Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.8.23.124 By Nicolas Coolman (2015/08/23)
~ Run by Pat (Administrator) (2015/11/14 15:51:19)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Pat\Desktop\ZHPDiag.txt
~ Report: C:\Users\Pat\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit (Build 7600)
---\\ Internet Browsers (2) - 0s
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
MSIE: Internet Explorer v8.0.7600.16385
---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK
---\\ System protection software (3) - 2s
Avast Free Antivirus v10.3.2225
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender W7 (Deactivate)
---\\ System protection software (Superfluous) (1) - 2s
Spybot - Search & Destroy v2.2.25
---\\ System optimization software (1) - 2s
CCleaner v5.05
---\\ Surveillance software (2) - 2s
Adobe Flash Player 19 NPAPI
Adobe Reader XI
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 26 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 9427.956 MB (64% free)
~ System Restore: Activé (Enable)
~ System drive C: has 243 GB free of 943 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: PAT-PC
~ User Name: Pat
~ Logged in as Administrator
---\\ Enumeration of the disk units (3) - 0s
~ Drive C: has 243 GB free of 943 GB (System)
~ Drive G: has 244 GB free of 1157 GB
~ Drive J: has 2 GB free of 3 GB
---\\ State of the Windows Security Center (10) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Search Generic System Files (22) - 0s
[MD5.6D4F9E4B640B413C6F73414327484C80] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2868736]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.B1037F0131C9A010D611F6914E03CD92] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [1193472]
[MD5.132328DF455B0028F13BF0ABEE51A63A] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [389120]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.B9384E03479D2506BC924C16A3DB87BC] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [500224]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.3F1DC527070ACB87E40AFE46EF6DA749] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.CFDCD8CA87C2A657DEBC150AC35B5E08] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [157184]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [259072]
[MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1659984]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [99840]
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [294992]
---\\ Process running (42) - 2s
[MD5.41A0813F22D3330C0CA71CE5BBD42B12] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [202752] [PID.392]
[MD5.0840ABBBDF438691EE65A20040635CBE] - (.Stardock Corporation - Dock Login Service.) -- C:\Program Files\Dell\DellDock\DockLogin.exe [155648] [PID.1140]
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1260]
[MD5.C68960B91F93850AECC34D93EB2B2B56] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [448000] [PID.1384]
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1624]
[MD5.ACC9C8C560C567FAD6F79C977AB2EA09] - (.B.H.A Corporation - B's Recorder GOLD Service Library.) -- C:\WINDOWS\SysWOW64\bgsvcgen.exe [145504] [PID.1652]
[MD5.05F99DFF3A8D705F9AA6B87224F7BEB1] - (...) -- C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [218112] [PID.1692]
[MD5.AB176B9E59C0435499D83047D84EDD59] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784] [PID.1796]
[MD5.40C126CB15FAB7D6C66490DCA9C1AED2] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416] [PID.1956]
[MD5.98EF79CC2B07398AC525F9EA1AE0366F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880] [PID.1168]
[MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.2616]
[MD5.D358E077A0A05D9B12DA22D137EE8464] - (.Microsoft Corp. - Microsoft SeaPort Search Enhancement Broker.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [226656] [PID.2936]
[MD5.74EC60E20516AAA573BE74F31175270F] - (.SoftThinks SAS - SoftThinks Agent Service.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [1692480] [PID.3036]
[MD5.9C6CADA6CBA8A88AB2C7C9C4EDFA5304] - (.WDC - WD Drive Manager Service.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288256] [PID.2448]
[MD5.14BF6B3AB327D519ED007CDDC56F6900] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272] [PID.2712]
[MD5.EBDD3032297EF6832A1D6D3AA6DC3537] - (.SoftThinks - Dell - Dell DataSafe Local Backup.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe [4259648] [PID.2952]
[MD5.CD4F7B90CB09831BCDEDE0A206CCDB35] - (.© 2007-2011 SoftThinks SAS - ST Service Scheduling.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE [2751808] [PID.3060]
[MD5.09890A2F032B138A74B5DF2C1233FB1D] - (.SoftThinks - Dell - DataSafe Update Launcher.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe [460096] [PID.2824]
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.3296]
[MD5.E337785DA1958E9AB02DDB2369EF46E8] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe [307016] [PID.3496]
[MD5.1DB925810BA7020112D734248A01028D] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240] [PID.3528]
[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3152]
[MD5.9A8568C7642B79F43DCEB0BDF9F49050] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe [542136] [PID.2676]
[MD5.6FACA9C62024E14251C7ED33A8E8B660] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2571704] [PID.3616]
[MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe [354840] [PID.3700]
[MD5.820EBE67AB99F033FDE25B2692157991] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416] [PID.3960]
[MD5.DF338D2035B2F16530EFE85BC1704C54] - (.Western Digital Technologies, Inc. - WD Drive Manager Status.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [6185472] [PID.4268]
[MD5.6CF3079C23A9A96F7C1DC33EE982FBA6] - (.Stardock Corporation - Dell Dock.) -- C:\Program Files\Dell\DellDock\DellDock.exe [1316192] [PID.4320]
[MD5.C81F59B7D524FB462F73B27757084618] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8204056] [PID.3248]
[MD5.C07A6F058A7DB354EBEE77DF9537127A] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520] [PID.2540]
[MD5.E7704CBF568815C1CAA6E513387BD3F2] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [65536] [PID.4200]
[MD5.74EF310FAC89341CE2897B7F2C4A7B0F] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [65536] [PID.5104]
[MD5.CCC3FE1DDCCF99633539B3D7681EF7D7] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768] [PID.5760]
[MD5.60E6FC4E478A1D65069A1C331603101C] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111312] [PID.5024]
[MD5.AF49D1C79EA49A7833017F290EE63B82] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784] [PID.5368]
[MD5.F84EF3D83D4692177A0EE5FF51AAE7B7] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\SysWOW64\jureg.exe [55072] [PID.5520]
[MD5.6740F3F722B70ABAE95753311E600D9E] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3499920] [PID.1572]
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] [PID.6180]
[MD5.DD1EEE63D06553668029B0D5D52B56D2] - (.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe [193808] [PID.3580]
[MD5.4B0583A0A6A22D9F453BFFD467E68190] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392872] [PID.4500]
[MD5.B39CAB9DF6B7BCDE9B27D566BAF78D3C] - (.Mozilla Corporation - Thunderbird.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [491688] [PID.7680]
[MD5.84867350CFF4C8551E5F5A3D355D8CB3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Pat\Desktop\ZHPDiag3.exe [1901056] [PID.3276]
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (10) - 1s
P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\vdpure@link64.xpi
P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\searchplugins\yahoo-avast.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (. - Flash Video Downloader - YouTube HD Download [4K].) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Acrobat] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
---\\ Internet Explorer Extensions, Start, Search (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (4) - 0s
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
---\\ Auto loading programs from Registry and folders (25) - 0s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateReg] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\System32\jureg.exe
O4 - HKUS\.DEFAULT\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
---\\ Lop.com/Domain Hijackers (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22
---\\ Extra protocols (23) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\WINDOWS\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
---\\ Non Microsoft non disabled Windows Services (18) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) . (.B.H.A Corporation - B's Recorder GOLD Service Library.) - C:\WINDOWS\SysWOW64\bgsvcgen.exe
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O23 - Service: DirMngr (DirMngr) . (...) - C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
O23 - Service: Dock Login Service (DockLoginService) . (.Stardock Corporation - Dock Login Service.) - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: SessionLauncher (SessionLauncher) . (...) - c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe (.not file.)
O23 - Service: SoftThinks Agent Service (SftService) . (.SoftThinks SAS - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: WDDMService (WDDMService) . (.WDC - WD Drive Manager Service.) - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: Power Control [2014/12/19 14:10:20] ({1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7}) . (.CyberLink Corp. - .) - C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
---\\ BootExecute (BEX) (1) - 0s
O34 - HKLM BootExecute: (sdnclean64.exe)
---\\ Task Planned Automatically (23) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872]
[MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6278424]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200]
[MD5.00000000000000000000000000000000] [APT] [JavaUpdatePat] (...) -- C:\WINDOWS\SysWOW64\jusched.exe (.not file.) [0]
[MD5.AD51825B096DECB35C4013D1F5CA3572] [APT] [{D7C07EFB-684F-80BF-6EC5-D4261F413EF4}] (...) -- C:\Users\Pat\AppData\Roaming\PrSxITcg\lMIVfkul\nfWGhjxJ\vquMpDSws.exe [262144]
[MD5.0074AFB0570FC1A6AC9771D0133DF44A] [APT] [Safer-Networking\Spybot - Search and Destroy\Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3907304]
[MD5.DF474E01CFC5F28CA952B0DBD6B132A9] [APT] [Safer-Networking\Spybot - Search and Destroy\Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [3633312]
[MD5.CDEB46FE688F062D3033209B29755203] [APT] [Safer-Networking\Spybot - Search and Destroy\Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [3885120]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] =>.Google Inc.
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] =>.Adobe Systems Incorporated
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] =>.AVAST Software
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2768] =>.Piriform Ltd
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3812] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064] =>.Google Inc.
O39 - APT: JavaUpdatePat - (...) -- C:\Windows\System32\Tasks\JavaUpdatePat [3362]
O39 - APT: {D7C07EFB-684F-80BF-6EC5-D4261F413EF4} - (...) -- C:\Windows\System32\Tasks\{D7C07EFB-684F-80BF-6EC5-D4261F413EF4} [3094]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{E002E674-615E-4AE2-90DF-1B9F385D13EC} [3024]
---\\ Software installed (110) - 7s
O42 - Logiciel: Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/0 - (.GoPro.) [HKLM][64Bits] -- 0B624A43DD66DBF5CF3EDFA9741A364E688062A4
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Le Grand Robert & Collins - (.Le Robert.) [HKLM][64Bits] -- GRCDVD
O42 - Logiciel: Le Petit Robert 2010 - (.Le Robert.) [HKLM][64Bits] -- PR1CD2010
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: EMCGadgets64 - (.Sonic.) [HKLM][64Bits] -- {02AD9D20-03D2-4DE0-8793-E8253026AD86}
O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF}
O42 - Logiciel: WD SmartWare Drive Manager - (.Western Digital.) [HKLM][64Bits] -- {5E2D7D76-30DE-4DDE-B416-9B0B925EBFEC}
O42 - Logiciel: Roxio File Backup - (.Roxio.) [HKLM][64Bits] -- {60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}
O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM][64Bits] -- {8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: VD64Inst - (.Roxio, Inc..) [HKLM][64Bits] -- {DB9C43F7-0B0F-4E43-9E6B-F945C71C469E}
O42 - Logiciel: Dell Dock - (.Dell.) [HKLM][64Bits] -- {E60B7350-EA5F-41E0-9D6F-E508781E36D2}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: Avidemux 2.6 - 64bits - (...) [HKLM][64Bits] -- Avidemux 2.6 - 64bits (64-bit)
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: CloudMe - (.CloudMe AB.) [HKLM][64Bits] -- CloudMeSync
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1
O42 - Logiciel: eSupport UndeletePlus 3.0.6.604 - (.Copyright © 2011 eSupport.com • All Rights Reserved.) [HKLM][64Bits] -- eSupport UndeletePlus_is1
O42 - Logiciel: FileZilla Client 3.8.0 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: GoPro Studio 2.5.4 - (.GoPro, Inc..) [HKLM][64Bits] -- GoPro Studio
O42 - Logiciel: Gpg4win (2.2.1) - (.The Gpg4win Project.) [HKLM][64Bits] -- GPG4Win
O42 - Logiciel: IVONA 2 - (.IVONA Software Sp. z o.o..) [HKLM][64Bits] -- IVONA 2
O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: LMMS 1.1.0 - (.LMMS Developers.) [HKLM][64Bits] -- LMMS
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: MediaCoder 0.8.28.5588 - (.Mediatronic.) [HKLM][64Bits] -- MediaCoder
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird 38.3.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.3.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: PFPortChecker 1.0.39 - (.Portforward.com.) [HKLM][64Bits] -- PFPortChecker
O42 - Logiciel: PuTTY version 0.63 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1
O42 - Logiciel: QuickTime Alternative 1.81 - (...) [HKLM][64Bits] -- QuicktimeAlt_is1
O42 - Logiciel: SolveigMM AVI Trimmer - (.Solveig Multimedia.) [HKLM][64Bits] -- SolveigMM AVI Trimmer 2.0.1210.11
