Publicité
Publicité
Commentaire : mon registre a surrement un problem. Erreur RunDLL
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.11.18.170 By Nicolas Coolman (2015/11/18)
~ Run by Serge Kabasele (Administrator) (2015/11/19 08:34:30)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Serge Kabasele\Desktop\ZHPDiag.txt
~ Report: C:\Users\Serge Kabasele\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (3) - 0s
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
OPIE: Opera 33.0.1990.115 v33.0.1990.115
MSIE: Internet Explorer v11.0.9600.17843
---\\ Windows Product Information (5) - 0s
Windows Server License Manager Script : Absent (Not found)
Windows ID Activation : Inconnue (Unknown)
Windows Licence : Inconnue (Unknown)
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System protection software (1) - 3s
Windows Defender W7 (Activate)
---\\ Surveillance software (1) - 3s
Adobe Acrobat Reader DC - Français
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 61 Stepping 4, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3883.392 MB (43% free)
System Restore: Activé (Enable)
System drive C: has 38 GB () free of 81 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: SERGEKABASELE
~ User Name: Serge Kabasele
~ Logged in as Administrator
---\\ Enumeration of the disk units (3) - 0s
~ Drive C: has 38 GB free of 81 GB (System)
~ Drive D: has 175 GB free of 199 GB
~ Drive E: has 111 GB free of 194 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (25) - 0s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - 21/11/2010 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2872320] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - 05/11/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2426880] ©
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - 21/11/2010 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [390656] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.A52B6CC24063CC83C78C0E6F24DEEC01] - 21/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 21/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.314C17917AC8523EC77A710215012A65] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.FAF015B07E3A2874A790A39B7D2C579F] - 21/11/2010 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [158208] ©
[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.05D78AA5CB5F3F5C31160BDB955D0B7C] - 21/11/2010 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1659776] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - 21/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [295808] ©
---\\ Non Microsoft non disabled Windows Services (18) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Left Button Charger (bykesute) . (...) - C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp =>PUP.Optional.CrossRider
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe ©
O23 - Service: IBM Notes Diagnostics (IBM Notes Diagnostics) . (.IBM - wnsd.) - C:\Program Files (x86)\IBM\Notes\nsd.exe ©
O23 - Service: Lenovo PM Service (IBMPMSVC) . (.Lenovo. - Lenovo Power Management Service.) - C:\Windows\System32\ibmpmsvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe ©
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: IBM Notes Smart Upgrade Service (LNSUSvc) . (.IBM Corp - IBM Notes/Domino.) - C:\Program Files (x86)\IBM\Notes\SUService.exe
O23 - Service: Multi-user Cleanup Service (Multi-user Cleanup Service) . (.IBM Corp - IBM Notes/Domino.) - C:\Program Files (x86)\IBM\Notes\ntmulti.exe
O23 - Service: Be sure to use the latest version of Mustang Service. (MustangService_2015_10_10) . (.MustangService - .) - C:\ProgramData\TempMoudleSet\MustangSer1848.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe ©
O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
O23 - Service: System Loader (SystemLoader) . (.Medialand, Inc - sysloader.) - C:\Windows\SysWOW64\sysloader.exe
O23 - Service: UC浏览器基础服务 (UCBrowserSvc) . (...) - C:\Program Files (x86)\UCBrowser\Application\UCService.exe
O23 - Service: VisualSVN Server (VisualSVNServer) . (.Apache Software Foundation - Apache HTTP Server.) - C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe ©
O23 - Service: (vToolbarUpdater13.2.0) . (.Copyright (C) 2012 - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\3WMiniPro3\WMiniPro.exe =>PUP.Optional.WpManager
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ©
---\\ Task Planned Automatically (25) - 4s
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] ©
[MD5.B62786A86D8622714E5011F2AA1F8A5A] [APT] [Advanced System~Protector] (.Copyright.) -- C:\Program Files (x86)\ASP\AspManager.exe [485328] =>PUP.Optional.AdvancedSystemProtector
[MD5.E400B9F6EDA738EF1CBB89941253874C] [APT] [Advanced System~Protector_startup] (.Copyright.) -- C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [6514640] =>PUP.Optional.AdvancedSystemProtector
[MD5.00000000000000000000000000000000] [APT] [ASC7U_SkipUac_Serge Kabasele] (...) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASC.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [ASC7_PerformanceMonitor] (...) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\Monitor.exe (.not file.) [0]
[MD5.51A2632AAFF24229FB500BC52CFECBF2] [APT] [Opera scheduled Autoupdate 1447839066] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [948856] ©
[MD5.A1A134C19579C3198ACDC743EBB4942B] [APT] [RegClean Pro] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>PUP.Optional.RegistryPowerCleaner
[MD5.A1A134C19579C3198ACDC743EBB4942B] [APT] [RegClean Pro_DEFAULT] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>PUP.Optional.RegistryPowerCleaner
[MD5.A1A134C19579C3198ACDC743EBB4942B] [APT] [RegClean Pro_UPDATES] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>PUP.Optional.RegistryPowerCleaner
[MD5.2EFD6AD223D2650B9B822374EE311CCA] [APT] [RtHDVBg_LENOVO_MICPKEY] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744] ©
[MD5.37C6C318D6AFAFA2EBA99820EDF21DA6] [APT] [RTKCPL] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032] ©
[MD5.5DA7218AC3BBD94C0AE717C288411DA3] [APT] [UCBrowserUpdater{e23df38b34103b001ee4a910a2610d11}] (.UCWeb Inc.) -- C:\Program Files (x86)\UCBrowser\Application\update_task.exe [100688] =>PUP.Optional.CertifiedToolbar
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\Tasks\RegClean Pro_DEFAULT.job [276] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\Tasks\RegClean Pro_UPDATES.job [284] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Advanced System~Protector - (.Copyright.) -- C:\Windows\System32\Tasks\Advanced System~Protector [3722] =>PUP.Optional.AdvancedSystemProtector
O39 - APT: Advanced System~Protector_startup - (.Copyright.) -- C:\Windows\System32\Tasks\Advanced System~Protector_startup [3076] =>PUP.Optional.AdvancedSystemProtector
O39 - APT: ASC7U_SkipUac_Serge Kabasele - (...) -- C:\Windows\System32\Tasks\ASC7U_SkipUac_Serge Kabasele [2882]
O39 - APT: ASC7_PerformanceMonitor - (...) -- C:\Windows\System32\Tasks\ASC7_PerformanceMonitor [3126]
O39 - APT: Opera scheduled Autoupdate 1447839066 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1447839066 [3848] ©
O39 - APT: RegClean Pro - (...) -- C:\Windows\System32\Tasks\RegClean Pro [3090] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\System32\Tasks\RegClean Pro_DEFAULT [2898] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\System32\Tasks\RegClean Pro_UPDATES [3054] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RtHDVBg_LENOVO_MICPKEY - (.Realtek Semiconductor.) -- C:\Windows\System32\Tasks\RtHDVBg_LENOVO_MICPKEY [3156] ©
O39 - APT: RTKCPL - (.Realtek Semiconductor.) -- C:\Windows\System32\Tasks\RTKCPL [3132] ©
---\\ Process running (38) - 1s
[MD5.1F50C792A4BC183CF1FDBE1494A15680] - (.Lenovo. - Lenovo Power Management Service.) -- C:\Windows\System32\ibmpmsvc.exe [84208] [PID.984]
[MD5.55ECDB4226F2405F48039CE545101278] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [344168] [PID.1224] ©
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1792] ©
[MD5.DE348FB79D6A9A8C8FBA490EC49CC564] - (...) -- C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp [625664] [PID.1844] =>PUP.Optional.CrossRider
[MD5.323740D842252032D57B5DED757C65D5] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [636112] [PID.1888] ©
[MD5.AA57F0A42859D7195C4D9FEB2E11EB3A] - (.IBM - wnsd.) -- C:\Program Files (x86)\IBM\Notes\nsd.exe [5164136] [PID.1928] ©
[MD5.F006F98049A534B2A96D6C8632EF6E64] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\SUService.exe [1654376] [PID.1900]
[MD5.DD09B8E057F265A92989B3EEDAF8B59D] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\ntmulti.exe [38504] [PID.1976]
[MD5.23D6449B8D2E2A0CA02A09453853F5B0] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [154832] [PID.2052] ©
[MD5.31E8E35B898EFCFE5787A362544167E8] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files (x86)\SFK\SSFK.exe [170656] [PID.2084]
[MD5.3D14AA69E07F853B39F80872D3B63DEA] - (.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe [212600] [PID.2140]
[MD5.7A6416A6D58B8DF8C8C7BB7E353E5FCF] - (...) -- C:\Program Files (x86)\UCBrowser\Application\UCService.exe [564560] [PID.2272]
[MD5.4B43154D6213A6E72806C807B4FDB072] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe [27280] [PID.2296] ©
[MD5.FD04978FF1DBCB748956D1AB4F694629] - (.Copyright (C) 2012 - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [711112] [PID.2328] =>Toolbar.AVGSearch
[MD5.CF13185C3435FEEB157483C2FDC6AFB2] - (.DTools LIMITED - DTools.) -- C:\ProgramData\3WMiniPro3\WMiniPro.exe [309384] [PID.2348] =>PUP.Optional.WpManager
[MD5.75044F6FC44045047B15415B89E4D1B4] - (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3818704] [PID.2380] ©
[MD5.4B43154D6213A6E72806C807B4FDB072] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe [27280] [PID.2680] ©
[MD5.D69ABF64473B2CA863BB82EEC91B7D40] - (. - pps.) -- C:\Program Files (x86)\baidu\pps.exe [81920] [PID.4548]
[MD5.089AC78F91E11841D5D4E65719464285] - (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe [576104] [PID.4556] ©
[MD5.34C980499EAD9725F6E22E4BCDA82174] - (.http://tortoisesvn.net - TortoiseSVN status cache.) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe [339840] [PID.4688] ©
[MD5.20218284E050B0C671CC5456214CA335] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216] [PID.4856] ©
[MD5.7CC26674A16EAED288982D1CAB87ADA5] - (.Copyright © 2015 - MalwareProtectionClient.) -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe [850976] [PID.4936]
[MD5.5662242EDC8974E926D1C9F5716366FF] - (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe [997320] [PID.4944] =>Toolbar.AVGSearch
[MD5.2E5A1CE9BF70352BAB7A1CF9BE11046B] - (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [336992] [PID.4992] ©
[MD5.3CCC2C149689412D8BD5A8D174EF520E] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [313448] [PID.5096] ©
[MD5.5605F979F145E46A8B23FE7AAACF9949] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [248424] [PID.5112] ©
[MD5.E93B9254F31286627B1F5E293B620819] - (...) -- C:\Windows\System32\igfxTray.exe [393320] [PID.4116]
[MD5.B09E5650F110BD602D0D60E1F9D24FB5] - (.Tencent - QQ2013.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\TXPlatform.exe [167480] [PID.4076] =>PUP.Optional.TencentAddressBar
[MD5.9782C9A518161936FFE2D156C24A7F9B] - (.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe [97976] [PID.1532] =>PUP.Optional.TencentAddressBar
[MD5.2EFD6AD223D2650B9B822374EE311CCA] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744] [PID.5336] ©
[MD5.37C6C318D6AFAFA2EBA99820EDF21DA6] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032] [PID.5348] ©
[MD5.34E0CA53E943A677949B03EBEC46F0AE] - (...) -- C:\Program Files (x86)\UCBrowser\Application\5.2.3937.21\UCAgent.exe [1296208] [PID.1044]
[MD5.D3863134984DCE28013A0B1A36FACA07] - (.FreeDownloadManager.ORG - Free Download Manager.) -- C:\Program Files (x86)\Free Download Manager\fdm.exe [5693544] [PID.6160] ©
[MD5.C2CDB8B7502618CB88669A09C9B99A89] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\nlnotes.exe [2760296] [PID.6552]
[MD5.B6B771A6104AA347B9132E8F4C603027] - (.IBM - IBM Notes Social Edition.) -- C:\Program Files (x86)\IBM\Notes\framework\rcp\eclipse\plugins\com.ibm.rcp.base_9.0.1.20131002-1404\win32\x86\notes2.exe [517984] [PID.6620] ©
[MD5.BDBB17D4B1DFAE5BAA45F9DEA51EF35C] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\ntaskldr.exe [22120] [PID.2480]
[MD5.04B061F68D9A4678EBF73DD04529AAFA] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\nnotesmm.exe [20072] [PID.6472]
[MD5.6B9C3522C2C242CECB928854C2E9EDA9] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Downloads\Software\ZHPDiag3.exe [1971200] [PID.6788] ©
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (19) - 1s
M0 - MFSP: prefs.js [Serge Kabasele - 77thduwr.default] http://www.istartpageing.com/?type=hp&ts=1447850099&z=1b7da9d095dc18bd6b99eb7g1zdz4m2bbw8e4gbe5e&from=cmi&uid=ST500LM021-1KJ152_W6278HCAXXXXW6278HCA =>PUP.Optional.IstartPageing
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\@5DCDB6BE5D42DB9DEFACB674686F23B35DCD.xpi
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\coldsearch.xml
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartpageing.xml =>PUP.Optional.IstartPageing
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\1447842661_xpi =>PUP.Optional.LightningNewTab
P2 - EXT: (.IObit - Advanced SystemCare Surfing Protection.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\ascsurfingprotection@iobit.com ©
P2 - EXT: (.roc - Default SearchProtected .) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\defsearchp@gmail.com
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - EXT: (.vincent - Smart Search .) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\ffsmartsearchbar@gmail.com
P2 - EXT: (.jerry - sidebar.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\sidebarff@gmail.com
P2 - EXT: (.quicknewtab.com - Quick NewTab.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\smartffsearch@gmail.com
P2 - FPN: [HKCU] [@iqiyi.com/npWebPlayer] - (.爱奇艺公司.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>.Superfluous.IQIYIVideo
P2 - FPN: [HKLM] [@iqiyi.com/npWebPlayer] - (.爱奇艺公司.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>.Superfluous.IQIYIVideo
P2 - FPN: [HKLM] [@qq.com/npchrome] - (.Tencent.) -- C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/npqscall] - (.Tencent.) -- C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/TXSSO] - (.Tencent.) -- C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\bin\npSSOAxCtrlForPTLogin.dll =>PUP.Optional.TencentAddressBar
---\\ Internet Explorer Extensions, Start, Search (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (4) - 0s
O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} (Orphean)
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll ©
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL ©
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
---\\ Internet Explorer Toolbars (2) - 1s
O3 - Toolbar: 0xFF6BDFE7A555B74EA6734ED3E9456D39 - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} . (...) -- (.not file.)
