Publicité
Publicité
Commentaire : ZHPDiag
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.11.4.161 By Nicolas Coolman (2015/11/04)
~ Run by (2015/11/04 17:17:29)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Nick\Desktop\ZHPDiag.txt
~ Report: C:\Users\Nick\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (2) - 0s
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
MSIE: Internet Explorer v11.0.9600.18015
---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System protection software (2) - 1s
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender W7 (Activate)
---\\ Surveillance software (2) - 1s
Adobe Flash Player 19 NPAPI
Adobe Acrobat Reader DC - Français
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 16717.92 MB (82% free)
~ System Restore: Activé (Enable)
~ System drive C: has 22 GB free of 122 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name:
~ User Name:
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 22 GB free of 122 GB (System)
~ Drive S: has 552 GB free of 953 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (24) - 0s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - 25/02/2011 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 13/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 13/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.A55305B1CACD38EAC176CC532B2053AC] - 15/08/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2427392] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 16/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - 30/05/2014 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 13/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 13/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 13/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.43E1F4B0EFDC244D2A83995CCD7846F7] - 22/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - 23/01/2014 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - 13/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 20/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 13/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - 10/11/2014 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.DF8126BD41180351A093A3AD2FC8903B] - 25/02/2011 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [296320] ©
---\\ Process running (40) - 0s
[MD5.F029A2C032B4A50DEBB21312CFF76189] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.8.) -- C:\Windows\System32\nvvsvc.exe [937776] [PID.156] ©
[MD5.9FAA9DED1594A643DC7A53C3B15CC678] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1251120] [PID.1600] ©
[MD5.F029A2C032B4A50DEBB21312CFF76189] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.8.) -- C:\Windows\System32\nvvsvc.exe [937776] [PID.1616] ©
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1492] ©
[MD5.BBF8F831C7720DD5135D8C4C8325187A] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728] [PID.2068]
[MD5.6216BBE9B496194C6C6F0F5F0A9FF007] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1430328] [PID.2272]
[MD5.2D4444463D8395AF56B7C1633F0FB7CA] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1271096] [PID.2284]
[MD5.6A605E37012935C6FA09AFF94319ED86] - (. - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe [772712] [PID.2332]
[MD5.F78A3153EC85A3FC8134F8368C5C3240] - (.ASUSTeK Computer Inc. - ASUS Push Notice Server.) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264] [PID.2340] ©
[MD5.AE7586349CE69C6A0D5C8B11FAE04A6D] - (.Copyright (c) 2008 - .) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe [150264] [PID.2348]
[MD5.360344AD99C27327A7478BE29EAE9E55] - (.CANON INC. - Canon MF Network Scan Utility 64bit.) -- C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552] [PID.2356] ©
[MD5.134527C3B56C2A39E4FCCA4860DAE10D] - (.ASUSTeK Computer Inc. - .) -- C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1839896] [PID.2376] ©
[MD5.5F1091FA113607C9C9B2ECF4FBC76F37] - (.ASUSTeK Computer Inc. - .) -- C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648] [PID.2488] ©
[MD5.9A1BAED68C52FA4668C3933AA93E9530] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe [384000] [PID.2552] ©
[MD5.2555A094409BD20DAB7A97A5A539F21C] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216] [PID.2676] ©
[MD5.92C12D33059475B936BCD0FF3BE4C42B] - (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes64\AgentAntidote64.exe [83968] [PID.2688] ©
[MD5.1CCCAD1593C1FD46B46F9E705B4EEBF8] - (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe [947712] [PID.2724] ©
[MD5.9F0ACAA725CF5A391AF7E2067AE45746] - (.Nuance Communications, Inc. - PdfCreateHook Application.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe [636192] [PID.2800] ©
[MD5.951658D90F95CE120823129DB362F667] - (. - Printer Communication System.) -- C:\Windows\System32\lxeccoms.exe [1052328] [PID.2836]
[MD5.A12927788DE1555B598DFD16B4FA3F8B] - (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792] [PID.2948] ©
[MD5.FCEC6F664FA7E5FE323165FBC9314470] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040] [PID.2984] ©
[MD5.4D34638771AC8C1C49600B99FA96CDE5] - (.Brother Industries, Ltd. - ControlCenter Main Process.) -- C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe [579584] [PID.3040] ©
[MD5.A69A8F293968F5D9272B4AA2BC6A925B] - (.Brother Industries, Ltd. - ControlCenter UX System.) -- C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe [1537536] [PID.3520] ©
[MD5.EC1562C59581C35B13DE537E27161A5D] - (.ASUSTeK Computer Inc. - USB 3.0 Boost Service.) -- C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe [426296] [PID.3792] ©
[MD5.FCED3FE9AA9058900995E83618BD244F] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe [1065272] [PID.4196]
[MD5.632842AE065ACE30356F00289A1C0AF5] - (.Copyright © 2013 - PushNotify_PCCtrl.) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe [36152] [PID.4216]
[MD5.D9A9FFC89F61CAD4AD9EF31FBB17E634] - (.Intel Corporation - Intel(R) Integrated Clock Controller Servic.) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [171632] [PID.4012] ©
[MD5.0471D5669F18C50E552B2BC0CB15E7B3] - (.Brother Industries, Ltd. - BrYNCSvc.) -- C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112] [PID.2924] ©
[MD5.0C5D0E8CB41D921062D2F82EF48546E0] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\ASUSMiniBar.exe [947512] [PID.6012]
[MD5.D5218EE66173405B26B716EBA68133F6] - (.Valve Corporation - Steam Client Bootstrapper.) -- S:\Steam\Steam.exe [2901584] [PID.5984] ©
[MD5.4B0583A0A6A22D9F453BFFD467E68190] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392872] [PID.5204] ©
[MD5.2C27A179F45F8A0CCED7EAD075AA640C] - (.Valve Corporation - Steam Client WebHelper.) -- S:\Steam\bin\steamwebhelper.exe [1835088] [PID.5740] ©
[MD5.D31201BD8782752BD69DBE1E5DDF9AC5] - (.Valve Corporation - Steam Client Service.) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe [838224] [PID.5832] ©
[MD5.2C27A179F45F8A0CCED7EAD075AA640C] - (.Valve Corporation - Steam Client WebHelper.) -- S:\Steam\bin\steamwebhelper.exe [1835088] [PID.3848] ©
[MD5.344CC9339BA1022F335B46B95AABF32F] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [277672] [PID.4036] ©
[MD5.FA2703EE6126F6504B11CED5046967CC] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe [3426504] [PID.5356] ©
[MD5.FA2703EE6126F6504B11CED5046967CC] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe [3426504] [PID.3540] ©
[MD5.0B93A01F786F37A4B1EDE84E639FFF10] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584] [PID.3648] ©
[MD5.C31139E0907170E2A3FA8D19DCC23D35] - (.Intel Corporation - Intel(R) Local Management Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [398296] [PID.1916] ©
[MD5.6F4483F9955DF6158FE08F2E86B62660] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Nick\Desktop\ZHPDiag3.exe [1964544] [PID.2860] ©
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (3) - 1s
P2 - EXT FILE: (...) -- C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\t23jdgsl.default-1433593930300\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll ©
---\\ Internet Explorer Extensions, Start, Search (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (3) - 0s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean)
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL ©
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean)
---\\ Auto loading programs from Registry and folders (20) - 0s
O4 - HKLM\..\Run: [lxecmon.exe] . (. - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe
O4 - HKLM\..\Run: [EzPrint] . (.Copyright (c) 2008 - .) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe
O4 - HKLM\..\Run: [MFNetworkScanUtility] . (.CANON INC. - Canon MF Network Scan Utility 64bit.) -- C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE ©
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (.not file.)
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKLM\..\Wow6432Node\Run: [WheelMouse] . (. - Mouse Start Program.) -- C:\Advanced Wheel Mouse\wh_exec.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe ©
O4 - HKLM\..\Wow6432Node\Run: [agentantidote64.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe ©
O4 - HKLM\..\Wow6432Node\Run: [agentantidote.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe ©
O4 - HKLM\..\Wow6432Node\Run: [PDFHook] . (.Nuance Communications, Inc. - PdfCreateHook Application.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe ©
O4 - HKLM\..\Wow6432Node\Run: [PDF5 Registry Controller] . (.Nuance Communications, Inc. - PDF Converter Registry Controller.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe ©
O4 - HKLM\..\Wow6432Node\Run: [ControlCenter4] . (.Brother Industries, Ltd. - ControlCenter Launcher.) -- C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe ©
O4 - HKLM\..\Wow6432Node\Run: [BrStsMon00] . (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-4237687431-2236707173-1163918379-1000\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (.not file.)
O4 - HKUS\S-1-5-21-4237687431-2236707173-1163918379-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
---\\ Lop.com/Domain Hijackers (9) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 132.208.217.100 132.208.148.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = uqam.ca
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 132.208.217.100 132.208.148.100
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = uqam.ca
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 132.208.217.100 132.208.148.100
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = uqam.ca
---\\ Extra protocols (21) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office 15\root\office15\msosb.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
---\\ Non Microsoft non disabled Windows Services (10) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - .) - C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe ©
O23 - Service: AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe ©
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
O23 - Service: lxecCATSCustConnectService (lxecCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\System32\spool\drivers\x64\3\lxecserv.exe
O23 - Service: lxec_device (lxec_device) . (. - Printer Communication System.) - C:\Windows\System32\lxeccoms.exe
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.8.) - C:\Windows\System32\nvvsvc.exe ©
---\\ Task Planned Automatically (14) - 3s
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] ©
[MD5.8C194A201698B4B4F77D974549819D1F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.00000000000000000000000000000000] [APT] [SlimCleaner Plus (Scheduled Scan - Nick)] (...) -- C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe (.not file.) [0]
[MD5.134527C3B56C2A39E4FCCA4860DAE10D] [APT] [ASUS\ASUS AISuiteIII] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1839896] ©
[MD5.2D4444463D8395AF56B7C1633F0FB7CA] [APT] [ASUS\ASUS DIPAwayMode] (...) -- C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1271096]
[MD5.6216BBE9B496194C6C6F0F5F0A9FF007] [APT] [ASUS\Ez Update] (...) -- C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1430328]
[MD5.B6F2FD78572C10DA1709E67A9FBE240B] [APT] [ASUS\GpuFanHelper] (.TODO:.) -- C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4331288]
[MD5.F78A3153EC85A3FC8134F8368C5C3240] [APT] [ASUS\Push Notice Server Execute] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264] ©
[MD5.D25981D7E7BBDD4BB10ECBA500972206] [APT] [ASUS\USB 3.0 Boost Service] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [238392] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] ©
O39 - APT: SlimCleaner Plus (Scheduled Scan - Nick) - (...) -- C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - Nick).job [364]
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] ©
O39 - APT: SlimCleaner Plus (Scheduled Scan - Nick) - (...) -- C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Nick) [3024]
---\\ Software installed (136) - 7s
O42 - Logiciel: Lexmark Pro800-Pro900 Series - (.Lexmark International, Inc..) [HKLM][64Bits] -- Lexmark Pro800-Pro900 Series
O42 - Logiciel: Microsoft Mouse and Keyboard Center - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {0D01BDA8-C995-40AD-95F8-26B7EA4DCF9F} ©
O42 - Logiciel: Canon MF210 Series - (.CANON INC..) [HKLM][64Bits] -- {14824AB4-17F5-4909-80AB-A7E24743A47C} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700} ©
