~ ZHPDiag v2015.10.2.147 By Nicolas Coolman (2015/10/02)
~ Run by Clevia Rosset (Administrator) (2015/10/09 23:50:44)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: No network file
~ Mode: Scan
~ Report: C:\Users\Clevia Rosset\Desktop\ZHPDiag.txt
~ Report: C:\Users\Clevia Rosset\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v45.0.2454.101
MFIE: Mozilla Firefox 40.0.3 (x86 pt-BR) v40.0.3
MSIE: Internet Explorer v11.0.9600.18015

---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System protection software (4) - 2s
Malwarebytes Anti-Malware versão 2.1.8.1057
Microsoft Security Client PT-BR Language Pack v2.1.1116.0
Microsoft Security Essentials v4.8.204.0
Windows Defender W7 (Deactivate)

---\\ Surveillance software (2) - 2s
Adobe Flash Player 18 NPAPI
Adobe Acrobat Reader DC - Português

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 4053.896 MB (56% free)
~ System Restore: Activé (Enable)
~ System drive C: has 359 GB free of 464 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: CLEVIAROSSET
~ User Name: Clevia Rosset
~ Logged in as Administrator

---\\ Enumeration of the disk units (1) - 0s
~ Drive C: has 359 GB free of 464 GB (System)

---\\ State of the Windows Security Center (13) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Search Generic System Files (25) - 2s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.A55305B1CACD38EAC176CC532B2053AC] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [2427392] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.492D07D79E7024CA310867B526D9636D] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.DB8E6BA1D110A4E40D48612E9009E366] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ©

---\\ Process running (35) - 3s
[MD5.78CC42364F47A889CBC4E66E8BA4DB9D] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe [587576] [PID.816]
[MD5.E845055AEFA59D7F14D653A145A8D4CB] - (.UPEK Inc. - Fingerprint Server Process for Vista.) -- C:\Program Files\Protector Suite\upeksvr.exe [86792] [PID.1596]
[MD5.8BA6E93A182126781952A7895EC1E4B2] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [952096] [PID.2044] ©
[MD5.3CAA23E97462F57B0CF876F8E9B16DFF] - (.MRC-Holland / Berg IT Solutions (BITS) - CoffalyserServerEngine.) -- C:\Program Files (x86)\MRC-Holland\Coffalyser.Net\CoffalyserServer.exe [102912] [PID.1196]
[MD5.AD1CF8471B06BADB93D87CC4D63B8483] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2108] ©
[MD5.5B4E5D841B029EDF5FFB71E50C2D2C02] - (.Digital Delivery Networks, Inc. - Oasis2Service.) -- C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe [61440] [PID.2324]
[MD5.63694C307273062A2167AE4CE80730EF] - (.Sony Corporation - Device Information Provider.) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [398176] [PID.2452] ©
[MD5.A6BAEA839CC888D4961AB5FE16BB8C4A] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [838928] [PID.2472] ©
[MD5.65CC4779A29C3E82B987BD4961790DFF] - (.Sony Corporation - VAIO Media plus Digital Media Server.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [423280] [PID.2760] ©
[MD5.F47D75CEE1844EEF4A9EA6EE768828FB] - (.Sony Corporation - VAIO Media plus Device Searcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [67952] [PID.2792] ©
[MD5.A60605FC66552B421EE1F3D4EBB9A4E0] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe [217968] [PID.2880] ©
[MD5.07F47A1DF726537313C1023515175532] - (.Sony Corporation - VCM Intelligent Analyzing Manager.) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [655088] [PID.2940] ©
[MD5.C3E69DB0A4E59564230E053232F39AC7] - (.Sony Corporation - VAIO Media plus Content Importer.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [108400] [PID.3060] ©
[MD5.BDFCB7E8C108D042B213957D2B044E7E] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [1429776] [PID.2164] ©
[MD5.1D702FFC1B8CDCF76FBCA7740CE510D8] - (.Sony Corporation - VAIO Event Service (Service Sub Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe [120176] [PID.3416] ©
[MD5.5449FC97476F52E027409E703791E6A9] - (.Sony Corporation - VAIO Entertainment Common Service.) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [304496] [PID.2236] ©
[MD5.6888526AEB8DDABDE6F778FD40FC0693] - (.Sony Corporation - VAIO Content Folder Watcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [864000] [PID.4588] ©
[MD5.78CC42364F47A889CBC4E66E8BA4DB9D] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe [587576] [PID.5116]
[MD5.389F88F9822ED5B566371EA1E9200549] - (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [482160] [PID.5184] ©
[MD5.671951DA6AD104A0F7692F355289A5A1] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2057000] [PID.5304] ©
[MD5.607AA4260DB60270916B871BA99FF8E0] - (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe [81264] [PID.5344] ©
[MD5.B7504FB135642170D85D277F99A60262] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [1128224] [PID.5360] ©
[MD5.71CA831294E8235E18B6258F6179A0E6] - (.UPEK Inc. - Fingerprint Tray Application.) -- C:\Program Files\Protector Suite\psqltray.exe [453896] [PID.5468]
[MD5.D469BE2723F79CF4B384680B1FDC577D] - (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe [575856] [PID.5484] ©
[MD5.CCA9023E3DDBE290D4381344115D99B7] - (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136] [PID.5868] ©
[MD5.48B9248CED8A5DE4EB0917CB676CB8D5] - (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032] [PID.5876] ©
[MD5.B9C250E93CE43E262E43DFFE3A9B7FFE] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [121128] [PID.5980] ©
[MD5.046C4928FB5D09D3BB3967B79845427E] - (.Copyright © 2004 - 2009 - CCP.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\CCP.exe [22504] [PID.4488]
[MD5.B7F182F0972EA735207AE66C775E77F1] - (.Copyright © 2006 - ThirdPartyAppMgr.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\ThirdPartyAppMgr.exe [23552] [PID.3812]
[MD5.20E915CF7C6F5E74E1FB4C8078D7CB83] - (.Copyright © 2006 - PowerManager.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\PowerManager.exe [40952] [PID.2248]
[MD5.F120F63F99343B7D55C0E04285858295] - (.Microsoft - .) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\SmartWi.exe [184816] [PID.1812] ©
[MD5.AD88AF249ABDC546151F9BFC4093FA9B] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.4756] ©
[MD5.C967BDA9397E004842498A25583983A2] - (.Sony Corporation - VAIO Personalization Manager Morphological.) -- C:\Program Files\Sony\VAIO Personalization Manager\VpmIfPav.exe [87408] [PID.6044] ©
[MD5.F2C82BA7E80C6054D5D20F3FBD4CFD34] - (...) -- C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe [77664] [PID.5196]
[MD5.DD7DAC8A6913EB893372091E96871F95] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Clevia Rosset\AppData\Roaming\ZHP\ZHPDiag3.exe [1940992] [PID.6656] ©