O3 - Toolbar: Notes Link - [HKLM]{95B7759C-8C7F-4BF1-B163-73684A933233} . (.Copyright 2012 - AVG Secure Search.) -- C:\Program Files (x86)\AVG Secure Search\13.2.0.3\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
---\\ Auto loading programs from Registry and folders (15) - 0s
O4 - HKCU\..\Run: [QQ2009] . (.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - HKCU\..\Run: [apphide] . (. - pps.) -- C:\Program Files (x86)\baidu\pps.exe
O4 - HKCU\..\Run: [HCDNClient] . (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe ©
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe ©
O4 - HKLM\..\Wow6432Node\Run: [MalwareProtectionLive] . (.Copyright © 2015 - MalwareProtectionClient.) -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch
O4 - HKLM\..\Wow6432Node\Run: [ROC_roc_ssl_v12] . (.Copyright (C) 2011 . All rights reserved. - .) -- C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe =>Toolbar.AVGSearch
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-1901478253-3907196461-686834597-1000\..\Run: [QQ2009] . (.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - HKUS\S-1-5-21-1901478253-3907196461-686834597-1000\..\Run: [apphide] . (. - pps.) -- C:\Program Files (x86)\baidu\pps.exe
O4 - HKUS\S-1-5-21-1901478253-3907196461-686834597-1000\..\Run: [HCDNClient] . (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe ©
---\\ Global shortcuts Startup (8) - 2s
O4 - GS\Desktop [Administrator]: AnyProtect.lnk . (...) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Administrator]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [Guest]: AnyProtect.lnk . (...) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Guest]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [Serge Kabasele]: AnyProtect.lnk . (...) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Serge Kabasele]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: Advanced System~Protector.lnk . (.Copyright - ASP.) C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe =>PUP.Optional.AdvancedSystemProtector
O4 - GS\CommonDesktop [Public]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
---\\ Lop.com/Domain Hijackers (12) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 114.114.114.114,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.224.201.5 10.224.201.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.199.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 114.114.114.114,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 10.224.201.5 10.224.201.6
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.199.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 114.114.114.114,8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 10.224.201.5 10.224.201.6
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.199.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = lan
---\\ Extra protocols (24) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: viprotocol [64Bits] - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (...) -- C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll =>Toolbar.AVGSearch
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL ©
---\\ Software installed (55) - 3s
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Advanced-System Protector - (.Advanced System Protector.) [HKLM][64Bits] -- 00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1 =>PUP.Optional.AdvancedSystemProtector
O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM][64Bits] -- AnyProtect =>PUP.Optional.AnyProtect
O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG Secure Search ©
O42 - Logiciel: Compatible Web Directory - (.Compatible Web Directory.) [HKLM][64Bits] -- PopupProduct =>PUP.Optional.CompatibleWebDir
O42 - Logiciel: Country Code SIM Card - (.Country Code SIM Card.) [HKLM][64Bits] -- SoftwareUpdater =>PUP.Optional.SoftwareUpdater
O42 - Logiciel: Free Download Manager 3.9.6 - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- Free Download Manager_is1 ©
O42 - Logiciel: IBM Notes 9.0.1 Social Edition - (.IBM.) [HKLM][64Bits] -- {FFEBEBC7-7761-4D1F-9C7C-562EA3752590} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {5CA7FC9B-8508-4494-B365-6FBCBAEB8E89} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel(R) Corporation.) [HKLM][64Bits] -- {98f335cd-0a32-4b3f-b74c-ef9480e834f0} ©
O42 - Logiciel: Intel(R) Network Connections Drivers - (.Intel.) [HKLM][64Bits] -- PROSet ©
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} ©
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} ©
O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM][64Bits] -- {9bffdf20-c3a3-4e93-9cbf-61712c6a38be} ©
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {2ABB66D0-7921-46E4-AF7D-CF40323A10BB} ©
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall ©
O42 - Logiciel: Lenovo Power Management Driver - (...) [HKLM][64Bits] -- Power Management Driver
O42 - Logiciel: Malware Protection Live - (...) [HKLM][64Bits] -- MalwareProtectionLive
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ ©
O42 - Logiciel: Opera Stable 33.0.1990.115 - (.Opera Software.) [HKLM][64Bits] -- Opera 33.0.1990.115 ©
O42 - Logiciel: PL/SQL Developer 11.0.4.1774 - (.Allround Automations.) [HKLM][64Bits] -- PL/SQL Developer [092082C9]
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO ©
O42 - Logiciel: QQ International - (.Tencent Technology(Shenzhen) Company Limited.) [HKLM][64Bits] -- {3CA54984-A14B-42FE-9FF1-7EA90151D725}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: RegClean-Pro - (.systweak.com.) [HKLM][64Bits] -- RegClean-Pro_is1
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM][64Bits] -- VOPackage =>PUP.Optional.Downware
O42 - Logiciel: soapUI Pro 3.5.1 3.5.1 - (.eviware software ab.) [HKLM][64Bits] -- 9461-7119-9489-9274
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM][64Bits] -- IObit Surfing Protection_is1 ©
O42 - Logiciel: TortoiseSVN 1.8.11.26392 (64 bit) - (.TortoiseSVN.) [HKLM][64Bits] -- {11309CA9-9118-44D6-B345-83C86A5111D5} ©
O42 - Logiciel: UC浏览器 - (.广州市动景计算机科技有限公司.) [HKLM][64Bits] -- UCBrowser
O42 - Logiciel: UltraEdit - (.IDM Computer Solutions, Inc..) [HKLM][64Bits] -- {635A6AF2-63AF-4C1C-AF57-BDC8AF6D397D} ©
O42 - Logiciel: UltraEdit - (.IDM Computer Solutions, Inc..) [HKLM][64Bits] -- InstallShield_{635A6AF2-63AF-4C1C-AF57-BDC8AF6D397D} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
O42 - Logiciel: VanDyke Software SecureCRT 7.1 - (.VanDyke Software, Inc..) [HKLM][64Bits] -- {FF7E0D5F-28C6-463D-950E-70C0B5328FF8}
O42 - Logiciel: VisualSVN Server 3.3.1 - (.VisualSVN Ltd..) [HKLM][64Bits] -- {02887779-BAEA-4C28-B883-DD533B292BFE}
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: Windows Driver Package - Intel Corporation (iaStorA) HDC (07/27/2015 14.6. - (.Intel Corporation.) [HKLM][64Bits] -- B0FF0E25758234FAE079CEC7FD0C40489CE29D77 ©
O42 - Logiciel: Windows Driver Package - Intel Corporation (iaStorA) SCSIAdapter (07/27/20 - (.Intel Corporation.) [HKLM][64Bits] -- 5458B07EF6F24074D56A272E2B230514C32FFB8B ©
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: 爱奇艺影音 - (.爱奇艺.) [HKLM][64Bits] -- IQIYI Video =>.Superfluous.IQIYIVideo
---\\ HKCU & HKLM Software Keys (98) - 3s
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\AVG Secure Search =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Common
HKLM\SOFTWARE\Wow6432Node\ej-technologies
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\FreeDownloadManager.ORG
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\IBM
HKLM\SOFTWARE\Wow6432Node\IDM Computer Solutions
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\kingsoft
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\LiveUpdate360
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Lotus
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\medialand
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MyDrivers
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\PowerISO
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Reg
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\TortoiseOverlays
HKLM\SOFTWARE\Wow6432Node\TortoiseSVN
HKLM\SOFTWARE\Wow6432Node\UCBrowser
HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
HKLM\SOFTWARE\Wow6432Node\VanDyke
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VisualSVN
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Allround Automations
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\AVG Secure Search =>Toolbar.AVGSearch
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\FreeDownloadManager.ORG
HKCU\SOFTWARE\IBM
HKCU\SOFTWARE\IDM Computer Solutions
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Kingsoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LiveUpdate360
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Lotus
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MustangExt
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\PPStream
HKCU\SOFTWARE\QyGameClient =>.Superfluous.IQIYIVideo
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\TortoiseSVN
HKCU\SOFTWARE\UCBrowser
HKCU\SOFTWARE\UCBrowserPID
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VanDyke
HKCU\SOFTWARE\VisualSVN
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contents of the Common Files folders (191) - 6s
O43 - CFD: 04/11/2015 - [0] D -- C:\Program Files (x86)\360
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6 =>PUP.Optional.CrossRider
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\ASP =>PUP.Optional.AdvancedSystemProtector
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\baidu
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\eviware
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\Free Download Manager
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\IBM
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\IDM Computer Solutions
O43 - CFD: 17/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\kingsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 06/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\MyDrivers
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\PLSQL Developer
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\PowerISO
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\RayDld =>PUP.Optional.CrossRider
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\RCP
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 03/11/2015 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\UCBrowser
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\VanDyke Software
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\ZTE VPN
O43 - CFD: 02/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 18/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 7
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System~Protector =>PUP.Optional.AdvancedSystemProtector
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
O43 - CFD: 21/11/2010 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM Applications
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - OraClient11g_home1
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PLSQL Developer
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecureCRT 7.1
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\soapUI Pro 3.5.1
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/11/2010 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software =>PUP.Optional.TencentAddressBar
O43 - CFD: 10/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseSVN
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraEdit
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VisualSVN
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯游戏
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\3WMiniPro3
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 13/11/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\FreeDownloadManager.ORG
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\IBM
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\IDMComp
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 18/11/2015 - [0] D -- C:\ProgramData\IQIYI Video =>.Superfluous.IQIYIVideo
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Kingsoft
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Lotus
O43 - CFD: 04/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\ProductData =>PUP.Optional.Generic
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Roaming
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Systweak =>PUP.Optional.Systweak
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\TempMoudleSet
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\UWMiniProU
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\VanDyke
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 10/11/2015 - [] D -- C:\Program Files (x86)\Common Files\TortoiseOverlays
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\360safe
O43 - CFD: 05/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Adobe
O43 - CFD: 18/11/2015 - [] SHD -- C:\Users\Serge Kabasele\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Apple Computer
O43 - CFD: 18/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\cpuminer
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\dg
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\DRPSu
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Free Download Manager
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\FreeDownloadManager.ORG
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Identities
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\IDMComp
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Intel
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\IObit
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video =>.Superfluous.IQIYIVideo
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\istartpageing =>PUP.Optional.IstartPageing
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Macromedia
O43 - CFD: 21/11/2010 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Media Center Programs
O43 - CFD: 17/11/2015 - [] SD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft
O43 - CFD: 06/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Notepad++
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Opera Software
O43 - CFD: 05/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\PLSQL Developer
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\PowerISO
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\ProductData
O43 - CFD: 19/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\smkits
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Subversion
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\systweak =>PUP.Optional.Systweak
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\VanDyke
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\VOPackage =>PUP.Optional.Downware
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\WinRAR
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\ZHP