O42 - Logiciel: 7-Zip 9.38 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0938-000001000000} ©
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {3DE97849-544D-4D68-9255-11DF6F9F10D8} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {46C478DE-C381-4200-9627-0DA025B555EB} ©
O42 - Logiciel: PaperPort Image Printer 64-bit - (.Nuance Communications, Inc..) [HKLM][64Bits] -- {715CAACC-579B-4831-A5F4-A83A8DE3EFE2} ©
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} ©
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {98900FE1-9C17-4553-B0D1-132BF9126412} ©
O42 - Logiciel: NVIDIA Graphics Driver 355.82 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA PhysX System Software 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Intel(R) ME UninstallLegacy - (.Intel Corporation.) [HKLM][64Bits] -- {E8B134CC-098E-4623-BD85-0A432FE5DDFB} ©
O42 - Logiciel: The Witcher 3 - Wild Hunt - (.GOG.com.) [HKLM][64Bits] -- 1207664643_is1 ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net ©
O42 - Logiciel: BitZipper 2015 - (.Bitberry Software.) [HKLM][64Bits] -- BitZipper_is1 ©
O42 - Logiciel: Diablo III - (.Blizzard Entertainment.) [HKLM][64Bits] -- Diablo III ©
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone ©
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: NirSoft BlueScreenView - (...) [HKLM][64Bits] -- NirSoft BlueScreenView
O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin ©
O42 - Logiciel: ResearchSoft Direct Export Helper - (.Thomson Reuters.) [HKLM][64Bits] -- ResearchSoft Direct Export Helper
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam ©
O42 - Logiciel: Counter-Strike - (.Valve.) [HKLM][64Bits] -- Steam App 10 ©
O42 - Logiciel: Terraria - (.Re-Logic.) [HKLM][64Bits] -- Steam App 105600 ©
O42 - Logiciel: Project Zomboid - (.The Indie Stone.) [HKLM][64Bits] -- Steam App 108600 ©
O42 - Logiciel: Oddworld: Abe's Oddysee - (.Oddworld Inhabitants.) [HKLM][64Bits] -- Steam App 15700
O42 - Logiciel: Realm of the Mad God - (.Wild Shadow Studios.) [HKLM][64Bits] -- Steam App 200210
O42 - Logiciel: Magicka: Wizard Wars - (.Paradox North.) [HKLM][64Bits] -- Steam App 202090
O42 - Logiciel: Castle Crashers - (.The Behemoth.) [HKLM][64Bits] -- Steam App 204360 ©
O42 - Logiciel: Viking: Battle for Asgard - (.Creative Assembly, PC Port - Hardlight.) [HKLM][64Bits] -- Steam App 211160
O42 - Logiciel: Starbound - (...) [HKLM][64Bits] -- Steam App 211820
O42 - Logiciel: PAYDAY 2 - (.OVERKILL - a Starbreeze Studio..) [HKLM][64Bits] -- Steam App 218620
O42 - Logiciel: Mercenary Kings - (.Tribute Games Inc..) [HKLM][64Bits] -- Steam App 218820
O42 - Logiciel: Don't Starve - (.Klei Entertainment.) [HKLM][64Bits] -- Steam App 219740 ©
O42 - Logiciel: Grim Dawn - (.Crate Entertainment.) [HKLM][64Bits] -- Steam App 219990
O42 - Logiciel: Half-Life 2 - (.Valve.) [HKLM][64Bits] -- Steam App 220 ©
O42 - Logiciel: Fallout: New Vegas - (.Obsidian Entertainment.) [HKLM][64Bits] -- Steam App 22380
O42 - Logiciel: Prison Architect - (.Introversion Software.) [HKLM][64Bits] -- Steam App 233450 ©
O42 - Logiciel: Mad Max - (.Avalanche Studios.) [HKLM][64Bits] -- Steam App 234140 ©
O42 - Logiciel: Shadowrun Returns - (.Harebrained Schemes.) [HKLM][64Bits] -- Steam App 234650
O42 - Logiciel: Warhammer: End Times - Vermintide - (.Fatshark.) [HKLM][64Bits] -- Steam App 235540 ©
O42 - Logiciel: Europa Universalis IV - (.Paradox Development Studio.) [HKLM][64Bits] -- Steam App 236850 ©
O42 - Logiciel: Magicka 2 - (.Pieces Interactive.) [HKLM][64Bits] -- Steam App 238370
O42 - Logiciel: Path of Exile - (.Grinding Gear Games.) [HKLM][64Bits] -- Steam App 238960 ©
O42 - Logiciel: Dying Light - (.Techland.) [HKLM][64Bits] -- Steam App 239140 ©
O42 - Logiciel: Game Dev Tycoon - (.Greenheart Games.) [HKLM][64Bits] -- Steam App 239820 ©
O42 - Logiciel: Counter-Strike: Source - (.Valve.) [HKLM][64Bits] -- Steam App 240 ©
O42 - Logiciel: Middle-earth: Shadow of Mordor - (.Monolith Productions, Inc..) [HKLM][64Bits] -- Steam App 241930
O42 - Logiciel: Nuclear Throne - (.Vlambeer.) [HKLM][64Bits] -- Steam App 242680 ©
O42 - Logiciel: Sir, You Are Being Hunted - (.Big Robot Ltd.) [HKLM][64Bits] -- Steam App 242880
O42 - Logiciel: Invisible, Inc. - (.Klei Entertainment.) [HKLM][64Bits] -- Steam App 243970 ©
O42 - Logiciel: Skullgirls - (.Lab Zero Games.) [HKLM][64Bits] -- Steam App 245170
O42 - Logiciel: The Binding of Isaac: Rebirth - (.Nicalis, Inc..) [HKLM][64Bits] -- Steam App 250900
O42 - Logiciel: Chroma Squad - (.Behold Studios.) [HKLM][64Bits] -- Steam App 251130 ©
O42 - Logiciel: 7 Days to Die - (.The Fun Pimps.) [HKLM][64Bits] -- Steam App 251570
O42 - Logiciel: Darkest Dungeon - (.Red Hook Studios.) [HKLM][64Bits] -- Steam App 262060
O42 - Logiciel: Magicite - (.SmashGames.) [HKLM][64Bits] -- Steam App 268750
O42 - Logiciel: Hero Siege - (.Elias Viglione.) [HKLM][64Bits] -- Steam App 269210 ©
O42 - Logiciel: Secrets of Grindea - (.Pixel Ferrets.) [HKLM][64Bits] -- Steam App 269770
O42 - Logiciel: Darkwood - (.Acid Wizard Studio.) [HKLM][64Bits] -- Steam App 274520
O42 - Logiciel: METAL GEAR SOLID V: THE PHANTOM PAIN - (.Konami Digital Entertainment.) [HKLM][64Bits] -- Steam App 287700
O42 - Logiciel: Endless Legend - (.AMPLITUDE Studios.) [HKLM][64Bits] -- Steam App 289130 ©
O42 - Logiciel: Brawlhalla - (.Blue Mammoth Games.) [HKLM][64Bits] -- Steam App 291550
O42 - Logiciel: Pillars of Eternity - (.Obsidian Entertainment.) [HKLM][64Bits] -- Steam App 291650
O42 - Logiciel: The Dungeoning - (.Nick Donnelly.) [HKLM][64Bits] -- Steam App 295870
O42 - Logiciel: Renowned Explorers: International Society - (.Abbey Games.) [HKLM][64Bits] -- Steam App 296970 ©
O42 - Logiciel: The Escapists - (.Mouldy Toof Studios.) [HKLM][64Bits] -- Steam App 298630
O42 - Logiciel: Sunless Sea - (.Failbetter Games.) [HKLM][64Bits] -- Steam App 304650
O42 - Logiciel: OTTTD - (.SMG Studio.) [HKLM][64Bits] -- Steam App 312630
O42 - Logiciel: Way of the Samurai 4 - (.ACQUIRE Corp..) [HKLM][64Bits] -- Steam App 312780
O42 - Logiciel: The Masterplan - (.Shark Punch.) [HKLM][64Bits] -- Steam App 313080
O42 - Logiciel: Metrocide - (.Flat Earth Games.) [HKLM][64Bits] -- Steam App 313130
O42 - Logiciel: Catacomb Kids - (.FourbitFriday.) [HKLM][64Bits] -- Steam App 315840
O42 - Logiciel: Don't Starve Together Beta - (.Klei Entertainment.) [HKLM][64Bits] -- Steam App 322330 ©
O42 - Logiciel: Vagante - (.Nuke Nine.) [HKLM][64Bits] -- Steam App 323220
O42 - Logiciel: Tales from the Borderlands - (.Telltale Games.) [HKLM][64Bits] -- Steam App 330830 ©
O42 - Logiciel: Caves of Qud - (.Freehold Games.) [HKLM][64Bits] -- Steam App 333640
O42 - Logiciel: SHOGUN: Total War™ - Gold Edition - (.Creative Assembly.) [HKLM][64Bits] -- Steam App 345240 ©
O42 - Logiciel: Shadowrun: Hong Kong - (.Harebrained Schemes.) [HKLM][64Bits] -- Steam App 346940
O42 - Logiciel: Toukiden: Kiwami - (.KOEI TECMO GAMES CO., LTD..) [HKLM][64Bits] -- Steam App 363130 ©
O42 - Logiciel: Clicker Heroes - (...) [HKLM][64Bits] -- Steam App 363970
O42 - Logiciel: Relic Hunters Zero - (.Rogue Snail.) [HKLM][64Bits] -- Steam App 382490
O42 - Logiciel: Dungeon Souls - (.Mike Studios.) [HKLM][64Bits] -- Steam App 383230
O42 - Logiciel: Undertale - (.tobyfox.) [HKLM][64Bits] -- Steam App 391540
O42 - Logiciel: Garry's Mod - (.Facepunch Studios.) [HKLM][64Bits] -- Steam App 4000 ©
O42 - Logiciel: Team Fortress 2 - (.Valve.) [HKLM][64Bits] -- Steam App 440 ©
O42 - Logiciel: Medieval II: Total War - (.The Creative Assembly.) [HKLM][64Bits] -- Steam App 4700 ©
O42 - Logiciel: Medieval II: Total War Kingdoms - (.The Creative Assembly.) [HKLM][64Bits] -- Steam App 4780 ©
O42 - Logiciel: Mount & Blade: Warband - (.TaleWorlds Entertainment.) [HKLM][64Bits] -- Steam App 48700 ©
O42 - Logiciel: Half-Life - (.Valve.) [HKLM][64Bits] -- Steam App 70 ©
O42 - Logiciel: Counter-Strike: Global Offensive - (.Valve.) [HKLM][64Bits] -- Steam App 730 ©
O42 - Logiciel: Counter-Strike: Condition Zero - (.Valve.) [HKLM][64Bits] -- Steam App 80 ©
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay ©
O42 - Logiciel: Advanced Wheel Mouse 6.0.0.002 - (...) [HKLM][64Bits] -- WheelMouse
O42 - Logiciel: FOMM 0.14.11.12 - (.Prideslayer.) [HKLM][64Bits] -- {072C2AEF-16B2-46B7-BA7F-D0CAA7B4F89F}_is1
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} ©
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} ©
O42 - Logiciel: Java 8 Update 65 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218065F0} ©
O42 - Logiciel: Nuance PDF Viewer Plus - (.Nuance Communications, Inc.) [HKLM][64Bits] -- {28656860-4728-433C-8AD4-D1A930437BC8}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel(R) Corporation.) [HKLM][64Bits] -- {4a87bd28-a855-4a8d-b133-60ca8ccffd30} ©
O42 - Logiciel: Ultima 7 - (.Electronic Arts.) [HKLM][64Bits] -- {4F4D844E-7B08-43A7-9C91-0B7D978EEC4D} ©
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} ©
O42 - Logiciel: Antidote HD - (.Druide informatique inc..) [HKLM][64Bits] -- {56CDB4FE-895F-4E0D-8BB4-9A8D4310898D} ©
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} ©
O42 - Logiciel: EndNote X7 - (.Thomson Reuters.) [HKLM][64Bits] -- {86B3F2D6-AC2B-0017-8AE1-F2F77F781B0C}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8A809006-C25A-4A3A-9DAB-94659BCDB107} ©
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB1B528-E260-451E-9B55-E9152F94B80B} ©
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE} ©
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} ©
O42 - Logiciel: Wireless LAN Driver - (...) [HKLM][64Bits] -- {9D3D8C60-A55F-4123-B2B9-173F09590E16}
O42 - Logiciel: REALTEK Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9DAABC60-A5EF-41FF-B2B9-17329590CD5} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} ©
O42 - Logiciel: AI Suite 3 - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {CD36E28B-6023-469A-91E7-049A2874EC13} ©
O42 - Logiciel: Gerudo Wars Mission Pack - (.Parallel Process.) [HKLM][64Bits] -- {D27D1EF7-57DA-462A-9C50-ECD7E3642856}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} ©
O42 - Logiciel: Install Hyrule Total War - (.Parallel Process.) [HKLM][64Bits] -- {E4A39EE9-F346-4039-87F8-FC527AD6DE7F}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM][64Bits] -- {F89CDED6-B1F1-489F-BA44-698BF6A737C2} ©
O42 - Logiciel: Brother MFL-Pro Suite MFC-L2700DW series - (.Brother Industries, Ltd..) [HKLM][64Bits] -- {F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD} ©
O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM][64Bits] -- {F97E3841-CA9D-4964-9D64-26066241D26F} ©
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox ©
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe ©
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU][64Bits] -- TeamSpeak 3 Client ©
---\\ HKCU & HKLM Software Keys (151) - 7s
HKLM\SOFTWARE\Wow6432Node\activision
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\ASUS
HKLM\SOFTWARE\Wow6432Node\bethesda softworks
HKLM\SOFTWARE\Wow6432Node\BioWare
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\Brother Industries, Ltd.
HKLM\SOFTWARE\Wow6432Node\Canon
HKLM\SOFTWARE\Wow6432Node\cyanide
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\ea games
HKLM\SOFTWARE\Wow6432Node\EasyAntiCheat
HKLM\SOFTWARE\Wow6432Node\electronic arts
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\ISI ResearchSoft
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LexmarkInkjet
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\mount&blade warband
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenAL
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\Origin Systems
HKLM\SOFTWARE\Wow6432Node\Overwolf
HKLM\SOFTWARE\Wow6432Node\Panda Software
HKLM\SOFTWARE\Wow6432Node\Parallel Process
HKLM\SOFTWARE\Wow6432Node\re-logic
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\REALTEK Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\rebellion
HKLM\SOFTWARE\Wow6432Node\Redhook
HKLM\SOFTWARE\Wow6432Node\RtWLan
HKLM\SOFTWARE\Wow6432Node\ScanSoft
HKLM\SOFTWARE\Wow6432Node\SEGA
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities Inc
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities, Inc.
HKLM\SOFTWARE\Wow6432Node\SRS Labs
HKLM\SOFTWARE\Wow6432Node\stardock
HKLM\SOFTWARE\Wow6432Node\THQ
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\Yahoo
HKLM\SOFTWARE\Wow6432Node\ZEON
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Acid Wizard Studio
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AMPLITUDE Studios
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\Avg Secure Update
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKCU\SOFTWARE\Behold Studios
HKCU\SOFTWARE\Big Robot
HKCU\SOFTWARE\Bitberry
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Convoy Games
HKCU\SOFTWARE\Cyanide
HKCU\SOFTWARE\Daedalic Entertainment GmbH
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\Druide informatique inc.
HKCU\SOFTWARE\ea games
HKCU\SOFTWARE\Eidos
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\Epic Games
HKCU\SOFTWARE\Failbetter Games
HKCU\SOFTWARE\FLEXnet
HKCU\SOFTWARE\Freehold Games
HKCU\SOFTWARE\Frontier Developments
HKCU\SOFTWARE\Gluntronics
HKCU\SOFTWARE\GOG.com
HKCU\SOFTWARE\Goldhawk Interactive
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Harebrained Schemes
HKCU\SOFTWARE\Hinterland
HKCU\SOFTWARE\Hyper Hippo Productions Ltd.