---\\ Google Chrome, Start,Search,Extensions (18) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://b.scorecardresearch.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://imguol.com.br
G0 - GCSP: Preferences [User Data\Default][HomePage] http://imguol.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://metrics.uol.com.br
G0 - GCSP: Preferences [User Data\Default][HomePage] http://stc.uol.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://uol.com.br
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.uol.com.br
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com.br
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (8) - 2s
P2 - EXT FILE: (...) -- C:\Users\Clevia Rosset\AppData\Roaming\Mozilla\Firefox\Profiles\bm4okjd5.default\searchplugins\script-srchttpqueryjs.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/gas64] - (...) -- C:\Users\Clevia Rosset\AppData\Local\GAS Tecnologia\GBBD\npsf_gas_64.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll ©
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.45.2] - (.Oracle Corp..) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll ©
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll ©
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll ©
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3538.0513] - (.Microsoft.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll ©

---\\ Internet Explorer Extensions, Start, Search (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer, Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object (BHO) (2) - 0s
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphean)

---\\ Internet Explorer Toolbars (1) - 0s
O3 - Toolbar: 0xE3EFEB7F196B494398D2FFB09D4B49CA013A050000 - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.)

---\\ Auto loading programs from Registry and folders (15) - 1s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe ©
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [PSQLLauncher] . (.UPEK Inc. - Fingerprint Launcher.) -- C:\Program Files\Protector Suite\launcher.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe ©
O4 - HKCU\..\Run: [Elbserver] . (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SmartWiHelper] . (.Sony Electronics Corporation - SmartWi Helper.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\SmartWiHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [ISBMgr.exe] . (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe ©
O4 - HKLM\..\Wow6432Node\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe ©
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-3249590153-425188373-1766074318-1005\..\Run: [Elbserver] . (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe ©

---\\ Lop.com/Domain Hijackers (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1

---\\ Extra protocols (22) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©

---\\ Non Microsoft non disabled Windows Services (21) - 1s
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (...) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (.not file.)
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe ©
O23 - Service: Coffalyser.Net Server (Coffalyser.Net Server) . (.MRC-Holland / Berg IT Solutions (BITS) - CoffalyserServerEngine.) - C:\Program Files (x86)\MRC-Holland\Coffalyser.Net\CoffalyserServer.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe ©
O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe
O23 - Service: Serviço do Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ©
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 197.9.) - C:\Windows\system32\nvvsvc.exe ©
O23 - Service: (Oasis2Service) . (.Digital Delivery Networks, Inc. - Oasis2Service.) - C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe
O23 - Service: PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe ©
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe ©
O23 - Service: VAIO Media plus Content Importer (SOHCImp) . (.Sony Corporation - VAIO Media plus Content Importer.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe ©
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) . (.Sony Corporation - VAIO Media plus Digital Media Server.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe ©
O23 - Service: VAIO Media plus Device Searcher (SOHDs) . (.Sony Corporation - VAIO Media plus Device Searcher.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe ©
O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ©
O23 - Service: VAIO Event Service (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe ©
O23 - Service: VAIO Power Management (VAIO Power Management) . (.Sony Corporation - SPM Module.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe ©
O23 - Service: VAIO Content Folder Watcher (VCFw) . (.Sony Corporation - VAIO Content Folder Watcher.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe ©
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) . (.Sony Corporation - VCM Intelligent Analyzing Manager.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe ©

---\\ Task Planned Automatically (14) - 4s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] ©
[MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] ©
[MD5.00000000000000000000000000000000] [APT] [VAIO Health Report] (...) -- C:\Program Files (x86)\Sony\VAIO Health Report\VAIOHealthReport.exe (.not file.) [0]
[MD5.7752388B20964D5346139A44AAB6B8EF] [APT] [{6068F834-CBDB-4135-B2EE-7FF0F148F609}] (...) -- C:\Windows\UbiSoft\InstalTT.exe [809984]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [894] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [898] ©
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3642] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3894] ©
O39 - APT: VAIO Health Report - (...) -- C:\Windows\System32\Tasks\VAIO Health Report [3800]