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447842426-11CB-AA90-B9F517FD27D6
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447843067-11CB-AA90-B9F517FD27D6
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Adobe
O43 - CFD: 02/11/2015 - [0] SHD -- C:\Users\Serge Kabasele\AppData\Local\Application Data
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Bubble Style
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Camera Style
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\CEF
O43 - CFD: 17/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Downloaded Installations
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\ElevatedDiagnostics
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Experience Image
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Google
O43 - CFD: 02/11/2015 - [0] SHD -- C:\Users\Serge Kabasele\AppData\Local\History
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\IBM
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Kingsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Lotus
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Microsoft
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Local\Microsoft Help
O43 - CFD: 06/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Mozilla
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Opera Software
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Programs
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\SysassistByHotWheel =>PUP.Optional.Generic
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Systweak =>PUP.Optional.Systweak
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Temp
O43 - CFD: 02/11/2015 - [0] SHD -- C:\Users\Serge Kabasele\AppData\Local\Temporary Internet Files
O43 - CFD: 19/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Local\TSVNCache
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\UCBrowser
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Unity
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 02/11/2015 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PLSQL Developer
O43 - CFD: 18/11/2015 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯游戏
---\\ ShellIconOverlayIdentifiers (SIOI) (14) - 0s
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
O106 - SIOI: TortoiseSVN [1TortoiseNormal] - {C5994560-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [2TortoiseModified] - {C5994561-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [3TortoiseConflict] - {C5994562-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [4TortoiseLocked] - {C5994563-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [5TortoiseReadOnly] - {C5994564-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [6TortoiseDeleted] - {C5994565-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [7TortoiseAdded] - {C5994566-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [8TortoiseIgnored] - {C5994567-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [9TortoiseUnversioned] - {C5994568-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©
---\\ System Drivers List (66) - 3s
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/11/13 21:57:34 A . (.AVG Technologies - .) -- C:\Windows\System32\drivers\avgtpx64.sys [30568] ©
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2011/03/24 15:36:24 A . (.BitDefender - BitDefender AntiVirus FS filter driver.) -- C:\Windows\System32\drivers\bdfsfltr.sys [431176] ©
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2015/11/03 08:05:43 A . (.MyDrivers.com - DgService Driver.) -- C:\Windows\System32\drivers\DgSafe.sys [399600]
O58 - SDL:2014/09/30 01:05:58 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1d62x64.sys [378136] ©
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2015/07/29 12:44:00 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\Windows\System32\drivers\iaStorA.sys [1462720] ©
O58 - SDL:2015/07/29 12:44:02 A . (.Intel Corporation - Intel(R) Rapid Storage Technology Filter dr.) -- C:\Windows\System32\drivers\iaStorF.sys [31144] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2014/11/13 22:36:32 A . (.Lenovo. - Lenovo Power Management Driver.) -- C:\Windows\System32\drivers\ibmpmdrv.sys [60112]
O58 - SDL:2015/10/02 10:01:58 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [4920720] ©
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2015/10/02 10:01:48 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [460048] ©
O58 - SDL:2015/03/30 17:09:55 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [22800] ©
O58 - SDL:2015/03/30 17:09:55 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [389392] ©
O58 - SDL:2015/03/30 17:09:55 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [803600] ©
O58 - SDL:2015/11/02 17:19:34 A . (.Kingsoft Corporation - Kingsoft Antivirus Defend Engine Bootclean.) -- C:\Windows\System32\drivers\kavbootc64.sys [31848]
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2014/11/17 11:42:46 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwsw02.sys [3425768] ©
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2014/03/04 20:31:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [3882456] ©
O58 - SDL:2014/11/06 16:54:07 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsBaStor.sys [313048] ©
O58 - SDL:2014/11/06 17:07:08 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsP2Stor.sys [294104] ©
O58 - SDL:2014/12/05 15:41:45 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\drivers\RtsPer.sys [788696] ©
O58 - SDL:2014/11/06 16:57:44 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsPStor.sys [359128] ©
O58 - SDL:2014/12/08 14:13:25 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\Windows\System32\drivers\RtsUer.sys [377560] ©
O58 - SDL:2013/09/11 07:38:14 A . (.Realtek - Realtek USB GBE NIC NDIS6.20 64-bit Driver.) -- C:\Windows\System32\drivers\rtu30x64w7.sys [82136] ©
O58 - SDL:2012/12/09 10:51:20 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [126944] ©
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/14 01:00:40 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208] ©
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2011/11/21 18:59:02 A . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\drivers\trufos.sys [329800] ©
O58 - SDL:2015/11/11 13:10:18 A . (.Huorong Borui (Beijing) Technology Co., Ltd. - Huorong Network Security Core Kext.) -- C:\Windows\System32\drivers\ucguard.sys [89840] ©
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
---\\ Last modified or created user files (24) - 4s
O61 - LFC: 2015/11/13 08:00:23 A . (.PPBUX.) -- C:\Users\Serge Kabasele\Downloads\Download.exe [351904]
O61 - LFC: 2015/11/13 08:09:45 A . (.Informer Technologies, Inc..) -- C:\Users\Serge Kabasele\Downloads\siinst.exe [3602752]
O61 - LFC: 2015/11/18 10:25:37 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\Uninstall.exe [60853] =>PUP.Optional.Downware
O61 - LFC: 2015/11/18 10:24:44 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\VOPackage.exe [632223] =>PUP.Optional.Downware
O61 - LFC: 2015/11/11 17:32:44 A . (.腾讯公司.) -- C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AdbTools.dll [101432] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/11 17:32:44 A . (.腾讯公司.) -- C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AndroidAssist.dll [976952] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/18 15:14:40 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup0.bin [660] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/19 08:25:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup3.bin [651] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/19 08:25:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup4.bin [569] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/19 08:25:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup6.bin [628] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/18 13:57:17 A . (.爱奇艺.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate\IQIYIsetup_update_20150831.exe [2213065] =>.Superfluous.IQIYIVideo
O61 - LFC: 2015/11/18 13:49:23 A . (.爱奇艺.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate\GeePlayerSetup_update20151030.exe [16643888] =>.Superfluous.IQIYIVideo
O61 - LFC: 2015/11/17 09:12:56 A . (.Download Assistant.) -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive\quarantine\setup-491041d7-10c7-4ec5-9b9f-137d73a42efc.exe [1131720]
O61 - LFC: 2015/11/19 08:30:46 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\IBM\Notes\Data\workspace\.metadata\.plugins\com.ibm.rcp.managedsettings\akrwoiufdsa.bin [87]
O61 - LFC: 2015/11/19 08:30:46 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\IBM\Notes\Data\workspace\.metadata\.plugins\com.ibm.rcp.managedsettings\poidsafho.bin [138]
O61 - LFC: 2015/11/19 08:30:46 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\IBM\Notes\Data\workspace\.metadata\.plugins\com.ibm.rcp.managedsettings\zdxguhwkj.bin [229]
O61 - LFC: 2015/11/18 10:32:49 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Experience Image\xBin\ExperienceImage.dll [34304]
O61 - LFC: 2015/11/18 10:32:49 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Experience Image\xBin\pcv.dll [12288]
O61 - LFC: 2015/11/18 10:41:59 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Camera Style\xBin\tnxa.dll [12288]
O61 - LFC: 2015/11/18 10:39:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Bubble Style\xBin\bioclr.dll [12288]
O61 - LFC: 2015/11/18 14:17:31 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [74391]
O61 - LFC: 2015/11/18 10:37:58 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447843067-11CB-AA90-B9F517FD27D6\Uninstall.exe [51069]
O61 - LFC: 2015/11/16 15:17:52 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447842426-11CB-AA90-B9F517FD27D6\pnsbCAB0.exe [129800]
O61 - LFC: 2015/11/18 10:29:17 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447842426-11CB-AA90-B9F517FD27D6\Uninstall.exe [50134]
---\\ File Associations Shell Spawning (12) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O67 - Shell Spawning: <.js>[HKCU\..\open\Command] (.IDM Computer Solutions, Inc. - UltraEdit Professional Text/Hex Editor.) -- C:\Program Files (x86)\IDM Computer Solutions\UltraEdit\Uedit32.exe ©
---\\ Start Menu Internet (16) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.istartpageing.com/ =>PUP.Optional.IstartPageing
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.istartpageing.com/ =>PUP.Optional.IstartPageing
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe http://www.istartpageing.com/ =>PUP.Optional.IstartPageing
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
---\\ Search Browser Infection (15) - 3s
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.alias", "coldsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.iconURL", "http://f.coldsearch.com/favicon.ico"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.name", "coldsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.ptid", "etc1118"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.uid", "7b875a1c-1847-48eb-9b1d-9f17569ff5c6"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.url", "http://s.coldsearch.com/web?type=ds&ts=1447850835&pid=etc1118&uid=7b875a1c-1847-48eb[...] =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.startup.homepage", "http://www.istartpageing.com/?type=hp&ts=1447850099&z=1b7da9d095dc18bd6b99eb7g1zdz4m2bbw8e4[...] =>PUP.Optional.IstartPageing
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (istartsurf) - http://www.istartsurf.com/
O69 - SBI: SearchScopes [HKCU] {3D585554-3A2C-4BF8-9587-2D99C7A6EBAD} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {4274BAC3-589D-4BF8-A051-84A8A0B7A75F} - (百度搜索) - http://www.baidu.com/
O69 - SBI: SearchScopes [HKCU] {44177982-996D-4b79-B29F-5B60E13A5169} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://isearch.avg.com/
---\\ Crack & Keygen Files (1) - 5s
O82 - LFC: 2012/06/05 14:16:52 A . (...) -- C:\Users\Serge Kabasele\Desktop\keygen power iso\keygen power iso.exe [274432] =>.Crack,Keygen
---\\ Search Svchost Services (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [853504] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [679424] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [680960] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2477536] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] ©
---\\ Firewall Active Exception List (48) - 2s
O87 - FAEL: "{A17FC8FA-7227-44CA-B555-99F8433BD3DB}" [In-None-P6-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files (x86)\common files\tencent\qqdownload\122\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3D7C456C-7387-4BB4-9428-F730F67F7EE9}" [In-None-P6-TRUE] .(.深圳市腾讯计算机系统有限公司 - QQ游戏下载器.) -- C:\Users\Serge Kabasele\AppData\Local\Temp\Tencent\MiniQQGameDownloader.1.0.0.7\QQGameDownload.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8E158476-5A4F-40B9-B23F-2EEE94E754FB}" [In-None-P17-TRUE] .(.深圳市腾讯计算机系统有限公司 - QQ游戏下载器.) -- C:\Users\Serge Kabasele\AppData\Local\Temp\Tencent\MiniQQGameDownloader.1.0.0.7\QQGameDownload.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8C406919-4B67-4E8B-A634-CE0430B42267}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGame.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E68A7E14-9B1F-402A-9C9C-7CE73E0673AF}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGame.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{5FD28A7F-9097-45DF-A975-786AD06E620F}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameHall.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{DE4E655F-29A0-4FCA-AD11-666F5E103B9C}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameHall.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{BDAA7504-F093-48C5-981C-83D82168B983}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameLogic.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1249C9EE-3269-4577-B0D5-4446E47AFB0E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameLogic.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E924BB78-1739-45AA-AB7A-FB4321745C18}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameDl.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3D317691-A759-4011-BD82-2FBF19ABB00E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameDl.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7CD7C1CC-66A8-4640-B377-33812396C833}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\video\QQGameNet.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6B7CF0B0-0786-4317-A683-8553EBBC85C8}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\video\QQGameNet.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{F3556522-52B2-407A-A462-77C9C46CAD59}" [In-None-P6-TRUE] .(...) -- C:\Users\Serge Kabasele\AppData\Local\Temp\nsoAC64.tmp\Installer-75695295.exe (.not file.)
O87 - FAEL: "{BB5E31DF-0B8D-47E4-B628-4DE4511CD3CC}" [In-None-P17-TRUE] .(...) -- C:\Users\Serge Kabasele\AppData\Local\Temp\nsoAC64.tmp\Installer-75695295.exe (.not file.)