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Imagination Technologies
HKCU\SOFTWARE\InstallShield
HKCU\SOFTWARE\ISI ResearchSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JC
HKCU\SOFTWARE\KoeiTecmo
HKCU\SOFTWARE\LexmarkInkjet
HKCU\SOFTWARE\LexmarkPhoto
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Ludeon Studios
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\Mighty Rabbit Studios
HKCU\SOFTWARE\Milkstone Studios
HKCU\SOFTWARE\MountAndBladeWarbandKeys
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\Obsidian Entertainment
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenAutomate
HKCU\SOFTWARE\Phenomic
HKCU\SOFTWARE\PTP
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Red Hook Studios
HKCU\SOFTWARE\ScanSoft
HKCU\SOFTWARE\SEGA
HKCU\SOFTWARE\Size Five Games
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SlimWare Utilities Inc
HKCU\SOFTWARE\SmashGames
HKCU\SOFTWARE\SMG
HKCU\SOFTWARE\Spiderling Games
HKCU\SOFTWARE\Stardock
HKCU\SOFTWARE\System Requirements Lab
HKCU\SOFTWARE\TeamSpeak 3 Client
HKCU\SOFTWARE\Telltale Games
HKCU\SOFTWARE\Terraria
HKCU\SOFTWARE\The Creative Assembly
HKCU\SOFTWARE\The Fun Pimps
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Turbine
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\Wild Factor
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zeon
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (252) - 4s
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\ASUS
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 14/06/2015 - [] D -- C:\Program Files (x86)\BitZipper
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Brother
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Browny02
O43 - CFD: 01/09/2015 - [] D -- C:\Program Files (x86)\Canon
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\ControlCenter4
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\Diablo III
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files (x86)\Druide
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\EndNote X7
O43 - CFD: 23/09/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 02/09/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 09/09/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files (x86)\Lexmark
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files (x86)\Lexmark Toolbar
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 10/06/2015 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 12/01/2015 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 12/01/2015 - [] D -- C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 15/06/2015 - [] D -- C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 12/01/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 04/11/2015 - [0] D -- C:\Program Files (x86)\Mozilla Firefox.bak
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 06/06/2015 - [] D -- C:\Program Files (x86)\NirSoft
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Nuance
O43 - CFD: 20/09/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 29/12/2014 - [] D -- C:\Program Files (x86)\OpenAL
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Panda Security
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\PCIE Wireless LAN Driver
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 14/10/2015 - [] D -- C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 02/09/2015 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 13/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/06/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 20/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 23/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 03/06/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 13/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 14/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitZipper
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
O43 - CFD: 15/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EndNote
O43 - CFD: 17/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FOMM
O43 - CFD: 22/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 19/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 08/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
O43 - CFD: 13/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 10/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
O43 - CFD: 12/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 15/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
O43 - CFD: 14/06/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 12/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\ASUS
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 22/06/2015 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Brother
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\Canon
O43 - CFD: 21/12/2014 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\ControlCenter4
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 08/01/2015 - [] D -- C:\ProgramData\Ezprint
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Goldhawk Interactive
O43 - CFD: 12/04/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 09/02/2015 - [] D -- C:\ProgramData\Lexmark Pro800-Pro900 Series
O43 - CFD: 02/07/2015 - [] D -- C:\ProgramData\LX_cats
O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 10/06/2015 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 15/09/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 12/01/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Nuance
O43 - CFD: 20/09/2015 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 20/09/2015 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\Origin
O43 - CFD: 25/02/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Panda Security
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\PCFaxTx
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 15/09/2015 - [] D -- C:\ProgramData\ScanSoft
O43 - CFD: 15/09/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 04/06/2015 - [] D -- C:\ProgramData\SlimWare Utilities, Inc
O43 - CFD: 26/04/2015 - [] D -- C:\ProgramData\Stardock
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\SteelSeries
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\Sun
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\SystemRequirementsLab
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 15/02/2015 - [] D -- C:\ProgramData\Thomson.ResearchSoft.Installers
O43 - CFD: 26/03/2015 - [] D -- C:\ProgramData\Turbine
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\TweakBit
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\zeon
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 14/05/2015 - [0] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 17/07/2015 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 15/06/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\PostureAgent
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\Common Files\ResearchSoft
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\Common Files\Risxtd
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 16/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 10/06/2015 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 08/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Adobe
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Battle.net
O43 - CFD: 15/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\BrawlhallaAir
O43 - CFD: 03/09/2015 - [] RD -- C:\Users\Nick\AppData\Roaming\Brother
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\com.playsaurus.heroclicker
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\ControlCenter4
O43 - CFD: 07/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\dingaling
O43 - CFD: 01/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Dropbox
O43 - CFD: 22/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Druide
O43 - CFD: 19/02/2015 - [] D -- C:\Users\Nick\AppData\Roaming\EndNote
O43 - CFD: 22/07/2015 - [0] D -- C:\Users\Nick\AppData\Roaming\EurekaLog
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Fatshark
O43 - CFD: 15/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\FiraxisLive
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\FLEXnet
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Goldhawk Interactive
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Identities
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\InstallShield
O43 - CFD: 12/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Kalypso Media
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\Nick\AppData\Roaming\Media Center Programs
O43 - CFD: 01/09/2015 - [] SD -- C:\Users\Nick\AppData\Roaming\Microsoft
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\minmaxgames
O43 - CFD: 07/07/2015 - [0] D -- C:\Users\Nick\AppData\Roaming\mkxp
O43 - CFD: 13/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Mount&Blade Warband
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Mozilla
O43 - CFD: 11/02/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Notzombies
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Nuance
O43 - CFD: 11/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\NVIDIA
O43 - CFD: 15/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Origin
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Nick\AppData\Roaming\Panda Security
O43 - CFD: 07/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\ParadoxInteractive
O43 - CFD: 10/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\RotMG.Production
O43 - CFD: 31/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Secrets of Grindea
O43 - CFD: 06/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Shark Punch
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Shooter
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Skype
O43 - CFD: 01/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Sun
O43 - CFD: 06/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Tera_Awesomium
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\The Creative Assembly
O43 - CFD: 19/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\TownOfSalem
O43 - CFD: 04/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\TS3Client
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\TuneUp Software
O43 - CFD: 10/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Wayforward Technologies
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\WinZip
O43 - CFD: 28/04/2015 - [] D -- C:\Users\Nick\AppData\Roaming\WizardWars
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Nick\AppData\Roaming\ZHP
O43 - CFD: 12/04/2015 - [] D -- C:\Users\Nick\AppData\Local\238010
O43 - CFD: 31/10/2015 - [] D -- C:\Users\Nick\AppData\Local\Adobe
O43 - CFD: 21/12/2014 - [0] SHD -- C:\Users\Nick\AppData\Local\Application Data
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Battle.net
O43 - CFD: 05/05/2015 - [] D -- C:\Users\Nick\AppData\Local\BigHugeEngine
O43 - CFD: 14/06/2015 - [] D -- C:\Users\Nick\AppData\Local\BitZipper
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Blizzard
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Blizzard Entertainment
O43 - CFD: 07/08/2015 - [] D -- C:\Users\Nick\AppData\Local\Catacomb_Kids
O43 - CFD: 22/07/2015 - [] D -- C:\Users\Nick\AppData\Local\CEF
O43 - CFD: 03/07/2015 - [] D -- C:\Users\Nick\AppData\Local\Curious Expedition
O43 - CFD: 03/01/2015 - [] D -- C:\Users\Nick\AppData\Local\Daedalic Entertainment GmbH
O43 - CFD: 13/10/2015 - [] D -- C:\Users\Nick\AppData\Local\Diagnostics
O43 - CFD: 11/08/2015 - [] D -- C:\Users\Nick\AppData\Local\DungeonSouls
O43 - CFD: 16/04/2015 - [] D -- C:\Users\Nick\AppData\Local\dxhr
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Nick\AppData\Local\ElevatedDiagnostics
O43 - CFD: 17/06/2015 - [] D -- C:\Users\Nick\AppData\Local\FalloutNV
O43 - CFD: 17/06/2015 - [] D -- C:\Users\Nick\AppData\Local\FOMM
O43 - CFD: 27/04/2015 - [] D -- C:\Users\Nick\AppData\Local\Frontier_Developments
O43 - CFD: 16/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Game Dev Tycoon - Steam
O43 - CFD: 23/09/2015 - [] D -- C:\Users\Nick\AppData\Local\Google
O43 - CFD: 14/06/2015 - [] D -- C:\Users\Nick\AppData\Local\GWX
O43 - CFD: 21/08/2015 - [] D -- C:\Users\Nick\AppData\Local\Harebrained Schemes
O43 - CFD: 07/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Hero_Siege
O43 - CFD: 21/12/2014 - [0] SHD -- C:\Users\Nick\AppData\Local\History
O43 - CFD: 26/03/2015 - [0] D -- C:\Users\Nick\AppData\Local\InfiniteCrisis
O43 - CFD: 23/12/2014 - [] D -- C:\Users\Nick\AppData\Local\Introversion
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Ironclad Games
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Local\Macromedia
O43 - CFD: 07/05/2015 - [0] D -- C:\Users\Nick\AppData\Local\Metrocide
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Local\MFAData
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Nick\AppData\Local\Microsoft
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Local\Mozilla
O43 - CFD: 15/01/2015 - [] D -- C:\Users\Nick\AppData\Local\My Games
O43 - CFD: 28/08/2015 - [] D -- C:\Users\Nick\AppData\Local\nuclearthrone
O43 - CFD: 20/09/2015 - [] D -- C:\Users\Nick\AppData\Local\NVIDIA Corporation
O43 - CFD: 14/04/2015 - [] D -- C:\Users\Nick\AppData\Local\openvr
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Nick\AppData\Local\Origin
O43 - CFD: 12/03/2015 - [] D -- C:\Users\Nick\AppData\Local\PAYDAY 2
O43 - CFD: 19/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Programs
O43 - CFD: 15/09/2015 - [] D -- C:\Users\Nick\AppData\Local\RelicHuntersZero
O43 - CFD: 05/01/2015 - [] D -- C:\Users\Nick\AppData\Local\Robot Entertainment
O43 - CFD: 11/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Skype
O43 - CFD: 04/06/2015 - [] D -- C:\Users\Nick\AppData\Local\SlimWare Utilities Inc
O43 - CFD: 24/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Sniper3
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Nick\AppData\Local\Steam
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Local\SteelSeries Engine 3 Client
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Nick\AppData\Local\Temp
O43 - CFD: 21/12/2014 - [0] SHD -- C:\Users\Nick\AppData\Local\Temporary Internet Files
O43 - CFD: 06/05/2015 - [] D -- C:\Users\Nick\AppData\Local\TERA
O43 - CFD: 26/03/2015 - [] D -- C:\Users\Nick\AppData\Local\Turbine
O43 - CFD: 21/01/2015 - [] D -- C:\Users\Nick\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 09/10/2015 - [] D -- C:\Users\Nick\AppData\Local\UNDERTALE
O43 - CFD: 21/12/2014 - [0] D -- C:\Users\Nick\AppData\Local\VirtualStore
O43 - CFD: 13/07/2009 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/08/2015 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 26/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 13/07/2009 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView
O43 - CFD: 12/08/2015 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 01/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 04/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trust
O43 - CFD: 21/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
---\\ ShellIconOverlayIdentifiers (SIOI) (13) - 0s
O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Nick\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveShell.dll ©
O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Nick\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveShell.dll ©
O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Nick\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveShell.dll ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©
O106 - SIOI: DropboxExt1 Class ["DropboxExt1"] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt2 Class ["DropboxExt2"] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt5 Class ["DropboxExt3"] - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt6 Class ["DropboxExt4"] - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt3 Class ["DropboxExt5"] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt7 Class ["DropboxExt6"] - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt4 Class ["DropboxExt7"] - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt8 Class ["DropboxExt8"] - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
---\\ ShareTools MSconfig StartupReg (1) - 0s
O53 - SMSR:HKLM\...\startupreg\EADM [Key] . (.Electronic Arts - Origin.) -- S:\Origin\Origin.exe ©
---\\ System Drivers List (56) - 2s
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/03/11 01:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/13 20:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/03/11 01:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2009/06/10 15:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/13 20:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 15:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/13 20:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2009/07/13 20:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 15:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/10 15:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/20 22:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2011/03/11 01:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [22800] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [390416] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [800016] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/11/02 17:46:17 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] ©
O58 - SDL:2009/07/13 20:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2014/10/09 12:02:39 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [195728] ©
O58 - SDL:2015/08/25 13:46:21 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11089200] ©
O58 - SDL:2011/03/11 01:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2011/03/11 01:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/13 20:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/13 20:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2014/05/29 02:56:18 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [940760] ©
O58 - SDL:2015/06/18 17:45:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4496600] ©
O58 - SDL:2012/09/12 22:10:04 RA . (.Realtek Semiconductor Corporation - Realtek RTL81892CE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8192ce.sys [879760] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 32691.) -- C:\Windows\System32\drivers\rtwlane.sys [3731672] ©
O58 - SDL:2009/06/10 15:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/13 20:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/13 20:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/13 20:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2014/09/30 16:47:28 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverx64.sys [129312] ©
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Copyright (C) 2000-2001 - USB Mouse Lower filter driver.) -- C:\Windows\System32\drivers\whfltr2k.sys [9600]
---\\ Last modified or created user files (2) - 12s
O61 - LFC: 2015/10/30 11:48:30 A . (..) -- C:\Users\Nick\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin [414]
O61 - LFC: 2015/11/02 09:57:43 A . (..) -- C:\Users\Nick\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [52483]
---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
---\\ Start Menu Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
---\\ Search Browser Infection (1) - 3s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Search Svchost Services (32) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [859648] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2606080] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] ©
---\\ Firewall Active Exception List (128) - 4s
O87 - FAEL: "{4F472307-603F-4003-9E70-41817C9F380E}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\GarrysMod\hl2.exe
O87 - FAEL: "{394B6AC0-2058-4E85-B1B1-0D9241AFA860}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\GarrysMod\hl2.exe
O87 - FAEL: "{94656F68-4628-4A38-AF05-BD0D7624A641}" [In-None-P6-TRUE] .(...) -- S:\AVG\avgmfapx.exe (.not file.)
O87 - FAEL: "{98530B90-4761-4EA7-9A0C-666C7A4D49FE}" [In-None-P17-TRUE] .(...) -- S:\AVG\avgmfapx.exe (.not file.)
O87 - FAEL: "{44CC7B8E-7331-4A0F-9CD6-53DDA7332E67}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Half-Life 2\hl2.exe
O87 - FAEL: "{227610C4-1D02-4524-BD4B-CC25A5B9AE19}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Half-Life 2\hl2.exe
O87 - FAEL: "{EFD2B949-BB00-4BFF-B795-46F7884EAD1D}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{17BE4FDA-39F0-4A99-BEED-9B9BD577652A}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{60451576-91EE-4BB3-9335-A1655F53210B}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Endless Legend\EndlessLegend.exe
O87 - FAEL: "{C4C4B91E-B9A1-4341-9610-E0A9B7A29887}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Endless Legend\EndlessLegend.exe
O87 - FAEL: "{DE18FCAB-234D-4838-9CB3-FCF531CA5580}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
O87 - FAEL: "{FB8D14A0-9CE3-4AD6-97FA-358F0A99B4F8}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
O87 - FAEL: "{359E93D5-C091-47D8-943B-373B8D4294ED}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
O87 - FAEL: "{5DF1C4FB-30D9-46C1-BB3D-8B0B2B4EC6B1}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
O87 - FAEL: "{E9FEF6AA-2E85-42CE-A152-4BB591F07FB4}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\vagante\vagante.exe
O87 - FAEL: "{38209FF9-BF06-4ACF-A343-ABFEB4338AF6}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\vagante\vagante.exe
O87 - FAEL: "TCP Query User{B68475C3-051D-4A0E-B283-BDE79A40F2C5}S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe (.not file.)
O87 - FAEL: "UDP Query User{FBF4285A-C67C-4D81-8A67-2B81727E7684}S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe (.not file.)
O87 - FAEL: "{115130FB-F98E-43F5-ADC5-0B05580D29B0}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Escapists\TheEscapists.exe
O87 - FAEL: "{B02EDC2E-3EC2-47DE-864E-69D6770208F8}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Escapists\TheEscapists.exe
O87 - FAEL: "{B9413B6D-BAF8-4870-8B68-1E941968D858}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\lxeccoms.exe
O87 - FAEL: "{1A3C71FE-9730-4090-AD8B-D75359141ED0}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{6CECF0E9-5B1B-4880-AC01-45038894F30E}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{89824FF8-7EF5-4261-A458-58B685E57F5A}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{5CBBC39F-B883-41DF-B0C2-17994A7F8264}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{8B90D354-13A9-4D80-B86B-06C06D17CDC8}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{209479D2-2034-4F60-8E77-3AF94D7E4A5F}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{E8F3A281-BAFB-4459-8A4C-60AB3AF7E606}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{D06F3C25-1E24-4626-A1A6-06293BD285E3}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{67F5EE84-CC63-463B-B827-23634C8D0212}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{849478D5-533C-448F-8AA7-5B231F8B4C0A}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{1953BBDB-5135-4EC9-90BC-AC07EF2F190B}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{F19BA193-A0A0-4C32-A763-FE1DCEF3CA3C}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
O87 - FAEL: "{6D767259-802F-4C1B-8B00-8BEE07340384}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
O87 - FAEL: "{9AFE6226-2C3F-4783-889B-023561DBDFF7}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\TowerofGuns\Binaries\Win32\UDK.exe (.not file.)
O87 - FAEL: "{11FBCD0D-DEF8-4D02-9677-92645E3B02AC}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\TowerofGuns\Binaries\Win32\UDK.exe (.not file.)
O87 - FAEL: "{5852B1E5-51C0-4A44-81BF-6A64AF3E8C71}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe (.not file.)
O87 - FAEL: "{B8C4793A-55CB-4C48-B1E1-3EC7BD471861}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe (.not file.)
O87 - FAEL: "{7994D463-7921-44A1-8892-E735745D1E4C}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
O87 - FAEL: "{1AB312D0-59B5-4D43-A905-B195FAD214A2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
O87 - FAEL: "{EEFB9166-DD27-4576-A766-C51C96C3E4D0}" [In-None-P6-TRUE] .(.FourbitFriday - Kids in Catacombs.) -- S:\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
O87 - FAEL: "{AFA768C9-6D72-4FB5-8B84-7CA52B934D3B}" [In-None-P17-TRUE] .(.FourbitFriday - Kids in Catacombs.) -- S:\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
O87 - FAEL: "{0481931D-AC0D-46F3-9C9C-247814ED7EBC}" [In-None-P6-TRUE] .(.Crate Entertainment, LLC - Grim Dawn.) -- S:\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
O87 - FAEL: "{BC3A570F-BEC5-4968-B085-214DCE1ED5AA}" [In-None-P17-TRUE] .(.Crate Entertainment, LLC - Grim Dawn.) -- S:\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
O87 - FAEL: "{5509A2EF-F2CC-4A24-A716-8E8B00C02120}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe (.not file.)
O87 - FAEL: "{7276C876-A3E7-46A2-AA72-B16C5DB4E06D}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe (.not file.)
