 19:28:38 - [] D -- C:\Users\moose\AppData\Roaming\MapInfo
O43 - CFD: 2011/12/08 16:02:50 - [0] D -- C:\Users\moose\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/08/11 14:34:32 - [] SD -- C:\Users\moose\AppData\Roaming\Microsoft
O43 - CFD: 2014/01/28 08:09:01 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft Corporation
O43 - CFD: 2013/01/14 01:27:31 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft FxCop
O43 - CFD: 2013/10/04 14:29:43 - [] D -- C:\Users\moose\AppData\Roaming\mioObjects
O43 - CFD: 2013/06/03 01:09:51 - [] D -- C:\Users\moose\AppData\Roaming\mIRC
O43 - CFD: 2013/01/28 23:37:59 - [] D -- C:\Users\moose\AppData\Roaming\MotionDSP
O43 - CFD: 2015/04/21 17:52:00 - [] D -- C:\Users\moose\AppData\Roaming\Mozilla
O43 - CFD: 2013/09/11 12:01:21 - [] D -- C:\Users\moose\AppData\Roaming\MP3SkypeRecorder
O43 - CFD: 2013/11/12 14:18:25 - [] D -- C:\Users\moose\AppData\Roaming\MySQL
O43 - CFD: 2013/02/27 17:38:22 - [] D -- C:\Users\moose\AppData\Roaming\Nitro PDF
O43 - CFD: 2013/08/10 12:03:31 - [] D -- C:\Users\moose\AppData\Roaming\Notepad++
O43 - CFD: 2012/12/31 20:12:14 - [] D -- C:\Users\moose\AppData\Roaming\Nuclear Coffee
O43 - CFD: 2014/01/28 17:31:39 - [] D -- C:\Users\moose\AppData\Roaming\NuGet
O43 - CFD: 2015/08/18 14:58:28 - [] D -- C:\Users\moose\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 2013/10/27 15:01:42 - [] D -- C:\Users\moose\AppData\Roaming\Oracle
O43 - CFD: 2013/04/17 12:34:04 - [] D -- C:\Users\moose\AppData\Roaming\Paltalk
O43 - CFD: 2013/07/06 00:02:26 - [] D -- C:\Users\moose\AppData\Roaming\PDAppFlex
O43 - CFD: 2013/08/01 19:33:53 - [] D -- C:\Users\moose\AppData\Roaming\Phase Five Systems
O43 - CFD: 2015/01/12 17:27:23 - [] D -- C:\Users\moose\AppData\Roaming\pomodairo
O43 - CFD: 2015/01/12 17:27:23 - [] D -- C:\Users\moose\AppData\Roaming\pomodairo.1041936B6D0707C313E2E169D771193A7DFBADCC.1
O43 - CFD: 2012/12/06 23:27:58 - [] D -- C:\Users\moose\AppData\Roaming\PowerISO
O43 - CFD: 2013/11/18 14:09:52 - [] D -- C:\Users\moose\AppData\Roaming\Process Hacker 2
O43 - CFD: 2012/10/21 11:24:48 - [] D -- C:\Users\moose\AppData\Roaming\PwrMgr
O43 - CFD: 2014/05/23 18:42:09 - [0] D -- C:\Users\moose\AppData\Roaming\QuickScan
O43 - CFD: 2012/12/31 15:34:35 - [] D -- C:\Users\moose\AppData\Roaming\Razer
O43 - CFD: 2015/03/03 00:18:48 - [] D -- C:\Users\moose\AppData\Roaming\Reg
O43 - CFD: 2012/12/26 21:28:36 - [] D -- C:\Users\moose\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
O43 - CFD: 2015/02/24 02:05:15 - [] D -- C:\Users\moose\AppData\Roaming\Riot Games
O43 - CFD: 2014/07/17 22:06:54 - [] D -- C:\Users\moose\AppData\Roaming\ScanMaster-ELM
O43 - CFD: 2013/02/22 20:54:10 - [] RHD -- C:\Users\moose\AppData\Roaming\SecuROM
O43 - CFD: 2014/11/03 14:14:13 - [] D -- C:\Users\moose\AppData\Roaming\Seiz System Engineering
O43 - CFD: 2015/08/20 01:13:48 - [] D -- C:\Users\moose\AppData\Roaming\Skype
O43 - CFD: 2013/07/06 12:46:15 - [] D -- C:\Users\moose\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2013/10/24 15:29:25 - [] D -- C:\Users\moose\AppData\Roaming\stickies
O43 - CFD: 2013/10/28 12:43:34 - [] D -- C:\Users\moose\AppData\Roaming\Subversion
O43 - CFD: 2015/04/16 04:17:05 - [] D -- C:\Users\moose\AppData\Roaming\SumatraPDF
O43 - CFD: 2013/01/14 02:35:21 - [] D -- C:\Users\moose\AppData\Roaming\Telerik
O43 - CFD: 2013/01/11 13:47:13 - [] D -- C:\Users\moose\AppData\Roaming\Tenebril
O43 - CFD: 2013/11/11 15:05:52 - [] D -- C:\Users\moose\AppData\Roaming\Thinstall
O43 - CFD: 2014/02/21 23:06:33 - [] D -- C:\Users\moose\AppData\Roaming\Thunderbird
O43 - CFD: 2015/01/12 16:20:11 - [] D -- C:\Users\moose\AppData\Roaming\TideSDK
O43 - CFD: 2013/11/04 13:17:20 - [] D -- C:\Users\moose\AppData\Roaming\TortoiseSVN
O43 - CFD: 2015/04/21 23:47:01 - [] D -- C:\Users\moose\AppData\Roaming\TS3Client
O43 - CFD: 2012/11/30 10:44:22 - [] D -- C:\Users\moose\AppData\Roaming\Ulead Systems
O43 - CFD: 2013/08/06 12:55:45 - [] D -- C:\Users\moose\AppData\Roaming\Unity
O43 - CFD: 2014/04/21 17:27:27 - [] D -- C:\Users\moose\AppData\Roaming\URSoft
O43 - CFD: 2015/04/11 20:10:55 - [] D -- C:\Users\moose\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/18 02:04:52 - [] D -- C:\Users\moose\AppData\Roaming\ViberPC
O43 - CFD: 2014/05/07 22:53:46 - [] D -- C:\Users\moose\AppData\Roaming\VisualStudioSpellChecker
O43 - CFD: 2015/08/20 11:37:41 - [] D -- C:\Users\moose\AppData\Roaming\vlc
O43 - CFD: 2015/04/04 15:59:52 - [] D -- C:\Users\moose\AppData\Roaming\VMware
O43 - CFD: 2014/01/27 00:52:48 - [] D -- C:\Users\moose\AppData\Roaming\Webcam Simulator
O43 - CFD: 2014/11/03 19:34:48 - [] D -- C:\Users\moose\AppData\Roaming\WebcamZoneTrigger
O43 - CFD: 2013/07/03 21:07:37 - [0] D -- C:\Users\moose\AppData\Roaming\Windows Live Writer
O43 - CFD: 2012/12/04 08:13:36 - [] D -- C:\Users\moose\AppData\Roaming\WinRAR
O43 - CFD: 2015/08/20 17:58:44 - [] D -- C:\Users\moose\AppData\Roaming\ZHP
O43 - CFD: 2013/07/29 21:17:39 - [] D -- C:\Users\moose\AppData\Local\4Videosoft Studio
O43 - CFD: 2012/10/20 06:38:25 - [] D -- C:\Users\moose\AppData\Local\Absolute_Software
O43 - CFD: 2015/08/20 02:02:41 - [] D -- C:\Users\moose\AppData\Local\Adobe
O43 - CFD: 2013/09/11 12:01:21 - [] D -- C:\Users\moose\AppData\Local\Alexander_Nikiforov
O43 - CFD: 2015/03/02 23:31:09 - [] D -- C:\Users\moose\AppData\Local\Ankama
O43 - CFD: 2012/12/14 14:24:04 - [] D -- C:\Users\moose\AppData\Local\Apple
O43 - CFD: 2014/04/27 09:59:23 - [] D -- C:\Users\moose\AppData\Local\Apple Computer
O43 - CFD: 2012/10/20 06:37:50 - [0] SHD -- C:\Users\moose\AppData\Local\Application Data
O43 - CFD: 2015/01/26 05:37:39 - [] D -- C:\Users\moose\AppData\Local\Apps