O87 - FAEL: "{FCEC0E9E-FCC1-4843-9A03-9AB66B9BF2C9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\auclt.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{9B4B5DD5-2405-40D9-9511-53EBFF1519D8}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\auclt.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{60061E08-2B28-4A0A-8FE7-C3813D5636BF}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\txupd.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E0BEA32B-B8DD-4A54-AA39-A13628F4F7E7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\txupd.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{23FC9920-F6CE-427f-8627-F43C61CA5BA0}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{DDE08991-6BAA-452f-8C53-7238354A1723}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{34FC9662-116C-4a34-B379-562F442B612E}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{CFF6A449-CEC3-4388-8852-249F63013B59}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{DC7555DF-C3C2-4a8c-9B95-9FA2DFFBF885}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{52C38249-AF6B-4704-A93C-6B8641E8009F}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{E24C2F9E-B912-490e-9213-872BB95438DC}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{A2A03711-EBB3-40fb-B3E1-9C4A5980DDAF}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{6DF4F9F5-30F8-4f69-970E-9800729812E4}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{F5AA435A-1D97-4cbe-83A0-B32DE433D080}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{DCE2D902-937C-49a1-ACF0-96623D6D0876}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{B255C783-4A8C-4f05-A057-4EBB5D20E9C8}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{F838E1D3-163E-4d44-BF66-5A0751A560E4}" [In-None-P17-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{C3758835-9D82-42ab-ACC5-B827527D677A}" [In-None-P17-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{640AD4BB-7430-4cc0-AB7E-54EE8939208D}" [In-None-P6-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{5F658182-ACF1-4572-977C-36B688C2FE19}" [In-None-P6-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{1DB3CED3-FCCB-4331-B843-9E72EA7DB8FB}" [In-None-P6-TRUE] .(.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3F32B956-DFF5-4008-9C57-E46E04FD3E80}" [In-None-P17-TRUE] .(.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{16BFB1A1-B0CB-4CCE-9D97-E82B57E180A2}" [In-None-P6-FALSE] .(.VisualSVN Ltd. - VisualSVN Distributed File System Service.) -- C:\Program Files\VisualSVN Server\bin\vdfssvc.exe
O87 - FAEL: "{02281AAD-2EE1-402F-BE0D-6EDA94068E2B}" [In-None-P6-FALSE] .(.VisualSVN Ltd. - VisualSVN Distributed File System Service.) -- C:\Program Files\VisualSVN Server\bin\vdfssvc.exe
O87 - FAEL: "{B1CFA5BA-03C5-49EA-92CC-FC4BB3414015}" [In-None-P17-TRUE] .(.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O87 - FAEL: "{6029CBBC-83D6-4FBD-B398-DA43D38DF464}" [In-None-P17-TRUE] .(.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O87 - FAEL: "{1CA18555-EDD7-44F7-9C64-937206875ABB}" [In-None-P17-TRUE] .(.深圳市迅雷网络技术有限公司 - 迅雷云加速开放平台.) -- C:\Program Files (x86)\UCBrowser\Application\Downloader\download\MiniThunderPlatform.exe
O87 - FAEL: "{D98F252F-AA37-4A0C-8913-0F7DBB176E1C}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺升级模块.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{2D84CADF-34F4-4910-95A7-1BA71403192A}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺万能播放器.) -- C:\IQIYI Video\GeePlayer\GeePlayer.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{E4A512E0-97C0-4934-A4DF-EA330115335F}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺升级模块.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{EA60A24A-AC1D-492F-9B84-A4169EB1580A}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺PPS影音.) -- C:\IQIYI Video\LStyle\QyClient.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{E3FE3231-4455-4653-928F-ECD3CD46D43D}" [In-None-P17-TRUE] .(.爱奇艺公司 - 爱奇艺PPS影音 网页播放组件.) -- C:\IQIYI Video\LStyle\QyWebPlayer.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{0E222121-CE69-4FEE-B197-C6712D41F15D}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺视频播放器.) -- C:\IQIYI Video\LStyle\QyPlayer.exe =>.Superfluous.IQIYIVideo
---\\ Services not Microsoft (SR=Run, SS=Stop) (24) - 15s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SR - Auto [18/11/2015] [ 625664] Left Button Charger (bykesute) . (...) - C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp =>PUP.Optional.CrossRider
SS - Demand [02/10/2015] [ 279144] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe ©
SR - Auto [29/10/2014] [ 636112] Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe ©
SR - Auto [15/10/2013] [ 5164136] IBM Notes Diagnostics (IBM Notes Diagnostics) . (.IBM.) - C:\Program Files (x86)\IBM\Notes\nsd.exe ©
SR - Auto [13/11/2014] [ 84208] Lenovo PM Service (IBMPMSVC) . (.Lenovo..) - C:\Windows\System32\ibmpmsvc.exe
SR - Auto [02/10/2015] [ 344168] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe ©
SS - Auto [08/04/2014] [ 2152768] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [15/10/2013] [ 1654376] IBM Notes Smart Upgrade Service (LNSUSvc) . (.IBM Corp.) - C:\Program Files (x86)\IBM\Notes\SUService.exe
SS - Demand [30/10/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [15/10/2013] [ 38504] Multi-user Cleanup Service (Multi-user Cleanup Service) . (.IBM Corp.) - C:\Program Files (x86)\IBM\Notes\ntmulti.exe
SS - Auto [09/10/2015] [ 236816] Be sure to use the latest version of Mustang Service. (MustangService_2015_10_10) . (.MustangService.) - C:\ProgramData\TempMoudleSet\MustangSer1848.exe
SS - Demand [29/10/2014] [ 265936] Wireless PAN DHCP Server (MyWiFiDHCPDNS) . (.Copyright (C) 2005-2010 by Achal Dhir.) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ©
SR - Auto [29/10/2014] [ 154832] Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe ©
SR - Auto [18/11/2015] [ 170656] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
SR - Auto [31/08/2012] [ 212600] System Loader (SystemLoader) . (.Medialand, Inc.) - C:\Windows\SysWOW64\sysloader.exe
SR - Auto [13/08/2015] [ 564560] UC浏览器基础服务 (UCBrowserSvc) . (...) - C:\Program Files (x86)\UCBrowser\Application\UCService.exe
SS - Disabled [20/03/2015] [ 96912] VisualSVN Distributed File System Service (vdfssvc) . (.VisualSVN Ltd..) - C:\Program Files\VisualSVN Server\bin\vdfssvc.exe
SR - Auto [20/03/2015] [ 27280] VisualSVN Server (VisualSVNServer) . (.Apache Software Foundation.) - C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe ©
SS - Demand [20/03/2015] [ 167056] VisualSVN Repository Configurator Service (vrepocfgsvc) . (.VisualSVN Ltd..) - C:\Program Files\VisualSVN Server\bin\vrepocfgsvc.exe
SR - Auto [13/11/2015] [ 711112] (vToolbarUpdater13.2.0) . (.Copyright (C) 2012.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
SR - Auto [18/11/2015] [ 309384] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\3WMiniPro3\WMiniPro.exe =>PUP.Optional.WpManager
SR - Auto [29/10/2014] [ 3818704] Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ©
---\\ Search Tracing Registry Key (4) - 0s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASAPI32 =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASMANCS =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASMANCS =>PUP.Optional.TencentAddressBar
---\\ Additional Scan (O88) (103) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\bykesute =>PUP.Optional.CrossRider
C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater13.2.0 =>Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager
C:\ProgramData\3WMiniPro3\WMiniPro.exe =>PUP.Optional.WpManager
C:\Program Files (x86)\ASP\AspManager.exe =>PUP.Optional.AdvancedSystemProtector
C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe =>PUP.Optional.AdvancedSystemProtector
C:\Program Files (x86)\RCP\RegCleanPro.exe =>PUP.Optional.RegistryPowerCleaner
C:\Program Files (x86)\UCBrowser\Application\update_task.exe =>PUP.Optional.CertifiedToolbar
C:\Windows\Tasks\RegClean Pro_DEFAULT.job =>PUP.Optional.RegistryPowerCleaner
C:\Windows\Tasks\RegClean Pro_UPDATES.job =>PUP.Optional.RegistryPowerCleaner
C:\Windows\System32\Tasks\Advanced System~Protector =>PUP.Optional.AdvancedSystemProtector
C:\Windows\System32\Tasks\Advanced System~Protector_startup =>PUP.Optional.AdvancedSystemProtector
C:\Windows\System32\Tasks\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\Windows\System32\Tasks\RegClean Pro_DEFAULT =>PUP.Optional.RegistryPowerCleaner
C:\Windows\System32\Tasks\RegClean Pro_UPDATES =>PUP.Optional.RegistryPowerCleaner
C:\Program Files (x86)\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch
C:\Program Files (x86)\Tencent\QQIntl\Bin\TXPlatform.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartpageing.xml =>PUP.Optional.IstartPageing
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\1447842661_xpi =>PUP.Optional.LightningNewTab
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
C:\IQIYI Video\LStyle\npWebPlayer.dll =>.Superfluous.IQIYIVideo
C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\bin\npSSOAxCtrlForPTLogin.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\AVG Secure Search\13.2.0.3\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe =>Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect =>PUP.Optional.AnyProtect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IQIYI Video =>.Superfluous.IQIYIVideo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PopupProduct =>PUP.Optional.CompatibleWebDir
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater =>PUP.Optional.SoftwareUpdater
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage =>PUP.Optional.Downware
HKLM\SOFTWARE\Wow6432Node\AVG Secure Search =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AVG Secure Search =>Toolbar.AVGSearch
HKCU\SOFTWARE\QyGameClient =>.Superfluous.IQIYIVideo
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6 =>PUP.Optional.CrossRider
C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Program Files (x86)\ASP =>PUP.Optional.AdvancedSystemProtector
C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files (x86)\RayDld =>PUP.Optional.CrossRider
C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System~Protector =>PUP.Optional.AdvancedSystemProtector
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software =>PUP.Optional.TencentAddressBar
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
C:\ProgramData\IQIYI Video =>.Superfluous.IQIYIVideo
C:\ProgramData\ProductData =>PUP.Optional.Generic
C:\ProgramData\Systweak =>PUP.Optional.Systweak
C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video =>.Superfluous.IQIYIVideo
C:\Users\Serge Kabasele\AppData\Roaming\istartpageing =>PUP.Optional.IstartPageing
C:\Users\Serge Kabasele\AppData\Roaming\systweak =>PUP.Optional.Systweak
C:\Users\Serge Kabasele\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\VOPackage =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
C:\Users\Serge Kabasele\AppData\Local\SysassistByHotWheel =>PUP.Optional.Generic
C:\Users\Serge Kabasele\AppData\Local\Systweak =>PUP.Optional.Systweak
C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\Uninstall.exe =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\VOPackage.exe =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AdbTools.dll =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AndroidAssist.dll =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup0.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup3.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup4.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup6.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate\IQIYIsetup_update_20150831.exe =>.Superfluous.IQIYIVideo
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate\GeePlayerSetup_update20151030.exe =>.Superfluous.IQIYIVideo
C:\program files (x86)\common files\tencent\qqdownload\122\tencentdl.exe =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Local\Temp\Tencent\MiniQQGameDownloader.1.0.0.7\QQGameDownload.exe =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\GeePlayer\GeePlayer.exe =>.Superfluous.IQIYIVideo
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\LStyle\QyClient.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\LStyle\QyWebPlayer.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\LStyle\QyPlayer.exe =>.Superfluous.IQIYIVideo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASAPI32 =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASMANCS =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASMANCS =>PUP.Optional.TencentAddressBar
---\\ Summary of the elements found (24) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/blog =>Toolbar.AVGSearch
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/rogue-registrypowercleaner/ =>PUP.Optional.RegistryPowerCleaner
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/adware-tencentaddressbar/ =>PUP.Optional.TencentAddressBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.IstartPageing
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/blog =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/blog =>.Superfluous.IQIYIVideo
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.CompatibleWebDir
http://www.nicolascoolman.fr/pup-software-updater/ =>PUP.Optional.SoftwareUpdater
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
http://www.nicolascoolman.fr/blog =>.Superfluous.DriverGenius
~ End of the scan, 16179 items in 57 seconds (1014)(1)
~ Run by Serge Kabasele (Administrator) (2015/11/19 08:34:30)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Serge Kabasele\Desktop\ZHPDiag.txt
~ Report: C:\Users\Serge Kabasele\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (3) - 0s
MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0
OPIE: Opera 33.0.1990.115 v33.0.1990.115
MSIE: Internet Explorer v11.0.9600.17843
---\\ Windows Product Information (5) - 0s
Windows Server License Manager Script : Absent (Not found)
Windows ID Activation : Inconnue (Unknown)
Windows Licence : Inconnue (Unknown)
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System protection software (1) - 3s
Windows Defender W7 (Activate)
---\\ Surveillance software (1) - 3s
Adobe Acrobat Reader DC - Français
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 61 Stepping 4, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 3883.392 MB (43% free)
System Restore: Activé (Enable)
System drive C: has 38 GB () free of 81 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: SERGEKABASELE
~ User Name: Serge Kabasele
~ Logged in as Administrator
---\\ Enumeration of the disk units (3) - 0s
~ Drive C: has 38 GB free of 81 GB (System)
~ Drive D: has 175 GB free of 199 GB
~ Drive E: has 111 GB free of 194 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (25) - 0s