O42 - Logiciel: Total Video2Dvd 3.30 - (.EffectMatrix, Inc..) [HKLM][64Bits] -- Total Video2Dvd 3.30_is1
O42 - Logiciel: TrueCrypt - (.TrueCrypt Foundation.) [HKLM][64Bits] -- TrueCrypt
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: WinSCP 5.5.4 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1
O42 - Logiciel: Xming 6.9.0.31 - (.Colin Harrison.) [HKLM][64Bits] -- Xming_is1
O42 - Logiciel: HD Writer 2.6E pour HDC - (.Matsushita Electric Industrial Co., Ltd..) [HKLM][64Bits] -- {0443A856-B498-4FF9-8C15-4B7057242783}
O42 - Logiciel: ATI Catalyst Control Center - (...) [HKLM][64Bits] -- {055EE59D-217B-43A7-ABFF-507B966405D8}
O42 - Logiciel: Roxio Central Data - (.Roxio.) [HKLM][64Bits] -- {08E81ABD-79F7-49C2-881F-FD6CB0975693}
O42 - Logiciel: DirectXInstallService - (.Roxio.) [HKLM][64Bits] -- {098122AB-C605-4853-B441-C0A4EB359B75}
O42 - Logiciel: Dell DataSafe Local Backup - (.Dell.) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {15BC8CD0-A65B-47D0-A2DD-90A824590FA8}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
O42 - Logiciel: Roxio Central Tools - (.Roxio.) [HKLM][64Bits] -- {1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Java(TM) 6 Update 14 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216014F0}
O42 - Logiciel: Java 7 Update 65 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF}
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM][64Bits] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}
O42 - Logiciel: SpPhones - (.Microsoft.) [HKLM][64Bits] -- {4DFF1415-4C29-44A8-BFD4-2BCE249C4991}
O42 - Logiciel: Roxio Easy CD and DVD Burning - (.Roxio.) [HKLM][64Bits] -- {537BF16E-7412-448C-95D8-846E85A1D817}
O42 - Logiciel: Sp5 - (.Microsoft.) [HKLM][64Bits] -- {560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}
O42 - Logiciel: Roxio BackOnTrack - (.Roxio.) [HKLM][64Bits] -- {5A06423A-210C-49FB-950E-CB0EB8C5CEC7}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Roxio Easy CD and DVD Burning - (.Roxio.) [HKLM][64Bits] -- {612B5D2E-8084-4102-91DE-24281E4EFB2C}
O42 - Logiciel: Hercules DJ USB Audio Drivers - (.Hercules.) [HKLM][64Bits] -- {65F11FC9-B1D7-445F-916D-A40764E1D8CE}
O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM][64Bits] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
O42 - Logiciel: PowerDVD DX - (.CyberLink Corp..) [HKLM][64Bits] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: SpCommon - (.Microsoft.) [HKLM][64Bits] -- {6C3959C6-943E-44B3-BAAD-570B04B134E5}
O42 - Logiciel: QuarkXPress - (.Quark Inc..) [HKLM][64Bits] -- {706EA4A8-97B5-4C29-A0F3-0B38C666F0C4}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Roxio Central Audio - (.Roxio.) [HKLM][64Bits] -- {73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
O42 - Logiciel: Dell Getting Started Guide - (.Dell Inc..) [HKLM][64Bits] -- {7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM][64Bits] -- {8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}
O42 - Logiciel: OpenOffice 4.0.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
O42 - Logiciel: VideoCam Suite 2.0 - (.Panasonic Corporation.) [HKLM][64Bits] -- {9EDF1A5D-D8E0-413E-9782-75DD4A8C831B}
O42 - Logiciel: Antidote RX v7 - (.Druide informatique inc..) [HKLM][64Bits] -- {A474EA56-5DBD-4181-8230-806A4762EA7F}
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {A69D7B32-2BE9-42BF-B576-69B5E0FF7394}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Dell DataSafe Local Backup - Support Software - (.Dell.) [HKLM][64Bits] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-000000000006}
O42 - Logiciel: Adobe Reader XI (11.0.13) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Winrar Activator version 1.2 - (.Rarlab.) [HKLM][64Bits] -- {AE0B3F2A-EB65-4D01-A3E1-6D879C6AAF2A}_is1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1
O42 - Logiciel: Roxio Central Copy - (.Roxio.) [HKLM][64Bits] -- {B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
O42 - Logiciel: UBitMenu FR - (.UBit Schweiz AG.) [HKLM][64Bits] -- {BBFAA659-FC2D-46cc-A8C0-BE0D03560F17}_is1
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: VirtualDJ PRO Full - (.Atomix Productions.) [HKLM][64Bits] -- {C515E2A3-4878-4C85-A519-52630C7AB08B}
O42 - Logiciel: VSO ConvertXToDVD - (.VSO Software.) [HKLM][64Bits] -- {CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1
O42 - Logiciel: Microsoft Primary Interoperability Assemblies 2005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D24DB8B9-BB6C-4334-9619-BA1C650E13D3}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: Dell Support Center (Support Software) - (.Dell.) [HKLM][64Bits] -- {E3BFEE55-39E2-4BE0-B966-89FE583822C1}
O42 - Logiciel: Sp5TTInt - (.Microsoft.) [HKLM][64Bits] -- {E415C943-37E5-473F-8BAE-043C56734124}
O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM][64Bits] -- {EC877639-07AB-495C-BFD1-D63AF9140810}
O42 - Logiciel: Roxio Central Core - (.Roxio.) [HKLM][64Bits] -- {ED439A64-F018-4DD4-8BA5-328D85AB09AB}
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Sp5Intl - (.Microsoft.) [HKLM][64Bits] -- {FD4B33E1-24AE-4535-AA7B-162B30FB57CD}
O42 - Logiciel: EMC 10 Content - (.Roxo, Inc..) [HKLM][64Bits] -- {FDB46DE7-9045-47BB-970A-3E4ED5369E03}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
O42 - Logiciel: MyHarmony - (.Logitech.) [HKCU][64Bits] -- 036a0e4fc6a247ec
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys (150) - 7s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\America Online
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\ASIO
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Avidemux 2.6 - 64bits (64-bit)
HKLM\SOFTWARE\Wow6432Node\B.H.A
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CloudMe
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Debug
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\FLEXlm License Manager
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GoPro
HKLM\SOFTWARE\Wow6432Node\Hercules
HKLM\SOFTWARE\Wow6432Node\illiminable
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\iTinySoft
HKLM\SOFTWARE\Wow6432Node\IVONA
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Lame For Audacity
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LMMS Developers
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision
HKLM\SOFTWARE\Wow6432Node\Martin Prikryl
HKLM\SOFTWARE\Wow6432Node\Matsushita Electric Industrial Co., Ltd.
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\McAfeeInstaller
HKLM\SOFTWARE\Wow6432Node\MediaCoder
HKLM\SOFTWARE\Wow6432Node\MicroQuill
HKLM\SOFTWARE\Wow6432Node\MicroVision
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NEC
HKLM\SOFTWARE\Wow6432Node\Novell
HKLM\SOFTWARE\Wow6432Node\Nullsoft
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OldTimer Tools
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\Panasonic
HKLM\SOFTWARE\Wow6432Node\PC-Doctor
HKLM\SOFTWARE\Wow6432Node\QTAlternative
HKLM\SOFTWARE\Wow6432Node\Quark
HKLM\SOFTWARE\Wow6432Node\Roxio
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\SoftThinks
HKLM\SOFTWARE\Wow6432Node\SoftVTU
HKLM\SOFTWARE\Wow6432Node\Solveig Multimedia
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SupportSoft
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\VSO
HKLM\SOFTWARE\Wow6432Node\Western Digital
HKLM\SOFTWARE\Wow6432Node\WIBU-SYSTEMS
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AoAAudioExtractor
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Badguys
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Bureau van Dijk
HKCU\SOFTWARE\CDDB
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CineForm
HKCU\SOFTWARE\CloudMe
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\Cyberlink
HKCU\SOFTWARE\Dell
HKCU\SOFTWARE\Digital Photo Software
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\Druide informatique inc.
HKCU\SOFTWARE\DVD Shrink
HKCU\SOFTWARE\DVDShrink
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\FLEXlm License Manager
HKCU\SOFTWARE\FreeVideoConverter.biz
HKCU\SOFTWARE\GetData
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GoPro
HKCU\SOFTWARE\Guillemot Corporation
HKCU\SOFTWARE\Hercules Technologies
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MainConcept (Adobe2)
HKCU\SOFTWARE\MainConcept (Mei)
HKCU\SOFTWARE\MakeMKV
HKCU\SOFTWARE\Martin Prikryl
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\MicroVision
HKCU\SOFTWARE\Mindscape
HKCU\SOFTWARE\Modern UI IvonaSAPI
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\NEC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\PACE Anti-Piracy
HKCU\SOFTWARE\Panasonic
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Quark
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Roxio
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\SDL
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Solveig Multimedia
HKCU\SOFTWARE\Sonic
HKCU\SOFTWARE\SourceForge
HKCU\SOFTWARE\SWiSHzone.com
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Trados
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\VirtualDub.org
HKCU\SOFTWARE\VSO
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zyrax Software
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (279) - 8s
O43 - CFD: 2015/11/14 15:29:01 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2010/03/23 06:23:23 - [] D -- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 2013/12/03 14:59:53 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 2015/03/15 02:00:55 - [] D -- C:\Program Files (x86)\CineForm
O43 - CFD: 2010/03/23 06:25:24 - [] D -- C:\Program Files (x86)\Citrix
O43 - CFD: 2015/02/19 12:01:23 - [] D -- C:\Program Files (x86)\CloudMe
O43 - CFD: 2013/11/29 20:27:43 - [] D -- C:\Program Files (x86)\CodeMeter
O43 - CFD: 2015/06/11 12:38:07 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2010/03/23 06:29:05 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2013/12/01 15:30:42 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2010/03/23 06:41:38 - [] D -- C:\Program Files (x86)\Dell
O43 - CFD: 2015/11/14 13:07:33 - [] D -- C:\Program Files (x86)\Dell DataSafe Local Backup
O43 - CFD: 2010/03/23 06:28:46 - [] D -- C:\Program Files (x86)\Dell Support Center
O43 - CFD: 2013/11/30 15:05:27 - [] D -- C:\Program Files (x86)\Druide
O43 - CFD: 2014/05/02 13:30:16 - [] D -- C:\Program Files (x86)\DVD Shrink
O43 - CFD: 2014/04/12 23:52:26 - [] D -- C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 2013/12/01 14:03:56 - [] D -- C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport
O43 - CFD: 2014/05/02 13:38:33 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 2014/04/12 23:39:05 - [] D -- C:\Program Files (x86)\FreeVideoConverter.biz
O43 - CFD: 2014/02/17 12:55:02 - [] D -- C:\Program Files (x86)\GNU
O43 - CFD: 2014/04/21 23:44:34 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/03/15 02:00:54 - [] D -- C:\Program Files (x86)\GoPro
O43 - CFD: 2015/01/17 16:11:46 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2010/03/23 06:21:24 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2010/03/23 09:07:30 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/04/21 08:12:46 - [] D -- C:\Program Files (x86)\IVONA
O43 - CFD: 2014/09/21 13:37:05 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2013/12/07 16:01:57 - [] D -- C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 2013/12/01 15:37:34 - [] D -- C:\Program Files (x86)\MagicISO
O43 - CFD: 2015/11/14 03:15:49 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/03/03 17:20:15 - [] D -- C:\Program Files (x86)\Media Player Classic
O43 - CFD: 2014/03/18 15:15:13 - [] D -- C:\Program Files (x86)\MediaCoder
O43 - CFD: 2010/03/23 06:32:04 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2015/06/11 12:35:04 - [] D -- C:\Program Files (x86)\Microsoft Access Runtime
O43 - CFD: 2014/01/10 02:30:25 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2010/03/23 06:33:11 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2010/03/23 06:33:58 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 2014/01/10 02:30:21 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2014/01/10 02:28:30 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2010/03/23 06:24:59 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2014/01/10 02:30:05 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/11/06 19:27:07 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/11/06 19:27:07 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/10/02 08:21:21 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2014/11/25 16:28:28 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2014/09/21 13:37:28 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2014/11/21 15:56:56 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 2013/11/29 18:19:25 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 2014/02/10 20:14:17 - [] D -- C:\Program Files (x86)\Panasonic
O43 - CFD: 2013/12/28 17:47:10 - [] D -- C:\Program Files (x86)\PFPortChecker
O43 - CFD: 2015/01/17 17:19:49 - [] D -- C:\Program Files (x86)\PuTTY
O43 - CFD: 2013/12/01 13:53:08 - [] D -- C:\Program Files (x86)\Quark
O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\Program Files (x86)\QuickTime Alternative
O43 - CFD: 2009/07/14 00:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2010/03/23 06:37:03 - [] D -- C:\Program Files (x86)\Roxio
O43 - CFD: 2014/11/25 16:33:59 - [] D -- C:\Program Files (x86)\SDL
O43 - CFD: 2014/03/17 19:57:22 - [] D -- C:\Program Files (x86)\Solveig Multimedia
O43 - CFD: 2015/11/13 12:03:11 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 2013/12/24 16:13:00 - [] D -- C:\Program Files (x86)\Total Video2Dvd
O43 - CFD: 2009/07/13 23:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2013/11/29 18:58:49 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/01/17 16:14:26 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2014/12/19 17:34:58 - [] D -- C:\Program Files (x86)\VSO
O43 - CFD: 2013/11/29 19:04:01 - [] D -- C:\Program Files (x86)\Winamp