O43 - CFD: 2015/08/20 02:02:42 - [] D -- C:\Users\moose\AppData\Local\assembly
O43 - CFD: 2012/10/20 06:50:04 - [] D -- C:\Users\moose\AppData\Local\AuthenTec
O43 - CFD: 2014/09/21 17:18:38 - [] D -- C:\Users\moose\AppData\Local\Bluestacks
O43 - CFD: 2012/10/20 06:41:59 - [] D -- C:\Users\moose\AppData\Local\Broadcom
O43 - CFD: 2013/10/28 22:47:35 - [] D -- C:\Users\moose\AppData\Local\com.electricplum.ems
O43 - CFD: 2013/01/09 03:14:22 - [] D -- C:\Users\moose\AppData\Local\Conexant
O43 - CFD: 2015/08/04 21:20:10 - [0] D -- C:\Users\moose\AppData\Local\CrashDumps
O43 - CFD: 2013/06/25 17:26:35 - [] D -- C:\Users\moose\AppData\Local\CrashRpt =>.Legitimate.CrashReports
O43 - CFD: 2014/03/18 14:49:56 - [] D -- C:\Users\moose\AppData\Local\DDMSettings
O43 - CFD: 2013/01/14 01:24:28 - [] D -- C:\Users\moose\AppData\Local\DevExtras
O43 - CFD: 2015/08/20 09:02:24 - [] D -- C:\Users\moose\AppData\Local\Diagnostics
O43 - CFD: 2015/01/12 16:25:10 - [] D -- C:\Users\moose\AppData\Local\Downloaded Installations
O43 - CFD: 2013/12/28 21:10:48 - [0] D -- C:\Users\moose\AppData\Local\DriverTuner =>PUP.Optional.DriverTuner
O43 - CFD: 2012/11/30 09:14:45 - [] D -- C:\Users\moose\AppData\Local\e-academy Inc
O43 - CFD: 2014/05/12 23:18:08 - [] D -- C:\Users\moose\AppData\Local\Eclipse
O43 - CFD: 2015/01/18 02:00:34 - [0] D -- C:\Users\moose\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2014/05/02 00:53:51 - [] D -- C:\Users\moose\AppData\Local\Eric_Woodruff
O43 - CFD: 2013/01/08 01:21:04 - [] D -- C:\Users\moose\AppData\Local\ESET
O43 - CFD: 2012/12/31 21:51:30 - [] D -- C:\Users\moose\AppData\Local\Evernote
O43 - CFD: 2015/01/12 16:17:15 - [] D -- C:\Users\moose\AppData\Local\EvernoteNW
O43 - CFD: 2014/05/14 18:40:34 - [] D -- C:\Users\moose\AppData\Local\EWSoftware
O43 - CFD: 2012/12/25 17:47:50 - [] D -- C:\Users\moose\AppData\Local\FANiSO
O43 - CFD: 2014/01/30 10:52:41 - [] D -- C:\Users\moose\AppData\Local\FluxSoftware
O43 - CFD: 2013/03/15 18:40:42 - [] D -- C:\Users\moose\AppData\Local\fontconfig
O43 - CFD: 2013/03/15 18:40:41 - [] D -- C:\Users\moose\AppData\Local\gegl-0.2
O43 - CFD: 2013/02/07 16:30:23 - [] D -- C:\Users\moose\AppData\Local\Google
O43 - CFD: 2012/10/20 06:37:50 - [0] SHD -- C:\Users\moose\AppData\Local\History
O43 - CFD: 2013/01/14 01:15:53 - [] D -- C:\Users\moose\AppData\Local\IsolatedStorage
O43 - CFD: 2013/07/18 17:05:34 - [] D -- C:\Users\moose\AppData\Local\Jaksta_Technologies_Pty_L
O43 - CFD: 2013/02/15 12:18:14 - [] D -- C:\Users\moose\AppData\Local\JetBrains
O43 - CFD: 2013/08/06 21:33:00 - [] D -- C:\Users\moose\AppData\Local\Jump Desktop
O43 - CFD: 2013/02/12 23:51:10 - [] D -- C:\Users\moose\AppData\Local\JustCode
O43 - CFD: 2014/04/17 14:17:26 - [] D -- C:\Users\moose\AppData\Local\Lenovo
O43 - CFD: 2013/03/16 09:23:22 - [] D -- C:\Users\moose\AppData\Local\Logishrd
O43 - CFD: 2014/06/17 22:48:23 - [0] D -- C:\Users\moose\AppData\Local\LSC
O43 - CFD: 2012/10/22 15:56:34 - [] D -- C:\Users\moose\AppData\Local\Macromedia
O43 - CFD: 2013/10/09 19:28:38 - [] D -- C:\Users\moose\AppData\Local\MapInfo
O43 - CFD: 2015/06/05 13:03:40 - [] D -- C:\Users\moose\AppData\Local\Microsoft
O43 - CFD: 2013/04/08 17:31:31 - [] D -- C:\Users\moose\AppData\Local\Microsoft Games
O43 - CFD: 2015/05/31 22:58:29 - [] D -- C:\Users\moose\AppData\Local\Microsoft Help
O43 - CFD: 2014/01/24 10:53:58 - [] D -- C:\Users\moose\AppData\Local\Microsoft_Corporation
O43 - CFD: 2013/01/28 23:38:09 - [] D -- C:\Users\moose\AppData\Local\MotionDSP
O43 - CFD: 2013/09/30 23:48:52 - [] D -- C:\Users\moose\AppData\Local\Mozilla
O43 - CFD: 2013/07/22 19:22:43 - [] D -- C:\Users\moose\AppData\Local\My Games
O43 - CFD: 2013/12/05 15:07:35 - [] D -- C:\Users\moose\AppData\Local\NPE
O43 - CFD: 2015/07/06 21:15:32 - [] D -- C:\Users\moose\AppData\Local\PMB Files
O43 - CFD: 2013/01/25 17:12:33 - [] D -- C:\Users\moose\AppData\Local\PokeTALK
O43 - CFD: 2013/01/07 23:49:03 - [] D -- C:\Users\moose\AppData\Local\Programs
O43 - CFD: 2013/02/27 21:36:10 - [] D -- C:\Users\moose\AppData\Local\Red Gate
O43 - CFD: 2013/02/15 12:18:13 - [0] D -- C:\Users\moose\AppData\Local\RefSrcSymbols
O43 - CFD: 2013/07/22 20:31:45 - [] D -- C:\Users\moose\AppData\Local\SKIDROW
O43 - CFD: 2014/02/26 20:41:31 - [] D -- C:\Users\moose\AppData\Local\Skype
O43 - CFD: 2013/09/09 00:44:25 - [] D -- C:\Users\moose\AppData\Local\Steppschuh
O43 - CFD: 2013/02/15 12:18:13 - [0] D -- C:\Users\moose\AppData\Local\SymbolSourceSymbols
O43 - CFD: 2013/01/14 02:35:24 - [] D -- C:\Users\moose\AppData\Local\Telerik
O43 - CFD: 2013/01/14 01:33:23 - [] D -- C:\Users\moose\AppData\Local\Telerik_Corp
O43 - CFD: 2015/08/20 17:58:50 - [] D -- C:\Users\moose\AppData\Local\Temp
O43 - CFD: 2012/10/20 06:37:50 - [0] SHD -- C:\Users\moose\AppData\Local\Temporary Internet Files
O43 - CFD: 2013/11/11 15:05:52 - [] D -- C:\Users\moose\AppData\Local\Thinstall
O43 - CFD: 2015/01/14 19:48:50 - [] D -- C:\Users\moose\AppData\Local\Thunderbird
O43 - CFD: 2013/01/17 03:19:25 - [] D -- C:\Users\moose\AppData\Local\Torch =>PUP.Optional.Torch
O43 - CFD: 2015/08/20 01:11:41 - [0] D -- C:\Users\moose\AppData\Local\TSVNCache
O43 - CFD: 2014/10/13 00:03:10 - [] D -- C:\Users\moose\AppData\Local\Tvsukernel
O43 - CFD: 2013/06/12 10:52:52 - [] D -- C:\Users\moose\AppData\Local\Unity
O43 - CFD: 2012/10/20 06:44:28 - [0] D -- C:\Users\moose\AppData\Local\VeriSign
O43 - CFD: 2015/06/14 18:04:52 - [] D -- C:\Users\moose\AppData\Local\Viber
O43 - CFD: 2015/08/20 10:58:48 - [] D -- C:\Users\moose\AppData\Local\VirtualStore
O43 - CFD: 2015/04/04 19:11:22 - [] D -- C:\Users\moose\AppData\Local\VMware
O43 - CFD: 2014/04/30 09:44:23 - [] D -- C:\Users\moose\AppData\Local\VSIXInstaller