[MD5.AC4C51EB24AA95B77F705AB159189E24] - 21/11/2010 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2872320] ©
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] ©
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] ©
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - 05/11/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2426880] ©
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - 21/11/2010 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [390656] ©
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] ©
[MD5.A52B6CC24063CC83C78C0E6F24DEEC01] - 21/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] ©
[MD5.59DF156711A76BCB993253EC6C9BBF41] - 21/11/2010 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] ©
[MD5.314C17917AC8523EC77A710215012A65] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497152] ©
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] ©
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] ©
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] ©
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] ©
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] ©
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] ©
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] ©
[MD5.FAF015B07E3A2874A790A39B7D2C579F] - 21/11/2010 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [158208] ©
[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] ©
[MD5.05D78AA5CB5F3F5C31160BDB955D0B7C] - 21/11/2010 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1659776] ©
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] ©
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] ©
[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] ©
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] ©
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - 21/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119296] ©
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [295808] ©
---\\ Non Microsoft non disabled Windows Services (18) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Left Button Charger (bykesute) . (...) - C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp =>PUP.Optional.CrossRider
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe ©
O23 - Service: IBM Notes Diagnostics (IBM Notes Diagnostics) . (.IBM - wnsd.) - C:\Program Files (x86)\IBM\Notes\nsd.exe ©
O23 - Service: Lenovo PM Service (IBMPMSVC) . (.Lenovo. - Lenovo Power Management Service.) - C:\Windows\System32\ibmpmsvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe ©
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
O23 - Service: IBM Notes Smart Upgrade Service (LNSUSvc) . (.IBM Corp - IBM Notes/Domino.) - C:\Program Files (x86)\IBM\Notes\SUService.exe
O23 - Service: Multi-user Cleanup Service (Multi-user Cleanup Service) . (.IBM Corp - IBM Notes/Domino.) - C:\Program Files (x86)\IBM\Notes\ntmulti.exe
O23 - Service: Be sure to use the latest version of Mustang Service. (MustangService_2015_10_10) . (.MustangService - .) - C:\ProgramData\TempMoudleSet\MustangSer1848.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe ©
O23 - Service: SSFK (SSFK) . (.TODO: <公司名> - TODO: <文件说明>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
O23 - Service: System Loader (SystemLoader) . (.Medialand, Inc - sysloader.) - C:\Windows\SysWOW64\sysloader.exe
O23 - Service: UC浏览器基础服务 (UCBrowserSvc) . (...) - C:\Program Files (x86)\UCBrowser\Application\UCService.exe
O23 - Service: VisualSVN Server (VisualSVNServer) . (.Apache Software Foundation - Apache HTTP Server.) - C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe ©
O23 - Service: (vToolbarUpdater13.2.0) . (.Copyright (C) 2012 - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
O23 - Service: WdsManPro Service (WdsManPro) . (.DTools LIMITED - DTools.) - C:\ProgramData\3WMiniPro3\WMiniPro.exe =>PUP.Optional.WpManager
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ©
---\\ Task Planned Automatically (25) - 4s
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1067736] ©
[MD5.B62786A86D8622714E5011F2AA1F8A5A] [APT] [Advanced System~Protector] (.Copyright.) -- C:\Program Files (x86)\ASP\AspManager.exe [485328] =>PUP.Optional.AdvancedSystemProtector
[MD5.E400B9F6EDA738EF1CBB89941253874C] [APT] [Advanced System~Protector_startup] (.Copyright.) -- C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe [6514640] =>PUP.Optional.AdvancedSystemProtector
[MD5.00000000000000000000000000000000] [APT] [ASC7U_SkipUac_Serge Kabasele] (...) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\ASC.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [ASC7_PerformanceMonitor] (...) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate\Monitor.exe (.not file.) [0]
[MD5.51A2632AAFF24229FB500BC52CFECBF2] [APT] [Opera scheduled Autoupdate 1447839066] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [948856] ©
[MD5.A1A134C19579C3198ACDC743EBB4942B] [APT] [RegClean Pro] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>PUP.Optional.RegistryPowerCleaner
[MD5.A1A134C19579C3198ACDC743EBB4942B] [APT] [RegClean Pro_DEFAULT] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>PUP.Optional.RegistryPowerCleaner
[MD5.A1A134C19579C3198ACDC743EBB4942B] [APT] [RegClean Pro_UPDATES] (...) -- C:\Program Files (x86)\RCP\RegCleanPro.exe [8732952] =>PUP.Optional.RegistryPowerCleaner
[MD5.2EFD6AD223D2650B9B822374EE311CCA] [APT] [RtHDVBg_LENOVO_MICPKEY] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744] ©
[MD5.37C6C318D6AFAFA2EBA99820EDF21DA6] [APT] [RTKCPL] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032] ©
[MD5.5DA7218AC3BBD94C0AE717C288411DA3] [APT] [UCBrowserUpdater{e23df38b34103b001ee4a910a2610d11}] (.UCWeb Inc.) -- C:\Program Files (x86)\UCBrowser\Application\update_task.exe [100688] =>PUP.Optional.CertifiedToolbar
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\Tasks\RegClean Pro_DEFAULT.job [276] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\Tasks\RegClean Pro_UPDATES.job [284] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] ©
O39 - APT: Advanced System~Protector - (.Copyright.) -- C:\Windows\System32\Tasks\Advanced System~Protector [3722] =>PUP.Optional.AdvancedSystemProtector
O39 - APT: Advanced System~Protector_startup - (.Copyright.) -- C:\Windows\System32\Tasks\Advanced System~Protector_startup [3076] =>PUP.Optional.AdvancedSystemProtector
O39 - APT: ASC7U_SkipUac_Serge Kabasele - (...) -- C:\Windows\System32\Tasks\ASC7U_SkipUac_Serge Kabasele [2882]
O39 - APT: ASC7_PerformanceMonitor - (...) -- C:\Windows\System32\Tasks\ASC7_PerformanceMonitor [3126]
O39 - APT: Opera scheduled Autoupdate 1447839066 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1447839066 [3848] ©
O39 - APT: RegClean Pro - (...) -- C:\Windows\System32\Tasks\RegClean Pro [3090] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RegClean Pro_DEFAULT - (...) -- C:\Windows\System32\Tasks\RegClean Pro_DEFAULT [2898] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RegClean Pro_UPDATES - (...) -- C:\Windows\System32\Tasks\RegClean Pro_UPDATES [3054] =>PUP.Optional.RegistryPowerCleaner
O39 - APT: RtHDVBg_LENOVO_MICPKEY - (.Realtek Semiconductor.) -- C:\Windows\System32\Tasks\RtHDVBg_LENOVO_MICPKEY [3156] ©
O39 - APT: RTKCPL - (.Realtek Semiconductor.) -- C:\Windows\System32\Tasks\RTKCPL [3132] ©
---\\ Process running (38) - 1s
[MD5.1F50C792A4BC183CF1FDBE1494A15680] - (.Lenovo. - Lenovo Power Management Service.) -- C:\Windows\System32\ibmpmsvc.exe [84208] [PID.984]
[MD5.55ECDB4226F2405F48039CE545101278] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [344168] [PID.1224] ©
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1792] ©
[MD5.DE348FB79D6A9A8C8FBA490EC49CC564] - (...) -- C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp [625664] [PID.1844] =>PUP.Optional.CrossRider
[MD5.323740D842252032D57B5DED757C65D5] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [636112] [PID.1888] ©
[MD5.AA57F0A42859D7195C4D9FEB2E11EB3A] - (.IBM - wnsd.) -- C:\Program Files (x86)\IBM\Notes\nsd.exe [5164136] [PID.1928] ©
[MD5.F006F98049A534B2A96D6C8632EF6E64] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\SUService.exe [1654376] [PID.1900]
[MD5.DD09B8E057F265A92989B3EEDAF8B59D] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\ntmulti.exe [38504] [PID.1976]
[MD5.23D6449B8D2E2A0CA02A09453853F5B0] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [154832] [PID.2052] ©
[MD5.31E8E35B898EFCFE5787A362544167E8] - (.TODO: <公司名> - TODO: <文件说明>.) -- C:\Program Files (x86)\SFK\SSFK.exe [170656] [PID.2084]
[MD5.3D14AA69E07F853B39F80872D3B63DEA] - (.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe [212600] [PID.2140]
[MD5.7A6416A6D58B8DF8C8C7BB7E353E5FCF] - (...) -- C:\Program Files (x86)\UCBrowser\Application\UCService.exe [564560] [PID.2272]
[MD5.4B43154D6213A6E72806C807B4FDB072] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe [27280] [PID.2296] ©
[MD5.FD04978FF1DBCB748956D1AB4F694629] - (.Copyright (C) 2012 - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [711112] [PID.2328] =>Toolbar.AVGSearch
[MD5.CF13185C3435FEEB157483C2FDC6AFB2] - (.DTools LIMITED - DTools.) -- C:\ProgramData\3WMiniPro3\WMiniPro.exe [309384] [PID.2348] =>PUP.Optional.WpManager
[MD5.75044F6FC44045047B15415B89E4D1B4] - (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3818704] [PID.2380] ©
[MD5.4B43154D6213A6E72806C807B4FDB072] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe [27280] [PID.2680] ©
[MD5.D69ABF64473B2CA863BB82EEC91B7D40] - (. - pps.) -- C:\Program Files (x86)\baidu\pps.exe [81920] [PID.4548]
[MD5.089AC78F91E11841D5D4E65719464285] - (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe [576104] [PID.4556] ©
[MD5.34C980499EAD9725F6E22E4BCDA82174] - (.http://tortoisesvn.net - TortoiseSVN status cache.) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe [339840] [PID.4688] ©
[MD5.20218284E050B0C671CC5456214CA335] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216] [PID.4856] ©
[MD5.7CC26674A16EAED288982D1CAB87ADA5] - (.Copyright © 2015 - MalwareProtectionClient.) -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe [850976] [PID.4936]
[MD5.5662242EDC8974E926D1C9F5716366FF] - (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe [997320] [PID.4944] =>Toolbar.AVGSearch
[MD5.2E5A1CE9BF70352BAB7A1CF9BE11046B] - (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [336992] [PID.4992] ©
[MD5.3CCC2C149689412D8BD5A8D174EF520E] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [313448] [PID.5096] ©
[MD5.5605F979F145E46A8B23FE7AAACF9949] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [248424] [PID.5112] ©
[MD5.E93B9254F31286627B1F5E293B620819] - (...) -- C:\Windows\System32\igfxTray.exe [393320] [PID.4116]
[MD5.B09E5650F110BD602D0D60E1F9D24FB5] - (.Tencent - QQ2013.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\TXPlatform.exe [167480] [PID.4076] =>PUP.Optional.TencentAddressBar
[MD5.9782C9A518161936FFE2D156C24A7F9B] - (.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe [97976] [PID.1532] =>PUP.Optional.TencentAddressBar
[MD5.2EFD6AD223D2650B9B822374EE311CCA] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744] [PID.5336] ©
[MD5.37C6C318D6AFAFA2EBA99820EDF21DA6] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032] [PID.5348] ©
[MD5.34E0CA53E943A677949B03EBEC46F0AE] - (...) -- C:\Program Files (x86)\UCBrowser\Application\5.2.3937.21\UCAgent.exe [1296208] [PID.1044]
[MD5.D3863134984DCE28013A0B1A36FACA07] - (.FreeDownloadManager.ORG - Free Download Manager.) -- C:\Program Files (x86)\Free Download Manager\fdm.exe [5693544] [PID.6160] ©
[MD5.C2CDB8B7502618CB88669A09C9B99A89] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\nlnotes.exe [2760296] [PID.6552]
[MD5.B6B771A6104AA347B9132E8F4C603027] - (.IBM - IBM Notes Social Edition.) -- C:\Program Files (x86)\IBM\Notes\framework\rcp\eclipse\plugins\com.ibm.rcp.base_9.0.1.20131002-1404\win32\x86\notes2.exe [517984] [PID.6620] ©
[MD5.BDBB17D4B1DFAE5BAA45F9DEA51EF35C] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\ntaskldr.exe [22120] [PID.2480]
[MD5.04B061F68D9A4678EBF73DD04529AAFA] - (.IBM Corp - IBM Notes/Domino.) -- C:\Program Files (x86)\IBM\Notes\nnotesmm.exe [20072] [PID.6472]
[MD5.6B9C3522C2C242CECB928854C2E9EDA9] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Downloads\Software\ZHPDiag3.exe [1971200] [PID.6788] ©
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (19) - 1s
M0 - MFSP: prefs.js [Serge Kabasele - 77thduwr.default] http://www.istartpageing.com/?type=hp&ts=1447850099&z=1b7da9d095dc18bd6b99eb7g1zdz4m2bbw8e4gbe5e&from=cmi&uid=ST500LM021-1KJ152_W6278HCAXXXXW6278HCA =>PUP.Optional.IstartPageing
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\@5DCDB6BE5D42DB9DEFACB674686F23B35DCD.xpi
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\coldsearch.xml
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartpageing.xml =>PUP.Optional.IstartPageing
P2 - EXT FILE: (...) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\1447842661_xpi =>PUP.Optional.LightningNewTab
P2 - EXT: (.IObit - Advanced SystemCare Surfing Protection.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\ascsurfingprotection@iobit.com ©
P2 - EXT: (.roc - Default SearchProtected .) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\defsearchp@gmail.com
P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
P2 - EXT: (.vincent - Smart Search .) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\ffsmartsearchbar@gmail.com
P2 - EXT: (.jerry - sidebar.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\sidebarff@gmail.com
P2 - EXT: (.quicknewtab.com - Quick NewTab.) -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\smartffsearch@gmail.com
P2 - FPN: [HKCU] [@iqiyi.com/npWebPlayer] - (.爱奇艺公司.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>.Superfluous.IQIYIVideo
P2 - FPN: [HKLM] [@iqiyi.com/npWebPlayer] - (.爱奇艺公司.) -- C:\IQIYI Video\LStyle\npWebPlayer.dll =>.Superfluous.IQIYIVideo
P2 - FPN: [HKLM] [@qq.com/npchrome] - (.Tencent.) -- C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/npqscall] - (.Tencent.) -- C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll =>PUP.Optional.TencentAddressBar
P2 - FPN: [HKLM] [@qq.com/TXSSO] - (.Tencent.) -- C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\bin\npSSOAxCtrlForPTLogin.dll =>PUP.Optional.TencentAddressBar
---\\ Internet Explorer Extensions, Start, Search (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/ =>PUP.Optional.IsStart
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (4) - 0s
O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} (Orphean)
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll ©
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL ©
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
---\\ Internet Explorer Toolbars (2) - 1s
O3 - Toolbar: 0xFF6BDFE7A555B74EA6734ED3E9456D39 - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} . (...) -- (.not file.)