---\\ Software installed (88) - 6s
O42 - Logiciel: Service Pack 1 for SQL Server 2008 R2 (KB2528583) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2528583 ©
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client ©
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel ©
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers ©
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM][64Bits] -- ProInst
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey ©
O42 - Logiciel: Protector Suite 2009 - (.UPEK Inc..) [HKLM][64Bits] -- {0F841121-4DB6-4B31-839F-7F5AB3BB3423}
O42 - Logiciel: IBM SPSS Statistics 22 - (.IBM Corp.) [HKLM][64Bits] -- {104875A1-D083-4A34-BC4F-3F635B7F8EF7}
O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM][64Bits] -- {115B60D5-BBDB-490E-AF2E-064D37A3CE01} ©
O42 - Logiciel: PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- {133D3F07-D558-46CE-80E8-F4D75DBBAD63} ©
O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM][64Bits] -- {202B76AB-1B21-434E-A289-788D767D3A7C} ©
O42 - Logiciel: SQL Server 2008 R2 SP1 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {234F6B0D-10AE-4BB7-B2F3-E48D4861952D} ©
O42 - Logiciel: Java 8 Update 51 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418051F0} ©
O42 - Logiciel: Microsoft Antimalware Service PT-BR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {3099E885-DE8A-4099-ABE2-561DC8589DFA} ©
O42 - Logiciel: SQL Server 2008 R2 SP1 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {36F70DEE-1EBF-4707-AFA2-E035EEAEBAA1} ©
O42 - Logiciel: Intel(R) PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {4327107B-E95E-415C-9194-458FCED6BF12} ©
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5} ©
O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM][64Bits] -- {5AFD1F5C-8FDA-413C-AF38-F1E7BD10D72F} ©
O42 - Logiciel: VGClientX64 - (.Sony Corporation.) [HKLM][64Bits] -- {99E6C2F3-59B2-4308-B1CD-4928B55B7E30} ©
O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {A2122A9C-A699-4365-ADF8-68FEAC125D61} ©
O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM][64Bits] -- {A3D964A6-411A-4817-9D58-5CB8808F494E} ©
O42 - Logiciel: NVIDIA HD Audio Driver 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BDD99690-3541-4619-9D2A-3CDDB3E15F9E} ©
O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {C942A025-A840-4BF2-8987-849C0DD44574} ©
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6} ©
O42 - Logiciel: Microsoft Security Client PT-BR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07} ©
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {F31183CF-E10F-4DE1-BB59-6C0FF38E481E} ©
O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FA7394B8-CE65-4F9E-AC99-F372AD365424} ©
O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FBD367D1-642F-47CF-B79B-9BE48FB34007} ©
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player ©
O42 - Logiciel: Application Manager for VAIO - (...) [HKLM][64Bits] -- Application Manager for VAIO
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite ©
O42 - Logiciel: Phantasmat Premium Edition - (...) [HKLM][64Bits] -- fbd5021f83a3ec82f7bb1642fb633c28
O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM][64Bits] -- GOM Player
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome ©
O42 - Logiciel: VAIO - PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{270380EB-8812-42E1-8289-53700DB840D2} ©
O42 - Logiciel: VAIO - PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{FF1FC66F-536F-46BD-98E3-D8DA127A810E} ©
O42 - Logiciel: Malwarebytes Anti-Malware versão 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Firefox 40.0.3 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.3 (x86 pt-BR) ©
O42 - Logiciel: Need for Speed Underground 2 - (...) [HKLM][64Bits] -- Need for Speed Underground 2
O42 - Logiciel: Phantasmat Collectors Edition 1.00 - (...) [HKLM][64Bits] -- Phantasmat Collectors Edition 1.00
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 9 ©
O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} ©
O42 - Logiciel: IBM SPSS Statistics 19 - (.SPSS Inc., an IBM Company.) [HKLM][64Bits] -- {06C43FAA-7226-41EF-A05E-9AE0AA849FFE}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} ©
O42 - Logiciel: OOBE - (.Sony Corporation.) [HKLM][64Bits] -- {1B500D37-E7CF-480B-8054-8A563594EC4E} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} ©
O42 - Logiciel: PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- {270380EB-8812-42E1-8289-53700DB840D2} ©
O42 - Logiciel: VAIO Survey - (.Sony Corporation.) [HKLM][64Bits] -- {34B37A74-125E-4406-87BA-E4BD3D097AE5} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36} ©
O42 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM][64Bits] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7} ©
O42 - Logiciel: VAIO Sample Contents - (.Sony Corporation.) [HKLM][64Bits] -- {547C9EB4-4CA6-402F-9D1B-8BD30DC71E44} ©
O42 - Logiciel: VAIO Data Restore Tool - (.Sony Corporation.) [HKLM][64Bits] -- {57B955CE-B5D3-495D-AF1B-FAEE0540BFEF} ©
O42 - Logiciel: VAIO Transfer Support - (.Sony Corporation.) [HKLM][64Bits] -- {5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} ©
O42 - Logiciel: Bing Rewards Client Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} ©
O42 - Logiciel: Remote Keyboard with PlayStation 3 - (.Sony Corporation.) [HKLM][64Bits] -- {65B138AE-F636-4D4C-BA5D-A06E21E47C53} ©
O42 - Logiciel: VAIO Media plus Opening Movie - (.Sony Corporation.) [HKLM][64Bits] -- {6BF03C88-C06A-48DC-B9A1-FE72B24E5FA9} ©
O42 - Logiciel: VAIO Control Center - (.Sony Corporation.) [HKLM][64Bits] -- {72042FA6-5609-489F-A8EA-3C2DD650F667} ©
O42 - Logiciel: MEGA5 - (.Arizona State University.) [HKLM][64Bits] -- {82808A16-D448-4FBF-9AE9-75AF3FC240DC}_is1
O42 - Logiciel: PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- {8356CB97-A48F-44CB-837A-A12838DC4669} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44} ©
O42 - Logiciel: VGClientX86 - (.Sony Corporation.) [HKLM][64Bits] -- {8B583EF5-FA7B-4AE2-9008-51B7FD505886} ©
O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM][64Bits] -- {8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD} ©
O42 - Logiciel: SmartWi Connection Utility - (.Sony Corporation.) [HKLM][64Bits] -- {9B5F85CA-90D4-4AFC-BB37-32477FD0D2B9} ©
O42 - Logiciel: VAIO Gate - (.Sony Corporation.) [HKLM][64Bits] -- {A7C30414-2382-4086-B0D6-01A88ABA21C3} ©
O42 - Logiciel: Google Update Helper - (.DealPly Technologies Ltd.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.Dealply
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} ©
O42 - Logiciel: Adobe Acrobat Reader DC - Português - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1046-7B44-AC0F074E4100} ©
O42 - Logiciel: PMB - (.Sony Corporation.) [HKLM][64Bits] -- {B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C} ©
O42 - Logiciel: VAIO Gate Default - (.Sony Corporation.) [HKLM][64Bits] -- {B7546697-2A80-4256-A24B-1C33163F535B} ©
O42 - Logiciel: VAIO Manual - (.Sony Corporation.) [HKLM][64Bits] -- {C6E893E7-E5EA-4CD5-917C-5443E753FCBD} ©
O42 - Logiciel: Coffalyser.Net - (.MRC-Holland.) [HKLM][64Bits] -- {C7F9CB04-5CB4-45BE-88F6-7D22BC9109D7}
O42 - Logiciel: VU5x86 - (.Sony Corporation .) [HKLM][64Bits] -- {D2D23D08-D10E-43D6-883C-78E0B2AC9CC6} ©
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E} ©
O42 - Logiciel: VAIO - Media Gallery - (.Sony Corporation.) [HKLM][64Bits] -- {DD88F979-FA58-41AC-980C-A6E1A82B61D9} ©
O42 - Logiciel: ArcSoft WebCam Companion 3 - (.ArcSoft.) [HKLM][64Bits] -- {DE8AAC73-6D8D-483E-96EA-CAEDDADB9079} ©
O42 - Logiciel: Oasis2Service - (.DDNi.) [HKLM][64Bits] -- {E50FC5DB-7CBD-407D-A46E-0C13E45BC386}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: Evernote - (.Evernote Corp..) [HKLM][64Bits] -- {F761359C-9CED-45AE-9A51-9D6605CD55C4} ©
O42 - Logiciel: CodonCode Aligner - (.CodonCode Corporation.) [HKLM][64Bits] -- {FB25C46D-C1CF-49F4-96F6-3CAAFAD49EF3}
O42 - Logiciel: PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM][64Bits] -- {FF1FC66F-536F-46BD-98E3-D8DA127A810E} ©
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent

---\\ HKCU & HKLM Software Keys (109) - 6s
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdsFix
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ArcSoft
HKLM\SOFTWARE\Wow6432Node\Auslogics
HKLM\SOFTWARE\Wow6432Node\AutoHelpDesk
HKLM\SOFTWARE\Wow6432Node\baidu
HKLM\SOFTWARE\Wow6432Node\Baidu Security
HKLM\SOFTWARE\Wow6432Node\Bunndle
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CLSYSTEM
HKLM\SOFTWARE\Wow6432Node\DDNi
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\EA Games
HKLM\SOFTWARE\Wow6432Node\Electronic Arts
HKLM\SOFTWARE\Wow6432Node\GameInstaller
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GRETECH
HKLM\SOFTWARE\Wow6432Node\IBM
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LiveUpdate360
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Ntpad
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\PDFCreator
HKLM\SOFTWARE\Wow6432Node\Rainbow Technologies
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Search Vortex
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony Corporation
HKLM\SOFTWARE\Wow6432Node\Space Sciences Laboratory, U.C. Berkeley
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\Sysinternals
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\TomTom
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wise Solutions
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AdsFix
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ArcSoft
HKCU\SOFTWARE\AutoHelpDesk
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\Baixaki
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\CDDB
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\Evernote
HKCU\SOFTWARE\GbAs
HKCU\SOFTWARE\GbPlugin
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GRETECH
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Macrovision
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MRC-Holland
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\PDFCreator
HKCU\SOFTWARE\PopCap
HKCU\SOFTWARE\Protector Suite QL
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony Corporation
HKCU\SOFTWARE\SUPERAntiSpyware.com
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\Test3D
HKCU\SOFTWARE\TomTom
HKCU\SOFTWARE\Trend Micro
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contents of the Common Files folders (231) - 10s
O43 - CFD: 2015/07/20 21:20:52 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2011/05/26 00:55:29 - [] D -- C:\Program Files (x86)\ArcSoft
O43 - CFD: 2011/10/08 13:45:40 - [] D -- C:\Program Files (x86)\BOINC
O43 - CFD: 2011/11/02 11:46:10 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 2012/08/16 21:24:24 - [] D -- C:\Program Files (x86)\CodonCode Aligner
O43 - CFD: 2015/10/08 12:27:10 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2011/05/26 00:26:13 - [] D -- C:\Program Files (x86)\Corel
O43 - CFD: 2012/09/10 21:34:06 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2013/07/16 21:56:24 - [] D -- C:\Program Files (x86)\DDNi
O43 - CFD: 2015/04/24 16:05:12 - [] HD -- C:\Program Files (x86)\Diebold
O43 - CFD: 2012/09/10 21:35:49 - [] D -- C:\Program Files (x86)\EA GAMES
O43 - CFD: 2011/05/26 00:28:41 - [] D -- C:\Program Files (x86)\Evernote
O43 - CFD: 2011/12/10 17:28:02 - [] D -- C:\Program Files (x86)\Games
O43 - CFD: 2015/10/09 23:44:24 - [] AD -- C:\Program Files (x86)\GbPlugin
O43 - CFD: 2015/07/23 20:02:07 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2012/04/18 22:27:19 - [] D -- C:\Program Files (x86)\GRETECH
O43 - CFD: 2012/01/12 21:31:58 - [] D -- C:\Program Files (x86)\IBM
O43 - CFD: 2015/04/30 16:01:06 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/10/08 12:31:22 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/09/09 21:34:13 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/10/08 12:27:30 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 2015/07/17 02:14:35 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2015/07/23 21:47:59 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2012/08/16 21:25:56 - [] D -- C:\Program Files (x86)\MEGA5
O43 - CFD: 2012/06/23 14:17:31 - [0] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2015/05/12 21:29:05 - [] D -- C:\Program Files (x86)\Microsoft Application Virtualization Client
O43 - CFD: 2013/09/21 23:46:49 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2015/05/12 21:26:16 - [] D -- C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 2015/02/02 21:06:39 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 2014/09/27 15:33:19 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2011/05/25 23:46:47 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 2011/11/02 12:31:03 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2011/11/02 12:29:38 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2013/01/09 00:32:51 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
O43 - CFD: 2011/11/02 15:50:58 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2015/02/02 21:09:00 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/10/08 12:18:31 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2013/01/08 23:59:46 - [] D -- C:\Program Files (x86)\MRC-Holland
O43 - CFD: 2011/11/02 12:31:08 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2013/11/04 22:24:47 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 2011/05/26 00:34:35 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2015/01/24 17:19:20 - [] D -- C:\Program Files (x86)\PDFCreator
O43 - CFD: 2013/10/25 21:25:24 - [] D -- C:\Program Files (x86)\PSafe
O43 - CFD: 2011/12/09 18:57:18 - [] D -- C:\Program Files (x86)\RealArcade
O43 - CFD: 2011/05/25 23:48:30 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2015/01/30 22:29:36 - [] D -- C:\Program Files (x86)\Sony
O43 - CFD: 2014/09/06 00:16:42 - [] D -- C:\Program Files (x86)\TeamViewer
O43 - CFD: 2011/05/25 23:48:48 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 2015/10/08 17:56:54 - [] D -- C:\Program Files (x86)\Trend Micro
O43 - CFD: 2009/07/14 01:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2014/12/18 18:12:32 - [] D -- C:\Program Files (x86)\uTorrent
O43 - CFD: 2014/12/18 15:58:53 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2014/09/27 15:34:33 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2014/12/17 19:53:30 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/12 19:53:42 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2014/12/17 19:53:29 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2014/12/17 19:53:29 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2014/12/17 19:53:30 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2011/05/26 00:39:07 - [] D -- C:\Program Files (x86)\Windows Virtual PC