O43 - CFD: 2015/02/17 13:25:22 - [] D -- C:\Users\moose\AppData\Local\Windows Live
O43 - CFD: 2013/07/03 21:07:58 - [] D -- C:\Users\moose\AppData\Local\Windows Live Writer
O43 - CFD: 2014/04/30 20:23:14 - [0] D -- C:\Users\moose\AppData\Local\{07AD36AA-33B9-4410-9801-088846A09764}
O43 - CFD: 2012/12/02 18:22:15 - [0] D -- C:\Users\moose\AppData\Local\{083E2073-2B2A-4D62-BEE3-F483E07A04CB}
O43 - CFD: 2014/02/25 01:23:41 - [0] D -- C:\Users\moose\AppData\Local\{10F6BFF0-315A-43E0-A79E-BACDD0286A3F}
O43 - CFD: 2013/04/25 10:54:38 - [0] D -- C:\Users\moose\AppData\Local\{2AA5C430-EA86-4C3A-8B26-A7071AA8CE69}
O43 - CFD: 2012/12/03 20:34:01 - [0] D -- C:\Users\moose\AppData\Local\{370DA531-4790-406F-B495-0D4AD3C44C7F}
O43 - CFD: 2014/03/16 08:43:59 - [0] D -- C:\Users\moose\AppData\Local\{3D267CDF-2920-4FDB-BF24-EF109E9639F2}
O43 - CFD: 2013/11/04 02:00:20 - [0] D -- C:\Users\moose\AppData\Local\{4050A24D-8D0D-494A-B19C-BC2CF8AA04F6}
O43 - CFD: 2014/11/03 14:09:45 - [0] D -- C:\Users\moose\AppData\Local\{426767E2-4AD2-4932-BC42-3FA99EE52D10}
O43 - CFD: 2013/03/02 14:41:36 - [0] D -- C:\Users\moose\AppData\Local\{4D4D3D52-AD33-400C-9B23-00A617C74422}
O43 - CFD: 2013/03/10 18:51:11 - [0] D -- C:\Users\moose\AppData\Local\{50E7C0B0-6E53-4C64-9C99-9472DFF60515}
O43 - CFD: 2012/12/02 02:22:41 - [0] D -- C:\Users\moose\AppData\Local\{633CA90D-731C-4CEB-ADB3-2275411784D6}
O43 - CFD: 2014/04/30 20:22:17 - [0] D -- C:\Users\moose\AppData\Local\{6498C920-95ED-4681-B9A2-B118BFF1EAE3}
O43 - CFD: 2014/02/25 01:25:47 - [0] D -- C:\Users\moose\AppData\Local\{64E68350-2079-44F7-9ED0-855C9BAF0A0F}
O43 - CFD: 2012/12/04 09:14:37 - [0] D -- C:\Users\moose\AppData\Local\{74AD60DB-BA3F-4775-9871-5B3955460455}
O43 - CFD: 2013/08/24 09:56:54 - [0] D -- C:\Users\moose\AppData\Local\{759B96D9-97EF-4AF8-86EC-733CE0EAA4EE}
O43 - CFD: 2013/02/15 18:21:53 - [0] D -- C:\Users\moose\AppData\Local\{79626CA0-935B-403F-B6D3-04E6271A4B44}
O43 - CFD: 2013/04/06 09:47:58 - [0] D -- C:\Users\moose\AppData\Local\{83005A62-D314-405A-ADC6-8119F70DCDB5}
O43 - CFD: 2012/12/28 05:14:11 - [0] D -- C:\Users\moose\AppData\Local\{8BDF03F2-4AEB-403D-A82E-AF2EB017A45E}
O43 - CFD: 2014/04/30 21:37:17 - [0] D -- C:\Users\moose\AppData\Local\{8C4A118C-D66B-48EF-9B4E-A12A87C4CF98}
O43 - CFD: 2014/04/27 20:43:07 - [0] D -- C:\Users\moose\AppData\Local\{9AAB9CC1-70AF-4540-8AEC-ADD8BDED43D6}
O43 - CFD: 2012/12/12 00:49:21 - [0] D -- C:\Users\moose\AppData\Local\{B0D76891-77EB-4A9A-8BA5-674C7FABF9F0}
O43 - CFD: 2014/01/26 23:04:03 - [0] D -- C:\Users\moose\AppData\Local\{B159759C-380E-4754-8C43-098B86E089E1}
O43 - CFD: 2014/05/25 12:45:15 - [0] D -- C:\Users\moose\AppData\Local\{B3D3BCB7-F913-47BA-AAD0-18044AD06826}
O43 - CFD: 2012/12/05 08:42:08 - [0] D -- C:\Users\moose\AppData\Local\{B7807E9B-A4DC-4EC5-8007-20B50AA8ABA4}
O43 - CFD: 2012/12/02 02:21:52 - [0] D -- C:\Users\moose\AppData\Local\{B807442B-88AA-4A70-AE4F-6D22D41D1359}
O43 - CFD: 2014/03/27 19:49:25 - [0] D -- C:\Users\moose\AppData\Local\{C6AECF16-CE51-4CC9-8EA7-0C2B04DF105D}
O43 - CFD: 2013/07/03 21:06:38 - [0] D -- C:\Users\moose\AppData\Local\{CBF6FD8D-9789-462D-B490-24F3D2E66EB0}
O43 - CFD: 2013/04/15 21:23:23 - [0] D -- C:\Users\moose\AppData\Local\{CE99BE09-7AD3-49FD-A300-0C0960DD3396}
O43 - CFD: 2014/01/27 23:39:08 - [0] D -- C:\Users\moose\AppData\Local\{D2D86B9C-36D1-4512-B713-F2890F117C27}
O43 - CFD: 2012/12/28 20:12:02 - [0] D -- C:\Users\moose\AppData\Local\{D3A3474E-76C0-4A25-8E47-44835105093B}
O43 - CFD: 2012/12/30 19:50:24 - [0] D -- C:\Users\moose\AppData\Local\{D5A225C1-EB2A-42DC-9776-A163237C5BEC}
O43 - CFD: 2013/04/27 08:35:45 - [0] D -- C:\Users\moose\AppData\Local\{D61D05B9-E0AB-49A7-AFCF-4F66E10A08C0}
O43 - CFD: 2012/12/03 07:25:59 - [0] D -- C:\Users\moose\AppData\Local\{D81C7A46-01C1-41E5-8FC5-A18724D7313D}
O43 - CFD: 2013/04/30 17:14:12 - [] D -- C:\Users\moose\AppData\Local\{E0EE56A0-0D7C-4595-B400-919A3BA48EC1}
O43 - CFD: 2013/01/11 11:35:12 - [0] D -- C:\Users\moose\AppData\Local\{E5283C7B-FCA3-4A58-B3CD-FF4498B00096}
O43 - CFD: 2012/12/09 12:25:22 - [0] D -- C:\Users\moose\AppData\Local\{FFC47968-B73C-4E2E-818E-78FFFDAA614E}
O43 - CFD: 2015/01/12 16:28:17 - [] D -- C:\Users\moose\AppData\Local\Łukasz_Banasiak
O43 - CFD: 2013/03/10 21:43:21 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/05/15 06:08:55 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/09/29 01:33:48 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allmyapps
O43 - CFD: 2014/04/03 15:50:06 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 2013/12/01 15:03:13 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Balabolka
O43 - CFD: 2013/09/24 01:06:22 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks
O43 - CFD: 2014/01/29 17:52:28 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
O43 - CFD: 2014/04/13 21:03:42 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/04/12 21:51:51 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/03/10 21:43:21 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 2013/07/27 01:50:22 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jumi
O43 - CFD: 2015/07/22 11:25:18 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
O43 - CFD: 2013/03/10 21:43:21 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/11/08 21:44:54 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\mp3splt-gtk
O43 - CFD: 2013/10/25 02:28:11 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 2012/12/12 01:58:02 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 2013/08/10 12:02:28 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PcToPc_Chat