O3 - Toolbar: Notes Link - [HKLM]{95B7759C-8C7F-4BF1-B163-73684A933233} . (.Copyright 2012 - AVG Secure Search.) -- C:\Program Files (x86)\AVG Secure Search\13.2.0.3\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
---\\ Auto loading programs from Registry and folders (15) - 0s
O4 - HKCU\..\Run: [QQ2009] . (.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - HKCU\..\Run: [apphide] . (. - pps.) -- C:\Program Files (x86)\baidu\pps.exe
O4 - HKCU\..\Run: [HCDNClient] . (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe ©
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe ©
O4 - HKLM\..\Wow6432Node\Run: [MalwareProtectionLive] . (.Copyright © 2015 - MalwareProtectionClient.) -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch
O4 - HKLM\..\Wow6432Node\Run: [ROC_roc_ssl_v12] . (.Copyright (C) 2011 . All rights reserved. - .) -- C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe =>Toolbar.AVGSearch
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-1901478253-3907196461-686834597-1000\..\Run: [QQ2009] . (.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - HKUS\S-1-5-21-1901478253-3907196461-686834597-1000\..\Run: [apphide] . (. - pps.) -- C:\Program Files (x86)\baidu\pps.exe
O4 - HKUS\S-1-5-21-1901478253-3907196461-686834597-1000\..\Run: [HCDNClient] . (.iQIYI.COM - 爱奇艺HCDN网络数据传输组件.) -- C:\IQIYI Video\Common\QyKernel.exe ©
---\\ Global shortcuts Startup (8) - 2s
O4 - GS\Desktop [Administrator]: AnyProtect.lnk . (...) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Administrator]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [Guest]: AnyProtect.lnk . (...) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Guest]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - GS\Desktop [Serge Kabasele]: AnyProtect.lnk . (...) C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe =>PUP.Optional.AnyProtect
O4 - GS\Quicklaunch [Serge Kabasele]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O4 - GS\CommonDesktop [Public]: Advanced System~Protector.lnk . (.Copyright - ASP.) C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe =>PUP.Optional.AdvancedSystemProtector
O4 - GS\CommonDesktop [Public]: Tencent QQ.lnk . (.Tencent - QQ International.) C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
---\\ Lop.com/Domain Hijackers (12) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 114.114.114.114,8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.224.201.5 10.224.201.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.199.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 114.114.114.114,8.8.8.8
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 10.224.201.5 10.224.201.6
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.199.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 114.114.114.114,8.8.8.8
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 10.224.201.5 10.224.201.6
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.199.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpDomain = lan
---\\ Extra protocols (24) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll ©
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL ©
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll ©
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll ©
O18 - Handler: viprotocol [64Bits] - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (...) -- C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll =>Toolbar.AVGSearch
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL ©
---\\ Software installed (55) - 3s
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Advanced-System Protector - (.Advanced System Protector.) [HKLM][64Bits] -- 00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1 =>PUP.Optional.AdvancedSystemProtector
O42 - Logiciel: AnyProtect - (.CMI Limited.) [HKLM][64Bits] -- AnyProtect =>PUP.Optional.AnyProtect
O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG Secure Search ©
O42 - Logiciel: Compatible Web Directory - (.Compatible Web Directory.) [HKLM][64Bits] -- PopupProduct =>PUP.Optional.CompatibleWebDir
O42 - Logiciel: Country Code SIM Card - (.Country Code SIM Card.) [HKLM][64Bits] -- SoftwareUpdater =>PUP.Optional.SoftwareUpdater
O42 - Logiciel: Free Download Manager 3.9.6 - (.FreeDownloadManager.ORG.) [HKLM][64Bits] -- Free Download Manager_is1 ©
O42 - Logiciel: IBM Notes 9.0.1 Social Edition - (.IBM.) [HKLM][64Bits] -- {FFEBEBC7-7761-4D1F-9C7C-562EA3752590} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {5CA7FC9B-8508-4494-B365-6FBCBAEB8E89} ©
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel(R) Corporation.) [HKLM][64Bits] -- {98f335cd-0a32-4b3f-b74c-ef9480e834f0} ©
O42 - Logiciel: Intel(R) Network Connections Drivers - (.Intel.) [HKLM][64Bits] -- PROSet ©
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} ©
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} ©
O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM][64Bits] -- {9bffdf20-c3a3-4e93-9cbf-61712c6a38be} ©
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {2ABB66D0-7921-46E4-AF7D-CF40323A10BB} ©
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall ©
O42 - Logiciel: Lenovo Power Management Driver - (...) [HKLM][64Bits] -- Power Management Driver
O42 - Logiciel: Malware Protection Live - (...) [HKLM][64Bits] -- MalwareProtectionLive
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-0000-0000000FF1CE} ©
O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService ©
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ ©
O42 - Logiciel: Opera Stable 33.0.1990.115 - (.Opera Software.) [HKLM][64Bits] -- Opera 33.0.1990.115 ©
O42 - Logiciel: PL/SQL Developer 11.0.4.1774 - (.Allround Automations.) [HKLM][64Bits] -- PL/SQL Developer [092082C9]
O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO ©
O42 - Logiciel: QQ International - (.Tencent Technology(Shenzhen) Company Limited.) [HKLM][64Bits] -- {3CA54984-A14B-42FE-9FF1-7EA90151D725}
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: RegClean-Pro - (.systweak.com.) [HKLM][64Bits] -- RegClean-Pro_is1
O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM][64Bits] -- VOPackage =>PUP.Optional.Downware
O42 - Logiciel: soapUI Pro 3.5.1 3.5.1 - (.eviware software ab.) [HKLM][64Bits] -- 9461-7119-9489-9274
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM][64Bits] -- IObit Surfing Protection_is1 ©
O42 - Logiciel: TortoiseSVN 1.8.11.26392 (64 bit) - (.TortoiseSVN.) [HKLM][64Bits] -- {11309CA9-9118-44D6-B345-83C86A5111D5} ©
O42 - Logiciel: UC浏览器 - (.广州市动景计算机科技有限公司.) [HKLM][64Bits] -- UCBrowser
O42 - Logiciel: UltraEdit - (.IDM Computer Solutions, Inc..) [HKLM][64Bits] -- {635A6AF2-63AF-4C1C-AF57-BDC8AF6D397D} ©
O42 - Logiciel: UltraEdit - (.IDM Computer Solutions, Inc..) [HKLM][64Bits] -- InstallShield_{635A6AF2-63AF-4C1C-AF57-BDC8AF6D397D} ©
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer ©
O42 - Logiciel: VanDyke Software SecureCRT 7.1 - (.VanDyke Software, Inc..) [HKLM][64Bits] -- {FF7E0D5F-28C6-463D-950E-70C0B5328FF8}
O42 - Logiciel: VisualSVN Server 3.3.1 - (.VisualSVN Ltd..) [HKLM][64Bits] -- {02887779-BAEA-4C28-B883-DD533B292BFE}
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player ©
O42 - Logiciel: Windows Driver Package - Intel Corporation (iaStorA) HDC (07/27/2015 14.6. - (.Intel Corporation.) [HKLM][64Bits] -- B0FF0E25758234FAE079CEC7FD0C40489CE29D77 ©
O42 - Logiciel: Windows Driver Package - Intel Corporation (iaStorA) SCSIAdapter (07/27/20 - (.Intel Corporation.) [HKLM][64Bits] -- 5458B07EF6F24074D56A272E2B230514C32FFB8B ©
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ©
O42 - Logiciel: 爱奇艺影音 - (.爱奇艺.) [HKLM][64Bits] -- IQIYI Video =>.Superfluous.IQIYIVideo
---\\ HKCU & HKLM Software Keys (98) - 3s
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\AVG Secure Search =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Common
HKLM\SOFTWARE\Wow6432Node\ej-technologies
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\FreeDownloadManager.ORG
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\IBM
HKLM\SOFTWARE\Wow6432Node\IDM Computer Solutions
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\kingsoft
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\LiveUpdate360
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Lotus
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\medialand
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MyDrivers
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\PowerISO
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Reg
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\TortoiseOverlays
HKLM\SOFTWARE\Wow6432Node\TortoiseSVN
HKLM\SOFTWARE\Wow6432Node\UCBrowser
HKLM\SOFTWARE\Wow6432Node\UCBrowserPID
HKLM\SOFTWARE\Wow6432Node\VanDyke
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\VisualSVN
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Allround Automations
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\AVG Secure Search =>Toolbar.AVGSearch
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\FreeDownloadManager.ORG
HKCU\SOFTWARE\IBM
HKCU\SOFTWARE\IDM Computer Solutions
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Kingsoft
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LiveUpdate360
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Lotus
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MustangExt
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\OB
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PowerISO
HKCU\SOFTWARE\PPStream
HKCU\SOFTWARE\QyGameClient =>.Superfluous.IQIYIVideo
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
HKCU\SOFTWARE\TortoiseSVN
HKCU\SOFTWARE\UCBrowser
HKCU\SOFTWARE\UCBrowserPID
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\VanDyke
HKCU\SOFTWARE\VisualSVN
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contents of the Common Files folders (191) - 6s
O43 - CFD: 04/11/2015 - [0] D -- C:\Program Files (x86)\360
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6 =>PUP.Optional.CrossRider
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\ASP =>PUP.Optional.AdvancedSystemProtector
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\baidu
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Cisco
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\eviware
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\Free Download Manager
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\IBM
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\IDM Computer Solutions
O43 - CFD: 17/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\IObit
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\kingsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 06/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\MyDrivers
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\PLSQL Developer
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\PowerISO
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\RayDld =>PUP.Optional.CrossRider
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\RCP
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 18/11/2015 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
O43 - CFD: 03/11/2015 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\UCBrowser
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\VanDyke Software
O43 - CFD: 17/11/2015 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files (x86)\ZTE VPN
O43 - CFD: 02/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/11/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 18/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare Ultimate 7
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System~Protector =>PUP.Optional.AdvancedSystemProtector
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
O43 - CFD: 21/11/2010 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM Applications
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle - OraClient11g_home1
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PLSQL Developer
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecureCRT 7.1
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\soapUI Pro 3.5.1
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/11/2010 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software =>PUP.Optional.TencentAddressBar
O43 - CFD: 10/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseSVN
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraEdit
O43 - CFD: 17/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VisualSVN
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯游戏
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\3WMiniPro3
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 13/11/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\FreeDownloadManager.ORG
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\IBM
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\IDMComp
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 18/11/2015 - [0] D -- C:\ProgramData\IQIYI Video =>.Superfluous.IQIYIVideo
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Kingsoft
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Lotus
O43 - CFD: 04/11/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 16/11/2015 - [] D -- C:\ProgramData\ProductData =>PUP.Optional.Generic
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Roaming
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\Systweak =>PUP.Optional.Systweak
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\TempMoudleSet
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 18/11/2015 - [] D -- C:\ProgramData\UWMiniProU
O43 - CFD: 04/11/2015 - [] D -- C:\ProgramData\VanDyke
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 03/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 04/11/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 10/11/2015 - [] D -- C:\Program Files (x86)\Common Files\TortoiseOverlays
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\360safe
O43 - CFD: 05/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Adobe
O43 - CFD: 18/11/2015 - [] SHD -- C:\Users\Serge Kabasele\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Apple Computer
O43 - CFD: 18/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\cpuminer
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\dg
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\DRPSu
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Free Download Manager
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\FreeDownloadManager.ORG
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Identities
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\IDMComp
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Intel
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\IObit
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video =>.Superfluous.IQIYIVideo
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\istartpageing =>PUP.Optional.IstartPageing
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Macromedia
O43 - CFD: 21/11/2010 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Media Center Programs
O43 - CFD: 17/11/2015 - [] SD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft
O43 - CFD: 06/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Mozilla
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Notepad++
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Opera Software
O43 - CFD: 05/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\PLSQL Developer
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\PowerISO
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\ProductData
O43 - CFD: 19/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\smkits
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Subversion
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\systweak =>PUP.Optional.Systweak
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\VanDyke
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\VOPackage =>PUP.Optional.Downware
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\WinRAR
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\ZHP
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447842426-11CB-AA90-B9F517FD27D6
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447843067-11CB-AA90-B9F517FD27D6
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Adobe
O43 - CFD: 02/11/2015 - [0] SHD -- C:\Users\Serge Kabasele\AppData\Local\Application Data
O43 - CFD: 13/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Bubble Style
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Camera Style
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\CEF
O43 - CFD: 17/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Downloaded Installations
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\ElevatedDiagnostics
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Experience Image
O43 - CFD: 09/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Google
O43 - CFD: 02/11/2015 - [0] SHD -- C:\Users\Serge Kabasele\AppData\Local\History
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\IBM
O43 - CFD: 02/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Kingsoft
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Lotus
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Microsoft
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Local\Microsoft Help
O43 - CFD: 06/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Mozilla
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Opera Software