O87 - FAEL: "{F0E8BB8D-B3BD-45A5-AF83-ABEF65591E54}" [In-None-P6-TRUE] .(.Obsidian Entertainment - Pillars of Eternity.) -- S:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
O87 - FAEL: "{FE171B93-8CED-4CF0-80B1-F3F3256F1B3C}" [In-None-P17-TRUE] .(.Obsidian Entertainment - Pillars of Eternity.) -- S:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
O87 - FAEL: "{F95641D9-D71E-44DA-B4CE-211F5E398543}" [In-None-P6-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- S:\Program Files (x86)\Origin Games\Ultima 7\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{8D5E3EBD-2957-4965-91B5-B3EBDCAF90A6}" [In-None-P17-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- S:\Program Files (x86)\Origin Games\Ultima 7\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{4AB46D64-DF01-4982-BC97-29B898FDDED0}" [In-None-P6-TRUE] .(.Paradox North - Launcher application for Magicka: Wizard Wa.) -- S:\Steam\steamapps\common\MagickaWizardWars\WizardWarsLauncher.exe
O87 - FAEL: "{5298B998-D5C8-46EE-BD0C-9DB08A845968}" [In-None-P17-TRUE] .(.Paradox North - Launcher application for Magicka: Wizard Wa.) -- S:\Steam\steamapps\common\MagickaWizardWars\WizardWarsLauncher.exe
O87 - FAEL: "TCP Query User{DF7B3E8A-14CE-48E9-9B19-F6ACCF499B79}S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
O87 - FAEL: "UDP Query User{D1312609-83AB-477F-8B40-93E76635E6DE}S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
O87 - FAEL: "{962832B0-4E21-4656-B9C4-CDD61CF76BCD}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\ChromaSquad\chromasquad.exe
O87 - FAEL: "{AFA40B57-8E8B-451F-A725-55C12A0CA14A}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\ChromaSquad\chromasquad.exe
O87 - FAEL: "{1D1ACCB8-C685-457B-98DC-7773DFCF9C90}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Masterplan\The Masterplan.exe
O87 - FAEL: "{5E49FD5D-5A69-4F0C-AE12-D665BF3768A6}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Masterplan\The Masterplan.exe
O87 - FAEL: "{3F396FF3-9B13-45BA-BECE-FBAC178BE838}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\OTTTD\OTTTD-win.exe
O87 - FAEL: "{16322500-2702-4B44-AA31-073C34C4F386}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\OTTTD\OTTTD-win.exe
O87 - FAEL: "{98932334-6D8B-458B-892F-6E600A01364D}" [In-None-P6-TRUE] .(.Flat Earth Games - Metrocide.) -- S:\Steam\steamapps\common\Metrocide\Metrocide.exe
O87 - FAEL: "{2B4068DC-46A9-4BFE-93AC-D54157B61072}" [In-None-P17-TRUE] .(.Flat Earth Games - Metrocide.) -- S:\Steam\steamapps\common\Metrocide\Metrocide.exe
O87 - FAEL: "{42A2C719-8A15-417C-A99E-2652A5116C61}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
O87 - FAEL: "{D5C8DCB1-F862-4119-B63C-D3516743C986}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
O87 - FAEL: "{A77C3B69-7BDE-4466-BDFB-B3E6FA49C793}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
O87 - FAEL: "{77A22036-1874-437B-96E0-708D3E0B79C2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
O87 - FAEL: "{D45527D7-B6BA-4E41-96C9-DAB5E9D12315}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
O87 - FAEL: "{40882F08-2DFE-4AD6-AB79-8F6E3EACD618}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
O87 - FAEL: "{51A7868E-2DCC-4E12-9B54-8AF5D3E75DDF}" [In-None-P6-TRUE] .(...) -- S:\Diablo\Hearthstone\Hearthstone.exe
O87 - FAEL: "{3300ED1E-3B18-422C-A68C-59D1651CB241}" [In-None-P17-TRUE] .(...) -- S:\Diablo\Hearthstone\Hearthstone.exe
O87 - FAEL: "{6DDCDF14-1AA1-455E-BC57-B92ED83BC1FF}" [In-None-P6-TRUE] .(.WB Games, Inc. - Middle-earth: Shadow of Mordor™.) -- S:\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
O87 - FAEL: "{CF25EDE8-11A1-4353-A8B3-63A545319F29}" [In-None-P17-TRUE] .(.WB Games, Inc. - Middle-earth: Shadow of Mordor™.) -- S:\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
O87 - FAEL: "{2F76BD3E-AAA0-4D16-A9A4-BE211939B6DD}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe (.not file.)
O87 - FAEL: "{0F7C87A7-C5B4-46A8-A838-B45CFC1121D2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe (.not file.)
O87 - FAEL: "TCP Query User{1DCA04A6-EE93-4B65-AE80-88B9E27E5AAB}S:\stalker online\stalkeronline launcher.exe" [In-None-P6-TRUE] .(...) -- S:\stalker online\stalkeronline launcher.exe (.not file.)
O87 - FAEL: "UDP Query User{B5F28392-4D34-4A4B-84BB-46E71139C607}S:\stalker online\stalkeronline launcher.exe" [In-None-P17-TRUE] .(...) -- S:\stalker online\stalkeronline launcher.exe (.not file.)
O87 - FAEL: "{0DD110FF-AC46-4608-BAA1-5F6E44F4FAF0}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe (.not file.)
O87 - FAEL: "{1680EAF5-42EB-4558-8ED2-2FF5FA67CB0F}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe (.not file.)
O87 - FAEL: "TCP Query User{D3604D56-FB53-429C-9CF3-AE9644F0DB59}S:\steam\steamapps\downloading\730\csgo.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\downloading\730\csgo.exe (.not file.)
O87 - FAEL: "UDP Query User{5C8A5A42-3DF9-4514-9238-66E32786BE2C}S:\steam\steamapps\downloading\730\csgo.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\downloading\730\csgo.exe (.not file.)
O87 - FAEL: "{B25CE5EF-78D8-4D29-9C3E-C18BE9C30002}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Magicite\Magicite.exe
O87 - FAEL: "{6AAAC560-180A-454B-A665-EB21D3EA69A2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Magicite\Magicite.exe
O87 - FAEL: "{07CCC9AA-50F5-40EA-BB0B-22DB488A611F}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_105.exe (.not file.)
O87 - FAEL: "{94D76695-7F66-4D8A-B7BD-4713F9FAD6DF}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_105.exe (.not file.)
O87 - FAEL: "{0CAEABA0-6B9D-4498-B06E-AC18ED38FF4A}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Game Dev Tycoon\nw.exe
O87 - FAEL: "{5D620F0E-231A-43EE-9080-362495348ECF}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Game Dev Tycoon\nw.exe
O87 - FAEL: "{51D100F3-B910-4108-8531-E19906E6C54D}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
O87 - FAEL: "{0535482D-8B1D-41B7-8557-F74D84FCDDD8}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
O87 - FAEL: "{93FCAE48-CCEC-4213-B6B5-36D73D106166}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
O87 - FAEL: "{980CBD92-DFC5-49C3-A4DC-EADDB8102895}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
O87 - FAEL: "{AF0BE659-4B41-48EE-B85F-05A735AB69BF}" [In-None-P6-TRUE] .(.Bethesda Softworks, Obsidian Entertainment - Fallout New Vegas Launcher.) -- S:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
O87 - FAEL: "{FC810854-44CC-4E15-8CD2-1D45DAF28C8D}" [In-None-P17-TRUE] .(.Bethesda Softworks, Obsidian Entertainment - Fallout New Vegas Launcher.) -- S:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
O87 - FAEL: "{DEE2CF53-78D7-4CE3-894A-71E317016A8F}" [In-None-P6-TRUE] .(.コーエーテクモゲームス - 『討鬼伝 極』起動環境設定.) -- S:\Steam\steamapps\common\TOUKIDEN Kiwami\ToukidenKiwamiLauncher.exe
O87 - FAEL: "{FE45A593-2697-4C70-A662-3BBBAC25B295}" [In-None-P17-TRUE] .(.コーエーテクモゲームス - 『討鬼伝 極』起動環境設定.) -- S:\Steam\steamapps\common\TOUKIDEN Kiwami\ToukidenKiwamiLauncher.exe
O87 - FAEL: "{F60D46B2-7F84-4160-B3B7-1C82F67CE545}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Caves of Qud\CoQ.exe
O87 - FAEL: "{0D09F48A-722C-48B8-8A4E-70958D69A240}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Caves of Qud\CoQ.exe
O87 - FAEL: "{B4ED3979-36D7-458E-870D-D74670E41E07}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Way of the Samurai 4\WayOfTheSamurai4.exe
O87 - FAEL: "{3D998260-FE6F-4264-A606-80EA020A5BE5}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Way of the Samurai 4\WayOfTheSamurai4.exe
O87 - FAEL: "{78683C67-87BD-4FA9-9F02-AD55DFB21BC0}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
O87 - FAEL: "{991A9ED9-64DB-4CF0-802B-FEBCCA77CDAB}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
O87 - FAEL: "{AB8AB1C2-F195-4651-B90D-F2931FE22F76}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
O87 - FAEL: "{D940F722-8465-47E4-AF1F-597ED6EA2C0F}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
O87 - FAEL: "{7BCB4409-929A-49E9-B0A6-22D81B6851C5}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Dungeon Souls\DungeonSouls.exe
O87 - FAEL: "{DE8E41C0-5AFF-4FDE-9F83-7F19103E1B58}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Dungeon Souls\DungeonSouls.exe
O87 - FAEL: "{A34706A9-A02E-4D83-9924-179767B480E7}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
O87 - FAEL: "{BF943EB0-AD2C-46AC-A1D9-B6763FC439F7}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
O87 - FAEL: "{C3F4211C-2892-47C6-A1B2-F45FD4FF66BA}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_106.exe (.not file.)
O87 - FAEL: "{DAB4D005-95F0-4893-9381-39506C8A1028}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_106.exe (.not file.)
O87 - FAEL: "{141BE422-0B2E-4CC4-91E9-D3D77F681703}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_107.exe
O87 - FAEL: "{FF017B20-E963-4EA8-845D-52B88C513CF1}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_107.exe
O87 - FAEL: "{516BA804-2C15-4EF7-9EA0-C9A9F0DD8464}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
O87 - FAEL: "{524F682F-CB03-4395-9B87-E5AC179CC347}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
O87 - FAEL: "{1B0E1F18-37E2-4492-80F8-FF1309EA54FF}" [In-None-P6-TRUE] .(.YoYo Games Ltd. - GameMaker:Studio Runner (c) YoYo Games Ltd..) -- S:\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
O87 - FAEL: "{AA3F61F8-A102-4E96-B53F-ADD1E1F1D7BB}" [In-None-P17-TRUE] .(.YoYo Games Ltd. - GameMaker:Studio Runner (c) YoYo Games Ltd..) -- S:\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
O87 - FAEL: "{E82C6485-9851-47C8-BA8A-A8572D840135}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Mad Max\MadMax.exe
O87 - FAEL: "{9A4EA390-56E5-4033-819A-E8237753605E}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Mad Max\MadMax.exe
O87 - FAEL: "{1CE70716-7C73-4273-998C-DB7A46A61411}" [In-None-P6-TRUE] .(...) -- D:\DRIVERS\francais\x64\Setup.exe (.not file.)
O87 - FAEL: "{E4E75CA7-9388-4363-B7BB-25F161896356}" [In-None-P17-TRUE] .(...) -- D:\DRIVERS\francais\x64\Setup.exe (.not file.)
O87 - FAEL: "{FEC8755E-D564-4B2E-995A-A03604370B19}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
O87 - FAEL: "{ABE09B95-871C-4278-99DD-3708E09E54F5}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
O87 - FAEL: "{44266ED3-5936-4540-93B9-518F7A480A61}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (.not file.)
O87 - FAEL: "{AA09A533-AB97-46EB-ABBF-CB4764C03FD9}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (.not file.)