O43 - CFD: 2015/07/29 12:16:33 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/05/10 09:55:29 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
O43 - CFD: 2014/11/03 11:44:07 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webcam Zone Trigger

---\\ System Drivers List (118) - 9s
O58 - SDL:2012/03/28 16:16:48 A . (.Ricoh co.,Ltd. - Ricoh USB Camera driver.) -- C:\Windows\System32\drivers\5U877.sys [216704]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/13 21:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2011/12/08 16:24:30 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/13 21:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2011/12/08 16:24:30 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2011/12/29 01:48:24 A . (.Lenovo. - ThinkVantage Active Protection System HID D.) -- C:\Windows\System32\drivers\ApsHM64.sys [25416]
O58 - SDL:2012/07/23 12:11:44 A . (.Lenovo. - Shockproof Disk Driver.) -- C:\Windows\System32\drivers\ApsX64.sys [148328]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2009/06/10 16:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2012/03/31 23:52:24 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [163368]
O58 - SDL:2012/10/13 22:45:57 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [4747840]
O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/13 21:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2012/03/31 23:52:26 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [594472]
O58 - SDL:2012/03/31 23:52:30 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [184872]
O58 - SDL:2012/03/05 08:29:42 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [210984]
O58 - SDL:2011/09/16 21:38:52 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [39976]
O58 - SDL:2012/03/05 08:29:40 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21544]
O58 - SDL:2009/06/10 16:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2012/03/08 02:59:08 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\Windows\System32\drivers\CHDRT64.sys [1602688]
O58 - SDL:2009/07/13 21:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2010/03/23 17:37:34 A . (.Razer (Asia-Pacific) Pte Ltd - Razer DeathAdder USB Optical Mouse Driver.) -- C:\Windows\System32\drivers\danew.sys [12032]
O58 - SDL:2013/07/22 18:58:45 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283064]
O58 - SDL:2009/07/13 21:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 16:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2012/01/17 02:55:19 A . (.Windows (R) Win 7 DDK provider - WINNT/2K/XP/2003 Driver.) -- C:\Windows\System32\drivers\Fastboot.sys [70416]
O58 - SDL:2012/08/21 13:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240]
O58 - SDL:2014/02/27 18:40:32 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [54464]
O58 - SDL:2009/06/10 16:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2012/07/17 18:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784]
O58 - SDL:2010/09/29 21:45:22 A . (.Windows (R) Win 7 DDK provider - Filter Driver for HID-KMDF Interface.) -- C:\Windows\System32\drivers\hidkmdf.sys [6656]
O58 - SDL:2010/11/20 23:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2011/12/23 08:37:12 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [568600]
O58 - SDL:2011/12/08 16:24:30 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2014/02/27 02:52:12 A . (.Lenovo. - Lenovo Power Management Driver.) -- C:\Windows\System32\drivers\ibmpmdrv.sys [57144]
O58 - SDL:2012/11/21 20:43:14 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [165112]
O58 - SDL:2012/06/25 02:19:38 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [14760096]
O58 - SDL:2009/07/13 21:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2012/06/20 22:46:46 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [331264]
O58 - SDL:2012/04/13 12:06:42 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [19224]
O58 - SDL:2012/04/13 12:06:42 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [356632]
O58 - SDL:2012/04/13 12:06:42 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [789272]
O58 - SDL:2010/06/03 11:07:18 A . (.Windows (R) Codename Longhorn DDK provider - Jumi Virtual Hid Device.) -- C:\Windows\System32\drivers\jumi.sys [15160]
O58 - SDL:2015/08/20 00:44:16 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [458336]
O58 - SDL:2015/08/20 00:44:16 A . (.Kaspersky Lab ZAO - Filter Core [fre_wlh_x64].) -- C:\Windows\System32\drivers\klflt.sys [91008]
O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) -- C:\Windows\System32\drivers\klif.sys [628320]
O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\System32\drivers\klim6.sys [29792]
O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_wlh_x6.) -- C:\Windows\System32\drivers\klkbdflt.sys [29280]
O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_wlh_x64].) -- C:\Windows\System32\drivers\klmouflt.sys [29280]
O58 - SDL:2015/08/20 00:44:18 A . (.Kaspersky Lab ZAO - Network filtering component.) -- C:\Windows\System32\drivers\kltdi.sys [54368]
O58 - SDL:2015/08/20 00:44:18 A . (.Kaspersky Lab ZAO - KNEPS Power [fre_wnet_amd64].) -- C:\Windows\System32\drivers\kneps.sys [177864]
O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech Equad USB Driver..) -- C:\Windows\System32\drivers\LEqdUsb.sys [79240]
O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\System32\drivers\LHidEqd.sys [15752]
O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\System32\drivers\LHidFilt.Sys [77192]
O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\Windows\System32\drivers\LMouFilt.Sys [61832]