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Programs
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\SysassistByHotWheel =>PUP.Optional.Generic
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Systweak =>PUP.Optional.Systweak
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Temp
O43 - CFD: 02/11/2015 - [0] SHD -- C:\Users\Serge Kabasele\AppData\Local\Temporary Internet Files
O43 - CFD: 19/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Local\TSVNCache
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\UCBrowser
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\Unity
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 02/11/2015 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PLSQL Developer
O43 - CFD: 18/11/2015 - [] RD -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 18/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/11/2015 - [0] D -- C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯游戏
---\\ ShellIconOverlayIdentifiers (SIOI) (14) - 0s
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL ©
O106 - SIOI: TortoiseSVN [1TortoiseNormal] - {C5994560-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [2TortoiseModified] - {C5994561-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [3TortoiseConflict] - {C5994562-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [4TortoiseLocked] - {C5994563-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [5TortoiseReadOnly] - {C5994564-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [6TortoiseDeleted] - {C5994565-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [7TortoiseAdded] - {C5994566-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [8TortoiseIgnored] - {C5994567-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: TortoiseSVN [9TortoiseUnversioned] - {C5994568-53D9-4125-87C9-F193FC689CB2}. (.http://tortoisesvn.net - TortoiseSVN overlay handler shim.) -- C:\Program Files (x86)\Common Files\TortoiseOverlays\TortoiseOverlays.dll ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©
---\\ System Drivers List (66) - 3s
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] ©
O58 - SDL:2009/07/14 02:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] ©
O58 - SDL:2009/07/14 02:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] ©
O58 - SDL:2015/11/13 21:57:34 A . (.AVG Technologies - .) -- C:\Windows\System32\drivers\avgtpx64.sys [30568] ©
O58 - SDL:2009/06/10 21:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] ©
O58 - SDL:2011/03/24 15:36:24 A . (.BitDefender - BitDefender AntiVirus FS filter driver.) -- C:\Windows\System32\drivers\bdfsfltr.sys [431176] ©
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] ©
O58 - SDL:2009/06/10 21:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] ©
O58 - SDL:2009/07/14 02:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] ©
O58 - SDL:2009/06/10 21:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] ©
O58 - SDL:2009/06/10 21:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] ©
O58 - SDL:2009/07/14 02:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] ©
O58 - SDL:2015/11/03 08:05:43 A . (.MyDrivers.com - DgService Driver.) -- C:\Windows\System32\drivers\DgSafe.sys [399600]
O58 - SDL:2014/09/30 01:05:58 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1d62x64.sys [378136] ©
O58 - SDL:2009/07/14 02:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] ©
O58 - SDL:2009/06/10 21:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] ©
O58 - SDL:2009/06/10 21:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] ©
O58 - SDL:2015/07/29 12:44:00 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\Windows\System32\drivers\iaStorA.sys [1462720] ©
O58 - SDL:2015/07/29 12:44:02 A . (.Intel Corporation - Intel(R) Rapid Storage Technology Filter dr.) -- C:\Windows\System32\drivers\iaStorF.sys [31144] ©
O58 - SDL:2010/11/21 04:23:47 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] ©
O58 - SDL:2014/11/13 22:36:32 A . (.Lenovo. - Lenovo Power Management Driver.) -- C:\Windows\System32\drivers\ibmpmdrv.sys [60112]
O58 - SDL:2015/10/02 10:01:58 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [4920720] ©
O58 - SDL:2009/07/14 02:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] ©
O58 - SDL:2015/10/02 10:01:48 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [460048] ©
O58 - SDL:2015/03/30 17:09:55 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [22800] ©
O58 - SDL:2015/03/30 17:09:55 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [389392] ©
O58 - SDL:2015/03/30 17:09:55 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [803600] ©
O58 - SDL:2015/11/02 17:19:34 A . (.Kingsoft Corporation - Kingsoft Antivirus Defend Engine Bootclean.) -- C:\Windows\System32\drivers\kavbootc64.sys [31848]
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] ©
O58 - SDL:2009/07/14 02:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] ©
O58 - SDL:2014/11/17 11:42:46 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\Netwsw02.sys [3425768] ©
O58 - SDL:2009/07/14 02:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] ©
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] ©
O58 - SDL:2010/11/21 04:23:47 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] ©
O58 - SDL:2009/07/14 02:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] ©
O58 - SDL:2009/07/14 02:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] ©
O58 - SDL:2014/03/04 20:31:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [3882456] ©
O58 - SDL:2014/11/06 16:54:07 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsBaStor.sys [313048] ©
O58 - SDL:2014/11/06 17:07:08 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsP2Stor.sys [294104] ©
O58 - SDL:2014/12/05 15:41:45 A . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\drivers\RtsPer.sys [788696] ©
O58 - SDL:2014/11/06 16:57:44 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsPStor.sys [359128] ©
O58 - SDL:2014/12/08 14:13:25 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\Windows\System32\drivers\RtsUer.sys [377560] ©
O58 - SDL:2013/09/11 07:38:14 A . (.Realtek - Realtek USB GBE NIC NDIS6.20 64-bit Driver.) -- C:\Windows\System32\drivers\rtu30x64w7.sys [82136] ©
O58 - SDL:2012/12/09 10:51:20 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [126944] ©
O58 - SDL:2009/06/10 21:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] ©
O58 - SDL:2009/07/14 01:00:40 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208] ©
O58 - SDL:2009/07/14 02:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] ©
O58 - SDL:2009/07/14 02:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] ©
O58 - SDL:2009/07/14 02:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] ©
O58 - SDL:2011/11/21 18:59:02 A . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\drivers\trufos.sys [329800] ©
O58 - SDL:2015/11/11 13:10:18 A . (.Huorong Borui (Beijing) Technology Co., Ltd. - Huorong Network Security Core Kext.) -- C:\Windows\System32\drivers\ucguard.sys [89840] ©
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] ©
O58 - SDL:2009/07/14 02:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ©
---\\ Last modified or created user files (24) - 4s
O61 - LFC: 2015/11/13 08:00:23 A . (.PPBUX.) -- C:\Users\Serge Kabasele\Downloads\Download.exe [351904]
O61 - LFC: 2015/11/13 08:09:45 A . (.Informer Technologies, Inc..) -- C:\Users\Serge Kabasele\Downloads\siinst.exe [3602752]
O61 - LFC: 2015/11/18 10:25:37 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\Uninstall.exe [60853] =>PUP.Optional.Downware
O61 - LFC: 2015/11/18 10:24:44 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\VOPackage.exe [632223] =>PUP.Optional.Downware
O61 - LFC: 2015/11/11 17:32:44 A . (.腾讯公司.) -- C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AdbTools.dll [101432] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/11 17:32:44 A . (.腾讯公司.) -- C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AndroidAssist.dll [976952] =>PUP.Optional.TencentAddressBar
O61 - LFC: 2015/11/18 15:14:40 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup0.bin [660] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/19 08:25:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup3.bin [651] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/19 08:25:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup4.bin [569] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/19 08:25:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup6.bin [628] =>PUP.Optional.RegistryPowerCleaner
O61 - LFC: 2015/11/18 13:57:17 A . (.爱奇艺.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate\IQIYIsetup_update_20150831.exe [2213065] =>.Superfluous.IQIYIVideo
O61 - LFC: 2015/11/18 13:49:23 A . (.爱奇艺.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate\GeePlayerSetup_update20151030.exe [16643888] =>.Superfluous.IQIYIVideo
O61 - LFC: 2015/11/17 09:12:56 A . (.Download Assistant.) -- C:\Users\Serge Kabasele\AppData\Local\MalwareProtectionLive\quarantine\setup-491041d7-10c7-4ec5-9b9f-137d73a42efc.exe [1131720]
O61 - LFC: 2015/11/19 08:30:46 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\IBM\Notes\Data\workspace\.metadata\.plugins\com.ibm.rcp.managedsettings\akrwoiufdsa.bin [87]
O61 - LFC: 2015/11/19 08:30:46 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\IBM\Notes\Data\workspace\.metadata\.plugins\com.ibm.rcp.managedsettings\poidsafho.bin [138]
O61 - LFC: 2015/11/19 08:30:46 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\IBM\Notes\Data\workspace\.metadata\.plugins\com.ibm.rcp.managedsettings\zdxguhwkj.bin [229]
O61 - LFC: 2015/11/18 10:32:49 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Experience Image\xBin\ExperienceImage.dll [34304]
O61 - LFC: 2015/11/18 10:32:49 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Experience Image\xBin\pcv.dll [12288]
O61 - LFC: 2015/11/18 10:41:59 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Camera Style\xBin\tnxa.dll [12288]
O61 - LFC: 2015/11/18 10:39:47 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Bubble Style\xBin\bioclr.dll [12288]
O61 - LFC: 2015/11/18 14:17:31 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [74391]
O61 - LFC: 2015/11/18 10:37:58 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447843067-11CB-AA90-B9F517FD27D6\Uninstall.exe [51069]
O61 - LFC: 2015/11/16 15:17:52 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447842426-11CB-AA90-B9F517FD27D6\pnsbCAB0.exe [129800]
O61 - LFC: 2015/11/18 10:29:17 A . (..) -- C:\Users\Serge Kabasele\AppData\Local\8A855A01-1447842426-11CB-AA90-B9F517FD27D6\Uninstall.exe [50134]
---\\ File Associations Shell Spawning (12) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
---\\ Start Menu Internet (16) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (15) - 3s
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.alias", "coldsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.iconURL", "http://f.coldsearch.com/favicon.ico"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.name", "coldsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.ptid", "etc1118"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.uid", "7b875a1c-1847-48eb-9b1d-9f17569ff5c6"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.search.searchengine.url", "http://s.coldsearch.com/web?type=ds&ts=1447850835&pid=etc1118&uid=7b875a1c-1847-48eb[...] =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("browser.startup.homepage", "http://www.istartpageing.com/?type=hp&ts=1447850099&z=1b7da9d095dc18bd6b99eb7g1zdz4m2bbw8e4[...] =>PUP.Optional.IstartPageing
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Serge Kabasele - 77thduwr.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (istartsurf) - http://www.istartsurf.com/
O69 - SBI: SearchScopes [HKCU] {3D585554-3A2C-4BF8-9587-2D99C7A6EBAD} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {4274BAC3-589D-4BF8-A051-84A8A0B7A75F} - (百度搜索) - http://www.baidu.com/
O69 - SBI: SearchScopes [HKCU] {44177982-996D-4b79-B29F-5B60E13A5169} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://isearch.avg.com/
---\\ Crack & Keygen Files (1) - 5s
O82 - LFC: 2012/06/05 14:16:52 A . (...) -- C:\Users\Serge Kabasele\Desktop\keygen power iso\keygen power iso.exe [274432] =>.Crack,Keygen
---\\ Search Svchost Services (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [236032] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [853504] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [679424] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [680960] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2477536] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [30720] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [156672] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [67584] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [1110016] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [90624] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [44544] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] ©
---\\ Firewall Active Exception List (48) - 2s
O87 - FAEL: "{A17FC8FA-7227-44CA-B555-99F8433BD3DB}" [In-None-P6-TRUE] .(.Tencent - 腾讯高速下载引擎.) -- C:\program files (x86)\common files\tencent\qqdownload\122\tencentdl.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3D7C456C-7387-4BB4-9428-F730F67F7EE9}" [In-None-P6-TRUE] .(.深圳市腾讯计算机系统有限公司 - QQ游戏下载器.) -- C:\Users\Serge Kabasele\AppData\Local\Temp\Tencent\MiniQQGameDownloader.1.0.0.7\QQGameDownload.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8E158476-5A4F-40B9-B23F-2EEE94E754FB}" [In-None-P17-TRUE] .(.深圳市腾讯计算机系统有限公司 - QQ游戏下载器.) -- C:\Users\Serge Kabasele\AppData\Local\Temp\Tencent\MiniQQGameDownloader.1.0.0.7\QQGameDownload.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{8C406919-4B67-4E8B-A634-CE0430B42267}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGame.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E68A7E14-9B1F-402A-9C9C-7CE73E0673AF}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGame.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{5FD28A7F-9097-45DF-A975-786AD06E620F}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameHall.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{DE4E655F-29A0-4FCA-AD11-666F5E103B9C}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameHall.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{BDAA7504-F093-48C5-981C-83D82168B983}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameLogic.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{1249C9EE-3269-4577-B0D5-4446E47AFB0E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameLogic.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E924BB78-1739-45AA-AB7A-FB4321745C18}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameDl.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3D317691-A759-4011-BD82-2FBF19ABB00E}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\QQGameDl.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{7CD7C1CC-66A8-4640-B377-33812396C833}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\video\QQGameNet.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{6B7CF0B0-0786-4317-A683-8553EBBC85C8}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Tencent\QQGame\video\QQGameNet.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{F3556522-52B2-407A-A462-77C9C46CAD59}" [In-None-P6-TRUE] .(...) -- C:\Users\Serge Kabasele\AppData\Local\Temp\nsoAC64.tmp\Installer-75695295.exe (.not file.)
O87 - FAEL: "{BB5E31DF-0B8D-47E4-B628-4DE4511CD3CC}" [In-None-P17-TRUE] .(...) -- C:\Users\Serge Kabasele\AppData\Local\Temp\nsoAC64.tmp\Installer-75695295.exe (.not file.)
O87 - FAEL: "{FCEC0E9E-FCC1-4843-9A03-9AB66B9BF2C9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\auclt.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{9B4B5DD5-2405-40D9-9511-53EBFF1519D8}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\auclt.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{60061E08-2B28-4A0A-8FE7-C3813D5636BF}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\txupd.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{E0BEA32B-B8DD-4A54-AA39-A13628F4F7E7}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\txupd.exe (.not file.) =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{23FC9920-F6CE-427f-8627-F43C61CA5BA0}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{DDE08991-6BAA-452f-8C53-7238354A1723}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{34FC9662-116C-4a34-B379-562F442B612E}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{CFF6A449-CEC3-4388-8852-249F63013B59}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TClient.exe (.not file.)
O87 - FAEL: "{DC7555DF-C3C2-4a8c-9B95-9FA2DFFBF885}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{52C38249-AF6B-4704-A93C-6B8641E8009F}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{E24C2F9E-B912-490e-9213-872BB95438DC}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{A2A03711-EBB3-40fb-B3E1-9C4A5980DDAF}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\tsrvctl_nt.exe (.not file.)
O87 - FAEL: "{6DF4F9F5-30F8-4f69-970E-9800729812E4}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{F5AA435A-1D97-4cbe-83A0-B32DE433D080}" [In-None-P17-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{DCE2D902-937C-49a1-ACF0-96623D6D0876}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{B255C783-4A8C-4f05-A057-4EBB5D20E9C8}" [In-None-P6-TRUE] .(...) -- C:\TCOstream\client\TPmsAgent.exe (.not file.)