O87 - FAEL: "{344087A3-53DC-4211-8200-78882A335C73}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
O87 - FAEL: "{9A45A025-2A73-40A0-9D6C-CB007764EB20}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
O87 - FAEL: "{9B4F791F-E117-4133-B950-3999AC271872}" [In-None-P6-TRUE] .(.Konami Digital Entertainment - METAL GEAR SOLID V: THE PHANTOM PAIN.) -- S:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
O87 - FAEL: "{A4B532CA-7288-4340-AC72-51E83D4B4A18}" [In-None-P17-TRUE] .(.Konami Digital Entertainment - METAL GEAR SOLID V: THE PHANTOM PAIN.) -- S:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
O87 - FAEL: "{F3491917-69C6-4348-9667-05FB3A41002B}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
O87 - FAEL: "{36A0BF5F-E860-449A-B673-3F8905C4CF4D}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
---\\ Services not Microsoft (SR=Run, SS=Stop) (18) - 4s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Demand [20/10/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [27/01/2014] [ 936728] ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
SR - Auto [08/09/2014] [ 954648] ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe ©
SR - Auto [04/08/2014] [ 384000] AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe ©
SR - Demand [25/09/2013] [ 282112] BrYNSvc (BrYNSvc) . (.Brother Industries, Ltd..) - C:\Program Files (x86)\Browny02\BrYNSvc.exe ©
SR - Demand [02/01/2013] [ 171632] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe ©
SS - Demand [31/01/2014] [ 887232] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe ©
SR - Auto [03/04/2014] [ 154584] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
SR - Auto [03/04/2014] [ 398296] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
SS - Auto [14/04/2010] [ 45736] lxecCATSCustConnectService (lxecCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\System32\spool\drivers\x64\3\lxecserv.exe
SR - Auto [14/04/2010] [ 1052328] lxec_device (lxec_device) . (...) - C:\Windows\System32\lxeccoms.exe
SS - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Demand [04/11/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [25/08/2015] [ 937776] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SS - Disabled [15/07/2015] [ 2004488] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - S:\Origin\OriginClientService.exe ©
SR - Demand [14/10/2015] [ 838224] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe ©
---\\ Additional Scan (O88) (1) - 0s
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
---\\ Summary of the elements found (1) - 0s
http://www.nicolascoolman.fr/blog =>Toolbar.AVGSafeGuard
~ End of the scan, 53683 items in 62 seconds (1046)(0)
~ Run by (2015/11/04 17:17:29)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Nick\Desktop\ZHPDiag.txt
~ Report: C:\Users\Nick\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (2) - 0s
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
MSIE: Internet Explorer v11.0.9600.18015
---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System protection software (2) - 1s
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender W7 (Activate)
---\\ Surveillance software (2) - 1s
Adobe Flash Player 19 NPAPI
Adobe Acrobat Reader DC - Français
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 16717.92 MB (82% free)
~ System Restore: Activé (Enable)
~ System drive C: has 22 GB free of 122 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name:
~ User Name:
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 22 GB free of 122 GB (System)
~ Drive S: has 552 GB free of 953 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (24) - 0s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - 25/02/2011 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2871808] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 13/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 13/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.A55305B1CACD38EAC176CC532B2053AC] - 15/08/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2427392] ©
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 16/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [455168] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.FA886682CFC5D36718D3E436AACF10B9] - 30/05/2014 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 13/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - 13/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 13/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 13/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.43E1F4B0EFDC244D2A83995CCD7846F7] - 22/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159232] ©
[MD5.09594D1089C523423B32A4229263F068] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - 23/01/2014 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1684928] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - 13/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 20/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 13/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.70988118145F5F10EF24720B97F35F65] - 10/11/2014 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.DF8126BD41180351A093A3AD2FC8903B] - 25/02/2011 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [296320] ©
---\\ Process running (40) - 0s
[MD5.F029A2C032B4A50DEBB21312CFF76189] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.8.) -- C:\Windows\System32\nvvsvc.exe [937776] [PID.156] ©
[MD5.9FAA9DED1594A643DC7A53C3B15CC678] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1251120] [PID.1600] ©
[MD5.F029A2C032B4A50DEBB21312CFF76189] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.8.) -- C:\Windows\System32\nvvsvc.exe [937776] [PID.1616] ©
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1492] ©
[MD5.BBF8F831C7720DD5135D8C4C8325187A] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728] [PID.2068]
[MD5.6216BBE9B496194C6C6F0F5F0A9FF007] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1430328] [PID.2272]
[MD5.2D4444463D8395AF56B7C1633F0FB7CA] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1271096] [PID.2284]
[MD5.6A605E37012935C6FA09AFF94319ED86] - (. - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe [772712] [PID.2332]
[MD5.F78A3153EC85A3FC8134F8368C5C3240] - (.ASUSTeK Computer Inc. - ASUS Push Notice Server.) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264] [PID.2340] ©
[MD5.AE7586349CE69C6A0D5C8B11FAE04A6D] - (.Copyright (c) 2008 - .) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe [150264] [PID.2348]
[MD5.360344AD99C27327A7478BE29EAE9E55] - (.CANON INC. - Canon MF Network Scan Utility 64bit.) -- C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552] [PID.2356] ©
[MD5.134527C3B56C2A39E4FCCA4860DAE10D] - (.ASUSTeK Computer Inc. - .) -- C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1839896] [PID.2376] ©
[MD5.5F1091FA113607C9C9B2ECF4FBC76F37] - (.ASUSTeK Computer Inc. - .) -- C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648] [PID.2488] ©
[MD5.9A1BAED68C52FA4668C3933AA93E9530] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe [384000] [PID.2552] ©
[MD5.2555A094409BD20DAB7A97A5A539F21C] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216] [PID.2676] ©
[MD5.92C12D33059475B936BCD0FF3BE4C42B] - (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes64\AgentAntidote64.exe [83968] [PID.2688] ©
[MD5.1CCCAD1593C1FD46B46F9E705B4EEBF8] - (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe [947712] [PID.2724] ©
[MD5.9F0ACAA725CF5A391AF7E2067AE45746] - (.Nuance Communications, Inc. - PdfCreateHook Application.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe [636192] [PID.2800] ©
[MD5.951658D90F95CE120823129DB362F667] - (. - Printer Communication System.) -- C:\Windows\System32\lxeccoms.exe [1052328] [PID.2836]
[MD5.A12927788DE1555B598DFD16B4FA3F8B] - (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792] [PID.2948] ©
[MD5.FCEC6F664FA7E5FE323165FBC9314470] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040] [PID.2984] ©
[MD5.4D34638771AC8C1C49600B99FA96CDE5] - (.Brother Industries, Ltd. - ControlCenter Main Process.) -- C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe [579584] [PID.3040] ©
[MD5.A69A8F293968F5D9272B4AA2BC6A925B] - (.Brother Industries, Ltd. - ControlCenter UX System.) -- C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe [1537536] [PID.3520] ©
[MD5.EC1562C59581C35B13DE537E27161A5D] - (.ASUSTeK Computer Inc. - USB 3.0 Boost Service.) -- C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe [426296] [PID.3792] ©
[MD5.FCED3FE9AA9058900995E83618BD244F] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe [1065272] [PID.4196]
[MD5.632842AE065ACE30356F00289A1C0AF5] - (.Copyright © 2013 - PushNotify_PCCtrl.) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe [36152] [PID.4216]
[MD5.D9A9FFC89F61CAD4AD9EF31FBB17E634] - (.Intel Corporation - Intel(R) Integrated Clock Controller Servic.) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [171632] [PID.4012] ©
[MD5.0471D5669F18C50E552B2BC0CB15E7B3] - (.Brother Industries, Ltd. - BrYNCSvc.) -- C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112] [PID.2924] ©
[MD5.0C5D0E8CB41D921062D2F82EF48546E0] - (...) -- C:\Program Files (x86)\ASUS\AI Suite III\ASUSMiniBar.exe [947512] [PID.6012]
[MD5.D5218EE66173405B26B716EBA68133F6] - (.Valve Corporation - Steam Client Bootstrapper.) -- S:\Steam\Steam.exe [2901584] [PID.5984] ©
[MD5.4B0583A0A6A22D9F453BFFD467E68190] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392872] [PID.5204] ©
[MD5.2C27A179F45F8A0CCED7EAD075AA640C] - (.Valve Corporation - Steam Client WebHelper.) -- S:\Steam\bin\steamwebhelper.exe [1835088] [PID.5740] ©
[MD5.D31201BD8782752BD69DBE1E5DDF9AC5] - (.Valve Corporation - Steam Client Service.) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe [838224] [PID.5832] ©
[MD5.2C27A179F45F8A0CCED7EAD075AA640C] - (.Valve Corporation - Steam Client WebHelper.) -- S:\Steam\bin\steamwebhelper.exe [1835088] [PID.3848] ©
[MD5.344CC9339BA1022F335B46B95AABF32F] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [277672] [PID.4036] ©
[MD5.FA2703EE6126F6504B11CED5046967CC] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe [3426504] [PID.5356] ©
[MD5.FA2703EE6126F6504B11CED5046967CC] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_226.exe [3426504] [PID.3540] ©
[MD5.0B93A01F786F37A4B1EDE84E639FFF10] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584] [PID.3648] ©
[MD5.C31139E0907170E2A3FA8D19DCC23D35] - (.Intel Corporation - Intel(R) Local Management Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [398296] [PID.1916] ©
[MD5.6F4483F9955DF6158FE08F2E86B62660] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Nick\Desktop\ZHPDiag3.exe [1964544] [PID.2860] ©
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (3) - 1s
P2 - EXT FILE: (...) -- C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\t23jdgsl.default-1433593930300\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_226.dll ©
---\\ Internet Explorer Extensions, Start, Search (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (3) - 0s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean)
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL ©
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean)
---\\ Auto loading programs from Registry and folders (20) - 0s
O4 - HKLM\..\Run: [lxecmon.exe] . (. - Printer Device Monitor.) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe
O4 - HKLM\..\Run: [EzPrint] . (.Copyright (c) 2008 - .) -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe
O4 - HKLM\..\Run: [MFNetworkScanUtility] . (.CANON INC. - Canon MF Network Scan Utility 64bit.) -- C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE ©
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (.not file.)
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKLM\..\Wow6432Node\Run: [WheelMouse] . (. - Mouse Start Program.) -- C:\Advanced Wheel Mouse\wh_exec.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe ©
O4 - HKLM\..\Wow6432Node\Run: [agentantidote64.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe ©
O4 - HKLM\..\Wow6432Node\Run: [agentantidote.exe] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe ©
O4 - HKLM\..\Wow6432Node\Run: [PDFHook] . (.Nuance Communications, Inc. - PdfCreateHook Application.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe ©
O4 - HKLM\..\Wow6432Node\Run: [PDF5 Registry Controller] . (.Nuance Communications, Inc. - PDF Converter Registry Controller.) -- C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe ©
O4 - HKLM\..\Wow6432Node\Run: [ControlCenter4] . (.Brother Industries, Ltd. - ControlCenter Launcher.) -- C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe ©
O4 - HKLM\..\Wow6432Node\Run: [BrStsMon00] . (.Brother Industries, Ltd. - Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe ©
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-4237687431-2236707173-1163918379-1000\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (.not file.)
O4 - HKUS\S-1-5-21-4237687431-2236707173-1163918379-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
---\\ Lop.com/Domain Hijackers (9) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 132.208.217.100 132.208.148.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = uqam.ca
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 132.208.217.100 132.208.148.100
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = uqam.ca
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 132.208.217.100 132.208.148.100
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = uqam.ca
---\\ Extra protocols (21) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office 15\root\office15\msosb.dll ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
---\\ Non Microsoft non disabled Windows Services (10) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc. - .) - C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe ©
O23 - Service: AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe ©
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
O23 - Service: lxecCATSCustConnectService (lxecCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\System32\spool\drivers\x64\3\lxecserv.exe
O23 - Service: lxec_device (lxec_device) . (. - Printer Communication System.) - C:\Windows\System32\lxeccoms.exe
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.8.) - C:\Windows\System32\nvvsvc.exe ©
---\\ Task Planned Automatically (14) - 3s
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] ©
[MD5.8C194A201698B4B4F77D974549819D1F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] ©
[MD5.00000000000000000000000000000000] [APT] [SlimCleaner Plus (Scheduled Scan - Nick)] (...) -- C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe (.not file.) [0]
[MD5.134527C3B56C2A39E4FCCA4860DAE10D] [APT] [ASUS\ASUS AISuiteIII] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [1839896] ©
[MD5.2D4444463D8395AF56B7C1633F0FB7CA] [APT] [ASUS\ASUS DIPAwayMode] (...) -- C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1271096]
[MD5.6216BBE9B496194C6C6F0F5F0A9FF007] [APT] [ASUS\Ez Update] (...) -- C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1430328]
[MD5.B6F2FD78572C10DA1709E67A9FBE240B] [APT] [ASUS\GpuFanHelper] (.TODO:
[MD5.F78A3153EC85A3FC8134F8368C5C3240] [APT] [ASUS\Push Notice Server Execute] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe [3646264] ©
[MD5.D25981D7E7BBDD4BB10ECBA500972206] [APT] [ASUS\USB 3.0 Boost Service] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [238392] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] ©
O39 - APT: SlimCleaner Plus (Scheduled Scan - Nick) - (...) -- C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - Nick).job [364]
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] ©
O39 - APT: SlimCleaner Plus (Scheduled Scan - Nick) - (...) -- C:\Windows\System32\Tasks\SlimCleaner Plus (Scheduled Scan - Nick) [3024]
---\\ Software installed (136) - 7s
O42 - Logiciel: Lexmark Pro800-Pro900 Series - (.Lexmark International, Inc..) [HKLM][64Bits] -- Lexmark Pro800-Pro900 Series
O42 - Logiciel: Microsoft Mouse and Keyboard Center - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {0D01BDA8-C995-40AD-95F8-26B7EA4DCF9F} ©
O42 - Logiciel: Canon MF210 Series - (.CANON INC..) [HKLM][64Bits] -- {14824AB4-17F5-4909-80AB-A7E24743A47C} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700} ©
O42 - Logiciel: 7-Zip 9.38 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0938-000001000000} ©
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {3DE97849-544D-4D68-9255-11DF6F9F10D8} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {46C478DE-C381-4200-9627-0DA025B555EB} ©
O42 - Logiciel: PaperPort Image Printer 64-bit - (.Nuance Communications, Inc..) [HKLM][64Bits] -- {715CAACC-579B-4831-A5F4-A83A8DE3EFE2} ©
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} ©
O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008F-0000-1000-0000000FF1CE} ©
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {98900FE1-9C17-4553-B0D1-132BF9126412} ©
O42 - Logiciel: NVIDIA Graphics Driver 355.82 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver ©
O42 - Logiciel: NVIDIA PhysX System Software 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX ©
O42 - Logiciel: Intel(R) ME UninstallLegacy - (.Intel Corporation.) [HKLM][64Bits] -- {E8B134CC-098E-4623-BD85-0A432FE5DDFB} ©
O42 - Logiciel: The Witcher 3 - Wild Hunt - (.GOG.com.) [HKLM][64Bits] -- 1207664643_is1 ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net ©
O42 - Logiciel: BitZipper 2015 - (.Bitberry Software.) [HKLM][64Bits] -- BitZipper_is1 ©
O42 - Logiciel: Diablo III - (.Blizzard Entertainment.) [HKLM][64Bits] -- Diablo III ©
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone ©
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: NirSoft BlueScreenView - (...) [HKLM][64Bits] -- NirSoft BlueScreenView
O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin ©
O42 - Logiciel: ResearchSoft Direct Export Helper - (.Thomson Reuters.) [HKLM][64Bits] -- ResearchSoft Direct Export Helper
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam ©
O42 - Logiciel: Counter-Strike - (.Valve.) [HKLM][64Bits] -- Steam App 10 ©
O42 - Logiciel: Terraria - (.Re-Logic.) [HKLM][64Bits] -- Steam App 105600 ©
O42 - Logiciel: Project Zomboid - (.The Indie Stone.) [HKLM][64Bits] -- Steam App 108600 ©
O42 - Logiciel: Oddworld: Abe's Oddysee - (.Oddworld Inhabitants.) [HKLM][64Bits] -- Steam App 15700
O42 - Logiciel: Realm of the Mad God - (.Wild Shadow Studios.) [HKLM][64Bits] -- Steam App 200210
O42 - Logiciel: Magicka: Wizard Wars - (.Paradox North.) [HKLM][64Bits] -- Steam App 202090
O42 - Logiciel: Castle Crashers - (.The Behemoth.) [HKLM][64Bits] -- Steam App 204360 ©
O42 - Logiciel: Viking: Battle for Asgard - (.Creative Assembly, PC Port - Hardlight.) [HKLM][64Bits] -- Steam App 211160
O42 - Logiciel: Starbound - (...) [HKLM][64Bits] -- Steam App 211820