O58 - SDL:2013/06/23 14:43:53 A . (.Logitech, Inc. - Logitech Non-Plug and Play Driver..) -- C:\Windows\System32\drivers\LNonPnP.sys [18960]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2008/07/26 16:22:22 A . (.Logitech Inc. - Audio filter for Express Plus.) -- C:\Windows\System32\drivers\lv302a64.sys [15768]
O58 - SDL:2008/07/26 16:22:34 A . (.Logitech Inc. - Logitech QuickCam Driver.) -- C:\Windows\System32\drivers\LV302V64.SYS [2624408]
O58 - SDL:2008/07/26 16:25:48 A . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Dr.) -- C:\Windows\System32\drivers\lvrs64.sys [790424]
O58 - SDL:2008/07/26 16:26:34 A . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\System32\drivers\LVUSBS64.sys [50072]
O58 - SDL:2013/12/06 09:37:50 A . (.Visicom Media Inc. - ManyCam Virtual Microphone.) -- C:\Windows\System32\drivers\mcaudrv_x64.sys [35232]
O58 - SDL:2013/11/26 21:54:02 A . (.Visicom Media Inc. - ManyCam Virtual Webcam Driver.) -- C:\Windows\System32\drivers\mcvidrv.sys [42016]
O58 - SDL:2012/10/10 23:08:38 A . (.ManyCam LLC - ManyCam Virtual Webcam.) -- C:\Windows\System32\drivers\mcvidrv_x64.sys [44928]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2011/04/07 11:33:40 A . (.MaxiVista - MaxiVista demo video driver.) -- C:\Windows\System32\drivers\mvCmdemo.SYS [15568]
O58 - SDL:2011/04/07 11:33:42 A . (.MaxiVista - MaxiVista demo video driver.) -- C:\Windows\System32\drivers\mvvideodemo.sys [14544]
O58 - SDL:2013/07/25 17:53:46 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\Windows\System32\drivers\netaapl64.sys [23040]
O58 - SDL:2009/07/13 21:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2011/12/08 16:24:30 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2011/12/08 16:24:30 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2011/12/26 05:10:44 A . (.Lenovo Information Product(ShenZhen China) Inc. - SMBIOS Driver.) -- C:\Windows\System32\drivers\psadd.sys [40248]
O58 - SDL:2009/07/13 21:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/13 21:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/02/12 16:11:26 A . (.EldoS Corporation - RawDisk Driver. Allows write access to file.) -- C:\Windows\System32\drivers\rsdrvx64.sys [26024]
O58 - SDL:2011/08/23 08:57:24 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [565352]
O58 - SDL:2011/10/26 22:27:52 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsP2Stor.sys [259688]
O58 - SDL:2012/08/24 03:56:56 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [126944]
O58 - SDL:2009/06/10 16:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/13 21:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/13 21:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2012/06/19 15:32:20 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [27448]
O58 - SDL:2009/07/13 21:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2012/06/19 15:32:20 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [431928]
O58 - SDL:2012/09/24 07:36:00 A . (.Lenovo Group Limited - Power Manager.) -- C:\Windows\System32\drivers\TPPWR64V.SYS [20328]
O58 - SDL:2015/08/20 01:30:24 A . (...) -- C:\Windows\System32\drivers\TrueSight.sys [35064]
O58 - SDL:2011/05/29 06:48:04 A . (.Lenovo Information Product(ShenZhen China) Inc. - SMBUS Driver.) -- C:\Windows\System32\drivers\tvti2c.sys [40248]
O58 - SDL:2011/12/07 21:59:52 A . (.ThinkVantage Communications Utility - ThinkVantage Virtual Camera.) -- C:\Windows\System32\drivers\tvtvcamd.sys [27432]
O58 - SDL:2014/07/28 14:52:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784]
O58 - SDL:2013/09/06 15:27:12 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [238352]
O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\System32\drivers\VBoxNetAdp.sys [131856]
O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox Bridged Networking Driver.) -- C:\Windows\System32\drivers\VBoxNetFlt.sys [146704]
O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox USB Driver.) -- C:\Windows\System32\drivers\VBoxUSB.sys [106256]
O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [119056]
O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2010/10/01 01:16:34 A . (.Windows (R) Win 7 DDK provider - HID mini driver for USB Fx2 Device.) -- C:\Windows\System32\drivers\VKbms.sys [13312]
O58 - SDL:2013/10/08 18:21:06 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [85584]
O58 - SDL:2014/10/29 15:00:50 A . (.VMware, Inc. - VMware keyboard filter driver (64-bit).) -- C:\Windows\System32\drivers\VMkbd.sys [33496]
O58 - SDL:2014/10/29 15:00:52 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [24656]
O58 - SDL:2014/10/29 15:00:52 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [20560]
O58 - SDL:2014/10/29 15:00:52 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [46160]
O58 - SDL:2014/10/29 15:01:14 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [31448]
O58 - SDL:2014/10/29 15:01:42 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [64728]
O58 - SDL:2013/08/07 16:12:18 A . (.Check Point Software Technologies - .) -- C:\Windows\System32\drivers\vna.sys [161256]
O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
O58 - SDL:2013/10/08 18:21:10 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [73296]

---\\ Last modified or created user files (13) - 25s
O61 - LFC: 2015/08/18 14:55:46 A . (.Any-Video-Converter.com.) -- C:\Users\moose\Downloads\any-video-converter-free_5-8-3_fr_28662.exe [37939336]
O61 - LFC: 2015/08/20 00:48:10 A . (..) -- C:\Users\moose\Downloads\RogueKiller.exe [18758216]
O61 - LFC: 2015/08/13 01:08:36 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\À replacer\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\obj\Debug\GenerateurFichierE1.dll [62464]