O87 - FAEL: "{F838E1D3-163E-4d44-BF66-5A0751A560E4}" [In-None-P17-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{C3758835-9D82-42ab-ACC5-B827527D677A}" [In-None-P17-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{640AD4BB-7430-4cc0-AB7E-54EE8939208D}" [In-None-P6-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{5F658182-ACF1-4572-977C-36B688C2FE19}" [In-None-P6-TRUE] .(.Medialand, Inc - sysloader.) -- C:\Windows\SysWOW64\sysloader.exe
O87 - FAEL: "{1DB3CED3-FCCB-4331-B843-9E72EA7DB8FB}" [In-None-P6-TRUE] .(.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{3F32B956-DFF5-4008-9C57-E46E04FD3E80}" [In-None-P17-TRUE] .(.Tencent - QQ International.) -- C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
O87 - FAEL: "{16BFB1A1-B0CB-4CCE-9D97-E82B57E180A2}" [In-None-P6-FALSE] .(.VisualSVN Ltd. - VisualSVN Distributed File System Service.) -- C:\Program Files\VisualSVN Server\bin\vdfssvc.exe
O87 - FAEL: "{02281AAD-2EE1-402F-BE0D-6EDA94068E2B}" [In-None-P6-FALSE] .(.VisualSVN Ltd. - VisualSVN Distributed File System Service.) -- C:\Program Files\VisualSVN Server\bin\vdfssvc.exe
O87 - FAEL: "{B1CFA5BA-03C5-49EA-92CC-FC4BB3414015}" [In-None-P17-TRUE] .(.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O87 - FAEL: "{6029CBBC-83D6-4FBD-B398-DA43D38DF464}" [In-None-P17-TRUE] .(.UCWeb Inc. - UC浏览器.) -- C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
O87 - FAEL: "{1CA18555-EDD7-44F7-9C64-937206875ABB}" [In-None-P17-TRUE] .(.深圳市迅雷网络技术有限公司 - 迅雷云加速开放平台.) -- C:\Program Files (x86)\UCBrowser\Application\Downloader\download\MiniThunderPlatform.exe
O87 - FAEL: "{D98F252F-AA37-4A0C-8913-0F7DBB176E1C}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺升级模块.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{2D84CADF-34F4-4910-95A7-1BA71403192A}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺万能播放器.) -- C:\IQIYI Video\GeePlayer\GeePlayer.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{E4A512E0-97C0-4934-A4DF-EA330115335F}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺升级模块.) -- C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{EA60A24A-AC1D-492F-9B84-A4169EB1580A}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺PPS影音.) -- C:\IQIYI Video\LStyle\QyClient.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{E3FE3231-4455-4653-928F-ECD3CD46D43D}" [In-None-P17-TRUE] .(.爱奇艺公司 - 爱奇艺PPS影音 网页播放组件.) -- C:\IQIYI Video\LStyle\QyWebPlayer.exe =>.Superfluous.IQIYIVideo
O87 - FAEL: "{0E222121-CE69-4FEE-B197-C6712D41F15D}" [In-None-P17-TRUE] .(.爱奇艺 - 爱奇艺视频播放器.) -- C:\IQIYI Video\LStyle\QyPlayer.exe =>.Superfluous.IQIYIVideo
---\\ Services not Microsoft (SR=Run, SS=Stop) (24) - 15s
SR - Auto [28/10/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SR - Auto [18/11/2015] [ 625664] Left Button Charger (bykesute) . (...) - C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp =>PUP.Optional.CrossRider
SS - Demand [02/10/2015] [ 279144] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe ©
SR - Auto [29/10/2014] [ 636112] Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe ©
SR - Auto [15/10/2013] [ 5164136] IBM Notes Diagnostics (IBM Notes Diagnostics) . (.IBM.) - C:\Program Files (x86)\IBM\Notes\nsd.exe ©
SR - Auto [13/11/2014] [ 84208] Lenovo PM Service (IBMPMSVC) . (.Lenovo..) - C:\Windows\System32\ibmpmsvc.exe
SR - Auto [02/10/2015] [ 344168] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe ©
SS - Auto [08/04/2014] [ 2152768] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [15/10/2013] [ 1654376] IBM Notes Smart Upgrade Service (LNSUSvc) . (.IBM Corp.) - C:\Program Files (x86)\IBM\Notes\SUService.exe
SS - Demand [30/10/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto [15/10/2013] [ 38504] Multi-user Cleanup Service (Multi-user Cleanup Service) . (.IBM Corp.) - C:\Program Files (x86)\IBM\Notes\ntmulti.exe
SS - Auto [09/10/2015] [ 236816] Be sure to use the latest version of Mustang Service. (MustangService_2015_10_10) . (.MustangService.) - C:\ProgramData\TempMoudleSet\MustangSer1848.exe
SS - Demand [29/10/2014] [ 265936] Wireless PAN DHCP Server (MyWiFiDHCPDNS) . (.Copyright (C) 2005-2010 by Achal Dhir.) - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ©
SR - Auto [29/10/2014] [ 154832] Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe ©
SR - Auto [18/11/2015] [ 170656] SSFK (SSFK) . (.TODO: <公司名>.) - C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
SR - Auto [31/08/2012] [ 212600] System Loader (SystemLoader) . (.Medialand, Inc.) - C:\Windows\SysWOW64\sysloader.exe
SR - Auto [13/08/2015] [ 564560] UC浏览器基础服务 (UCBrowserSvc) . (...) - C:\Program Files (x86)\UCBrowser\Application\UCService.exe
SS - Disabled [20/03/2015] [ 96912] VisualSVN Distributed File System Service (vdfssvc) . (.VisualSVN Ltd..) - C:\Program Files\VisualSVN Server\bin\vdfssvc.exe
SR - Auto [20/03/2015] [ 27280] VisualSVN Server (VisualSVNServer) . (.Apache Software Foundation.) - C:\Program Files\VisualSVN Server\bin\VisualSVNServer.exe ©
SS - Demand [20/03/2015] [ 167056] VisualSVN Repository Configurator Service (vrepocfgsvc) . (.VisualSVN Ltd..) - C:\Program Files\VisualSVN Server\bin\vrepocfgsvc.exe
SR - Auto [13/11/2015] [ 711112] (vToolbarUpdater13.2.0) . (.Copyright (C) 2012.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
SR - Auto [18/11/2015] [ 309384] WdsManPro Service (WdsManPro) . (.DTools LIMITED.) - C:\ProgramData\3WMiniPro3\WMiniPro.exe =>PUP.Optional.WpManager
SR - Auto [29/10/2014] [ 3818704] Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe ©
---\\ Search Tracing Registry Key (4) - 0s
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASAPI32 =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASMANCS =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASMANCS =>PUP.Optional.TencentAddressBar
---\\ Additional Scan (O88) (103) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\bykesute =>PUP.Optional.CrossRider
C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6\hnsx9221.tmp =>PUP.Optional.CrossRider
HKLM\SYSTEM\CurrentControlSet\Services\SSFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\SFK\SSFK.exe =>PUP.Optional.MyWebSearch
HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater13.2.0 =>Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WpManager
C:\ProgramData\3WMiniPro3\WMiniPro.exe =>PUP.Optional.WpManager
C:\Program Files (x86)\ASP\AspManager.exe =>PUP.Optional.AdvancedSystemProtector
C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe =>PUP.Optional.AdvancedSystemProtector
C:\Program Files (x86)\RCP\RegCleanPro.exe =>PUP.Optional.RegistryPowerCleaner
C:\Program Files (x86)\UCBrowser\Application\update_task.exe =>PUP.Optional.CertifiedToolbar
C:\Windows\Tasks\RegClean Pro_DEFAULT.job =>PUP.Optional.RegistryPowerCleaner
C:\Windows\Tasks\RegClean Pro_UPDATES.job =>PUP.Optional.RegistryPowerCleaner
C:\Windows\System32\Tasks\Advanced System~Protector =>PUP.Optional.AdvancedSystemProtector
C:\Windows\System32\Tasks\Advanced System~Protector_startup =>PUP.Optional.AdvancedSystemProtector
C:\Windows\System32\Tasks\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\Windows\System32\Tasks\RegClean Pro_DEFAULT =>PUP.Optional.RegistryPowerCleaner
C:\Windows\System32\Tasks\RegClean Pro_UPDATES =>PUP.Optional.RegistryPowerCleaner
C:\Program Files (x86)\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch
C:\Program Files (x86)\Tencent\QQIntl\Bin\TXPlatform.exe =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartpageing.xml =>PUP.Optional.IstartPageing
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\1447842661_xpi =>PUP.Optional.LightningNewTab
C:\Users\Serge Kabasele\AppData\Roaming\Mozilla\Firefox\Profiles\77thduwr.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab
C:\IQIYI Video\LStyle\npWebPlayer.dll =>.Superfluous.IQIYIVideo
C:\Program Files (x86)\Common Files\Tencent\Npchrome\npchrome.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.2.1\bin\npSSOAxCtrlForPTLogin.dll =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\AVG Secure Search\13.2.0.3\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch
C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe =>Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~9338DF9D_is1 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AnyProtect =>PUP.Optional.AnyProtect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IQIYI Video =>.Superfluous.IQIYIVideo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PopupProduct =>PUP.Optional.CompatibleWebDir
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater =>PUP.Optional.SoftwareUpdater
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage =>PUP.Optional.Downware
HKLM\SOFTWARE\Wow6432Node\AVG Secure Search =>Toolbar.AVGSearch
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\ihpmserver =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware =>PUP.Optional.IsStart
HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Wow6432Node\RayDld =>PUP.Optional.CrossRider
HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Wow6432Node\Tencent =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKCU\SOFTWARE\AnyProtect =>PUP.Optional.AnyProtect
HKCU\SOFTWARE\AVG Secure Search =>Toolbar.AVGSearch
HKCU\SOFTWARE\QyGameClient =>.Superfluous.IQIYIVideo
HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\8A855A01-1447838736-11CB-AA90-B9F517FD27D6 =>PUP.Optional.CrossRider
C:\Program Files (x86)\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Program Files (x86)\ASP =>PUP.Optional.AdvancedSystemProtector
C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files (x86)\RayDld =>PUP.Optional.CrossRider
C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch
C:\Program Files (x86)\Tencent =>PUP.Optional.TencentAddressBar
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System~Protector =>PUP.Optional.AdvancedSystemProtector
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tencent Software =>PUP.Optional.TencentAddressBar
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
C:\ProgramData\IQIYI Video =>.Superfluous.IQIYIVideo
C:\ProgramData\ProductData =>PUP.Optional.Generic
C:\ProgramData\Systweak =>PUP.Optional.Systweak
C:\ProgramData\Tencent =>PUP.Optional.TencentAddressBar
C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files (x86)\Common Files\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\AnyProtectEx =>PUP.Optional.AnyProtect
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video =>.Superfluous.IQIYIVideo
C:\Users\Serge Kabasele\AppData\Roaming\istartpageing =>PUP.Optional.IstartPageing
C:\Users\Serge Kabasele\AppData\Roaming\systweak =>PUP.Optional.Systweak
C:\Users\Serge Kabasele\AppData\Roaming\Tencent =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\VOPackage =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch
C:\Users\Serge Kabasele\AppData\Local\SysassistByHotWheel =>PUP.Optional.Generic
C:\Users\Serge Kabasele\AppData\Local\Systweak =>PUP.Optional.Systweak
C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup =>PUP.Optional.AnyProtect
C:\Users\Serge Kabasele\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\Uninstall.exe =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Roaming\VOPackage\VOPackage.exe =>PUP.Optional.Downware
C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AdbTools.dll =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\Tencent\QQ\Misc\com.tencent.wireless\SDK\20\AndroidAssist.dll =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup0.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup3.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup4.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\systweak\regclean pro\Version 6.1\backup6.bin =>PUP.Optional.RegistryPowerCleaner
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate\IQIYIsetup_update_20150831.exe =>.Superfluous.IQIYIVideo
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate\GeePlayerSetup_update20151030.exe =>.Superfluous.IQIYIVideo
C:\program files (x86)\common files\tencent\qqdownload\122\tencentdl.exe =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Local\Temp\Tencent\MiniQQGameDownloader.1.0.0.7\QQGameDownload.exe =>PUP.Optional.TencentAddressBar
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\GeePlayer\GeePlayer.exe =>.Superfluous.IQIYIVideo
C:\Users\Serge Kabasele\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\LStyle\QyClient.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\LStyle\QyWebPlayer.exe =>.Superfluous.IQIYIVideo
C:\IQIYI Video\LStyle\QyPlayer.exe =>.Superfluous.IQIYIVideo
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASAPI32 =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\drivergenius_RASMANCS =>.Superfluous.DriverGenius
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASAPI32 =>PUP.Optional.TencentAddressBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\tencentdl_RASMANCS =>PUP.Optional.TencentAddressBar
---\\ Summary of the elements found (24) - 0s
http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/adware-mywebsearch/ =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/blog =>Toolbar.AVGSearch
http://www.nicolascoolman.fr/pup-wpmanager/ =>PUP.Optional.WpManager
http://www.nicolascoolman.fr/pup-advancedsystemprotector/ =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/rogue-registrypowercleaner/ =>PUP.Optional.RegistryPowerCleaner
http://www.nicolascoolman.fr/pup-certifiedtoolbar/ =>PUP.Optional.CertifiedToolbar
http://www.nicolascoolman.fr/adware-tencentaddressbar/ =>PUP.Optional.TencentAddressBar
http://www.nicolascoolman.fr/blog =>PUP.Optional.IstartPageing
http://www.nicolascoolman.fr/pup-isstart/ =>PUP.Optional.IsStart
http://www.nicolascoolman.fr/blog =>PUP.Optional.LightningNewTab
http://www.nicolascoolman.fr/blog =>.Superfluous.IQIYIVideo
http://www.nicolascoolman.fr/pup-anyprotect/ =>PUP.Optional.AnyProtect
http://www.nicolascoolman.fr/blog =>PUP.Optional.CompatibleWebDir
http://www.nicolascoolman.fr/pup-software-updater/ =>PUP.Optional.SoftwareUpdater
http://www.nicolascoolman.fr/adware-downware/ =>PUP.Optional.Downware
http://www.nicolascoolman.fr/blog =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/blog =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic
http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart
http://www.nicolascoolman.fr/blog =>.Superfluous.DriverGenius
~ End of the scan, 16179 items in 57 seconds (1014)(1)