O43 - CFD: 2013/07/28 23:43:14 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 2014/12/18 17:49:28 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/12/17 20:03:56 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2011/05/26 00:55:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft WebCam Companion 3
O43 - CFD: 2012/08/16 21:24:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodonCode Aligner
O43 - CFD: 2014/01/13 21:57:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coffalyser.Net
O43 - CFD: 2012/09/10 21:34:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2011/05/26 00:28:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote for VAIO
O43 - CFD: 2011/01/10 04:15:12 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2012/04/18 22:27:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
O43 - CFD: 2015/07/23 20:02:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2013/11/12 22:11:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics
O43 - CFD: 2011/11/02 11:46:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
O43 - CFD: 2014/07/20 23:18:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2009/07/14 01:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/23 21:47:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2012/08/16 21:25:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGA5
O43 - CFD: 2011/11/22 11:00:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2012/01/03 19:20:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
O43 - CFD: 2013/01/09 00:31:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
O43 - CFD: 2015/02/02 21:09:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 R2
O43 - CFD: 2014/04/25 21:54:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 2014/10/09 21:39:03 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Tools
O43 - CFD: 2011/05/26 00:34:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
O43 - CFD: 2011/05/26 00:44:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protector Suite
O43 - CFD: 2011/05/26 00:12:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartWi Connection Utility
O43 - CFD: 2015/10/05 22:27:54 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/07/14 04:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2012/02/19 15:19:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft Games
O43 - CFD: 2011/05/25 23:43:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
O43 - CFD: 2013/07/28 16:20:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2012/04/22 13:30:30 - [] D -- C:\ProgramData\1912 Titanic Mystery
O43 - CFD: 2014/10/18 19:13:41 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 2015/07/20 21:20:15 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2015/10/06 21:53:46 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2013/10/19 22:56:52 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2011/11/23 21:42:31 - [] HD -- C:\ProgramData\ArcSoft
O43 - CFD: 2011/10/08 13:45:35 - [] D -- C:\ProgramData\BOINC
O43 - CFD: 2012/09/10 21:35:29 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2011/12/01 13:24:15 - [] D -- C:\ProgramData\DDNi
O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/10/06 21:57:52 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 2011/05/26 00:28:22 - [] D -- C:\ProgramData\Evernote
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/09/02 20:51:59 - [] D -- C:\ProgramData\GAS Tecnologia
O43 - CFD: 2015/10/04 17:16:47 - [] D -- C:\ProgramData\GbPlugin
O43 - CFD: 2014/04/25 21:42:58 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2015/10/06 22:40:13 - [] D -- C:\ProgramData\HitmanPro
O43 - CFD: 2011/11/02 11:47:18 - [] D -- C:\ProgramData\Intel
O43 - CFD: 2015/01/24 17:06:51 - [] D -- C:\ProgramData\IObit
O43 - CFD: 2013/06/13 10:28:24 - [] D -- C:\ProgramData\iolo
O43 - CFD: 2013/07/28 16:22:14 - [] D -- C:\ProgramData\IsolatedStorage
O43 - CFD: 2014/07/20 22:42:49 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2013/06/13 00:30:55 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/02/02 20:49:43 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/09/09 01:05:30 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2012/06/15 00:40:52 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2011/11/02 11:37:26 - [] D -- C:\ProgramData\Norton
O43 - CFD: 2011/05/26 01:08:48 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 2011/01/10 17:29:10 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 2015/04/22 16:38:34 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/02/17 22:45:39 - [] D -- C:\ProgramData\PopCap Games
O43 - CFD: 2013/10/25 21:12:09 - [] D -- C:\ProgramData\PSafe
O43 - CFD: 2011/11/02 11:47:19 - [] D -- C:\ProgramData\Roaming
O43 - CFD: 2013/11/12 22:12:40 - [] D -- C:\ProgramData\SafeNet Sentinel
O43 - CFD: 2015/10/05 22:28:44 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2015/01/30 20:30:21 - [] D -- C:\ProgramData\Sony Corporation
O43 - CFD: 2012/01/12 21:33:15 - [] D -- C:\ProgramData\SPSS
O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2011/05/26 00:03:01 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/09/20 11:10:23 - [] D -- C:\ProgramData\TomTom
O43 - CFD: 2015/10/06 23:06:36 - [] D -- C:\ProgramData\Ultra Adware Killer
O43 - CFD: 2012/01/03 19:19:05 - [] D -- C:\ProgramData\VirtualizedApplications
O43 - CFD: 2015/07/20 21:20:54 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2011/05/26 00:28:47 - [] D -- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 2014/05/17 02:39:18 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2012/01/12 21:32:18 - [] D -- C:\Program Files (x86)\Common Files\IBM
O43 - CFD: 2011/05/26 00:28:45 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2011/10/08 13:46:46 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 2015/10/08 12:27:10 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 2015/04/22 16:36:52 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2014/09/27 15:30:37 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2011/05/25 23:53:59 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2011/05/26 00:31:54 - [] D -- C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 2011/05/26 00:44:09 - [] D -- C:\Program Files (x86)\Common Files\SPBA
O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2014/12/17 19:53:28 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2011/05/26 00:58:36 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2013/10/17 23:31:15 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\360Safe
O43 - CFD: 2011/11/02 11:24:43 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Adobe
O43 - CFD: 2012/02/19 12:20:57 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\AnvSoft
O43 - CFD: 2015/10/06 22:01:51 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Apple Computer