O42 - Logiciel: PAYDAY 2 - (.OVERKILL - a Starbreeze Studio..) [HKLM][64Bits] -- Steam App 218620
O42 - Logiciel: Mercenary Kings - (.Tribute Games Inc..) [HKLM][64Bits] -- Steam App 218820
O42 - Logiciel: Don't Starve - (.Klei Entertainment.) [HKLM][64Bits] -- Steam App 219740 ©
O42 - Logiciel: Grim Dawn - (.Crate Entertainment.) [HKLM][64Bits] -- Steam App 219990
O42 - Logiciel: Half-Life 2 - (.Valve.) [HKLM][64Bits] -- Steam App 220 ©
O42 - Logiciel: Fallout: New Vegas - (.Obsidian Entertainment.) [HKLM][64Bits] -- Steam App 22380
O42 - Logiciel: Prison Architect - (.Introversion Software.) [HKLM][64Bits] -- Steam App 233450 ©
O42 - Logiciel: Mad Max - (.Avalanche Studios.) [HKLM][64Bits] -- Steam App 234140 ©
O42 - Logiciel: Shadowrun Returns - (.Harebrained Schemes.) [HKLM][64Bits] -- Steam App 234650
O42 - Logiciel: Warhammer: End Times - Vermintide - (.Fatshark.) [HKLM][64Bits] -- Steam App 235540 ©
O42 - Logiciel: Europa Universalis IV - (.Paradox Development Studio.) [HKLM][64Bits] -- Steam App 236850 ©
O42 - Logiciel: Magicka 2 - (.Pieces Interactive.) [HKLM][64Bits] -- Steam App 238370
O42 - Logiciel: Path of Exile - (.Grinding Gear Games.) [HKLM][64Bits] -- Steam App 238960 ©
O42 - Logiciel: Dying Light - (.Techland.) [HKLM][64Bits] -- Steam App 239140 ©
O42 - Logiciel: Game Dev Tycoon - (.Greenheart Games.) [HKLM][64Bits] -- Steam App 239820 ©
O42 - Logiciel: Counter-Strike: Source - (.Valve.) [HKLM][64Bits] -- Steam App 240 ©
O42 - Logiciel: Middle-earth: Shadow of Mordor - (.Monolith Productions, Inc..) [HKLM][64Bits] -- Steam App 241930
O42 - Logiciel: Nuclear Throne - (.Vlambeer.) [HKLM][64Bits] -- Steam App 242680 ©
O42 - Logiciel: Sir, You Are Being Hunted - (.Big Robot Ltd.) [HKLM][64Bits] -- Steam App 242880
O42 - Logiciel: Invisible, Inc. - (.Klei Entertainment.) [HKLM][64Bits] -- Steam App 243970 ©
O42 - Logiciel: Skullgirls - (.Lab Zero Games.) [HKLM][64Bits] -- Steam App 245170
O42 - Logiciel: The Binding of Isaac: Rebirth - (.Nicalis, Inc..) [HKLM][64Bits] -- Steam App 250900
O42 - Logiciel: Chroma Squad - (.Behold Studios.) [HKLM][64Bits] -- Steam App 251130 ©
O42 - Logiciel: 7 Days to Die - (.The Fun Pimps.) [HKLM][64Bits] -- Steam App 251570
O42 - Logiciel: Darkest Dungeon - (.Red Hook Studios.) [HKLM][64Bits] -- Steam App 262060
O42 - Logiciel: Magicite - (.SmashGames.) [HKLM][64Bits] -- Steam App 268750
O42 - Logiciel: Hero Siege - (.Elias Viglione.) [HKLM][64Bits] -- Steam App 269210 ©
O42 - Logiciel: Secrets of Grindea - (.Pixel Ferrets.) [HKLM][64Bits] -- Steam App 269770
O42 - Logiciel: Darkwood - (.Acid Wizard Studio.) [HKLM][64Bits] -- Steam App 274520
O42 - Logiciel: METAL GEAR SOLID V: THE PHANTOM PAIN - (.Konami Digital Entertainment.) [HKLM][64Bits] -- Steam App 287700
O42 - Logiciel: Endless Legend - (.AMPLITUDE Studios.) [HKLM][64Bits] -- Steam App 289130 ©
O42 - Logiciel: Brawlhalla - (.Blue Mammoth Games.) [HKLM][64Bits] -- Steam App 291550
O42 - Logiciel: Pillars of Eternity - (.Obsidian Entertainment.) [HKLM][64Bits] -- Steam App 291650
O42 - Logiciel: The Dungeoning - (.Nick Donnelly.) [HKLM][64Bits] -- Steam App 295870
O42 - Logiciel: Renowned Explorers: International Society - (.Abbey Games.) [HKLM][64Bits] -- Steam App 296970 ©
O42 - Logiciel: The Escapists - (.Mouldy Toof Studios.) [HKLM][64Bits] -- Steam App 298630
O42 - Logiciel: Sunless Sea - (.Failbetter Games.) [HKLM][64Bits] -- Steam App 304650
O42 - Logiciel: OTTTD - (.SMG Studio.) [HKLM][64Bits] -- Steam App 312630
O42 - Logiciel: Way of the Samurai 4 - (.ACQUIRE Corp..) [HKLM][64Bits] -- Steam App 312780
O42 - Logiciel: The Masterplan - (.Shark Punch.) [HKLM][64Bits] -- Steam App 313080
O42 - Logiciel: Metrocide - (.Flat Earth Games.) [HKLM][64Bits] -- Steam App 313130
O42 - Logiciel: Catacomb Kids - (.FourbitFriday.) [HKLM][64Bits] -- Steam App 315840
O42 - Logiciel: Don't Starve Together Beta - (.Klei Entertainment.) [HKLM][64Bits] -- Steam App 322330 ©
O42 - Logiciel: Vagante - (.Nuke Nine.) [HKLM][64Bits] -- Steam App 323220
O42 - Logiciel: Tales from the Borderlands - (.Telltale Games.) [HKLM][64Bits] -- Steam App 330830 ©
O42 - Logiciel: Caves of Qud - (.Freehold Games.) [HKLM][64Bits] -- Steam App 333640
O42 - Logiciel: SHOGUN: Total War™ - Gold Edition - (.Creative Assembly.) [HKLM][64Bits] -- Steam App 345240 ©
O42 - Logiciel: Shadowrun: Hong Kong - (.Harebrained Schemes.) [HKLM][64Bits] -- Steam App 346940
O42 - Logiciel: Toukiden: Kiwami - (.KOEI TECMO GAMES CO., LTD..) [HKLM][64Bits] -- Steam App 363130 ©
O42 - Logiciel: Clicker Heroes - (...) [HKLM][64Bits] -- Steam App 363970
O42 - Logiciel: Relic Hunters Zero - (.Rogue Snail.) [HKLM][64Bits] -- Steam App 382490
O42 - Logiciel: Dungeon Souls - (.Mike Studios.) [HKLM][64Bits] -- Steam App 383230
O42 - Logiciel: Undertale - (.tobyfox.) [HKLM][64Bits] -- Steam App 391540
O42 - Logiciel: Garry's Mod - (.Facepunch Studios.) [HKLM][64Bits] -- Steam App 4000 ©
O42 - Logiciel: Team Fortress 2 - (.Valve.) [HKLM][64Bits] -- Steam App 440 ©
O42 - Logiciel: Medieval II: Total War - (.The Creative Assembly.) [HKLM][64Bits] -- Steam App 4700 ©
O42 - Logiciel: Medieval II: Total War Kingdoms - (.The Creative Assembly.) [HKLM][64Bits] -- Steam App 4780 ©
O42 - Logiciel: Mount & Blade: Warband - (.TaleWorlds Entertainment.) [HKLM][64Bits] -- Steam App 48700 ©
O42 - Logiciel: Half-Life - (.Valve.) [HKLM][64Bits] -- Steam App 70 ©
O42 - Logiciel: Counter-Strike: Global Offensive - (.Valve.) [HKLM][64Bits] -- Steam App 730 ©
O42 - Logiciel: Counter-Strike: Condition Zero - (.Valve.) [HKLM][64Bits] -- Steam App 80 ©
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay ©
O42 - Logiciel: Advanced Wheel Mouse 6.0.0.002 - (...) [HKLM][64Bits] -- WheelMouse
O42 - Logiciel: FOMM 0.14.11.12 - (.Prideslayer.) [HKLM][64Bits] -- {072C2AEF-16B2-46B7-BA7F-D0CAA7B4F89F}_is1
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} ©
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} ©
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} ©
O42 - Logiciel: Java 8 Update 65 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218065F0} ©
O42 - Logiciel: Nuance PDF Viewer Plus - (.Nuance Communications, Inc.) [HKLM][64Bits] -- {28656860-4728-433C-8AD4-D1A930437BC8}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BFC7AA0-544C-4E3A-8796-67F3BE655BE9} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel(R) Corporation.) [HKLM][64Bits] -- {4a87bd28-a855-4a8d-b133-60ca8ccffd30} ©
O42 - Logiciel: Ultima 7 - (.Electronic Arts.) [HKLM][64Bits] -- {4F4D844E-7B08-43A7-9C91-0B7D978EEC4D} ©
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} ©
O42 - Logiciel: Antidote HD - (.Druide informatique inc..) [HKLM][64Bits] -- {56CDB4FE-895F-4E0D-8BB4-9A8D4310898D} ©
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} ©
O42 - Logiciel: EndNote X7 - (.Thomson Reuters.) [HKLM][64Bits] -- {86B3F2D6-AC2B-0017-8AE1-F2F77F781B0C}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} ©
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {8A809006-C25A-4A3A-9DAB-94659BCDB107} ©
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB1B528-E260-451E-9B55-E9152F94B80B} ©
O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-0000-0000000FF1CE} ©
O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} ©
O42 - Logiciel: Wireless LAN Driver - (...) [HKLM][64Bits] -- {9D3D8C60-A55F-4123-B2B9-173F09590E16}
O42 - Logiciel: REALTEK Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9DAABC60-A5EF-41FF-B2B9-17329590CD5} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} ©
O42 - Logiciel: AI Suite 3 - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {CD36E28B-6023-469A-91E7-049A2874EC13} ©
O42 - Logiciel: Gerudo Wars Mission Pack - (.Parallel Process.) [HKLM][64Bits] -- {D27D1EF7-57DA-462A-9C50-ECD7E3642856}
O42 - Logiciel: Microsoft XNA Framework Redistributable 4.0 Refresh - (.Microsoft Corporation.) [HKLM][64Bits] -- {D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F} ©
O42 - Logiciel: Install Hyrule Total War - (.Parallel Process.) [HKLM][64Bits] -- {E4A39EE9-F346-4039-87F8-FC527AD6DE7F}
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: System Requirements Lab - (.Husdawg, LLC.) [HKLM][64Bits] -- {F89CDED6-B1F1-489F-BA44-698BF6A737C2} ©
O42 - Logiciel: Brother MFL-Pro Suite MFC-L2700DW series - (.Brother Industries, Ltd..) [HKLM][64Bits] -- {F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD} ©
O42 - Logiciel: Microsoft Games for Windows - LIVE - (.Microsoft Corporation.) [HKLM][64Bits] -- {F97E3841-CA9D-4964-9D64-26066241D26F} ©
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox ©
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe ©
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKCU][64Bits] -- TeamSpeak 3 Client ©
---\\ HKCU & HKLM Software Keys (151) - 7s
HKLM\SOFTWARE\Wow6432Node\activision
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\ASUS
HKLM\SOFTWARE\Wow6432Node\bethesda softworks
HKLM\SOFTWARE\Wow6432Node\BioWare
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\Brother Industries, Ltd.
HKLM\SOFTWARE\Wow6432Node\Canon
HKLM\SOFTWARE\Wow6432Node\cyanide
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\ea games
HKLM\SOFTWARE\Wow6432Node\EasyAntiCheat
HKLM\SOFTWARE\Wow6432Node\electronic arts
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\ISI ResearchSoft
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LexmarkInkjet
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\mount&blade warband
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenAL
HKLM\SOFTWARE\Wow6432Node\Origin
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\Origin Systems
HKLM\SOFTWARE\Wow6432Node\Overwolf
HKLM\SOFTWARE\Wow6432Node\Panda Software
HKLM\SOFTWARE\Wow6432Node\Parallel Process
HKLM\SOFTWARE\Wow6432Node\re-logic
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\REALTEK Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\rebellion
HKLM\SOFTWARE\Wow6432Node\Redhook
HKLM\SOFTWARE\Wow6432Node\RtWLan
HKLM\SOFTWARE\Wow6432Node\ScanSoft
HKLM\SOFTWARE\Wow6432Node\SEGA
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities Inc
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities, Inc.
HKLM\SOFTWARE\Wow6432Node\SRS Labs
HKLM\SOFTWARE\Wow6432Node\stardock
HKLM\SOFTWARE\Wow6432Node\THQ
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\Yahoo
HKLM\SOFTWARE\Wow6432Node\ZEON
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Acid Wizard Studio
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AMPLITUDE Studios
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\Avg Secure Update
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKCU\SOFTWARE\Behold Studios
HKCU\SOFTWARE\Big Robot
HKCU\SOFTWARE\Bitberry
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Canon
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Convoy Games
HKCU\SOFTWARE\Cyanide
HKCU\SOFTWARE\Daedalic Entertainment GmbH
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\Druide informatique inc.
HKCU\SOFTWARE\ea games
HKCU\SOFTWARE\Eidos
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Electronic Arts
HKCU\SOFTWARE\Epic Games
HKCU\SOFTWARE\Failbetter Games
HKCU\SOFTWARE\FLEXnet
HKCU\SOFTWARE\Freehold Games
HKCU\SOFTWARE\Frontier Developments
HKCU\SOFTWARE\Gluntronics
HKCU\SOFTWARE\GOG.com
HKCU\SOFTWARE\Goldhawk Interactive
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Harebrained Schemes
HKCU\SOFTWARE\Hinterland
HKCU\SOFTWARE\Hyper Hippo Productions Ltd.
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Imagination Technologies
HKCU\SOFTWARE\InstallShield
HKCU\SOFTWARE\ISI ResearchSoft
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JC
HKCU\SOFTWARE\KoeiTecmo
HKCU\SOFTWARE\LexmarkInkjet
HKCU\SOFTWARE\LexmarkPhoto
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\Ludeon Studios
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\Mighty Rabbit Studios
HKCU\SOFTWARE\Milkstone Studios
HKCU\SOFTWARE\MountAndBladeWarbandKeys
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\Obsidian Entertainment
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenAutomate
HKCU\SOFTWARE\Phenomic
HKCU\SOFTWARE\PTP
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Red Hook Studios
HKCU\SOFTWARE\ScanSoft
HKCU\SOFTWARE\SEGA
HKCU\SOFTWARE\Size Five Games
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SlimWare Utilities Inc
HKCU\SOFTWARE\SmashGames
HKCU\SOFTWARE\SMG
HKCU\SOFTWARE\Spiderling Games
HKCU\SOFTWARE\Stardock
HKCU\SOFTWARE\System Requirements Lab
HKCU\SOFTWARE\TeamSpeak 3 Client
HKCU\SOFTWARE\Telltale Games
HKCU\SOFTWARE\Terraria
HKCU\SOFTWARE\The Creative Assembly
HKCU\SOFTWARE\The Fun Pimps
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Turbine
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\Wild Factor
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zeon
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (252) - 4s
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\ASUS
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\Battle.net
O43 - CFD: 14/06/2015 - [] D -- C:\Program Files (x86)\BitZipper
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Brother
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Browny02
O43 - CFD: 01/09/2015 - [] D -- C:\Program Files (x86)\Canon
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\ControlCenter4
O43 - CFD: 14/05/2015 - [] D -- C:\Program Files (x86)\Diablo III
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files (x86)\Druide
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\EndNote X7
O43 - CFD: 23/09/2015 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 02/09/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 09/09/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files (x86)\Lexmark
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files (x86)\Lexmark Pro800-Pro900 Series
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files (x86)\Lexmark Toolbar
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 10/06/2015 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
O43 - CFD: 12/01/2015 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 12/01/2015 - [] D -- C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 15/06/2015 - [] D -- C:\Program Files (x86)\Microsoft XNA
O43 - CFD: 12/01/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 04/11/2015 - [0] D -- C:\Program Files (x86)\Mozilla Firefox.bak
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 06/06/2015 - [] D -- C:\Program Files (x86)\NirSoft
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Nuance
O43 - CFD: 20/09/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 29/12/2014 - [] D -- C:\Program Files (x86)\OpenAL
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Panda Security
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\PCIE Wireless LAN Driver
O43 - CFD: 02/09/2015 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\REALTEK PCIE Wireless LAN Driver
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 14/10/2015 - [] D -- C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 02/09/2015 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Ubisoft
O43 - CFD: 13/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/06/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 20/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 23/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 03/06/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 13/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 23/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 14/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitZipper
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
O43 - CFD: 15/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EndNote
O43 - CFD: 17/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FOMM
O43 - CFD: 22/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 19/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 08/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
O43 - CFD: 13/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 10/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center
O43 - CFD: 12/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 15/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nuance PaperPort 12
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
O43 - CFD: 14/06/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 12/04/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\ASUS
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 14/05/2015 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 22/06/2015 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Brother
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\Canon
O43 - CFD: 21/12/2014 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\ControlCenter4
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 21/04/2015 - [] D -- C:\ProgramData\Electronic Arts
O43 - CFD: 08/01/2015 - [] D -- C:\ProgramData\Ezprint
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Goldhawk Interactive
O43 - CFD: 12/04/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 09/02/2015 - [] D -- C:\ProgramData\Lexmark Pro800-Pro900 Series
O43 - CFD: 02/07/2015 - [] D -- C:\ProgramData\LX_cats
O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 10/06/2015 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 15/09/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 12/01/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\Nuance
O43 - CFD: 20/09/2015 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 20/09/2015 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 23/10/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\Origin
O43 - CFD: 25/02/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Panda Security
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\PCFaxTx
O43 - CFD: 28/10/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 15/09/2015 - [] D -- C:\ProgramData\ScanSoft
O43 - CFD: 15/09/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 04/06/2015 - [] D -- C:\ProgramData\SlimWare Utilities, Inc
O43 - CFD: 26/04/2015 - [] D -- C:\ProgramData\Stardock
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\SteelSeries
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\Sun
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\SystemRequirementsLab
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 15/02/2015 - [] D -- C:\ProgramData\Thomson.ResearchSoft.Installers
O43 - CFD: 26/03/2015 - [] D -- C:\ProgramData\Turbine
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\TweakBit
O43 - CFD: 02/09/2015 - [] D -- C:\ProgramData\zeon
O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 14/05/2015 - [0] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 17/07/2015 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 23/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 15/06/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\PostureAgent