O61 - LFC: 2015/08/13 01:08:36 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\À replacer\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\bin\GenerateurFichierE1.dll [62464]
O61 - LFC: 2015/08/13 01:10:20 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\RAM\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\obj\Debug\GenerateurFichierE1.dll [62464]
O61 - LFC: 2015/08/13 01:10:20 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\RAM\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\bin\GenerateurFichierE1.dll [62464]
O61 - LFC: 2015/08/13 01:12:03 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\obj\Debug\GenerateurFichierE1.dll [62464]
O61 - LFC: 2015/08/13 01:12:03 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\bin\GenerateurFichierE1.dll [62464]
O61 - LFC: 2015/08/18 14:58:32 A . (..) -- C:\Users\moose\AppData\Roaming\OpenCandy\9E170E5B60C341C78C80889E21F2EC18\setup.exe [298976] =>PUP.Optional.OpenCandy
O61 - LFC: 2015/08/13 17:57:35 A . (..) -- C:\Users\moose\AppData\Roaming\Microsoft\SQL Server Management Studio\11.0\SqlStudio.bin [46575]
O61 - LFC: 2015/08/14 01:40:24 A . (..) -- C:\Users\moose\AppData\Local\Microsoft\Outlook\EasCache\4DE722D344A74729B701981BA6B5DA9B.bin [77476]
O61 - LFC: 2015/08/20 09:03:13 A . (..) -- C:\Users\moose\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/08/20 09:51:35 A . (..) -- C:\Users\moose\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [138827]

---\\ File Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe

---\\ Search Browser Infection (19) - 9s
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?octid=CT3282812&ctid=CT3282812&CUI=UN58966383363014324&UM=2[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.ConduitSearchEngineList", "Somoto V.1 Customized Web Search"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.ConduitSearchUrlList", "http://search.conduit.com/ResultsExt.aspx?octid=CT3282812&ctid=CT3282812&SearchSource=[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://ca.search.yahoo.com/search?fr=mcafee&p="); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.keywordURLSelectedCTID", "CT3282812"); =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("browser.search.defaultthis.engineName", "Somoto V.1 Customized Web Search"); =>PUP.Optional.MegaSearch
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3282812&CUI=UN58966383363014324&UM=2&Sear[...] =>PUP.Optional.Conduit
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.current_url", "https://www.google.com/"); =>PUP.Optional.FreecorderExtension
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.id", "04aa35f0-079b-81fb-365c-5d916375594d"); =>PUP.Optional.FreecorderExtension
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.menu", "http://freecorder.com/fc8/ui/menu/freecorder8.php"); =>PUP.Optional.FreecorderExtension
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.menuitems", "[{\"name\":\"Freecorder Menu Header\",\"img\":\"http://freecorder.com[...] =>PUP.Optional.ClientConnect
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.pc_id", "TR005056c000012800226670"); =>PUP.Optional.FreecorderExtension
O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("smartbar.machineId", "/RCPKTQWWIVHPXDOI0LOH+JA+2KYSELSIP8ACMUDYCLQIGOXSA0RFTYOL3RWDYNBMDMVNAHDNT0CYNWQNUDVWG"); =>PUP.Optional.SmartBar
O69 - SBI: SearchScopes [HKCU] OldSearch - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {077AF985-4068-4B0E-8343-E43FD95E3118} - (Somoto V.1 Customized Web Search) - http://search.conduit.com/ =>PUP.Optional.Conduit
O69 - SBI: SearchScopes [HKCU] {33E49509-8B4C-42E4-AAC5-72E4E2F7FE58} [DefaultScope] - (Yahoo Search!) - http://ca.search.yahoo.com/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {9D07F888-A21E-4584-A985-FDDE05275C7C} - (u-Search) - http://u-search.net/ =>PUP.Optional.uSearch
O69 - SBI: SearchScopes [HKCU] {DBCA6D6F-612A-4007-9CDA-613F77778944} - (Yahoo Search!) - http://search.yahoo.com/

---\\ Search Svchost Services (32) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2477536]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\system32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864]

---\\ Firewall Active Exception List (43) - 4s
O87 - FAEL: "TCP Query User{A4F83DD6-1474-4C95-A2B9-148FBFC07721}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.)
O87 - FAEL: "UDP Query User{7785C83C-0E03-444B-8016-FDEF81E3FC76}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.)
O87 - FAEL: "TCP Query User{69D6EAAA-2594-41D5-9DB7-2C895D2609CD}C:\program files (x86)\jumi\jumi.exe" [In-None-P6-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe
O87 - FAEL: "UDP Query User{309716A8-4394-47B5-AE6D-61C70DB3B030}C:\program files (x86)\jumi\jumi.exe" [In-None-P17-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe
O87 - FAEL: "TCP Query User{E12F7E5D-7A33-48ED-89E3-4D09F950E89A}C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe" [In-None-P6-TRUE] .(...) -- C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe (.not file.)
O87 - FAEL: "UDP Query User{3547578E-FCF6-4349-A43D-93F796ECA251}C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe" [In-None-P17-TRUE] .(...) -- C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe (.not file.)
O87 - FAEL: "TCP Query User{31085D1A-95DF-4689-B344-EDC20AC7374C}C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe
O87 - FAEL: "UDP Query User{97DE534C-FFD9-4F74-B8A5-770CB6BF2B3A}C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe
O87 - FAEL: "TCP Query User{599C2465-F5ED-4860-A378-19B866AE03DE}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.)
O87 - FAEL: "UDP Query User{6465B916-AB47-4497-B2D2-23A2F35891FF}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.)