O43 - CFD: 2015/04/30 16:00:24 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\ArcSoft
O43 - CFD: 2012/08/17 00:13:06 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\CodonCode Aligner
O43 - CFD: 2012/09/10 21:35:30 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2015/09/04 15:30:52 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Enlis
O43 - CFD: 2012/04/18 22:28:04 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\GRETECH
O43 - CFD: 2011/10/08 13:45:46 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Identities
O43 - CFD: 2011/10/08 15:31:59 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Intel
O43 - CFD: 2011/10/08 13:46:46 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Intel Corporation
O43 - CFD: 2015/10/08 12:06:17 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\IObit
O43 - CFD: 2013/07/28 16:22:14 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\IsolatedStorage
O43 - CFD: 2011/10/09 13:20:51 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 04:44:38 - [0] D -- C:\Users\Clevia Rosset\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/10/08 17:56:57 - [] SD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft
O43 - CFD: 2012/06/15 00:41:11 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Mozilla
O43 - CFD: 2012/03/22 23:04:36 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\NVIDIA
O43 - CFD: 2014/08/17 14:41:15 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Oracle
O43 - CFD: 2013/11/04 22:28:09 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Phantasmat_bf_ce1
O43 - CFD: 2013/11/04 22:28:10 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Phantasmat_zylom_ce
O43 - CFD: 2015/10/08 17:20:34 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\ProductData
O43 - CFD: 2011/10/08 13:46:24 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Protector Suite
O43 - CFD: 2013/10/17 00:00:47 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\PSafe
O43 - CFD: 2012/09/20 22:28:19 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Skype
O43 - CFD: 2013/10/05 16:26:25 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\SoftGrid Client
O43 - CFD: 2012/03/23 19:56:03 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Sony Corporation
O43 - CFD: 2013/11/12 22:24:17 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\SPSSInc
O43 - CFD: 2012/04/22 13:32:02 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\TitanicMystery
O43 - CFD: 2012/09/20 11:09:46 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\TomTom
O43 - CFD: 2015/04/30 15:48:14 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\uTorrent
O43 - CFD: 2012/01/12 21:29:14 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\WinRAR
O43 - CFD: 2015/10/09 23:50:57 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\ZHP
O43 - CFD: 2015/10/08 12:28:32 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Adobe
O43 - CFD: 2014/09/23 00:24:42 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Apple
O43 - CFD: 2014/09/23 00:26:53 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Apple Computer
O43 - CFD: 2014/09/23 00:24:32 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Apple Inc
O43 - CFD: 2011/10/08 13:44:28 - [] SHD -- C:\Users\Clevia Rosset\AppData\Local\Application Data
O43 - CFD: 2011/10/09 13:40:28 - [] D -- C:\Users\Clevia Rosset\AppData\Local\ArcSoft
O43 - CFD: 2011/10/08 13:47:02 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Broadcom
O43 - CFD: 2015/07/23 01:21:46 - [] D -- C:\Users\Clevia Rosset\AppData\Local\CEF
O43 - CFD: 2013/07/24 23:04:37 - [0] D -- C:\Users\Clevia Rosset\AppData\Local\Diagnostics
O43 - CFD: 2013/03/26 21:34:37 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Downloaded Installations
O43 - CFD: 2015/10/06 21:50:14 - [] D -- C:\Users\Clevia Rosset\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/09/04 15:30:52 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Enlis
O43 - CFD: 2011/11/09 09:31:50 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Evernote
O43 - CFD: 2014/09/27 16:55:01 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Facebook
O43 - CFD: 2014/07/17 23:59:27 - [] D -- C:\Users\Clevia Rosset\AppData\Local\GAS Tecnologia
O43 - CFD: 2015/09/10 23:42:04 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Google
O43 - CFD: 2015/06/04 19:28:35 - [] D -- C:\Users\Clevia Rosset\AppData\Local\GWX
O43 - CFD: 2011/10/08 13:44:28 - [] SHD -- C:\Users\Clevia Rosset\AppData\Local\History
O43 - CFD: 2013/11/12 22:23:47 - [] D -- C:\Users\Clevia Rosset\AppData\Local\IBM
O43 - CFD: 2013/11/12 22:23:41 - [] D -- C:\Users\Clevia Rosset\AppData\Local\javasharedresources
O43 - CFD: 2012/06/21 18:40:37 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Macromedia
O43 - CFD: 2014/12/18 15:01:54 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Microsoft
O43 - CFD: 2013/06/12 22:05:00 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Microsoft Games
O43 - CFD: 2012/09/02 23:41:23 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Microsoft Help
O43 - CFD: 2013/10/02 21:49:22 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Mozilla
O43 - CFD: 2013/01/09 11:25:40 - [] D -- C:\Users\Clevia Rosset\AppData\Local\MRC-Holland___Berg_IT_Sol
O43 - CFD: 2013/01/07 20:10:00 - [] D -- C:\Users\Clevia Rosset\AppData\Local\NFS Underground 2
O43 - CFD: 2011/11/09 10:41:21 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Programs
O43 - CFD: 2013/10/20 00:47:04 - [] D -- C:\Users\Clevia Rosset\AppData\Local\PSafe
O43 - CFD: 2011/11/02 12:01:48 - [] D -- C:\Users\Clevia Rosset\AppData\Local\SoftGrid Client
O43 - CFD: 2014/05/20 20:43:59 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Sony Corporation
O43 - CFD: 2015/10/09 23:50:41 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Temp
O43 - CFD: 2011/10/08 13:44:28 - [] SHD -- C:\Users\Clevia Rosset\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/09/20 11:09:46 - [] D -- C:\Users\Clevia Rosset\AppData\Local\TomTom
O43 - CFD: 2012/02/19 12:21:03 - [] D -- C:\Users\Clevia Rosset\AppData\Local\VirtualStore
O43 - CFD: 2012/08/18 15:25:44 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Windows Live
O43 - CFD: 2009/07/14 01:54:32 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/08/14 22:28:07 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2012/09/10 21:40:51 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/10/08 17:56:57 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
O43 - CFD: 2015/08/19 23:20:35 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IGV
O43 - CFD: 2009/07/14 01:49:38 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/08/14 22:28:07 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/07/28 16:20:38 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©