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2010/03/23 06:34:11 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2010/03/23 06:31:47 - [] D -- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2010/03/23 09:07:30 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 00:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2009/07/14 00:32:40 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/12/01 13:13:15 - [] D -- C:\Program Files (x86)\Winrar
O43 - CFD: 2015/01/17 17:44:35 - [] D -- C:\Program Files (x86)\WinSCP
O43 - CFD: 2015/01/17 17:19:33 - [] D -- C:\Program Files (x86)\Xming
O43 - CFD: 2010/03/23 08:16:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/13 23:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/11/30 15:04:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 2015/03/13 13:09:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64bits)
O43 - CFD: 2010/03/23 06:23:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
O43 - CFD: 2015/01/02 16:49:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/03/13 20:11:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CloudMe
O43 - CFD: 2013/12/01 15:30:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2010/03/23 06:41:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 2010/03/23 06:27:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
O43 - CFD: 2010/03/23 06:28:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
O43 - CFD: 2014/05/02 13:30:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
O43 - CFD: 2014/04/12 23:52:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 2013/12/01 14:03:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com =>PUP.Optional.eSupport
O43 - CFD: 2014/05/02 13:38:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2010/03/23 08:16:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/03/15 02:01:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
O43 - CFD: 2014/02/17 12:55:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gpg4win
O43 - CFD: 2015/01/17 13:42:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 2015/01/17 16:11:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hercules
O43 - CFD: 2010/03/23 06:21:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
O43 - CFD: 2015/04/22 22:39:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVONA
O43 - CFD: 2013/11/29 18:45:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2013/11/29 18:16:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Le Grand Robert & Collins
O43 - CFD: 2013/11/29 18:37:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Le Petit Robert 2010
O43 - CFD: 2015/01/17 15:59:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LMMS 1.1.0
O43 - CFD: 2009/07/13 23:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/11/14 03:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2014/01/10 03:21:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2010/03/23 06:25:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2013/11/29 18:19:36 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.0.1
O43 - CFD: 2014/02/10 20:14:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic
O43 - CFD: 2015/01/17 17:19:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY
O43 - CFD: 2013/12/01 13:53:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuarkXPress 8
O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime Alternative
O43 - CFD: 2014/02/10 20:10:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 2010/03/23 06:37:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Easy CD & DVD Burning
O43 - CFD: 2014/03/17 19:57:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solveig Multimedia
O43 - CFD: 2013/11/29 18:04:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
O43 - CFD: 2015/05/10 10:21:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/07/14 02:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2013/12/24 16:11:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video2Dvd
O43 - CFD: 2013/12/01 13:58:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt
O43 - CFD: 2013/11/29 18:58:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2014/12/19 17:35:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
O43 - CFD: 2013/11/29 19:47:26 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare
O43 - CFD: 2013/11/29 19:03:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
O43 - CFD: 2010/03/23 06:34:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2013/12/01 13:12:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/01/17 17:19:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xming
O43 - CFD: 2015/11/14 15:31:15 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2013/11/29 15:27:13 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2013/11/29 15:12:14 - [] HD -- C:\ProgramData\CanonBJ
O43 - CFD: 2014/12/19 19:01:28 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2013/12/01 15:32:11 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2010/03/23 06:37:18 - [] D -- C:\ProgramData\Dell
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/01/17 15:47:06 - [] D -- C:\ProgramData\DVD Shrink
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/09/21 13:39:10 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2014/02/17 12:55:04 - [] D -- C:\ProgramData\GNU
O43 - CFD: 2014/03/03 17:09:49 - [] D -- C:\ProgramData\InstallShield
O43 - CFD: 2013/11/29 18:37:44 - [] D -- C:\ProgramData\Le Robert
O43 - CFD: 2013/11/29 19:23:59 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 2015/11/14 03:15:47 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2013/11/29 18:45:19 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/11/14 15:49:24 - [] D -- C:\ProgramData\Microsoft
O43 - CFD: 2014/01/10 03:21:40 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2013/11/29 17:30:26 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2014/07/21 09:33:59 - [0] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/11/21 16:27:03 - [] D -- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 2015/03/15 01:21:49 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2014/02/10 20:43:55 - [] D -- C:\ProgramData\Panasonic
O43 - CFD: 2014/09/21 13:36:44 - [] D -- C:\ProgramData\Passolo 2009
O43 - CFD: 2010/03/23 06:28:51 - [0] D -- C:\ProgramData\PCDr
O43 - CFD: 2013/12/01 13:53:08 - [] D -- C:\ProgramData\Quark
O43 - CFD: 2014/12/08 17:25:37 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2014/05/18 00:46:57 - [] D -- C:\ProgramData\Roxio
O43 - CFD: 2014/11/25 16:29:24 - [] D -- C:\ProgramData\SDL
O43 - CFD: 2013/11/29 15:16:58 - [] D -- C:\ProgramData\Sonic
O43 - CFD: 2013/12/04 01:37:29 - [] D -- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/11/29 18:45:45 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2010/03/23 06:28:53 - [] D -- C:\ProgramData\SupportSoft
O43 - CFD: 2014/04/12 23:19:51 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2010/03/23 06:37:12 - [] D -- C:\ProgramData\Uninstall
O43 - CFD: 2015/01/02 22:32:55 - [] D -- C:\ProgramData\VSO
O43 - CFD: 2014/12/19 18:15:33 - [] D -- C:\ProgramData\vsosdk
O43 - CFD: 2014/10/09 01:08:35 - [] D -- C:\ProgramData\Western Digital
O43 - CFD: 2014/09/12 20:18:23 - [] D -- C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 2015/11/14 15:31:20 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/12/02 02:24:49 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2014/01/10 02:30:21 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2013/11/29 19:26:40 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/07/21 09:33:54 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/12/01 15:34:56 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 2015/06/11 12:35:07 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2014/12/02 02:26:53 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2010/03/23 06:36:11 - [] D -- C:\Program Files (x86)\Common Files\Roxio Shared
O43 - CFD: 2009/07/13 22:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/03/17 19:57:23 - [] D -- C:\Program Files (x86)\Common Files\Solveig Multimedia
O43 - CFD: 2010/03/23 06:37:00 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 2009/07/13 22:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2010/03/23 06:28:42 - [] D -- C:\Program Files (x86)\Common Files\supportsoft
O43 - CFD: 2010/03/23 06:35:52 - [] D -- C:\Program Files (x86)\Common Files\SureThing Shared
O43 - CFD: 2014/01/10 02:28:17 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2010/03/23 06:29:28 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2013/12/24 16:21:07 - [] D -- C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 2015/04/16 02:22:31 - [] D -- C:\Users\Pat\AppData\Roaming\Adobe
O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\Users\Pat\AppData\Roaming\ATI
O43 - CFD: 2015/04/15 19:31:18 - [] D -- C:\Users\Pat\AppData\Roaming\Audacity
O43 - CFD: 2013/11/29 17:33:59 - [] D -- C:\Users\Pat\AppData\Roaming\AVAST Software
O43 - CFD: 2015/10/20 15:21:20 - [] D -- C:\Users\Pat\AppData\Roaming\avidemux
O43 - CFD: 2014/01/25 18:25:28 - [] D -- C:\Users\Pat\AppData\Roaming\BitTorrent
O43 - CFD: 2014/03/03 17:02:55 - [] D -- C:\Users\Pat\AppData\Roaming\convertaudiofree
O43 - CFD: 2014/06/18 17:42:42 - [] D -- C:\Users\Pat\AppData\Roaming\CyberLink
O43 - CFD: 2014/11/21 15:41:54 - [] D -- C:\Users\Pat\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2013/11/29 15:18:04 - [] D -- C:\Users\Pat\AppData\Roaming\Dell
O43 - CFD: 2013/11/30 15:07:46 - [] D -- C:\Users\Pat\AppData\Roaming\Druide
O43 - CFD: 2015/01/17 13:42:46 - [] D -- C:\Users\Pat\AppData\Roaming\dvdcss
O43 - CFD: 2014/04/12 23:52:23 - [] D -- C:\Users\Pat\AppData\Roaming\DVDVideoSoft
O43 - CFD: 2015/06/04 11:07:19 - [] D -- C:\Users\Pat\AppData\Roaming\FileZilla
O43 - CFD: 2015/10/16 18:30:42 - [] D -- C:\Users\Pat\AppData\Roaming\gnupg
O43 - CFD: 2015/03/18 20:16:40 - [] D -- C:\Users\Pat\AppData\Roaming\GoPro
O43 - CFD: 2013/12/24 12:47:39 - [] D -- C:\Users\Pat\AppData\Roaming\InstallShield
O43 - CFD: 2015/04/21 08:24:35 - [] D -- C:\Users\Pat\AppData\Roaming\IVONA 2 Voice
O43 - CFD: 2015/03/12 20:11:01 - [0] D -- C:\Users\Pat\AppData\Roaming\Logitech
O43 - CFD: 2013/11/29 19:04:23 - [] D -- C:\Users\Pat\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 02:44:38 - [0] D -- C:\Users\Pat\AppData\Roaming\Media Center Programs
O43 - CFD: 2014/03/18 15:15:07 - [] D -- C:\Users\Pat\AppData\Roaming\Mediatronic
O43 - CFD: 2015/08/28 14:54:55 - [] SD -- C:\Users\Pat\AppData\Roaming\Microsoft
O43 - CFD: 2013/11/29 17:30:39 - [] D -- C:\Users\Pat\AppData\Roaming\Mozilla
O43 - CFD: 2014/03/03 17:20:58 - [] D -- C:\Users\Pat\AppData\Roaming\MPEG Streamclip
O43 - CFD: 2013/11/29 18:20:30 - [] D -- C:\Users\Pat\AppData\Roaming\OpenOffice
O43 - CFD: 2014/11/21 16:27:03 - [] D -- C:\Users\Pat\AppData\Roaming\PACE Anti-Piracy
O43 - CFD: 2014/02/10 20:44:28 - [] D -- C:\Users\Pat\AppData\Roaming\Panasonic
O43 - CFD: 2014/09/21 13:36:44 - [0] D -- C:\Users\Pat\AppData\Roaming\Passolo 2009
O43 - CFD: 2015/11/10 21:08:52 - [] HD -- C:\Users\Pat\AppData\Roaming\PrSxITcg
O43 - CFD: 2013/12/01 13:55:30 - [] D -- C:\Users\Pat\AppData\Roaming\Quark
O43 - CFD: 2014/02/18 23:50:24 - [] D -- C:\Users\Pat\AppData\Roaming\Roxio
O43 - CFD: 2014/09/21 13:48:59 - [] D -- C:\Users\Pat\AppData\Roaming\SDL
O43 - CFD: 2015/10/09 17:52:04 - [] D -- C:\Users\Pat\AppData\Roaming\SolidDocuments
O43 - CFD: 2014/11/21 16:37:46 - [] D -- C:\Users\Pat\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2013/11/29 17:48:56 - [] D -- C:\Users\Pat\AppData\Roaming\Thunderbird
O43 - CFD: 2013/12/01 14:00:25 - [] D -- C:\Users\Pat\AppData\Roaming\TrueCrypt
O43 - CFD: 2014/01/12 10:56:43 - [] D -- C:\Users\Pat\AppData\Roaming\UBitMenu
O43 - CFD: 2015/11/14 14:34:10 - [] D -- C:\Users\Pat\AppData\Roaming\uTorrent
O43 - CFD: 2015/11/13 18:39:27 - [] D -- C:\Users\Pat\AppData\Roaming\vlc
O43 - CFD: 2015/01/02 22:32:55 - [0] D -- C:\Users\Pat\AppData\Roaming\Vso
O43 - CFD: 2014/12/01 18:11:37 - [] D -- C:\Users\Pat\AppData\Roaming\Winamp
O43 - CFD: 2013/12/01 13:13:56 - [] D -- C:\Users\Pat\AppData\Roaming\WinRAR
O43 - CFD: 2015/11/14 15:51:29 - [] D -- C:\Users\Pat\AppData\Roaming\ZHP
O43 - CFD: 2015/07/10 12:13:16 - [] D -- C:\Users\Pat\AppData\Local\Adobe
O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\Application Data
O43 - CFD: 2015/03/12 20:09:26 - [] D -- C:\Users\Pat\AppData\Local\Apps
O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\Users\Pat\AppData\Local\ATI
O43 - CFD: 2015/02/19 12:01:33 - [] D -- C:\Users\Pat\AppData\Local\CloudMe
O43 - CFD: 2015/03/13 00:57:55 - [0] D -- C:\Users\Pat\AppData\Local\Deployment
O43 - CFD: 2014/12/15 16:06:01 - [] D -- C:\Users\Pat\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2014/11/21 16:36:31 - [] D -- C:\Users\Pat\AppData\Local\Flash Builder
O43 - CFD: 2014/03/03 17:05:03 - [] D -- C:\Users\Pat\AppData\Local\fontconfig
O43 - CFD: 2014/04/21 23:44:36 - [] D -- C:\Users\Pat\AppData\Local\Google
O43 - CFD: 2015/03/18 20:16:21 - [] D -- C:\Users\Pat\AppData\Local\GoPro
O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\History
O43 - CFD: 2014/12/02 12:49:31 - [0] AHD -- C:\Users\Pat\AppData\Local\JD4CVYGi2gADj9
O43 - CFD: 2014/03/31 20:13:09 - [] D -- C:\Users\Pat\AppData\Local\LogMeIn Rescue Applet
O43 - CFD: 2013/11/29 19:04:23 - [] D -- C:\Users\Pat\AppData\Local\Macromedia
O43 - CFD: 2014/03/03 17:07:22 - [] D -- C:\Users\Pat\AppData\Local\MajorSilence
O43 - CFD: 2015/08/28 14:54:55 - [] D -- C:\Users\Pat\AppData\Local\Microsoft
O43 - CFD: 2014/04/03 18:18:57 - [] D -- C:\Users\Pat\AppData\Local\Microsoft Help
O43 - CFD: 2014/05/18 01:00:06 - [] D -- C:\Users\Pat\AppData\Local\MicroVision Applications
O43 - CFD: 2013/12/20 01:07:15 - [] D -- C:\Users\Pat\AppData\Local\Mozilla
O43 - CFD: 2014/11/21 16:27:03 - [] HD -- C:\Users\Pat\AppData\Local\OYW2g7XA0
O43 - CFD: 2014/11/21 16:27:03 - [0] D -- C:\Users\Pat\AppData\Local\PACE Anti-Piracy
O43 - CFD: 2014/05/05 18:26:04 - [] D -- C:\Users\Pat\AppData\Local\Popcorn-Time