O87 - FAEL: "TCP Query User{4D8897FD-2B04-4119-AAB3-932825CC5239}C:\program files (x86)\jumi\jumi.exe" [In-None-P6-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe
O87 - FAEL: "UDP Query User{959E0D9A-08AC-4F63-A5D0-63C17C465121}C:\program files (x86)\jumi\jumi.exe" [In-None-P17-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe
O87 - FAEL: "TCP Query User{7235EDF6-1CA9-4A6E-81C3-11F5DDF5FE84}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P6-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe
O87 - FAEL: "UDP Query User{615501F0-8921-4F02-BC3A-9DACA907B1C8}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P17-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe
O87 - FAEL: "{73123B63-A676-4DD0-B97A-6679D90A38FD}" [In-None-P6-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
O87 - FAEL: "{196CBB23-2585-47C6-A2E1-40A2C5FA8E26}" [In-None-P17-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
O87 - FAEL: "{19794A08-9C1E-41E7-88A9-7B38FAA27AC9}" [In-None-P6-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
O87 - FAEL: "{5BB453C5-F92A-46E8-9C5D-CF3AD28540DC}" [In-None-P17-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
O87 - FAEL: "{B9A97045-B686-4403-9789-65F4CECC74C7}" [In-None-P6-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{1CA8FD0F-2C83-477E-BF5A-263CCB27567E}" [In-None-P17-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{5266E201-F1BE-4ABE-8B8C-C716B14620A9}" [In-None-P6-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{9E35A2A6-10CE-4274-86F8-FA9F68D80F7D}" [In-None-P17-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{CF4DEBBD-690A-41D7-8E88-4D97ED92D95C}" [In-None-P17-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
O87 - FAEL: "{B42AD378-59BE-4AB6-998F-2A72A80A1D38}" [In-None-P6-TRUE] .(.Phase Five Systems - Jump Desktop Viewer.) -- C:\Program Files (x86)\Jump Desktop\JumpWinClient.exe
O87 - FAEL: "{567D86C7-B076-48D4-8BF5-C01AEE949378}" [In-None-P17-TRUE] .(.Phase Five Systems - Jump Desktop Viewer.) -- C:\Program Files (x86)\Jump Desktop\JumpWinClient.exe
O87 - FAEL: "{29A5E165-EAEB-4421-BCC8-E678D23E07D5}" [In-None-P6-TRUE] .(.Phase Five Systems - Jump Desktop.) -- C:\Program Files (x86)\Jump Desktop\JumpDesktop.exe
O87 - FAEL: "{D2C4A005-935B-4760-AA67-5F407AF04981}" [In-None-P17-TRUE] .(.Phase Five Systems - Jump Desktop.) -- C:\Program Files (x86)\Jump Desktop\JumpDesktop.exe
O87 - FAEL: "{E6E0AA46-C940-48AE-9E7F-1A21006B84B1}" [In-None-P6-TRUE] .(.Phase Five Systems - Jump Desktop Service.) -- C:\Program Files (x86)\Jump Desktop\JumpService.exe
O87 - FAEL: "{818F746D-7B9F-41E8-9F9C-E5242282671D}" [In-None-P17-TRUE] .(.Phase Five Systems - Jump Desktop Service.) -- C:\Program Files (x86)\Jump Desktop\JumpService.exe
O87 - FAEL: "TCP Query User{99E9B592-7AB3-4618-B559-1C083CCAA1FA}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P6-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe
O87 - FAEL: "UDP Query User{302902CF-024B-426E-842A-01EB18D7D4A2}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P17-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe
O87 - FAEL: "{4FD6D01D-7DD2-4CA5-91F1-793A26511688}" [In-None-P17-TRUE] .(...) -- C:\Users\moose\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe (.not file.)
O87 - FAEL: "{05B9E4E5-5C04-4993-8507-C3C32E47CEA9}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\moose\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{5A4C1D14-EFA7-484A-9607-3B1F2B88105C}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\moose\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{B645986B-020A-4702-B00F-93B198BC1061}" [In-None-P6-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\moose\AppData\Roaming\BitTorrent\BitTorrent.exe
O87 - FAEL: "{43CD0C40-7121-4E68-B757-0CD6650396E0}" [In-None-P17-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\moose\AppData\Roaming\BitTorrent\BitTorrent.exe
O87 - FAEL: "{6E9697C7-747A-4089-B270-7F8003AA18BE}" [In-None-P17-TRUE] .(.Seiz System Engineering - AbelCam®.) -- C:\Program Files (x86)\AbelCam\AbelCam.exe
O87 - FAEL: "TCP Query User{65C92275-2A2C-4B3A-B21F-D14B5ADEFF1F}C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe
O87 - FAEL: "UDP Query User{24E57D9E-9C12-4F9B-B91E-4111C092D1C0}C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe
O87 - FAEL: "TCP Query User{9344CED7-AA7A-40E8-A71B-B302F583E81E}C:\program files\maxivista demo server\maxivistademo.exe" [In-None-P6-TRUE] .(.Bartels Media - MaxiVista.) -- C:\program files\maxivista demo server\maxivistademo.exe
O87 - FAEL: "UDP Query User{DCB52B4E-038B-4773-B54E-B5A5164B597F}C:\program files\maxivista demo server\maxivistademo.exe" [In-None-P17-TRUE] .(.Bartels Media - MaxiVista.) -- C:\program files\maxivista demo server\maxivistademo.exe
O87 - FAEL: "{47FED3CF-970E-401F-968B-118FA3792934}" [Out-None-P6-TRUE] .(.Copyright © 2015 - UNCServer.) -- C:\Program Files (x86)\Lenovo\System Update\uncserver.exe
O87 - FAEL: "{E452289A-F7ED-4EBD-AC52-07C67C780FEA}" [Out-None-P17-TRUE] .(.Copyright © 2015 - UNCServer.) -- C:\Program Files (x86)\Lenovo\System Update\uncserver.exe

---\\ Services not Microsoft (SR=Run, SS=Stop) (62) - 19s
SR - Auto [2015/06/08 12:07:48] [ 133360] (AcPrfMgrSvc) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
SR - Auto [2015/06/08 12:08:00] [ 276720] (AcSvc) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - Demand [2015/08/12 23:53:23] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2014/10/07 16:09:50] [ 60744] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - Auto [2015/08/20 00:32:47] [ 356128] Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
SR - Auto [2011/08/31 00:05:32] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - Auto [2014/09/16 12:14:42] [ 409304] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe
SR - Auto [2014/09/16 12:15:08] [ 384728] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
SR - Auto [2014/09/16 12:16:42] [ 777944] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
SR - Auto [2012/04/01 15:21:52] [ 957216] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - Auto [2013/08/07 16:12:18] [ 366712] Check Point SSL Network Extender (cpextender) . (.Check Point Software Technologies.) - C:\Program Files (x86)\CheckPoint\SSL Network Extender\slimsvc.exe
SS - Demand [2012/06/25 02:19:50] [ 276288] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe
SR - Auto [2010/12/17 04:46:34] [ 198784] @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc..) - C:\Windows\system32\CxAudMsg64.exe
SR - Auto [2008/12/10 00:10:14] [ 24636] doliwampapache (doliwampapache) . (.Apache Software Foundation.) - c:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe
SS - Auto [2007/07/06 12:14:02] [ 5730304] doliwampmysqld (doliwampmysqld) . (...) - c:\dolibarr\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe
SS - Disabled [2012/01/17 02:29:24] [ 169776] FastbootService (FastbootService) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe
SS - Demand [2012/02/26 10:42:28] [ 632320] FileZilla Server FTP server (FileZilla Server) . (.FileZilla Project.) - C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
SS - Disabled [2013/10/09 21:10:54] [ 1074480] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Flexera Software LLC.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SR - Auto [2013/08/07 03:04:06] [ 2139944] TrueSuiteService (FPLService) . (.AuthenTec, Inc.) - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe
SS - Auto [2014/10/21 23:02:50] [ 107912] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2014/10/21 23:02:50] [ 107912] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2012/10/22 15:44:04] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - Auto [2012/05/29 18:27:14] [ 144992] HyperW7 Service (HyperW7Svc) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
SR - Auto [2014/02/27 02:52:12] [ 68440] Lenovo PM Service (IBMPMSVC) . (.Lenovo..) - C:\Windows\system32\ibmpmsvc.exe
SS - Demand [2004/10/22 03:24:18] [ 73728] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