---\\ ShareTools MSconfig StartupReg (4) - 1s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe ©
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe ©
O53 - SMSR:HKLM\...\startupreg\SHTtray.exe [Key] . (.Sony Corporation - SHTtray.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe ©
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©

---\\ System Drivers List (79) - 3s
O58 - SDL:2013/10/11 21:04:16 RA . (.360.cn - 360HipsOEM.) -- C:\Windows\System32\drivers\360FltOEM.sys [289952] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/03/11 03:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/13 22:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/03/11 03:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2008/04/25 10:06:42 A . (.ArcSoft, Inc. - For X64.) -- C:\Windows\System32\drivers\ArcSoftKsUFilter.sys [19968] ©
O58 - SDL:2008/10/28 11:27:52 A . (.ArcSoft, Inc. - ArcSoft Virtual Audio Device.) -- C:\Windows\System32\drivers\ArcVad.sys [27136] ©
O58 - SDL:2009/06/10 17:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/13 22:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2010/06/18 17:09:06 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [342056] ©
O58 - SDL:2010/06/18 17:09:08 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [102952] ©
O58 - SDL:2010/06/18 17:09:08 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [135720] ©
O58 - SDL:2010/06/18 17:08:29 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [39464] ©
O58 - SDL:2010/06/18 17:09:10 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21544] ©
O58 - SDL:2009/06/10 17:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2011/08/17 08:58:16 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\ccdcmbx64.sys [19968] ©
O58 - SDL:2009/07/13 22:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2012/09/10 21:34:06 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283200] ©
O58 - SDL:2009/07/13 22:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 17:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2015/10/09 23:44:24 A . (.GAS Tecnologia - GAS Tecnologia - FAC.) -- C:\Windows\System32\drivers\gbpddfac64.sys [28888]
O58 - SDL:2009/06/10 17:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2009/09/17 16:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] ©
O58 - SDL:2010/11/20 10:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2010/03/04 00:51:40 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [540696] ©
O58 - SDL:2011/03/11 03:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2010/06/22 17:14:35 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [10342240] ©
O58 - SDL:2009/07/13 22:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2010/06/25 18:03:46 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [158976] ©
O58 - SDL:2010/06/19 00:36:04 A . (.Siliten - Flex Define Keyboard Driver.) -- C:\Windows\System32\drivers\InputFilter_FlexDef2b.sys [17920] ©
O58 - SDL:2010/06/22 17:15:43 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [271872] ©
O58 - SDL:2011/11/14 23:12:10 A . (.Atheros Communications, Inc. - Atheros Ar81xx series PCI-E Gigabit Etherne.) -- C:\Windows\System32\drivers\L1C62x64.sys [111216] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/10/06 20:36:12 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2015/06/18 08:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] ©
O58 - SDL:2010/05/31 16:05:06 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETw5s64.sys [7689216] ©
O58 - SDL:2010/07/14 03:42:58 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwNs64.sys [7821312] ©
O58 - SDL:2009/07/13 22:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2009/07/24 07:55:10 A . (.Primax Ltd - Primax USB Optical Mouse Driver.) -- C:\Windows\System32\drivers\NMgamingms.sys [11264]
O58 - SDL:2011/08/17 09:04:34 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\nmwcdnsux64.sys [171008] ©
O58 - SDL:2013/02/18 09:22:16 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [189288] ©
O58 - SDL:2010/06/22 17:09:10 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [13893224] ©
O58 - SDL:2011/03/11 03:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2011/03/11 03:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/13 22:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/13 22:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2007/04/17 15:51:50 A . (.InterVideo - regi driver.) -- C:\Windows\System32\drivers\regi.sys [14112] ©
O58 - SDL:2010/06/22 17:02:45 A . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\drivers\rimssne64.sys [94208] ©
O58 - SDL:2010/06/22 17:04:27 A . (.REDC - RICOH PCIe SD/MMC Driver.) -- C:\Windows\System32\drivers\risdsne64.sys [78848] ©
O58 - SDL:2010/05/27 17:17:23 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2307616] ©
O58 - SDL:2009/06/10 17:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2014/12/21 15:14:34 A . (...) -- C:\Windows\System32\drivers\semav6thermal64ro.sys [13792]
O58 - SDL:2009/07/13 21:00:40 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208] ©
O58 - SDL:2010/04/26 17:20:29 A . (.Sony Corporation - Sony Firmware Extension Parser driver.) -- C:\Windows\System32\drivers\SFEP.sys [12032] ©
O58 - SDL:2009/07/13 22:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/13 22:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/13 22:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2011/08/24 11:56:28 A . (.Windows (R) Win 7 DDK provider - Spyware Terminator 2012 driver.) -- C:\Windows\System32\drivers\stflt.sys [51496] ©
O58 - SDL:2010/05/28 17:23:54 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [316464] ©
O58 - SDL:2014/08/15 23:35:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784] ©
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©