O43 - CFD: 2014/06/19 09:42:20 - [] D -- C:\Users\Pat\AppData\Local\PowerDVD DX
O43 - CFD: 2013/11/29 18:04:04 - [] D -- C:\Users\Pat\AppData\Local\Programs
O43 - CFD: 2013/12/01 13:55:30 - [] D -- C:\Users\Pat\AppData\Local\Quark
O43 - CFD: 2014/09/21 13:41:04 - [] D -- C:\Users\Pat\AppData\Local\SDL
O43 - CFD: 2014/03/03 17:04:10 - [] D -- C:\Users\Pat\AppData\Local\SkinSoft
O43 - CFD: 2015/11/14 13:07:33 - [] D -- C:\Users\Pat\AppData\Local\SoftThinks
O43 - CFD: 2013/11/29 15:18:01 - [] D -- C:\Users\Pat\AppData\Local\Stardock_Corporation
O43 - CFD: 2015/11/14 15:50:58 - [] D -- C:\Users\Pat\AppData\Local\Temp
O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/04/30 23:48:33 - [] D -- C:\Users\Pat\AppData\Local\Thunderbird
O43 - CFD: 2014/03/03 17:20:39 - [] D -- C:\Users\Pat\AppData\Local\VirtualStore
O43 - CFD: 2013/11/29 19:42:25 - [] D -- C:\Users\Pat\AppData\Local\Western Digital
O43 - CFD: 2013/12/24 16:21:07 - [] D -- C:\Users\Pat\AppData\Local\Wondershare
O43 - CFD: 2009/07/13 23:54:32 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2013/11/29 15:17:47 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/11/30 15:04:52 - [0] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 2015/03/12 20:10:38 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 2009/07/13 23:49:38 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/03/18 15:15:11 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder
O43 - CFD: 2013/12/28 17:47:10 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portforward.com
O43 - CFD: 2013/11/29 15:18:01 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/01/17 16:13:40 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
O43 - CFD: 2013/12/01 13:12:16 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ ShareTools MSconfig StartupReg (9) - 1s
O53 - SMSR:HKLM\...\startupreg\BitTorrent [Key] . (...) -- C:\Users\Pat\AppData\Roaming\BitTorrent\BitTorrent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CloudMe Sync [Key] . (...) -- C:\Program Files (x86)\CloudMe\CloudMe\CloudMe.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O53 - SMSR:HKLM\...\startupreg\Gestionnaire Antidote.exe [Key] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O53 - SMSR:HKLM\...\startupreg\GRC V2 Hyperappel [Key] . (.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe
O53 - SMSR:HKLM\...\startupreg\GrooveMonitor [Key] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
O53 - SMSR:HKLM\...\startupreg\Hercules DJ Series 2 [Key] . (.Hercules® - DJ Series2 Control Panel.) -- C:\Program Files\Hercules\Audio\DJ USB Audio\HDJSeries2CPL.exe
O53 - SMSR:HKLM\...\startupreg\Le Petit Robert V3 Hyperappel [Key] . (.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\Program Files\Le Robert\Le Petit Robert 2010\RobertHA.exe
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
---\\ System Drivers List (71) - 1s
O58 - SDL:2008/06/27 07:51:10 A . (.Adobe Systems, Inc. - Adobe Drive File System Driver.) -- C:\Windows\System32\drivers\adfs.sys [88632]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/13 20:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2009/07/13 20:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576]
O58 - SDL:2009/07/13 20:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2009/07/13 20:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224]
O58 - SDL:2015/11/06 20:20:06 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [1059656]
O58 - SDL:2015/11/06 20:20:06 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys [449992]
O58 - SDL:2015/09/13 20:26:32 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672]
O58 - SDL:2015/09/13 20:26:32 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808]
O58 - SDL:2009/10/01 01:34:00 A . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtiHdmi.sys [121872]
O58 - SDL:2009/12/10 19:40:28 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [6179328]
O58 - SDL:2009/06/10 15:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/13 20:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 15:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/05/15 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224]
O58 - SDL:2009/05/15 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224]
O58 - SDL:2006/08/25 14:36:52 A . (.B.H.A Corporation - CD-ROM Filter Driver for Windows2000/xp.) -- C:\Windows\System32\drivers\cdrbsdrv.sys [39208]
O58 - SDL:2009/07/13 20:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2013/12/01 15:30:42 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283064]
O58 - SDL:2009/07/13 20:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 15:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 15:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2012/08/07 14:07:18 A . (.Hercules - HDJusbaudio Kernel Streaming Driver.) -- C:\Windows\System32\drivers\HDJusbaudioks_x64.sys [94064]
O58 - SDL:2012/08/07 14:07:16 A . (.Hercules - HDJusbaudio Class Driver.) -- C:\Windows\System32\drivers\HDJusbaudio_x64.sys [354672]
O58 - SDL:2009/07/13 20:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888]
O58 - SDL:2009/06/04 21:54:36 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [408600]
O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688]
O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2009/07/24 21:58:56 A . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\System32\drivers\jraid.sys [100776]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816]
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272]
O58 - SDL:2015/11/14 15:35:11 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704]
O58 - SDL:2009/07/13 20:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2015/09/13 20:26:24 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [115152]
O58 - SDL:2009/07/13 20:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056]
O58 - SDL:2009/07/13 20:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488]
O58 - SDL:2011/11/03 03:01:00 N . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [56208]
O58 - SDL:2009/07/13 20:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/13 20:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/05/23 01:52:30 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [215040]
O58 - SDL:2009/10/02 22:10:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2007968]
O58 - SDL:2009/06/04 19:46:50 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUStor.sys [216064]
O58 - SDL:2009/06/10 15:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/13 20:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/13 20:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2009/07/13 20:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2013/12/01 13:58:48 A . (.TrueCrypt Foundation - TrueCrypt Driver.) -- C:\Windows\System32\drivers\truecrypt.sys [231376]
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
O58 - SDL:2009/02/13 12:02:52 A . (.Western Digital Technologies - WD SCSI Architecture Model (SAM) driver.) -- C:\Windows\System32\drivers\wdcsam64.sys [14464]
---\\ Last modified or created user files (11) - 7s
O61 - LFC: 2015/11/14 14:41:59 A . (.OldTimer Tools.) -- C:\Users\Pat\Downloads\OTL.exe [602112]
O61 - LFC: 2015/11/13 12:05:04 A . (.Safer-Networking Ltd..) -- C:\Users\Pat\Downloads\spybot-2.4.exe [46525608]
O61 - LFC: 2015/11/10 21:08:52 A . (..) -- C:\Users\Pat\AppData\Roaming\PrSxITcg\lMIVfkul\nfWGhjxJ\vquMpDSws.exe [262144]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avcodec-55.dll [10146890]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avfilter-3.dll [1158947]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avformat-55.dll [2134348]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avutil-52.dll [542107]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\ffmpeg.exe [428889]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\swresample-0.dll [159175]
O61 - LFC: 2015/11/14 13:08:01 A . (..) -- C:\Users\Pat\AppData\Local\ATI\ACE\Manifest.Bin [26869]
O61 - LFC: 2015/11/12 13:40:41 A . (..) -- C:\Users\Pat\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [204153]
---\\ File Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\WINDOWS\System32\eventvwr.exe
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
---\\ Start Menu Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\System32\ie4uinit.exe
---\\ Search Browser Infection (1) - 3s
O69 - SBI: SearchScopes [HKCU] [DefaultScope] - (Conduit Search) - http://search.conduit.com/ =>PUP.Optional.Conduit
---\\ Crack & Keygen Files (5) - 19s
O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\adobe_oobelib.dll [2286216] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\amtlib.Crack.CS6\64-bit\amtlib.dll [2249352] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\amtlib.Crack.CS6\32-bit\amtlib.dll [1793672] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:53:50 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Adobe Premiere Pro CS6 6.0.0 LS7 Multilanguage [ChingLiu]\Cracked dll\64-bit\amtlib.dll [2249352] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:46:18 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Adobe Premiere Pro CS6 6.0.0 LS7 Multilanguage [ChingLiu]\Cracked dll\32-bit\amtlib.dll [1793672] =>.Crack,Keygen
---\\ Search Svchost Services (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [235520]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\WINDOWS\System32\tapisrv.dll [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2418176]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\System32\shsvcs.dll [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\WINDOWS\System32\SessEnv.dll [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1104384]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: SearchIndexer (SearchIndexer) . (...) -- C:\Windows\system32\SearchIndexer.dll [0]
---\\ Firewall Active Exception List (30) - 2s
O87 - FAEL: "TCP Query User{8215BF17-F44F-497E-81B9-767F551B358A}C:\program files\le robert\le petit robert 2010\robertha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\program files\le robert\le petit robert 2010\robertha.exe
O87 - FAEL: "UDP Query User{F81986D5-19A0-4BED-B65D-C3AAF95D4B8B}C:\program files\le robert\le petit robert 2010\robertha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\program files\le robert\le petit robert 2010\robertha.exe
O87 - FAEL: "TCP Query User{E24A8454-C6DA-43F7-8CFA-632257FE2982}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "UDP Query User{8E38A8F0-B0DE-4E63-9C52-8A299661164B}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "{E843BC3F-6ACD-4C80-BE8A-1A344C8F6E0B}" [In-None-P6-FALSE] .(.Nullsoft, Inc. - Winamp.) -- C:\Program Files (x86)\Winamp\winamp.exe
O87 - FAEL: "{271EEB67-F175-44BD-BEF8-A7DCE0CBCFB1}" [In-None-P17-FALSE] .(.Nullsoft, Inc. - Winamp.) -- C:\Program Files (x86)\Winamp\winamp.exe
O87 - FAEL: "{38DAB961-D2ED-4532-AF77-5E910DBAF65B}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{02E99AFA-965F-40BB-82B2-76761FBD68D3}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{DA224E4E-FBD4-4D67-91CD-BB784E418D36}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{F0171658-DB73-4A5A-B5B2-710BEC02B2E9}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "TCP Query User{248463A8-D0A4-4A60-A72A-BBFEF1A63558}C:\program files (x86)\pfportchecker\pfportchecker.exe" [In-None-P6-TRUE] .(.portforward.com - PFPortchecker by portforward.com helps chec.) -- C:\program files (x86)\pfportchecker\pfportchecker.exe
O87 - FAEL: "UDP Query User{8B2E2DD0-72A4-4D0D-BAAE-B7346B859BA4}C:\program files (x86)\pfportchecker\pfportchecker.exe" [In-None-P17-TRUE] .(.portforward.com - PFPortchecker by portforward.com helps chec.) -- C:\program files (x86)\pfportchecker\pfportchecker.exe
O87 - FAEL: "TCP Query User{FF4DBBB2-65CF-4AA5-8E88-82D4464DA8D4}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "UDP Query User{6619E41C-3B83-45DF-ADF5-C87D1545B903}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "{E3FB347E-A4C6-4643-B2F6-3E923C681177}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{419D6B75-88BD-406A-B6C9-BDD9F421E31A}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{35EDECF1-49AC-413D-A874-30B042C59FD3}C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" [In-None-P6-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "UDP Query User{4F674B9F-410F-441F-BACA-FC1212A1B0D0}C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" [In-None-P17-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "{51A7F211-CA7E-484C-9A40-8BAABF095C9F}" [In-None-P17-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "{73C264B6-9F62-4673-A89E-874B7666C6A4}" [In-None-P6-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "{C3A68598-0545-4878-B33C-6457737645E1}" [In-None-P6-TRUE] .(.DVDVideoSoft Ltd. - Free Torrent Download.) -- C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
O87 - FAEL: "{69B1BA58-030F-438E-86D3-59F49385CC06}" [Out-None-P6-TRUE] .(.DVDVideoSoft Ltd. - Free Torrent Download.) -- C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
O87 - FAEL: "{3BE822CB-993A-4B90-BEFB-5C849546B40A}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{99905424-D6B0-43F4-9D81-8E2FB1D99E01}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{25529F25-DFBD-4E4B-BB2A-D72578687E86}C:\program files\le robert\le petit robert 2010\prnet.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert 2010.) -- C:\program files\le robert\le petit robert 2010\prnet.exe
O87 - FAEL: "UDP Query User{AC6C0778-A8E9-4147-B6FB-4FA4CBC0DB67}C:\program files\le robert\le petit robert 2010\prnet.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert 2010.) -- C:\program files\le robert\le petit robert 2010\prnet.exe
O87 - FAEL: "{F02D106A-A76B-4E94-92BF-DCFABB03D877}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe (.not file.)
O87 - FAEL: "{016DB43F-B1E9-4741-B16E-0668FB112E29}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe (.not file.)