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\Common Files\ResearchSoft
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\Common Files\Risxtd
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 13/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 16/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 10/06/2015 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 08/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Adobe
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Battle.net
O43 - CFD: 15/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\BrawlhallaAir
O43 - CFD: 03/09/2015 - [] RD -- C:\Users\Nick\AppData\Roaming\Brother
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\com.playsaurus.heroclicker
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\ControlCenter4
O43 - CFD: 07/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\dingaling
O43 - CFD: 01/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Dropbox
O43 - CFD: 22/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Druide
O43 - CFD: 19/02/2015 - [] D -- C:\Users\Nick\AppData\Roaming\EndNote
O43 - CFD: 22/07/2015 - [0] D -- C:\Users\Nick\AppData\Roaming\EurekaLog
O43 - CFD: 21/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Fatshark
O43 - CFD: 15/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\FiraxisLive
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\FLEXnet
O43 - CFD: 03/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Goldhawk Interactive
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Identities
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\InstallShield
O43 - CFD: 12/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Kalypso Media
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\Nick\AppData\Roaming\Media Center Programs
O43 - CFD: 01/09/2015 - [] SD -- C:\Users\Nick\AppData\Roaming\Microsoft
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\minmaxgames
O43 - CFD: 07/07/2015 - [0] D -- C:\Users\Nick\AppData\Roaming\mkxp
O43 - CFD: 13/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Mount&Blade Warband
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Mozilla
O43 - CFD: 11/02/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Notzombies
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Nuance
O43 - CFD: 11/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\NVIDIA
O43 - CFD: 15/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Origin
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Nick\AppData\Roaming\Panda Security
O43 - CFD: 07/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\ParadoxInteractive
O43 - CFD: 10/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\RotMG.Production
O43 - CFD: 31/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Secrets of Grindea
O43 - CFD: 06/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Shark Punch
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Shooter
O43 - CFD: 01/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Skype
O43 - CFD: 01/09/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Sun
O43 - CFD: 06/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Tera_Awesomium
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Nick\AppData\Roaming\The Creative Assembly
O43 - CFD: 19/08/2015 - [] D -- C:\Users\Nick\AppData\Roaming\TownOfSalem
O43 - CFD: 04/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\TS3Client
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\TuneUp Software
O43 - CFD: 10/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Wayforward Technologies
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\WinZip
O43 - CFD: 28/04/2015 - [] D -- C:\Users\Nick\AppData\Roaming\WizardWars
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Nick\AppData\Roaming\ZHP
O43 - CFD: 12/04/2015 - [] D -- C:\Users\Nick\AppData\Local\238010
O43 - CFD: 31/10/2015 - [] D -- C:\Users\Nick\AppData\Local\Adobe
O43 - CFD: 21/12/2014 - [0] SHD -- C:\Users\Nick\AppData\Local\Application Data
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Battle.net
O43 - CFD: 05/05/2015 - [] D -- C:\Users\Nick\AppData\Local\BigHugeEngine
O43 - CFD: 14/06/2015 - [] D -- C:\Users\Nick\AppData\Local\BitZipper
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Blizzard
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Blizzard Entertainment
O43 - CFD: 07/08/2015 - [] D -- C:\Users\Nick\AppData\Local\Catacomb_Kids
O43 - CFD: 22/07/2015 - [] D -- C:\Users\Nick\AppData\Local\CEF
O43 - CFD: 03/07/2015 - [] D -- C:\Users\Nick\AppData\Local\Curious Expedition
O43 - CFD: 03/01/2015 - [] D -- C:\Users\Nick\AppData\Local\Daedalic Entertainment GmbH
O43 - CFD: 13/10/2015 - [] D -- C:\Users\Nick\AppData\Local\Diagnostics
O43 - CFD: 11/08/2015 - [] D -- C:\Users\Nick\AppData\Local\DungeonSouls
O43 - CFD: 16/04/2015 - [] D -- C:\Users\Nick\AppData\Local\dxhr
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Nick\AppData\Local\ElevatedDiagnostics
O43 - CFD: 17/06/2015 - [] D -- C:\Users\Nick\AppData\Local\FalloutNV
O43 - CFD: 17/06/2015 - [] D -- C:\Users\Nick\AppData\Local\FOMM
O43 - CFD: 27/04/2015 - [] D -- C:\Users\Nick\AppData\Local\Frontier_Developments
O43 - CFD: 16/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Game Dev Tycoon - Steam
O43 - CFD: 23/09/2015 - [] D -- C:\Users\Nick\AppData\Local\Google
O43 - CFD: 14/06/2015 - [] D -- C:\Users\Nick\AppData\Local\GWX
O43 - CFD: 21/08/2015 - [] D -- C:\Users\Nick\AppData\Local\Harebrained Schemes
O43 - CFD: 07/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Hero_Siege
O43 - CFD: 21/12/2014 - [0] SHD -- C:\Users\Nick\AppData\Local\History
O43 - CFD: 26/03/2015 - [0] D -- C:\Users\Nick\AppData\Local\InfiniteCrisis
O43 - CFD: 23/12/2014 - [] D -- C:\Users\Nick\AppData\Local\Introversion
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Ironclad Games
O43 - CFD: 22/12/2014 - [] D -- C:\Users\Nick\AppData\Local\Macromedia
O43 - CFD: 07/05/2015 - [0] D -- C:\Users\Nick\AppData\Local\Metrocide
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Local\MFAData
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Nick\AppData\Local\Microsoft
O43 - CFD: 21/12/2014 - [] D -- C:\Users\Nick\AppData\Local\Mozilla
O43 - CFD: 15/01/2015 - [] D -- C:\Users\Nick\AppData\Local\My Games
O43 - CFD: 28/08/2015 - [] D -- C:\Users\Nick\AppData\Local\nuclearthrone
O43 - CFD: 20/09/2015 - [] D -- C:\Users\Nick\AppData\Local\NVIDIA Corporation
O43 - CFD: 14/04/2015 - [] D -- C:\Users\Nick\AppData\Local\openvr
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Nick\AppData\Local\Origin
O43 - CFD: 12/03/2015 - [] D -- C:\Users\Nick\AppData\Local\PAYDAY 2
O43 - CFD: 19/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Programs
O43 - CFD: 15/09/2015 - [] D -- C:\Users\Nick\AppData\Local\RelicHuntersZero
O43 - CFD: 05/01/2015 - [] D -- C:\Users\Nick\AppData\Local\Robot Entertainment
O43 - CFD: 11/05/2015 - [] D -- C:\Users\Nick\AppData\Local\Skype
O43 - CFD: 04/06/2015 - [] D -- C:\Users\Nick\AppData\Local\SlimWare Utilities Inc
O43 - CFD: 24/06/2015 - [] D -- C:\Users\Nick\AppData\Local\Sniper3
O43 - CFD: 07/10/2015 - [] D -- C:\Users\Nick\AppData\Local\Steam
O43 - CFD: 02/09/2015 - [] D -- C:\Users\Nick\AppData\Local\SteelSeries Engine 3 Client
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Nick\AppData\Local\Temp
O43 - CFD: 21/12/2014 - [0] SHD -- C:\Users\Nick\AppData\Local\Temporary Internet Files
O43 - CFD: 06/05/2015 - [] D -- C:\Users\Nick\AppData\Local\TERA
O43 - CFD: 26/03/2015 - [] D -- C:\Users\Nick\AppData\Local\Turbine
O43 - CFD: 21/01/2015 - [] D -- C:\Users\Nick\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 09/10/2015 - [] D -- C:\Users\Nick\AppData\Local\UNDERTALE
O43 - CFD: 21/12/2014 - [0] D -- C:\Users\Nick\AppData\Local\VirtualStore
O43 - CFD: 13/07/2009 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/08/2015 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/05/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 26/12/2014 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 13/07/2009 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView
O43 - CFD: 12/08/2015 - [] RD -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 01/07/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 04/06/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trust
O43 - CFD: 21/01/2015 - [] D -- C:\Users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
---\\ ShellIconOverlayIdentifiers (SIOI) (13) - 0s
O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Nick\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveShell.dll ©
O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Nick\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveShell.dll ©
O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Nick\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\SkyDriveShell.dll ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©
O106 - SIOI: DropboxExt1 Class ["DropboxExt1"] - {FB314ED9-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt2 Class ["DropboxExt2"] - {FB314EDA-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt5 Class ["DropboxExt3"] - {FB314EDD-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt6 Class ["DropboxExt4"] - {FB314EDE-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt3 Class ["DropboxExt5"] - {FB314EDB-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt7 Class ["DropboxExt6"] - {FB314EDF-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt4 Class ["DropboxExt7"] - {FB314EDC-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
O106 - SIOI: DropboxExt8 Class ["DropboxExt8"] - {FB314EE0-A251-47B7-93E1-CDD82E34AF8B}. (.Dropbox, Inc. - Dropbox Shell Extension.) -- C:\Users\Nick\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll ©
---\\ ShareTools MSconfig StartupReg (1) - 0s
O53 - SMSR:HKLM\...\startupreg\EADM [Key] . (.Electronic Arts - Origin.) -- S:\Origin\Origin.exe ©
---\\ System Drivers List (56) - 2s
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2011/03/11 01:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/13 20:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2011/03/11 01:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2009/06/10 15:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/13 20:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 15:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/13 20:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2009/07/13 20:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 15:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/10 15:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/20 22:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2011/03/11 01:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [22800] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [390416] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [800016] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] ©
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] ©
O58 - SDL:2015/11/02 17:46:17 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] ©
O58 - SDL:2009/07/13 20:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2014/10/09 12:02:39 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [195728] ©
O58 - SDL:2015/08/25 13:46:21 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11089200] ©
O58 - SDL:2011/03/11 01:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2011/03/11 01:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/13 20:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/13 20:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2014/05/29 02:56:18 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [940760] ©
O58 - SDL:2015/06/18 17:45:16 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4496600] ©
O58 - SDL:2012/09/12 22:10:04 RA . (.Realtek Semiconductor Corporation - Realtek RTL81892CE NDIS Driverr.) -- C:\Windows\System32\drivers\rtl8192ce.sys [879760] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 32691.) -- C:\Windows\System32\drivers\rtwlane.sys [3731672] ©
O58 - SDL:2009/06/10 15:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/13 20:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/13 20:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/13 20:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2014/09/30 16:47:28 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverx64.sys [129312] ©
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
O58 - SDL:1999/12/31 19:00:00 A . (.Copyright (C) 2000-2001 - USB Mouse Lower filter driver.) -- C:\Windows\System32\drivers\whfltr2k.sys [9600]
---\\ Last modified or created user files (2) - 12s
O61 - LFC: 2015/10/30 11:48:30 A . (..) -- C:\Users\Nick\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin [414]
O61 - LFC: 2015/11/02 09:57:43 A . (..) -- C:\Users\Nick\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [52483]
---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (8) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (1) - 3s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Search Svchost Services (32) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [859648] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [680960] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2606080] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [210432] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] ©
---\\ Firewall Active Exception List (128) - 4s
O87 - FAEL: "{4F472307-603F-4003-9E70-41817C9F380E}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\GarrysMod\hl2.exe
O87 - FAEL: "{394B6AC0-2058-4E85-B1B1-0D9241AFA860}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\GarrysMod\hl2.exe
O87 - FAEL: "{94656F68-4628-4A38-AF05-BD0D7624A641}" [In-None-P6-TRUE] .(...) -- S:\AVG\avgmfapx.exe (.not file.)
O87 - FAEL: "{98530B90-4761-4EA7-9A0C-666C7A4D49FE}" [In-None-P17-TRUE] .(...) -- S:\AVG\avgmfapx.exe (.not file.)
O87 - FAEL: "{44CC7B8E-7331-4A0F-9CD6-53DDA7332E67}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Half-Life 2\hl2.exe
O87 - FAEL: "{227610C4-1D02-4524-BD4B-CC25A5B9AE19}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Half-Life 2\hl2.exe
O87 - FAEL: "{EFD2B949-BB00-4BFF-B795-46F7884EAD1D}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{17BE4FDA-39F0-4A99-BEED-9B9BD577652A}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Team Fortress 2\hl2.exe
O87 - FAEL: "{60451576-91EE-4BB3-9335-A1655F53210B}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Endless Legend\EndlessLegend.exe
O87 - FAEL: "{C4C4B91E-B9A1-4341-9610-E0A9B7A29887}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Endless Legend\EndlessLegend.exe
O87 - FAEL: "{DE18FCAB-234D-4838-9CB3-FCF531CA5580}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
O87 - FAEL: "{FB8D14A0-9CE3-4AD6-97FA-358F0A99B4F8}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
O87 - FAEL: "{359E93D5-C091-47D8-943B-373B8D4294ED}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
O87 - FAEL: "{5DF1C4FB-30D9-46C1-BB3D-8B0B2B4EC6B1}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
O87 - FAEL: "{E9FEF6AA-2E85-42CE-A152-4BB591F07FB4}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\vagante\vagante.exe
O87 - FAEL: "{38209FF9-BF06-4ACF-A343-ABFEB4338AF6}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\vagante\vagante.exe
O87 - FAEL: "TCP Query User{B68475C3-051D-4A0E-B283-BDE79A40F2C5}S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe (.not file.)
O87 - FAEL: "UDP Query User{FBF4285A-C67C-4D81-8A67-2B81727E7684}S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe (.not file.)
O87 - FAEL: "{115130FB-F98E-43F5-ADC5-0B05580D29B0}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Escapists\TheEscapists.exe
O87 - FAEL: "{B02EDC2E-3EC2-47DE-864E-69D6770208F8}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Escapists\TheEscapists.exe
O87 - FAEL: "{B9413B6D-BAF8-4870-8B68-1E941968D858}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\lxeccoms.exe
O87 - FAEL: "{1A3C71FE-9730-4090-AD8B-D75359141ED0}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{6CECF0E9-5B1B-4880-AC01-45038894F30E}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{89824FF8-7EF5-4261-A458-58B685E57F5A}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{5CBBC39F-B883-41DF-B0C2-17994A7F8264}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{8B90D354-13A9-4D80-B86B-06C06D17CDC8}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{209479D2-2034-4F60-8E77-3AF94D7E4A5F}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{E8F3A281-BAFB-4459-8A4C-60AB3AF7E606}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{D06F3C25-1E24-4626-A1A6-06293BD285E3}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{67F5EE84-CC63-463B-B827-23634C8D0212}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{849478D5-533C-448F-8AA7-5B231F8B4C0A}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{1953BBDB-5135-4EC9-90BC-AC07EF2F190B}" [In-None-P17-TRUE] .(...) -- C:\Windows\system32\LXECcoms.exe
O87 - FAEL: "{F19BA193-A0A0-4C32-A763-FE1DCEF3CA3C}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
O87 - FAEL: "{6D767259-802F-4C1B-8B00-8BEE07340384}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Source\hl2.exe
O87 - FAEL: "{9AFE6226-2C3F-4783-889B-023561DBDFF7}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\TowerofGuns\Binaries\Win32\UDK.exe (.not file.)
O87 - FAEL: "{11FBCD0D-DEF8-4D02-9677-92645E3B02AC}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\TowerofGuns\Binaries\Win32\UDK.exe (.not file.)
O87 - FAEL: "{5852B1E5-51C0-4A44-81BF-6A64AF3E8C71}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe (.not file.)
O87 - FAEL: "{B8C4793A-55CB-4C48-B1E1-3EC7BD471861}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\EvolveBeta\Bin64_SteamRetail\StaticLauncher64.exe (.not file.)
O87 - FAEL: "{7994D463-7921-44A1-8892-E735745D1E4C}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
O87 - FAEL: "{1AB312D0-59B5-4D43-A905-B195FAD214A2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\SunlessSea\Sunless Sea.exe
O87 - FAEL: "{EEFB9166-DD27-4576-A766-C51C96C3E4D0}" [In-None-P6-TRUE] .(.FourbitFriday - Kids in Catacombs.) -- S:\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
O87 - FAEL: "{AFA768C9-6D72-4FB5-8B84-7CA52B934D3B}" [In-None-P17-TRUE] .(.FourbitFriday - Kids in Catacombs.) -- S:\Steam\steamapps\common\Catacomb Kids\CatacombKids.exe
O87 - FAEL: "{0481931D-AC0D-46F3-9C9C-247814ED7EBC}" [In-None-P6-TRUE] .(.Crate Entertainment, LLC - Grim Dawn.) -- S:\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
O87 - FAEL: "{BC3A570F-BEC5-4968-B085-214DCE1ED5AA}" [In-None-P17-TRUE] .(.Crate Entertainment, LLC - Grim Dawn.) -- S:\Steam\steamapps\common\Grim Dawn\Grim Dawn.exe
O87 - FAEL: "{5509A2EF-F2CC-4A24-A716-8E8B00C02120}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe (.not file.)