---\\ Last modified or created user files (13) - 140s
O61 - LFC: 2015/10/06 21:07:05 A . (..) -- C:\Users\Clevia Rosset\Downloads\adwcleaner_5.010.exe [1681920]
O61 - LFC: 2015/10/07 17:29:38 A . (.SosVirus.) -- C:\Users\Clevia Rosset\Desktop\AdsFix.exe [2718208]
O61 - LFC: 2015/10/09 23:26:20 A . (..) -- C:\Users\Clevia Rosset\Desktop\ComIntRepair.exe [1586165]
O61 - LFC: 2015/10/06 23:55:50 A . (..) -- C:\Users\Clevia Rosset\Desktop\cureit (1).exe [163273160]
O61 - LFC: 2015/10/07 17:05:28 A . (..) -- C:\Users\Clevia Rosset\Desktop\zoek.exe [1309184]
O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\Application Data\IObit\IObit Uninstaller\Install_PintoStartMenutemp.exe [588576]
O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\Application Data\IObit\IObit Uninstaller\PPUninstallertemp.exe [933664]
O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\Application Data\IObit\IObit Uninstaller\UninstallDisplaytemp.exe [776992]
O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\AppData\Roaming\IObit\IObit Uninstaller\Install_PintoStartMenutemp.exe [588576]
O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\AppData\Roaming\IObit\IObit Uninstaller\PPUninstallertemp.exe [933664]
O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\AppData\Roaming\IObit\IObit Uninstaller\UninstallDisplaytemp.exe [776992]
O61 - LFC: 2015/10/09 23:48:59 A . (..) -- C:\Users\Clevia Rosset\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
O61 - LFC: 2015/10/05 23:30:46 A . (..) -- C:\Users\Clevia Rosset\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [164]

---\\ File Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Search Browser Infection (4) - 6s
O69 - SBI: prefs.js [Clevia Rosset - bm4okjd5.default] user_pref("browser.search.searchengine.alias", "