O87 - FAEL: "TCP Query User{17B58C5C-349A-4D60-8A49-26823CF77198}C:\program files (x86)\xming\xming.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
O87 - FAEL: "UDP Query User{47F251E6-04DC-45F0-8D34-531C77A87076}C:\program files (x86)\xming\xming.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
---\\ Services not Microsoft (SR=Run, SS=Stop) (13) - 11s
SR - Auto [2012/12/03 14:49:32] [ 2571704] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
SR - Auto [2013/10/07 09:54:10] [ 218112] DirMngr (DirMngr) . (...) - C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
SR - Auto [2009/06/09 10:11:14] [ 155648] Dock Login Service (DockLoginService) . (.Stardock Corporation.) - C:\Program Files\Dell\DellDock\DockLogin.exe
SS - Demand [2013/12/01 15:34:56] [ 655624] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - Demand [2013/12/01 15:35:55] [ 1038088] FLEXnet Licensing Service 64 (FLEXnet Licensing Service 64) . (.Acresso Software Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
SS - Auto [2015/08/28 02:32:36] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/08/28 02:32:36] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - Auto [2013/10/15 12:27:38] [ 3921880] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - Auto [2013/09/20 10:57:26] [ 1042272] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - Auto [2013/09/13 10:38:30] [ 171416] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - Auto [2011/08/18 11:05:46] [ 1692480] SoftThinks Agent Service (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
SS - Demand [2009/05/21 08:59:08] [ 206064] SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc..) - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
SS - Demand [2009/04/30 12:59:38] [ 74392] stllssvr (stllssvr) . (.MicroVision Development, Inc..) - c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
---\\ Additional Scan (O88) (4) - 0s
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com =>PUP.Optional.eSupport
---\\ Summary of the elements found (3) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.eSupport
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
~ End of the scan, 32392 items in 84 seconds (1008)(5)()
~ Run by Pat (Administrator) (2015/11/14 15:51:19)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Pat\Desktop\ZHPDiag.txt
~ Report: C:\Users\Pat\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit (Build 7600)
---\\ Internet Browsers (2) - 0s
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
MSIE: Internet Explorer v8.0.7600.16385
---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)
Windows Activation Technologies : OK
---\\ System protection software (3) - 2s
Avast Free Antivirus v10.3.2225
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender W7 (Deactivate)
---\\ System protection software (Superfluous) (1) - 2s
Spybot - Search & Destroy v2.2.25
---\\ System optimization software (1) - 2s
CCleaner v5.05
---\\ Surveillance software (2) - 2s
Adobe Flash Player 19 NPAPI
Adobe Reader XI
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 26 Stepping 5, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 9427.956 MB (64% free)
~ System Restore: Activé (Enable)
~ System drive C: has 243 GB free of 943 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: PAT-PC
~ User Name: Pat
~ Logged in as Administrator
---\\ Enumeration of the disk units (3) - 0s
~ Drive C: has 243 GB free of 943 GB (System)
~ Drive G: has 244 GB free of 1157 GB
~ Drive J: has 2 GB free of 3 GB
---\\ State of the Windows Security Center (10) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Search Generic System Files (22) - 0s
[MD5.6D4F9E4B640B413C6F73414327484C80] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2868736]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.B1037F0131C9A010D611F6914E03CD92] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [1193472]
[MD5.132328DF455B0028F13BF0ABEE51A63A] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [389120]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.B9384E03479D2506BC924C16A3DB87BC] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [500224]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.3F1DC527070ACB87E40AFE46EF6DA749] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.CFDCD8CA87C2A657DEBC150AC35B5E08] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [157184]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [259072]
[MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1659984]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [99840]
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [294992]
---\\ Process running (42) - 2s
[MD5.41A0813F22D3330C0CA71CE5BBD42B12] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [202752] [PID.392]
[MD5.0840ABBBDF438691EE65A20040635CBE] - (.Stardock Corporation - Dock Login Service.) -- C:\Program Files\Dell\DellDock\DockLogin.exe [155648] [PID.1140]
[MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1260]
[MD5.C68960B91F93850AECC34D93EB2B2B56] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [448000] [PID.1384]
[MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1624]
[MD5.ACC9C8C560C567FAD6F79C977AB2EA09] - (.B.H.A Corporation - B's Recorder GOLD Service Library.) -- C:\WINDOWS\SysWOW64\bgsvcgen.exe [145504] [PID.1652]
[MD5.05F99DFF3A8D705F9AA6B87224F7BEB1] - (...) -- C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [218112] [PID.1692]
[MD5.AB176B9E59C0435499D83047D84EDD59] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784] [PID.1796]
[MD5.40C126CB15FAB7D6C66490DCA9C1AED2] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416] [PID.1956]
[MD5.98EF79CC2B07398AC525F9EA1AE0366F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880] [PID.1168]
[MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.2616]
[MD5.D358E077A0A05D9B12DA22D137EE8464] - (.Microsoft Corp. - Microsoft SeaPort Search Enhancement Broker.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [226656] [PID.2936]
[MD5.74EC60E20516AAA573BE74F31175270F] - (.SoftThinks SAS - SoftThinks Agent Service.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [1692480] [PID.3036]
[MD5.9C6CADA6CBA8A88AB2C7C9C4EDFA5304] - (.WDC - WD Drive Manager Service.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288256] [PID.2448]
[MD5.14BF6B3AB327D519ED007CDDC56F6900] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272] [PID.2712]
[MD5.EBDD3032297EF6832A1D6D3AA6DC3537] - (.SoftThinks - Dell - Dell DataSafe Local Backup.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe [4259648] [PID.2952]
[MD5.CD4F7B90CB09831BCDEDE0A206CCDB35] - (.© 2007-2011 SoftThinks SAS - ST Service Scheduling.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE [2751808] [PID.3060]
[MD5.09890A2F032B138A74B5DF2C1233FB1D] - (.SoftThinks - Dell - DataSafe Update Launcher.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe [460096] [PID.2824]
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.3296]
[MD5.E337785DA1958E9AB02DDB2369EF46E8] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe [307016] [PID.3496]
[MD5.1DB925810BA7020112D734248A01028D] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240] [PID.3528]
[MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3152]
[MD5.9A8568C7642B79F43DCEB0BDF9F49050] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe [542136] [PID.2676]
[MD5.6FACA9C62024E14251C7ED33A8E8B660] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2571704] [PID.3616]
[MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe [354840] [PID.3700]
[MD5.820EBE67AB99F033FDE25B2692157991] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416] [PID.3960]
[MD5.DF338D2035B2F16530EFE85BC1704C54] - (.Western Digital Technologies, Inc. - WD Drive Manager Status.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [6185472] [PID.4268]
[MD5.6CF3079C23A9A96F7C1DC33EE982FBA6] - (.Stardock Corporation - Dell Dock.) -- C:\Program Files\Dell\DellDock\DellDock.exe [1316192] [PID.4320]
[MD5.C81F59B7D524FB462F73B27757084618] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8204056] [PID.3248]
[MD5.C07A6F058A7DB354EBEE77DF9537127A] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520] [PID.2540]
[MD5.E7704CBF568815C1CAA6E513387BD3F2] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [65536] [PID.4200]
[MD5.74EF310FAC89341CE2897B7F2C4A7B0F] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [65536] [PID.5104]
[MD5.CCC3FE1DDCCF99633539B3D7681EF7D7] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768] [PID.5760]
[MD5.60E6FC4E478A1D65069A1C331603101C] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111312] [PID.5024]
[MD5.AF49D1C79EA49A7833017F290EE63B82] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784] [PID.5368]
[MD5.F84EF3D83D4692177A0EE5FF51AAE7B7] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\SysWOW64\jureg.exe [55072] [PID.5520]
[MD5.6740F3F722B70ABAE95753311E600D9E] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3499920] [PID.1572]
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] [PID.6180]
[MD5.DD1EEE63D06553668029B0D5D52B56D2] - (.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe [193808] [PID.3580]
[MD5.4B0583A0A6A22D9F453BFFD467E68190] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392872] [PID.4500]
[MD5.B39CAB9DF6B7BCDE9B27D566BAF78D3C] - (.Mozilla Corporation - Thunderbird.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [491688] [PID.7680]
[MD5.84867350CFF4C8551E5F5A3D355D8CB3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Pat\Desktop\ZHPDiag3.exe [1901056] [PID.3276]
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (10) - 1s
P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\vdpure@link64.xpi
P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\searchplugins\yahoo-avast.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (. - Flash Video Downloader - YouTube HD Download [4K].) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [Adobe Acrobat] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
---\\ Internet Explorer Extensions, Start, Search (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (4) - 0s
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
---\\ Auto loading programs from Registry and folders (25) - 0s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateReg] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\System32\jureg.exe
O4 - HKUS\.DEFAULT\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
---\\ Lop.com/Domain Hijackers (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22
---\\ Extra protocols (23) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\WINDOWS\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
---\\ Non Microsoft non disabled Windows Services (18) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) . (.B.H.A Corporation - B's Recorder GOLD Service Library.) - C:\WINDOWS\SysWOW64\bgsvcgen.exe
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O23 - Service: DirMngr (DirMngr) . (...) - C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
O23 - Service: Dock Login Service (DockLoginService) . (.Stardock Corporation - Dock Login Service.) - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: SessionLauncher (SessionLauncher) . (...) - c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe (.not file.)
O23 - Service: SoftThinks Agent Service (SftService) . (.SoftThinks SAS - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: WDDMService (WDDMService) . (.WDC - WD Drive Manager Service.) - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: Power Control [2014/12/19 14:10:20] ({1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7}) . (.CyberLink Corp. - .) - C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl
---\\ BootExecute (BEX) (1) - 0s
O34 - HKLM BootExecute: (sdnclean64.exe)
---\\ Task Planned Automatically (23) - 3s
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000]
[MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872]
[MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6278424]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200]
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200]
[MD5.00000000000000000000000000000000] [APT] [JavaUpdatePat] (...) -- C:\WINDOWS\SysWOW64\jusched.exe (.not file.) [0]
[MD5.AD51825B096DECB35C4013D1F5CA3572] [APT] [{D7C07EFB-684F-80BF-6EC5-D4261F413EF4}] (...) -- C:\Users\Pat\AppData\Roaming\PrSxITcg\lMIVfkul\nfWGhjxJ\vquMpDSws.exe [262144]
[MD5.0074AFB0570FC1A6AC9771D0133DF44A] [APT] [Safer-Networking\Spybot - Search and Destroy\Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3907304]
[MD5.DF474E01CFC5F28CA952B0DBD6B132A9] [APT] [Safer-Networking\Spybot - Search and Destroy\Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [3633312]
[MD5.CDEB46FE688F062D3033209B29755203] [APT] [Safer-Networking\Spybot - Search and Destroy\Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [3885120]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] =>.Google Inc.
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] =>.Adobe Systems Incorporated
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] =>.AVAST Software
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2768] =>.Piriform Ltd
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3812] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064] =>.Google Inc.
O39 - APT: JavaUpdatePat - (...) -- C:\Windows\System32\Tasks\JavaUpdatePat [3362]
O39 - APT: {D7C07EFB-684F-80BF-6EC5-D4261F413EF4} - (...) -- C:\Windows\System32\Tasks\{D7C07EFB-684F-80BF-6EC5-D4261F413EF4} [3094]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{E002E674-615E-4AE2-90DF-1B9F385D13EC} [3024]
---\\ Software installed (110) - 7s
O42 - Logiciel: Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/0 - (.GoPro.) [HKLM][64Bits] -- 0B624A43DD66DBF5CF3EDFA9741A364E688062A4
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Le Grand Robert & Collins - (.Le Robert.) [HKLM][64Bits] -- GRCDVD
O42 - Logiciel: Le Petit Robert 2010 - (.Le Robert.) [HKLM][64Bits] -- PR1CD2010
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: EMCGadgets64 - (.Sonic.) [HKLM][64Bits] -- {02AD9D20-03D2-4DE0-8793-E8253026AD86}
O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF}
O42 - Logiciel: WD SmartWare Drive Manager - (.Western Digital.) [HKLM][64Bits] -- {5E2D7D76-30DE-4DDE-B416-9B0B925EBFEC}
O42 - Logiciel: Roxio File Backup - (.Roxio.) [HKLM][64Bits] -- {60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}
O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM][64Bits] -- {8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: VD64Inst - (.Roxio, Inc..) [HKLM][64Bits] -- {DB9C43F7-0B0F-4E43-9E6B-F945C71C469E}
O42 - Logiciel: Dell Dock - (.Dell.) [HKLM][64Bits] -- {E60B7350-EA5F-41E0-9D6F-E508781E36D2}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: Avidemux 2.6 - 64bits - (...) [HKLM][64Bits] -- Avidemux 2.6 - 64bits (64-bit)
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: CloudMe - (.CloudMe AB.) [HKLM][64Bits] -- CloudMeSync
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite
O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1
O42 - Logiciel: eSupport UndeletePlus 3.0.6.604 - (.Copyright © 2011 eSupport.com • All Rights Reserved.) [HKLM][64Bits] -- eSupport UndeletePlus_is1
O42 - Logiciel: FileZilla Client 3.8.0 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: GoPro Studio 2.5.4 - (.GoPro, Inc..) [HKLM][64Bits] -- GoPro Studio
O42 - Logiciel: Gpg4win (2.2.1) - (.The Gpg4win Project.) [HKLM][64Bits] -- GPG4Win
O42 - Logiciel: IVONA 2 - (.IVONA Software Sp. z o.o..) [HKLM][64Bits] -- IVONA 2
O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1
O42 - Logiciel: LMMS 1.1.0 - (.LMMS Developers.) [HKLM][64Bits] -- LMMS
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: MediaCoder 0.8.28.5588 - (.Mediatronic.) [HKLM][64Bits] -- MediaCoder
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird 38.3.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.3.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: PFPortChecker 1.0.39 - (.Portforward.com.) [HKLM][64Bits] -- PFPortChecker
O42 - Logiciel: PuTTY version 0.63 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1
O42 - Logiciel: QuickTime Alternative 1.81 - (...) [HKLM][64Bits] -- QuicktimeAlt_is1
O42 - Logiciel: SolveigMM AVI Trimmer - (.Solveig Multimedia.) [HKLM][64Bits] -- SolveigMM AVI Trimmer 2.0.1210.11
O42 - Logiciel: Total Video2Dvd 3.30 - (.EffectMatrix, Inc..) [HKLM][64Bits] -- Total Video2Dvd 3.30_is1
O42 - Logiciel: TrueCrypt - (.TrueCrypt Foundation.) [HKLM][64Bits] -- TrueCrypt
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp
O42 - Logiciel: WinSCP 5.5.4 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1
O42 - Logiciel: Xming 6.9.0.31 - (.Colin Harrison.) [HKLM][64Bits] -- Xming_is1
O42 - Logiciel: HD Writer 2.6E pour HDC - (.Matsushita Electric Industrial Co., Ltd..) [HKLM][64Bits] -- {0443A856-B498-4FF9-8C15-4B7057242783}
O42 - Logiciel: ATI Catalyst Control Center - (...) [HKLM][64Bits] -- {055EE59D-217B-43A7-ABFF-507B966405D8}
O42 - Logiciel: Roxio Central Data - (.Roxio.) [HKLM][64Bits] -- {08E81ABD-79F7-49C2-881F-FD6CB0975693}
O42 - Logiciel: DirectXInstallService - (.Roxio.) [HKLM][64Bits] -- {098122AB-C605-4853-B441-C0A4EB359B75}
O42 - Logiciel: Dell DataSafe Local Backup - (.Dell.) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {15BC8CD0-A65B-47D0-A2DD-90A824590FA8}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
O42 - Logiciel: Roxio Central Tools - (.Roxio.) [HKLM][64Bits] -- {1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: Java(TM) 6 Update 14 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216014F0}
O42 - Logiciel: Java 7 Update 65 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF}
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM][64Bits] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E}
O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}
O42 - Logiciel: SpPhones - (.Microsoft.) [HKLM][64Bits] -- {4DFF1415-4C29-44A8-BFD4-2BCE249C4991}
O42 - Logiciel: Roxio Easy CD and DVD Burning - (.Roxio.) [HKLM][64Bits] -- {537BF16E-7412-448C-95D8-846E85A1D817}
O42 - Logiciel: Sp5 - (.Microsoft.) [HKLM][64Bits] -- {560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}
O42 - Logiciel: Roxio BackOnTrack - (.Roxio.) [HKLM][64Bits] -- {5A06423A-210C-49FB-950E-CB0EB8C5CEC7}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Roxio Easy CD and DVD Burning - (.Roxio.) [HKLM][64Bits] -- {612B5D2E-8084-4102-91DE-24281E4EFB2C}
O42 - Logiciel: Hercules DJ USB Audio Drivers - (.Hercules.) [HKLM][64Bits] -- {65F11FC9-B1D7-445F-916D-A40764E1D8CE}
O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM][64Bits] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
O42 - Logiciel: PowerDVD DX - (.CyberLink Corp..) [HKLM][64Bits] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1}
O42 - Logiciel: SpCommon - (.Microsoft.) [HKLM][64Bits] -- {6C3959C6-943E-44B3-BAAD-570B04B134E5}
O42 - Logiciel: QuarkXPress - (.Quark Inc..) [HKLM][64Bits] -- {706EA4A8-97B5-4C29-A0F3-0B38C666F0C4}
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC}
O42 - Logiciel: Roxio Central Audio - (.Roxio.) [HKLM][64Bits] -- {73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
O42 - Logiciel: Dell Getting Started Guide - (.Dell Inc..) [HKLM][64Bits] -- {7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1}
O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5}
O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM][64Bits] -- {8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}
O42 - Logiciel: OpenOffice 4.0.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}
O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
O42 - Logiciel: VideoCam Suite 2.0 - (.Panasonic Corporation.) [HKLM][64Bits] -- {9EDF1A5D-D8E0-413E-9782-75DD4A8C831B}
O42 - Logiciel: Antidote RX v7 - (.Druide informatique inc..) [HKLM][64Bits] -- {A474EA56-5DBD-4181-8230-806A4762EA7F}
O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {A69D7B32-2BE9-42BF-B576-69B5E0FF7394}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Dell DataSafe Local Backup - Support Software - (.Dell.) [HKLM][64Bits] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-000000000006}
O42 - Logiciel: Adobe Reader XI (11.0.13) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Winrar Activator version 1.2 - (.Rarlab.) [HKLM][64Bits] -- {AE0B3F2A-EB65-4D01-A3E1-6D879C6AAF2A}_is1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1
O42 - Logiciel: Roxio Central Copy - (.Roxio.) [HKLM][64Bits] -- {B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
O42 - Logiciel: UBitMenu FR - (.UBit Schweiz AG.) [HKLM][64Bits] -- {BBFAA659-FC2D-46cc-A8C0-BE0D03560F17}_is1
O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
O42 - Logiciel: VirtualDJ PRO Full - (.Atomix Productions.) [HKLM][64Bits] -- {C515E2A3-4878-4C85-A519-52630C7AB08B}
O42 - Logiciel: VSO ConvertXToDVD - (.VSO Software.) [HKLM][64Bits] -- {CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1
O42 - Logiciel: Microsoft Primary Interoperability Assemblies 2005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D24DB8B9-BB6C-4334-9619-BA1C650E13D3}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: Dell Support Center (Support Software) - (.Dell.) [HKLM][64Bits] -- {E3BFEE55-39E2-4BE0-B966-89FE583822C1}
O42 - Logiciel: Sp5TTInt - (.Microsoft.) [HKLM][64Bits] -- {E415C943-37E5-473F-8BAE-043C56734124}
O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM][64Bits] -- {EC877639-07AB-495C-BFD1-D63AF9140810}
O42 - Logiciel: Roxio Central Core - (.Roxio.) [HKLM][64Bits] -- {ED439A64-F018-4DD4-8BA5-328D85AB09AB}
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Sp5Intl - (.Microsoft.) [HKLM][64Bits] -- {FD4B33E1-24AE-4535-AA7B-162B30FB57CD}
O42 - Logiciel: EMC 10 Content - (.Roxo, Inc..) [HKLM][64Bits] -- {FDB46DE7-9045-47BB-970A-3E4ED5369E03}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
O42 - Logiciel: MyHarmony - (.Logitech.) [HKCU][64Bits] -- 036a0e4fc6a247ec
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent
---\\ HKCU & HKLM Software Keys (150) - 7s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\America Online
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\ASIO
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\AVAST Software
HKLM\SOFTWARE\Wow6432Node\Avidemux 2.6 - 64bits (64-bit)
HKLM\SOFTWARE\Wow6432Node\B.H.A
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\CloudMe
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\Debug
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\Druide informatique inc.
HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\FLEXlm License Manager
HKLM\SOFTWARE\Wow6432Node\Gabest
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\GoPro
HKLM\SOFTWARE\Wow6432Node\Hercules
HKLM\SOFTWARE\Wow6432Node\illiminable
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\iTinySoft
HKLM\SOFTWARE\Wow6432Node\IVONA
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Lame For Audacity
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LMMS Developers
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision
HKLM\SOFTWARE\Wow6432Node\Martin Prikryl
HKLM\SOFTWARE\Wow6432Node\Matsushita Electric Industrial Co., Ltd.
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\McAfee.com
HKLM\SOFTWARE\Wow6432Node\McAfeeInstaller
HKLM\SOFTWARE\Wow6432Node\MediaCoder
HKLM\SOFTWARE\Wow6432Node\MicroQuill
HKLM\SOFTWARE\Wow6432Node\MicroVision
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\NEC
HKLM\SOFTWARE\Wow6432Node\Novell
HKLM\SOFTWARE\Wow6432Node\Nullsoft
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OldTimer Tools
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\Panasonic
HKLM\SOFTWARE\Wow6432Node\PC-Doctor
HKLM\SOFTWARE\Wow6432Node\QTAlternative
HKLM\SOFTWARE\Wow6432Node\Quark
HKLM\SOFTWARE\Wow6432Node\Roxio
HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited
HKLM\SOFTWARE\Wow6432Node\SoftThinks
HKLM\SOFTWARE\Wow6432Node\SoftVTU
HKLM\SOFTWARE\Wow6432Node\Solveig Multimedia
HKLM\SOFTWARE\Wow6432Node\Sonic
HKLM\SOFTWARE\Wow6432Node\SupportSoft
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VirtualDJ
HKLM\SOFTWARE\Wow6432Node\VSO
HKLM\SOFTWARE\Wow6432Node\Western Digital
HKLM\SOFTWARE\Wow6432Node\WIBU-SYSTEMS
HKLM\SOFTWARE\Wow6432Node\Windows
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AoAAudioExtractor
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\Badguys
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Bureau van Dijk
HKCU\SOFTWARE\CDDB
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\CineForm
HKCU\SOFTWARE\CloudMe
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\Cyberlink
HKCU\SOFTWARE\Dell
HKCU\SOFTWARE\Digital Photo Software
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\Druide informatique inc.
HKCU\SOFTWARE\DVD Shrink
HKCU\SOFTWARE\DVDShrink
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\FLEXlm License Manager
HKCU\SOFTWARE\FreeVideoConverter.biz
HKCU\SOFTWARE\GetData
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GoPro
HKCU\SOFTWARE\Guillemot Corporation
HKCU\SOFTWARE\Hercules Technologies
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MainConcept (Adobe2)
HKCU\SOFTWARE\MainConcept (Mei)
HKCU\SOFTWARE\MakeMKV
HKCU\SOFTWARE\Martin Prikryl
HKCU\SOFTWARE\McAfee
HKCU\SOFTWARE\MicroVision
HKCU\SOFTWARE\Mindscape
HKCU\SOFTWARE\Modern UI IvonaSAPI
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\NEC
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\PACE Anti-Piracy
HKCU\SOFTWARE\Panasonic
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Quark
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Roxio
HKCU\SOFTWARE\Safer Networking Limited
HKCU\SOFTWARE\SDL
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Solveig Multimedia
HKCU\SOFTWARE\Sonic
HKCU\SOFTWARE\SourceForge
HKCU\SOFTWARE\SWiSHzone.com
HKCU\SOFTWARE\TeleCharger
HKCU\SOFTWARE\Trados
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VirtualDJ
HKCU\SOFTWARE\VirtualDub.org
HKCU\SOFTWARE\VSO
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\Zyrax Software
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (279) - 8s
O43 - CFD: 2015/11/14 15:29:01 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2010/03/23 06:23:23 - [] D -- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 2013/12/03 14:59:53 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 2015/03/15 02:00:55 - [] D -- C:\Program Files (x86)\CineForm
O43 - CFD: 2010/03/23 06:25:24 - [] D -- C:\Program Files (x86)\Citrix
O43 - CFD: 2015/02/19 12:01:23 - [] D -- C:\Program Files (x86)\CloudMe
O43 - CFD: 2013/11/29 20:27:43 - [] D -- C:\Program Files (x86)\CodeMeter
O43 - CFD: 2015/06/11 12:38:07 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2010/03/23 06:29:05 - [] D -- C:\Program Files (x86)\CyberLink
O43 - CFD: 2013/12/01 15:30:42 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 2010/03/23 06:41:38 - [] D -- C:\Program Files (x86)\Dell
O43 - CFD: 2015/11/14 13:07:33 - [] D -- C:\Program Files (x86)\Dell DataSafe Local Backup
O43 - CFD: 2010/03/23 06:28:46 - [] D -- C:\Program Files (x86)\Dell Support Center
O43 - CFD: 2013/11/30 15:05:27 - [] D -- C:\Program Files (x86)\Druide
O43 - CFD: 2014/05/02 13:30:16 - [] D -- C:\Program Files (x86)\DVD Shrink
O43 - CFD: 2014/04/12 23:52:26 - [] D -- C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 2013/12/01 14:03:56 - [] D -- C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport
O43 - CFD: 2014/05/02 13:38:33 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 2014/04/12 23:39:05 - [] D -- C:\Program Files (x86)\FreeVideoConverter.biz
O43 - CFD: 2014/02/17 12:55:02 - [] D -- C:\Program Files (x86)\GNU
O43 - CFD: 2014/04/21 23:44:34 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/03/15 02:00:54 - [] D -- C:\Program Files (x86)\GoPro
O43 - CFD: 2015/01/17 16:11:46 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2010/03/23 06:21:24 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2010/03/23 09:07:30 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/04/21 08:12:46 - [] D -- C:\Program Files (x86)\IVONA
O43 - CFD: 2014/09/21 13:37:05 - [] D -- C:\Program Files (x86)\Java
O43 - CFD: 2013/12/07 16:01:57 - [] D -- C:\Program Files (x86)\Lame For Audacity
O43 - CFD: 2013/12/01 15:37:34 - [] D -- C:\Program Files (x86)\MagicISO
O43 - CFD: 2015/11/14 03:15:49 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 2014/03/03 17:20:15 - [] D -- C:\Program Files (x86)\Media Player Classic
O43 - CFD: 2014/03/18 15:15:13 - [] D -- C:\Program Files (x86)\MediaCoder
O43 - CFD: 2010/03/23 06:32:04 - [] D -- C:\Program Files (x86)\Microsoft
O43 - CFD: 2015/06/11 12:35:04 - [] D -- C:\Program Files (x86)\Microsoft Access Runtime
O43 - CFD: 2014/01/10 02:30:25 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 2010/03/23 06:33:11 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 2010/03/23 06:33:58 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 2014/01/10 02:30:21 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 2014/01/10 02:28:30 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 2010/03/23 06:24:59 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 2014/01/10 02:30:05 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2015/11/06 19:27:07 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 2015/11/06 19:27:07 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 2015/10/02 08:21:21 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 2014/11/25 16:28:28 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2014/09/21 13:37:28 - [0] D -- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 2014/11/21 15:56:56 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 2013/11/29 18:19:25 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 2014/02/10 20:14:17 - [] D -- C:\Program Files (x86)\Panasonic
O43 - CFD: 2013/12/28 17:47:10 - [] D -- C:\Program Files (x86)\PFPortChecker
O43 - CFD: 2015/01/17 17:19:49 - [] D -- C:\Program Files (x86)\PuTTY
O43 - CFD: 2013/12/01 13:53:08 - [] D -- C:\Program Files (x86)\Quark
O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\Program Files (x86)\QuickTime Alternative
O43 - CFD: 2009/07/14 00:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2010/03/23 06:37:03 - [] D -- C:\Program Files (x86)\Roxio
O43 - CFD: 2014/11/25 16:33:59 - [] D -- C:\Program Files (x86)\SDL
O43 - CFD: 2014/03/17 19:57:22 - [] D -- C:\Program Files (x86)\Solveig Multimedia
O43 - CFD: 2015/11/13 12:03:11 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 2013/12/24 16:13:00 - [] D -- C:\Program Files (x86)\Total Video2Dvd
O43 - CFD: 2009/07/13 23:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2013/11/29 18:58:49 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/01/17 16:14:26 - [] D -- C:\Program Files (x86)\VirtualDJ
O43 - CFD: 2014/12/19 17:34:58 - [] D -- C:\Program Files (x86)\VSO
O43 - CFD: 2013/11/29 19:04:01 - [] D -- C:\Program Files (x86)\Winamp
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2010/03/23 06:34:11 - [] D -- C:\Program Files (x86)\Windows Live
O43 - CFD: 2010/03/23 06:31:47 - [] D -- C:\Program Files (x86)\Windows Live SkyDrive
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2010/03/23 09:07:30 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 00:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2009/07/14 00:32:40 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2013/12/01 13:13:15 - [] D -- C:\Program Files (x86)\Winrar
O43 - CFD: 2015/01/17 17:44:35 - [] D -- C:\Program Files (x86)\WinSCP
O43 - CFD: 2015/01/17 17:19:33 - [] D -- C:\Program Files (x86)\Xming
O43 - CFD: 2010/03/23 08:16:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/13 23:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/11/30 15:04:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 2015/03/13 13:09:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64bits)
O43 - CFD: 2010/03/23 06:23:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
O43 - CFD: 2015/01/02 16:49:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2015/03/13 20:11:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CloudMe
O43 - CFD: 2013/12/01 15:30:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 2010/03/23 06:41:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 2010/03/23 06:27:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
O43 - CFD: 2010/03/23 06:28:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center
O43 - CFD: 2014/05/02 13:30:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink
O43 - CFD: 2014/04/12 23:52:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 2013/12/01 14:03:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com =>PUP.Optional.eSupport
O43 - CFD: 2014/05/02 13:38:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 2010/03/23 08:16:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/03/15 02:01:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
O43 - CFD: 2014/02/17 12:55:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gpg4win
O43 - CFD: 2015/01/17 13:42:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 2015/01/17 16:11:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hercules
O43 - CFD: 2010/03/23 06:21:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager
O43 - CFD: 2015/04/22 22:39:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVONA
O43 - CFD: 2013/11/29 18:45:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 2013/11/29 18:16:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Le Grand Robert & Collins
O43 - CFD: 2013/11/29 18:37:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Le Petit Robert 2010
O43 - CFD: 2015/01/17 15:59:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LMMS 1.1.0
O43 - CFD: 2009/07/13 23:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/11/14 03:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2014/01/10 03:21:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2010/03/23 06:25:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2013/11/29 18:19:36 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.0.1
O43 - CFD: 2014/02/10 20:14:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic
O43 - CFD: 2015/01/17 17:19:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY
O43 - CFD: 2013/12/01 13:53:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuarkXPress 8
O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime Alternative
O43 - CFD: 2014/02/10 20:10:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 2010/03/23 06:37:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Easy CD & DVD Burning
O43 - CFD: 2014/03/17 19:57:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solveig Multimedia
O43 - CFD: 2013/11/29 18:04:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
O43 - CFD: 2015/05/10 10:21:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/07/14 02:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2013/12/24 16:11:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video2Dvd
O43 - CFD: 2013/12/01 13:58:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt
O43 - CFD: 2013/11/29 18:58:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2014/12/19 17:35:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
O43 - CFD: 2013/11/29 19:47:26 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare
O43 - CFD: 2013/11/29 19:03:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