SS - Disabled [2012/02/03 01:29:52] [ 628448] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SS - Disabled [2012/03/06 18:49:08] [ 128280] Intel(R) ME Service (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - Demand [2014/10/15 06:42:08] [ 643880] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - Auto [2012/03/06 18:49:04] [ 163608] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - Auto [2013/05/07 12:23:54] [ 7680] Jump Desktop Service (JumpDesktop) . (.Phase Five Systems.) - C:\Program Files (x86)\Jump Desktop\JumpService.exe
SS - Demand [2013/02/08 14:30:42] [ 359664] Logitech Bluetooth Service (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
SR - Auto [2012/06/01 23:48:38] [ 58224] Lenovo Camera Mute (LENOVO.CAMMUTE) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\Communications Utility\CamMute.exe
SR - Auto [2014/04/07 13:54:02] [ 110128] Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe
SR - Auto [2012/06/01 23:48:58] [ 61296] Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
SR - Auto [2012/06/01 23:49:06] [ 179568] ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe
SR - Auto [2011/07/12 03:54:00] [ 133992] Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe
SR - Auto [2012/03/06 18:49:16] [ 277784] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - Demand [2014/10/16 17:13:48] [ 272776] LSCWinService (LSCWinService) . (.Copyright © 2013.) - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
SS - Demand [2015/08/07 21:30:39] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - Auto [2012/11/08 18:08:50] [ 70152] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\NLSSRV32.EXE
SS - Disabled [2012/09/24 07:36:00] [ 1666112] Power Manager DBC Service (Power Manager DBC Service) . (.Lenovo.) - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe
SR - Auto [2010/03/11 17:06:06] [ 193824] Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc..) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
SS - Demand [2012/09/24 07:36:00] [ 1665088] Cisco EnergyWise Enabler (PwmEWSvc) . (.Lenovo Group Limited.) - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.exe
SR - Auto [2015/08/19 21:25:34] [ 1190624] Service Mgr ResultsHub (Service Mgr ResultsHub) . (...) - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub
SS - Auto [2015/02/18 19:11:32] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - Demand [2015/07/01 13:53:34] [ 22008] System Update (SUService) . (.Copyright © 2014.) - C:\Program Files (x86)\Lenovo\System Update\SUService.exe
SS - Demand [2010/02/19 13:37:14] [ 517096] Adobe SwitchBoard (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
SS - Disabled [2010/08/31 17:56:16] [ 1028096] ThinkVantage Registry Monitor Service (ThinkVantage Registry Monitor Service) . (.Lenovo Group Limited.) - C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe
SS - Demand [2011/12/29 01:48:24] [ 49480] ThinkPad HDD APS Logging Service (TPHDEXLGSVC) . (.Lenovo..) - C:\Windows\System32\TPHDEXLG64.exe
SR - Auto [2014/06/10 11:15:44] [ 124400] Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe
SR - Auto [2014/04/01 15:45:20] [ 126512] On Screen Display (TPHKSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe
SR - Demand [2013/07/22 02:13:30] [ 401704] TrueAPI Service component (TrueService) . (.AuthenTec, Inc..) - C:\Program Files\Common Files\AuthenTec\TrueService.exe
SS - Disabled [2012/02/06 23:11:42] [ 1492280] TVT Backup Service (TVT Backup Service) . (.Lenovo Group Limited.) - C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe
SR - Auto [2008/01/10 15:13:50] [ 61440] Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc..) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
SR - Auto [2012/03/06 18:49:18] [ 363800] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - Auto [2015/08/19 21:20:32] [ 705760] Update Mgr ResultsHub (Update Mgr ResultsHub) . (...) - C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub
SS - Disabled [2012/04/19 03:15:38] [ 84080] VIPAppService (VIPAppService) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
SR - Auto [2014/10/29 14:07:32] [ 86744] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
SR - Auto [2014/02/27 18:40:46] [ 906432] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
SS - Disabled [2012/05/13 19:39:06] [ 22016] wampapache (wampapache) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe
SS - Disabled [2012/04/19 15:45:02] [ 9693696] wampmysqld (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe

---\\ Search Tracing Registry Key (2) - 3s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASAPI32 =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASMANCS =>PUP.Optional.FLVPlayer

---\\ Additional Scan (O88) (37) - 0s
C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.CrossRider
C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.CrossRider
C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\search-simple.xml =>PUP.Optional.SearchSimple
C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} =>PUP.Optional.FreecorderExtension
HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr ResultsHub =>PUP.Optional.ResultsHub*
C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub*
HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr ResultsHub =>PUP.Optional.ResultsHub*
C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub*
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension =>PUP.Optional.FreecorderExtension
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension for Chrome =>PUP.Optional.FreecorderExtension
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension for Firefox =>PUP.Optional.FreecorderExtension
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension x64 =>PUP.Optional.FreecorderExtension
HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKCU\SOFTWARE\DriverTuner =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\DriverTuner_Init =>PUP.Optional.DriverTuner
HKCU\SOFTWARE\Torch =>PUP.Optional.Torch
HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar
C:\Program Files (x86)\Freecorder extension =>PUP.Optional.FreecorderExtension
C:\ProgramData\Allmyapps =>PUP.Optional.Generic
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\rvlkl =>PUP.Optional.RelevantKnowledge
C:\Users\moose\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\moose\AppData\Local\CrashRpt =>.Legitimate.CrashReports
C:\Users\moose\AppData\Local\DriverTuner =>PUP.Optional.DriverTuner
C:\Users\moose\AppData\Local\Torch =>PUP.Optional.Torch
C:\Users\moose\AppData\Roaming\OpenCandy\9E170E5B60C341C78C80889E21F2EC18\setup.exe =>PUP.Optional.OpenCandy
HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr ResultsHub =>PUP.Optional.ResultsHub
C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub
HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr ResultsHub =>PUP.Optional.ResultsHub
C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASAPI32 =>PUP.Optional.FLVPlayer
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASMANCS =>PUP.Optional.FLVPlayer

---\\ Summary of the elements found (19) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchSimple
http://www.nicolascoolman.fr/blog =>PUP.Optional.BDYahoo
http://www.nicolascoolman.fr/pup-freecorderextension/ =>PUP.Optional.FreecorderExtension
http://www.nicolascoolman.fr/blog =>PUP.Optional.ResultsHub*
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/blog =>PUP.Optional.Torch
http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverTuner
http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/adware-relevantknowledge/ =>PUP.Optional.RelevantKnowledge
http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports
http://www.nicolascoolman.fr/adware-megasearch/ =>PUP.Optional.MegaSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.ClientConnect
http://www.nicolascoolman.fr/blog =>PUP.Optional.uSearch
http://www.nicolascoolman.fr/blog =>PUP.Optional.ResultsHub
http://www.nicolascoolman.fr/blog =>PUP.Optional.FLVPlayer

~ End of the scan, 122008 items in 196 seconds (1967)(0)()