O87 - FAEL: "{7276C876-A3E7-46A2-AA72-B16C5DB4E06D}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\POSTAL2Complete\System\Launcher.exe (.not file.)
O87 - FAEL: "{F0E8BB8D-B3BD-45A5-AF83-ABEF65591E54}" [In-None-P6-TRUE] .(.Obsidian Entertainment - Pillars of Eternity.) -- S:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
O87 - FAEL: "{FE171B93-8CED-4CF0-80B1-F3F3256F1B3C}" [In-None-P17-TRUE] .(.Obsidian Entertainment - Pillars of Eternity.) -- S:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
O87 - FAEL: "{F95641D9-D71E-44DA-B4CE-211F5E398543}" [In-None-P6-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- S:\Program Files (x86)\Origin Games\Ultima 7\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{8D5E3EBD-2957-4965-91B5-B3EBDCAF90A6}" [In-None-P17-TRUE] .(.DOSBox Team - DOSBox DOS Emulator.) -- S:\Program Files (x86)\Origin Games\Ultima 7\Game\Game\DOSBox\DOSBox.exe
O87 - FAEL: "{4AB46D64-DF01-4982-BC97-29B898FDDED0}" [In-None-P6-TRUE] .(.Paradox North - Launcher application for Magicka: Wizard Wa.) -- S:\Steam\steamapps\common\MagickaWizardWars\WizardWarsLauncher.exe
O87 - FAEL: "{5298B998-D5C8-46EE-BD0C-9DB08A845968}" [In-None-P17-TRUE] .(.Paradox North - Launcher application for Magicka: Wizard Wa.) -- S:\Steam\steamapps\common\MagickaWizardWars\WizardWarsLauncher.exe
O87 - FAEL: "TCP Query User{DF7B3E8A-14CE-48E9-9B19-F6ACCF499B79}S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
O87 - FAEL: "UDP Query User{D1312609-83AB-477F-8B40-93E76635E6DE}S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe
O87 - FAEL: "{962832B0-4E21-4656-B9C4-CDD61CF76BCD}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\ChromaSquad\chromasquad.exe
O87 - FAEL: "{AFA40B57-8E8B-451F-A725-55C12A0CA14A}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\ChromaSquad\chromasquad.exe
O87 - FAEL: "{1D1ACCB8-C685-457B-98DC-7773DFCF9C90}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Masterplan\The Masterplan.exe
O87 - FAEL: "{5E49FD5D-5A69-4F0C-AE12-D665BF3768A6}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Masterplan\The Masterplan.exe
O87 - FAEL: "{3F396FF3-9B13-45BA-BECE-FBAC178BE838}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\OTTTD\OTTTD-win.exe
O87 - FAEL: "{16322500-2702-4B44-AA31-073C34C4F386}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\OTTTD\OTTTD-win.exe
O87 - FAEL: "{98932334-6D8B-458B-892F-6E600A01364D}" [In-None-P6-TRUE] .(.Flat Earth Games - Metrocide.) -- S:\Steam\steamapps\common\Metrocide\Metrocide.exe
O87 - FAEL: "{2B4068DC-46A9-4BFE-93AC-D54157B61072}" [In-None-P17-TRUE] .(.Flat Earth Games - Metrocide.) -- S:\Steam\steamapps\common\Metrocide\Metrocide.exe
O87 - FAEL: "{42A2C719-8A15-417C-A99E-2652A5116C61}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
O87 - FAEL: "{D5C8DCB1-F862-4119-B63C-D3516743C986}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\7 Days To Die\7DaysToDie.exe
O87 - FAEL: "{A77C3B69-7BDE-4466-BDFB-B3E6FA49C793}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
O87 - FAEL: "{77A22036-1874-437B-96E0-708D3E0B79C2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\InvisibleInc\invisibleinc.exe
O87 - FAEL: "{D45527D7-B6BA-4E41-96C9-DAB5E9D12315}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
O87 - FAEL: "{40882F08-2DFE-4AD6-AB79-8F6E3EACD618}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Clicker Heroes\Clicker Heroes.exe
O87 - FAEL: "{51A7868E-2DCC-4E12-9B54-8AF5D3E75DDF}" [In-None-P6-TRUE] .(...) -- S:\Diablo\Hearthstone\Hearthstone.exe
O87 - FAEL: "{3300ED1E-3B18-422C-A68C-59D1651CB241}" [In-None-P17-TRUE] .(...) -- S:\Diablo\Hearthstone\Hearthstone.exe
O87 - FAEL: "{6DDCDF14-1AA1-455E-BC57-B92ED83BC1FF}" [In-None-P6-TRUE] .(.WB Games, Inc. - Middle-earth: Shadow of Mordor™.) -- S:\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
O87 - FAEL: "{CF25EDE8-11A1-4353-A8B3-63A545319F29}" [In-None-P17-TRUE] .(.WB Games, Inc. - Middle-earth: Shadow of Mordor™.) -- S:\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
O87 - FAEL: "{2F76BD3E-AAA0-4D16-A9A4-BE211939B6DD}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe (.not file.)
O87 - FAEL: "{0F7C87A7-C5B4-46A8-A838-B45CFC1121D2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe (.not file.)
O87 - FAEL: "TCP Query User{1DCA04A6-EE93-4B65-AE80-88B9E27E5AAB}S:\stalker online\stalkeronline launcher.exe" [In-None-P6-TRUE] .(...) -- S:\stalker online\stalkeronline launcher.exe (.not file.)
O87 - FAEL: "UDP Query User{B5F28392-4D34-4A4B-84BB-46E71139C607}S:\stalker online\stalkeronline launcher.exe" [In-None-P17-TRUE] .(...) -- S:\stalker online\stalkeronline launcher.exe (.not file.)
O87 - FAEL: "{0DD110FF-AC46-4608-BAA1-5F6E44F4FAF0}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe (.not file.)
O87 - FAEL: "{1680EAF5-42EB-4558-8ED2-2FF5FA67CB0F}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe (.not file.)
O87 - FAEL: "TCP Query User{D3604D56-FB53-429C-9CF3-AE9644F0DB59}S:\steam\steamapps\downloading\730\csgo.exe" [In-None-P6-TRUE] .(...) -- S:\steam\steamapps\downloading\730\csgo.exe (.not file.)
O87 - FAEL: "UDP Query User{5C8A5A42-3DF9-4514-9238-66E32786BE2C}S:\steam\steamapps\downloading\730\csgo.exe" [In-None-P17-TRUE] .(...) -- S:\steam\steamapps\downloading\730\csgo.exe (.not file.)
O87 - FAEL: "{B25CE5EF-78D8-4D29-9C3E-C18BE9C30002}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Magicite\Magicite.exe
O87 - FAEL: "{6AAAC560-180A-454B-A665-EB21D3EA69A2}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Magicite\Magicite.exe
O87 - FAEL: "{07CCC9AA-50F5-40EA-BB0B-22DB488A611F}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_105.exe (.not file.)
O87 - FAEL: "{94D76695-7F66-4D8A-B7BD-4713F9FAD6DF}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_105.exe (.not file.)
O87 - FAEL: "{0CAEABA0-6B9D-4498-B06E-AC18ED38FF4A}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Game Dev Tycoon\nw.exe
O87 - FAEL: "{5D620F0E-231A-43EE-9080-362495348ECF}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Game Dev Tycoon\nw.exe
O87 - FAEL: "{51D100F3-B910-4108-8531-E19906E6C54D}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
O87 - FAEL: "{0535482D-8B1D-41B7-8557-F74D84FCDDD8}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid32.exe
O87 - FAEL: "{93FCAE48-CCEC-4213-B6B5-36D73D106166}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
O87 - FAEL: "{980CBD92-DFC5-49C3-A4DC-EADDB8102895}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\ProjectZomboid\ProjectZomboid64.exe
O87 - FAEL: "{AF0BE659-4B41-48EE-B85F-05A735AB69BF}" [In-None-P6-TRUE] .(.Bethesda Softworks, Obsidian Entertainment - Fallout New Vegas Launcher.) -- S:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
O87 - FAEL: "{FC810854-44CC-4E15-8CD2-1D45DAF28C8D}" [In-None-P17-TRUE] .(.Bethesda Softworks, Obsidian Entertainment - Fallout New Vegas Launcher.) -- S:\Steam\steamapps\common\Fallout New Vegas\FalloutNVLauncher.exe
O87 - FAEL: "{DEE2CF53-78D7-4CE3-894A-71E317016A8F}" [In-None-P6-TRUE] .(.コーエーテクモゲームス - 『討鬼伝 極』起動環境設定.) -- S:\Steam\steamapps\common\TOUKIDEN Kiwami\ToukidenKiwamiLauncher.exe
O87 - FAEL: "{FE45A593-2697-4C70-A662-3BBBAC25B295}" [In-None-P17-TRUE] .(.コーエーテクモゲームス - 『討鬼伝 極』起動環境設定.) -- S:\Steam\steamapps\common\TOUKIDEN Kiwami\ToukidenKiwamiLauncher.exe
O87 - FAEL: "{F60D46B2-7F84-4160-B3B7-1C82F67CE545}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Caves of Qud\CoQ.exe
O87 - FAEL: "{0D09F48A-722C-48B8-8A4E-70958D69A240}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Caves of Qud\CoQ.exe
O87 - FAEL: "{B4ED3979-36D7-458E-870D-D74670E41E07}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Way of the Samurai 4\WayOfTheSamurai4.exe
O87 - FAEL: "{3D998260-FE6F-4264-A606-80EA020A5BE5}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Way of the Samurai 4\WayOfTheSamurai4.exe
O87 - FAEL: "{78683C67-87BD-4FA9-9F02-AD55DFB21BC0}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
O87 - FAEL: "{991A9ED9-64DB-4CF0-802B-FEBCCA77CDAB}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
O87 - FAEL: "{AB8AB1C2-F195-4651-B90D-F2931FE22F76}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
O87 - FAEL: "{D940F722-8465-47E4-AF1F-597ED6EA2C0F}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Returns\Shadowrun.exe
O87 - FAEL: "{7BCB4409-929A-49E9-B0A6-22D81B6851C5}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Dungeon Souls\DungeonSouls.exe
O87 - FAEL: "{DE8E41C0-5AFF-4FDE-9F83-7F19103E1B58}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Dungeon Souls\DungeonSouls.exe
O87 - FAEL: "{A34706A9-A02E-4D83-9924-179767B480E7}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
O87 - FAEL: "{BF943EB0-AD2C-46AC-A1D9-B6763FC439F7}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
O87 - FAEL: "{C3F4211C-2892-47C6-A1B2-F45FD4FF66BA}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_106.exe (.not file.)
O87 - FAEL: "{DAB4D005-95F0-4893-9381-39506C8A1028}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_106.exe (.not file.)
O87 - FAEL: "{141BE422-0B2E-4CC4-91E9-D3D77F681703}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_107.exe
O87 - FAEL: "{FF017B20-E963-4EA8-845D-52B88C513CF1}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\The Dungeoning\TheDungeoning_107.exe
O87 - FAEL: "{516BA804-2C15-4EF7-9EA0-C9A9F0DD8464}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
O87 - FAEL: "{524F682F-CB03-4395-9B87-E5AC179CC347}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Shadowrun Hong Kong\SRHK.exe
O87 - FAEL: "{1B0E1F18-37E2-4492-80F8-FF1309EA54FF}" [In-None-P6-TRUE] .(.YoYo Games Ltd. - GameMaker:Studio Runner (c) YoYo Games Ltd..) -- S:\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
O87 - FAEL: "{AA3F61F8-A102-4E96-B53F-ADD1E1F1D7BB}" [In-None-P17-TRUE] .(.YoYo Games Ltd. - GameMaker:Studio Runner (c) YoYo Games Ltd..) -- S:\Steam\steamapps\common\Nuclear Throne\nuclearthrone.exe
O87 - FAEL: "{E82C6485-9851-47C8-BA8A-A8572D840135}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Mad Max\MadMax.exe
O87 - FAEL: "{9A4EA390-56E5-4033-819A-E8237753605E}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Mad Max\MadMax.exe
O87 - FAEL: "{1CE70716-7C73-4273-998C-DB7A46A61411}" [In-None-P6-TRUE] .(...) -- D:\DRIVERS\francais\x64\Setup.exe (.not file.)
O87 - FAEL: "{E4E75CA7-9388-4363-B7BB-25F161896356}" [In-None-P17-TRUE] .(...) -- D:\DRIVERS\francais\x64\Setup.exe (.not file.)
O87 - FAEL: "{FEC8755E-D564-4B2E-995A-A03604370B19}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
O87 - FAEL: "{ABE09B95-871C-4278-99DD-3708E09E54F5}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
O87 - FAEL: "{44266ED3-5936-4540-93B9-518F7A480A61}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (.not file.)
O87 - FAEL: "{AA09A533-AB97-46EB-ABBF-CB4764C03FD9}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe (.not file.)
O87 - FAEL: "{344087A3-53DC-4211-8200-78882A335C73}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
O87 - FAEL: "{9A45A025-2A73-40A0-9D6C-CB007764EB20}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
O87 - FAEL: "{9B4F791F-E117-4133-B950-3999AC271872}" [In-None-P6-TRUE] .(.Konami Digital Entertainment - METAL GEAR SOLID V: THE PHANTOM PAIN.) -- S:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
O87 - FAEL: "{A4B532CA-7288-4340-AC72-51E83D4B4A18}" [In-None-P17-TRUE] .(.Konami Digital Entertainment - METAL GEAR SOLID V: THE PHANTOM PAIN.) -- S:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe
O87 - FAEL: "{F3491917-69C6-4348-9667-05FB3A41002B}" [In-None-P6-TRUE] .(...) -- S:\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
O87 - FAEL: "{36A0BF5F-E860-449A-B673-3F8905C4CF4D}" [In-None-P17-TRUE] .(...) -- S:\Steam\steamapps\common\Relic Hunters Zero\RelicHuntersZero.exe
---\\ Services not Microsoft (SR=Run, SS=Stop) (18) - 4s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Demand [20/10/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ©
SR - Auto [27/01/2014] [ 936728] ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
SR - Auto [08/09/2014] [ 954648] ASUS HM Com Service (asHmComSvc) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe ©
SR - Auto [04/08/2014] [ 384000] AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc..) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.13\AsusFanControlService.exe ©
SR - Demand [25/09/2013] [ 282112] BrYNSvc (BrYNSvc) . (.Brother Industries, Ltd..) - C:\Program Files (x86)\Browny02\BrYNSvc.exe ©
SR - Demand [02/01/2013] [ 171632] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe ©
SS - Demand [31/01/2014] [ 887232] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe ©
SR - Auto [03/04/2014] [ 154584] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe ©
SR - Auto [03/04/2014] [ 398296] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ©
SS - Auto [14/04/2010] [ 45736] lxecCATSCustConnectService (lxecCATSCustConnectService) . (.Lexmark International, Inc..) - C:\Windows\System32\spool\drivers\x64\3\lxecserv.exe
SR - Auto [14/04/2010] [ 1052328] lxec_device (lxec_device) . (...) - C:\Windows\System32\lxeccoms.exe
SS - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Demand [04/11/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [25/08/2015] [ 937776] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SS - Disabled [15/07/2015] [ 2004488] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - S:\Origin\OriginClientService.exe ©
SR - Demand [14/10/2015] [ 838224] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe ©
---\\ Additional Scan (O88) (1) - 0s
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
---\\ Summary of the elements found (1) - 0s
http://www.nicolascoolman.fr/blog =>Toolbar.AVGSafeGuard
~ End of the scan, 53683 items in 62 seconds (1046)(0)