O43 - CFD: 2010/03/23 06:34:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2013/12/01 13:12:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/01/17 17:19:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xming
O43 - CFD: 2015/11/14 15:31:15 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\ProgramData\ATI
O43 - CFD: 2013/11/29 15:27:13 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2013/11/29 15:12:14 - [] HD -- C:\ProgramData\CanonBJ
O43 - CFD: 2014/12/19 19:01:28 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 2013/12/01 15:32:11 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 2010/03/23 06:37:18 - [] D -- C:\ProgramData\Dell
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/01/17 15:47:06 - [] D -- C:\ProgramData\DVD Shrink
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/09/21 13:39:10 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2014/02/17 12:55:04 - [] D -- C:\ProgramData\GNU
O43 - CFD: 2014/03/03 17:09:49 - [] D -- C:\ProgramData\InstallShield
O43 - CFD: 2013/11/29 18:37:44 - [] D -- C:\ProgramData\Le Robert
O43 - CFD: 2013/11/29 19:23:59 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 2015/11/14 03:15:47 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2013/11/29 18:45:19 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/11/14 15:49:24 - [] D -- C:\ProgramData\Microsoft
O43 - CFD: 2014/01/10 03:21:40 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2013/11/29 17:30:26 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2014/07/21 09:33:59 - [0] D -- C:\ProgramData\Oracle
O43 - CFD: 2014/11/21 16:27:03 - [] D -- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 2015/03/15 01:21:49 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2014/02/10 20:43:55 - [] D -- C:\ProgramData\Panasonic
O43 - CFD: 2014/09/21 13:36:44 - [] D -- C:\ProgramData\Passolo 2009
O43 - CFD: 2010/03/23 06:28:51 - [0] D -- C:\ProgramData\PCDr
O43 - CFD: 2013/12/01 13:53:08 - [] D -- C:\ProgramData\Quark
O43 - CFD: 2014/12/08 17:25:37 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 2014/05/18 00:46:57 - [] D -- C:\ProgramData\Roxio
O43 - CFD: 2014/11/25 16:29:24 - [] D -- C:\ProgramData\SDL
O43 - CFD: 2013/11/29 15:16:58 - [] D -- C:\ProgramData\Sonic
O43 - CFD: 2013/12/04 01:37:29 - [] D -- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2013/11/29 18:45:45 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2010/03/23 06:28:53 - [] D -- C:\ProgramData\SupportSoft
O43 - CFD: 2014/04/12 23:19:51 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2010/03/23 06:37:12 - [] D -- C:\ProgramData\Uninstall
O43 - CFD: 2015/01/02 22:32:55 - [] D -- C:\ProgramData\VSO
O43 - CFD: 2014/12/19 18:15:33 - [] D -- C:\ProgramData\vsosdk
O43 - CFD: 2014/10/09 01:08:35 - [] D -- C:\ProgramData\Western Digital
O43 - CFD: 2014/09/12 20:18:23 - [] D -- C:\ProgramData\Windows Genuine Advantage
O43 - CFD: 2015/11/14 15:31:20 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2014/12/02 02:24:49 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 2014/01/10 02:30:21 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 2013/11/29 19:26:40 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 2014/07/21 09:33:54 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 2013/12/01 15:34:56 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared
O43 - CFD: 2015/06/11 12:35:07 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2014/12/02 02:26:53 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 2010/03/23 06:36:11 - [] D -- C:\Program Files (x86)\Common Files\Roxio Shared
O43 - CFD: 2009/07/13 22:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2014/03/17 19:57:23 - [] D -- C:\Program Files (x86)\Common Files\Solveig Multimedia
O43 - CFD: 2010/03/23 06:37:00 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 2009/07/13 22:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2010/03/23 06:28:42 - [] D -- C:\Program Files (x86)\Common Files\supportsoft
O43 - CFD: 2010/03/23 06:35:52 - [] D -- C:\Program Files (x86)\Common Files\SureThing Shared
O43 - CFD: 2014/01/10 02:28:17 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2010/03/23 06:29:28 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 2013/12/24 16:21:07 - [] D -- C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 2015/04/16 02:22:31 - [] D -- C:\Users\Pat\AppData\Roaming\Adobe
O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\Users\Pat\AppData\Roaming\ATI
O43 - CFD: 2015/04/15 19:31:18 - [] D -- C:\Users\Pat\AppData\Roaming\Audacity
O43 - CFD: 2013/11/29 17:33:59 - [] D -- C:\Users\Pat\AppData\Roaming\AVAST Software
O43 - CFD: 2015/10/20 15:21:20 - [] D -- C:\Users\Pat\AppData\Roaming\avidemux
O43 - CFD: 2014/01/25 18:25:28 - [] D -- C:\Users\Pat\AppData\Roaming\BitTorrent
O43 - CFD: 2014/03/03 17:02:55 - [] D -- C:\Users\Pat\AppData\Roaming\convertaudiofree
O43 - CFD: 2014/06/18 17:42:42 - [] D -- C:\Users\Pat\AppData\Roaming\CyberLink
O43 - CFD: 2014/11/21 15:41:54 - [] D -- C:\Users\Pat\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 2013/11/29 15:18:04 - [] D -- C:\Users\Pat\AppData\Roaming\Dell
O43 - CFD: 2013/11/30 15:07:46 - [] D -- C:\Users\Pat\AppData\Roaming\Druide
O43 - CFD: 2015/01/17 13:42:46 - [] D -- C:\Users\Pat\AppData\Roaming\dvdcss
O43 - CFD: 2014/04/12 23:52:23 - [] D -- C:\Users\Pat\AppData\Roaming\DVDVideoSoft
O43 - CFD: 2015/06/04 11:07:19 - [] D -- C:\Users\Pat\AppData\Roaming\FileZilla
O43 - CFD: 2015/10/16 18:30:42 - [] D -- C:\Users\Pat\AppData\Roaming\gnupg
O43 - CFD: 2015/03/18 20:16:40 - [] D -- C:\Users\Pat\AppData\Roaming\GoPro
O43 - CFD: 2013/12/24 12:47:39 - [] D -- C:\Users\Pat\AppData\Roaming\InstallShield
O43 - CFD: 2015/04/21 08:24:35 - [] D -- C:\Users\Pat\AppData\Roaming\IVONA 2 Voice
O43 - CFD: 2015/03/12 20:11:01 - [0] D -- C:\Users\Pat\AppData\Roaming\Logitech
O43 - CFD: 2013/11/29 19:04:23 - [] D -- C:\Users\Pat\AppData\Roaming\Macromedia
O43 - CFD: 2009/07/14 02:44:38 - [0] D -- C:\Users\Pat\AppData\Roaming\Media Center Programs
O43 - CFD: 2014/03/18 15:15:07 - [] D -- C:\Users\Pat\AppData\Roaming\Mediatronic
O43 - CFD: 2015/08/28 14:54:55 - [] SD -- C:\Users\Pat\AppData\Roaming\Microsoft
O43 - CFD: 2013/11/29 17:30:39 - [] D -- C:\Users\Pat\AppData\Roaming\Mozilla
O43 - CFD: 2014/03/03 17:20:58 - [] D -- C:\Users\Pat\AppData\Roaming\MPEG Streamclip
O43 - CFD: 2013/11/29 18:20:30 - [] D -- C:\Users\Pat\AppData\Roaming\OpenOffice
O43 - CFD: 2014/11/21 16:27:03 - [] D -- C:\Users\Pat\AppData\Roaming\PACE Anti-Piracy
O43 - CFD: 2014/02/10 20:44:28 - [] D -- C:\Users\Pat\AppData\Roaming\Panasonic
O43 - CFD: 2014/09/21 13:36:44 - [0] D -- C:\Users\Pat\AppData\Roaming\Passolo 2009
O43 - CFD: 2015/11/10 21:08:52 - [] HD -- C:\Users\Pat\AppData\Roaming\PrSxITcg
O43 - CFD: 2013/12/01 13:55:30 - [] D -- C:\Users\Pat\AppData\Roaming\Quark
O43 - CFD: 2014/02/18 23:50:24 - [] D -- C:\Users\Pat\AppData\Roaming\Roxio
O43 - CFD: 2014/09/21 13:48:59 - [] D -- C:\Users\Pat\AppData\Roaming\SDL
O43 - CFD: 2015/10/09 17:52:04 - [] D -- C:\Users\Pat\AppData\Roaming\SolidDocuments
O43 - CFD: 2014/11/21 16:37:46 - [] D -- C:\Users\Pat\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 2013/11/29 17:48:56 - [] D -- C:\Users\Pat\AppData\Roaming\Thunderbird
O43 - CFD: 2013/12/01 14:00:25 - [] D -- C:\Users\Pat\AppData\Roaming\TrueCrypt
O43 - CFD: 2014/01/12 10:56:43 - [] D -- C:\Users\Pat\AppData\Roaming\UBitMenu
O43 - CFD: 2015/11/14 14:34:10 - [] D -- C:\Users\Pat\AppData\Roaming\uTorrent
O43 - CFD: 2015/11/13 18:39:27 - [] D -- C:\Users\Pat\AppData\Roaming\vlc
O43 - CFD: 2015/01/02 22:32:55 - [0] D -- C:\Users\Pat\AppData\Roaming\Vso
O43 - CFD: 2014/12/01 18:11:37 - [] D -- C:\Users\Pat\AppData\Roaming\Winamp
O43 - CFD: 2013/12/01 13:13:56 - [] D -- C:\Users\Pat\AppData\Roaming\WinRAR
O43 - CFD: 2015/11/14 15:51:29 - [] D -- C:\Users\Pat\AppData\Roaming\ZHP
O43 - CFD: 2015/07/10 12:13:16 - [] D -- C:\Users\Pat\AppData\Local\Adobe
O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\Application Data
O43 - CFD: 2015/03/12 20:09:26 - [] D -- C:\Users\Pat\AppData\Local\Apps
O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\Users\Pat\AppData\Local\ATI
O43 - CFD: 2015/02/19 12:01:33 - [] D -- C:\Users\Pat\AppData\Local\CloudMe
O43 - CFD: 2015/03/13 00:57:55 - [0] D -- C:\Users\Pat\AppData\Local\Deployment
O43 - CFD: 2014/12/15 16:06:01 - [] D -- C:\Users\Pat\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2014/11/21 16:36:31 - [] D -- C:\Users\Pat\AppData\Local\Flash Builder
O43 - CFD: 2014/03/03 17:05:03 - [] D -- C:\Users\Pat\AppData\Local\fontconfig
O43 - CFD: 2014/04/21 23:44:36 - [] D -- C:\Users\Pat\AppData\Local\Google
O43 - CFD: 2015/03/18 20:16:21 - [] D -- C:\Users\Pat\AppData\Local\GoPro
O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\History
O43 - CFD: 2014/12/02 12:49:31 - [0] AHD -- C:\Users\Pat\AppData\Local\JD4CVYGi2gADj9
O43 - CFD: 2014/03/31 20:13:09 - [] D -- C:\Users\Pat\AppData\Local\LogMeIn Rescue Applet
O43 - CFD: 2013/11/29 19:04:23 - [] D -- C:\Users\Pat\AppData\Local\Macromedia
O43 - CFD: 2014/03/03 17:07:22 - [] D -- C:\Users\Pat\AppData\Local\MajorSilence
O43 - CFD: 2015/08/28 14:54:55 - [] D -- C:\Users\Pat\AppData\Local\Microsoft
O43 - CFD: 2014/04/03 18:18:57 - [] D -- C:\Users\Pat\AppData\Local\Microsoft Help
O43 - CFD: 2014/05/18 01:00:06 - [] D -- C:\Users\Pat\AppData\Local\MicroVision Applications
O43 - CFD: 2013/12/20 01:07:15 - [] D -- C:\Users\Pat\AppData\Local\Mozilla
O43 - CFD: 2014/11/21 16:27:03 - [] HD -- C:\Users\Pat\AppData\Local\OYW2g7XA0
O43 - CFD: 2014/11/21 16:27:03 - [0] D -- C:\Users\Pat\AppData\Local\PACE Anti-Piracy
O43 - CFD: 2014/05/05 18:26:04 - [] D -- C:\Users\Pat\AppData\Local\Popcorn-Time
O43 - CFD: 2014/06/19 09:42:20 - [] D -- C:\Users\Pat\AppData\Local\PowerDVD DX
O43 - CFD: 2013/11/29 18:04:04 - [] D -- C:\Users\Pat\AppData\Local\Programs
O43 - CFD: 2013/12/01 13:55:30 - [] D -- C:\Users\Pat\AppData\Local\Quark
O43 - CFD: 2014/09/21 13:41:04 - [] D -- C:\Users\Pat\AppData\Local\SDL
O43 - CFD: 2014/03/03 17:04:10 - [] D -- C:\Users\Pat\AppData\Local\SkinSoft
O43 - CFD: 2015/11/14 13:07:33 - [] D -- C:\Users\Pat\AppData\Local\SoftThinks
O43 - CFD: 2013/11/29 15:18:01 - [] D -- C:\Users\Pat\AppData\Local\Stardock_Corporation
O43 - CFD: 2015/11/14 15:50:58 - [] D -- C:\Users\Pat\AppData\Local\Temp
O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/04/30 23:48:33 - [] D -- C:\Users\Pat\AppData\Local\Thunderbird
O43 - CFD: 2014/03/03 17:20:39 - [] D -- C:\Users\Pat\AppData\Local\VirtualStore
O43 - CFD: 2013/11/29 19:42:25 - [] D -- C:\Users\Pat\AppData\Local\Western Digital
O43 - CFD: 2013/12/24 16:21:07 - [] D -- C:\Users\Pat\AppData\Local\Wondershare
O43 - CFD: 2009/07/13 23:54:32 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2013/11/29 15:17:47 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2013/11/30 15:04:52 - [0] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote
O43 - CFD: 2015/03/12 20:10:38 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Logitech
O43 - CFD: 2009/07/13 23:49:38 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/03/18 15:15:11 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder
O43 - CFD: 2013/12/28 17:47:10 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portforward.com
O43 - CFD: 2013/11/29 15:18:01 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2015/01/17 16:13:40 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
O43 - CFD: 2013/12/01 13:12:16 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ ShareTools MSconfig StartupReg (9) - 1s
O53 - SMSR:HKLM\...\startupreg\BitTorrent [Key] . (...) -- C:\Users\Pat\AppData\Roaming\BitTorrent\BitTorrent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CloudMe Sync [Key] . (...) -- C:\Program Files (x86)\CloudMe\CloudMe\CloudMe.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O53 - SMSR:HKLM\...\startupreg\Gestionnaire Antidote.exe [Key] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe
O53 - SMSR:HKLM\...\startupreg\GRC V2 Hyperappel [Key] . (.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe
O53 - SMSR:HKLM\...\startupreg\GrooveMonitor [Key] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
O53 - SMSR:HKLM\...\startupreg\Hercules DJ Series 2 [Key] . (.Hercules® - DJ Series2 Control Panel.) -- C:\Program Files\Hercules\Audio\DJ USB Audio\HDJSeries2CPL.exe
O53 - SMSR:HKLM\...\startupreg\Le Petit Robert V3 Hyperappel [Key] . (.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\Program Files\Le Robert\Le Petit Robert 2010\RobertHA.exe
O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
---\\ System Drivers List (71) - 1s
O58 - SDL:2008/06/27 07:51:10 A . (.Adobe Systems, Inc. - Adobe Drive File System Driver.) -- C:\Windows\System32\drivers\adfs.sys [88632]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/13 20:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2009/07/13 20:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576]
O58 - SDL:2009/07/13 20:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2009/07/13 20:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528]
O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224]
O58 - SDL:2015/11/06 20:20:06 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [1059656]
O58 - SDL:2015/11/06 20:20:06 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys [449992]
O58 - SDL:2015/09/13 20:26:32 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672]
O58 - SDL:2015/09/13 20:26:32 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808]
O58 - SDL:2009/10/01 01:34:00 A . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtiHdmi.sys [121872]
O58 - SDL:2009/12/10 19:40:28 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [6179328]
O58 - SDL:2009/06/10 15:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/13 20:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 15:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/05/15 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224]
O58 - SDL:2009/05/15 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224]
O58 - SDL:2006/08/25 14:36:52 A . (.B.H.A Corporation - CD-ROM Filter Driver for Windows2000/xp.) -- C:\Windows\System32\drivers\cdrbsdrv.sys [39208]
O58 - SDL:2009/07/13 20:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2013/12/01 15:30:42 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283064]
O58 - SDL:2009/07/13 20:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 15:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 15:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2012/08/07 14:07:18 A . (.Hercules - HDJusbaudio Kernel Streaming Driver.) -- C:\Windows\System32\drivers\HDJusbaudioks_x64.sys [94064]
O58 - SDL:2012/08/07 14:07:16 A . (.Hercules - HDJusbaudio Class Driver.) -- C:\Windows\System32\drivers\HDJusbaudio_x64.sys [354672]
O58 - SDL:2009/07/13 20:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888]
O58 - SDL:2009/06/04 21:54:36 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [408600]
O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688]
O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2009/07/24 21:58:56 A . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\System32\drivers\jraid.sys [100776]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816]
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272]
O58 - SDL:2015/11/14 15:35:11 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704]
O58 - SDL:2009/07/13 20:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2015/09/13 20:26:24 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [115152]
O58 - SDL:2009/07/13 20:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056]
O58 - SDL:2009/07/13 20:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488]
O58 - SDL:2011/11/03 03:01:00 N . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [56208]
O58 - SDL:2009/07/13 20:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/13 20:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/05/23 01:52:30 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [215040]
O58 - SDL:2009/10/02 22:10:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2007968]
O58 - SDL:2009/06/04 19:46:50 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUStor.sys [216064]
O58 - SDL:2009/06/10 15:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/13 20:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/13 20:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2009/07/13 20:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2013/12/01 13:58:48 A . (.TrueCrypt Foundation - TrueCrypt Driver.) -- C:\Windows\System32\drivers\truecrypt.sys [231376]
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
O58 - SDL:2009/02/13 12:02:52 A . (.Western Digital Technologies - WD SCSI Architecture Model (SAM) driver.) -- C:\Windows\System32\drivers\wdcsam64.sys [14464]
---\\ Last modified or created user files (11) - 7s
O61 - LFC: 2015/11/14 14:41:59 A . (.OldTimer Tools.) -- C:\Users\Pat\Downloads\OTL.exe [602112]
O61 - LFC: 2015/11/13 12:05:04 A . (.Safer-Networking Ltd..) -- C:\Users\Pat\Downloads\spybot-2.4.exe [46525608]
O61 - LFC: 2015/11/10 21:08:52 A . (..) -- C:\Users\Pat\AppData\Roaming\PrSxITcg\lMIVfkul\nfWGhjxJ\vquMpDSws.exe [262144]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avcodec-55.dll [10146890]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avfilter-3.dll [1158947]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avformat-55.dll [2134348]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avutil-52.dll [542107]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\ffmpeg.exe [428889]
O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\swresample-0.dll [159175]
O61 - LFC: 2015/11/14 13:08:01 A . (..) -- C:\Users\Pat\AppData\Local\ATI\ACE\Manifest.Bin [26869]
O61 - LFC: 2015/11/12 13:40:41 A . (..) -- C:\Users\Pat\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [204153]
---\\ File Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (8) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (1) - 3s
O69 - SBI: SearchScopes [HKCU] [DefaultScope] - (Conduit Search) - http://search.conduit.com/ =>PUP.Optional.Conduit
---\\ Crack & Keygen Files (5) - 19s
O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\adobe_oobelib.dll [2286216] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\amtlib.Crack.CS6\64-bit\amtlib.dll [2249352] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\amtlib.Crack.CS6\32-bit\amtlib.dll [1793672] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:53:50 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Adobe Premiere Pro CS6 6.0.0 LS7 Multilanguage [ChingLiu]\Cracked dll\64-bit\amtlib.dll [2249352] =>.Crack,Keygen
O82 - LFC: 2014/11/25 15:46:18 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Adobe Premiere Pro CS6 6.0.0 LS7 Multilanguage [ChingLiu]\Cracked dll\32-bit\amtlib.dll [1793672] =>.Crack,Keygen
---\\ Search Svchost Services (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [235520]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\WINDOWS\System32\tapisrv.dll [316416]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2418176]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\System32\shsvcs.dll [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\WINDOWS\System32\SessEnv.dll [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1104384]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: SearchIndexer (SearchIndexer) . (...) -- C:\Windows\system32\SearchIndexer.dll [0]
---\\ Firewall Active Exception List (30) - 2s
O87 - FAEL: "TCP Query User{8215BF17-F44F-497E-81B9-767F551B358A}C:\program files\le robert\le petit robert 2010\robertha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\program files\le robert\le petit robert 2010\robertha.exe
O87 - FAEL: "UDP Query User{F81986D5-19A0-4BED-B65D-C3AAF95D4B8B}C:\program files\le robert\le petit robert 2010\robertha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\program files\le robert\le petit robert 2010\robertha.exe
O87 - FAEL: "TCP Query User{E24A8454-C6DA-43F7-8CFA-632257FE2982}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "UDP Query User{8E38A8F0-B0DE-4E63-9C52-8A299661164B}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "{E843BC3F-6ACD-4C80-BE8A-1A344C8F6E0B}" [In-None-P6-FALSE] .(.Nullsoft, Inc. - Winamp.) -- C:\Program Files (x86)\Winamp\winamp.exe
O87 - FAEL: "{271EEB67-F175-44BD-BEF8-A7DCE0CBCFB1}" [In-None-P17-FALSE] .(.Nullsoft, Inc. - Winamp.) -- C:\Program Files (x86)\Winamp\winamp.exe
O87 - FAEL: "{38DAB961-D2ED-4532-AF77-5E910DBAF65B}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{02E99AFA-965F-40BB-82B2-76761FBD68D3}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{DA224E4E-FBD4-4D67-91CD-BB784E418D36}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "{F0171658-DB73-4A5A-B5B2-710BEC02B2E9}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O87 - FAEL: "TCP Query User{248463A8-D0A4-4A60-A72A-BBFEF1A63558}C:\program files (x86)\pfportchecker\pfportchecker.exe" [In-None-P6-TRUE] .(.portforward.com - PFPortchecker by portforward.com helps chec.) -- C:\program files (x86)\pfportchecker\pfportchecker.exe
O87 - FAEL: "UDP Query User{8B2E2DD0-72A4-4D0D-BAAE-B7346B859BA4}C:\program files (x86)\pfportchecker\pfportchecker.exe" [In-None-P17-TRUE] .(.portforward.com - PFPortchecker by portforward.com helps chec.) -- C:\program files (x86)\pfportchecker\pfportchecker.exe
O87 - FAEL: "TCP Query User{FF4DBBB2-65CF-4AA5-8E88-82D4464DA8D4}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "UDP Query User{6619E41C-3B83-45DF-ADF5-C87D1545B903}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe
O87 - FAEL: "{E3FB347E-A4C6-4643-B2F6-3E923C681177}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{419D6B75-88BD-406A-B6C9-BDD9F421E31A}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{35EDECF1-49AC-413D-A874-30B042C59FD3}C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" [In-None-P6-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "UDP Query User{4F674B9F-410F-441F-BACA-FC1212A1B0D0}C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" [In-None-P17-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "{51A7F211-CA7E-484C-9A40-8BAABF095C9F}" [In-None-P17-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "{73C264B6-9F62-4673-A89E-874B7666C6A4}" [In-None-P6-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
O87 - FAEL: "{C3A68598-0545-4878-B33C-6457737645E1}" [In-None-P6-TRUE] .(.DVDVideoSoft Ltd. - Free Torrent Download.) -- C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
O87 - FAEL: "{69B1BA58-030F-438E-86D3-59F49385CC06}" [Out-None-P6-TRUE] .(.DVDVideoSoft Ltd. - Free Torrent Download.) -- C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
O87 - FAEL: "{3BE822CB-993A-4B90-BEFB-5C849546B40A}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "{99905424-D6B0-43F4-9D81-8E2FB1D99E01}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{25529F25-DFBD-4E4B-BB2A-D72578687E86}C:\program files\le robert\le petit robert 2010\prnet.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert 2010.) -- C:\program files\le robert\le petit robert 2010\prnet.exe
O87 - FAEL: "UDP Query User{AC6C0778-A8E9-4147-B6FB-4FA4CBC0DB67}C:\program files\le robert\le petit robert 2010\prnet.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert 2010.) -- C:\program files\le robert\le petit robert 2010\prnet.exe
O87 - FAEL: "{F02D106A-A76B-4E94-92BF-DCFABB03D877}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe (.not file.)
O87 - FAEL: "{016DB43F-B1E9-4741-B16E-0668FB112E29}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe (.not file.)
O87 - FAEL: "TCP Query User{17B58C5C-349A-4D60-8A49-26823CF77198}C:\program files (x86)\xming\xming.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
O87 - FAEL: "UDP Query User{47F251E6-04DC-45F0-8D34-531C77A87076}C:\program files (x86)\xming\xming.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
---\\ Services not Microsoft (SR=Run, SS=Stop) (13) - 11s
SR - Auto [2012/12/03 14:49:32] [ 2571704] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
SR - Auto [2013/10/07 09:54:10] [ 218112] DirMngr (DirMngr) . (...) - C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
SR - Auto [2009/06/09 10:11:14] [ 155648] Dock Login Service (DockLoginService) . (.Stardock Corporation.) - C:\Program Files\Dell\DellDock\DockLogin.exe
SS - Demand [2013/12/01 15:34:56] [ 655624] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - Demand [2013/12/01 15:35:55] [ 1038088] FLEXnet Licensing Service 64 (FLEXnet Licensing Service 64) . (.Acresso Software Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
SS - Auto [2015/08/28 02:32:36] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/08/28 02:32:36] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - Auto [2013/10/15 12:27:38] [ 3921880] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - Auto [2013/09/20 10:57:26] [ 1042272] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - Auto [2013/09/13 10:38:30] [ 171416] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
SR - Auto [2011/08/18 11:05:46] [ 1692480] SoftThinks Agent Service (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
SS - Demand [2009/05/21 08:59:08] [ 206064] SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc..) - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
SS - Demand [2009/04/30 12:59:38] [ 74392] stllssvr (stllssvr) . (.MicroVision Development, Inc..) - c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
---\\ Additional Scan (O88) (4) - 0s
HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com =>PUP.Optional.eSupport
---\\ Summary of the elements found (3) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.eSupport
http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit
~ End of the scan, 32392 items in 84 seconds (1008)(5)()