Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2015.11.23.173 By Nicolas Coolman (2015/11/23)
~ Run by johq (Administrator) (2015/11/24 10:09:52)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\johq\Desktop\ZHPDiag.txt
~ Report: C:\Users\johq\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v46.0.2490.86
MFIE: Mozilla Thunderbird 31.3.0 (x86 en-US) v31.3.0
MSIE: Internet Explorer v11.0.9600.18097
---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ System protection software (1) - 22s
Windows Defender W7 (Deactivate)
---\\ Surveillance software (1) - 22s
Adobe Flash Player 18 ActiveX
---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2705.776 MB (18% free)
System Restore: Activé (Enable)
System drive C: has 22 GB () free of 126 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: JOHA
~ User Name: johq
~ Logged in as Administrator
---\\ Enumeration of the disk units (5) - 0s
~ Drive C: has 22 GB free of 126 GB (System)
~ Drive D: has 89 GB free of 199 GB
~ Drive E: has 41 GB free of 149 GB
~ Drive F: has 3 GB free of 4 GB
~ Drive G: has 1 GB free of 1 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (24) - 4s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - 25/02/2011 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2616320] ©
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [96256] ©
[MD5.832CA97817B20B74E2D74A8154630311] - 30/10/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2011136] ©
[MD5.52449FD429D6053B78AE564DEF303870] - 17/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [304128] ©
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [193536] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [270336] ©
[MD5.93B49FA857F7036A4EFF32371F6E7391] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] ©
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] ©
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] ©
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] ©
[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] ©
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] ©
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] ©
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] ©
[MD5.C7492026F6691A92C4508DDDB041CE4E] - 20/10/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [124416] ©
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] ©
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - 24/01/2014 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1212352] ©
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] ©
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] ©
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] ©
[MD5.BB8817D0508DD5EA69C770C8DEF5AB67] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] ©
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [245632] ©
---\\ Non Microsoft non disabled Windows Services (13) - 2s
O23 - Service: AVG Firewall (avgfws) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\Program Files\AVG\AVG2015\avgfws.exe ©
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files\AVG\AVG2015\avgidsagent.exe ©
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG2015\avgwdsvc.exe ©
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe ©
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files\Launch Manager\dsiwmis.exe ©
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008 - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2014 - .) - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: Service_KAir (ServiceKAirModule) . (...) - C:\Program Files\KMPConnect\KMPConnectService.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\System32\vmnat.exe ©
O23 - Service: (vToolbarUpdater40.1.6) . (.AVG Secure Search - ToolbarU Application.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe =>Toolbar.AVGSearch
O23 - Service: WtuSystemSupport (WtuSystemSupport) . (.Copyright (C) 2015 - WtuSyste Application.) - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe =>Toolbar.AVGSafeGuard
O23 - Service: ZDServ (ZDServ) . (.Copyright (C) 2013 - ZDServ Application.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>PUP.Optional.Salus
---\\ Process running (44) - 8s
[MD5.5094EBFB810FFE410419670CA72BAF2F] - (.Copyright (C) 2015 - WtuSyste Application.) -- C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [1205136] [PID.772] =>Toolbar.AVGSafeGuard
[MD5.D6916995A3736E41224FC757E6520060] - (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) -- C:\Program Files\AVG\AVG2015\avgfws.exe [1486664] [PID.1884] ©
[MD5.225B28E9303D375314C744AE181DF95F] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files\AVG\AVG2015\avgidsagent.exe [3432976] [PID.324] ©
[MD5.2B38C7E964FA19A298D04CA177FF8B6F] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080] [PID.1480] ©
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.1920] ©
[MD5.C02FF01B821FBB72104132E56EC5B881] - (.Dritek System Inc. - Dritek WMI Service.) -- C:\Program Files\Launch Manager\dsiwmis.exe [355920] [PID.1500] ©
[MD5.1A7F10605F9672E101BFA27CAED210D5] - (.Dritek System Inc. - Launch Manager Worker.) -- C:\Program Files\Launch Manager\LMworker.exe [343632] [PID.2068] ©
[MD5.5EF3427AE503B5C03A48F7C9FF458B69] - (.Copyright (C) 2008 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService.exe [271712] [PID.2076]
[MD5.D98B7ABBBB55FD3A4D9F7B8A7869FCBF] - (.Dritek System Inc. - Launch Manager utility process.) -- C:\Program Files\Launch Manager\LMutilps32.exe [419408] [PID.2092] ©
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.2148] ©
[MD5.533AA4A69EE91B1C53910EF57E314DEF] - (.Copyright (C) 2014 - .) -- C:\ProgramData\MobileBrServ\mbbservice.exe [242256] [PID.2176]
[MD5.7E713E2ED0226EA82E97A630684115BE] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2015\avgui.exe [3667472] [PID.2184] ©
[MD5.5CCBD3C6661057501F7C50AD0295E228] - (...) -- C:\Program Files\KMPConnect\KMPConnectService.exe [389232] [PID.2356]
[MD5.3F98B594E5404311D464769733DF5125] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [658632] [PID.2368] ©
[MD5.5FA22B1D96C24A90CB8A912F1B7E728E] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [192432] [PID.2444] ©
[MD5.E12D13AD8928BA4E9E70B6CA2781878E] - (...) -- C:\Program Files\KMPConnect\KMPConnectCore.exe [749168] [PID.2472]
[MD5.453345E0B1BECA4230799CC553B43DFD] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [201136] [PID.2524] ©
[MD5.FE668B0E3E87077A46FE77AFB0E27F9C] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files\Launch Manager\LManager.exe [1105488] [PID.2596] ©
[MD5.179B9E35E4F705D4D646B05E7916F605] - (.AVG Secure Search - ToolbarU Application.) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe [1874320] [PID.2636] =>Toolbar.AVGSearch
[MD5.D76147BF57D40F74E41B3A3DB2CD6391] - (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files\AVG Web TuneUp\vprot.exe [3175312] [PID.2660] =>Toolbar.AVGSafeGuard
[MD5.177BA0F6744354379D79F66CD7AE33EE] - (.Copyright (C) 2013 - ZDServ Application.) -- C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe [427264] [PID.2704] =>PUP.Optional.Salus
[MD5.C4B5B632405768AE113B03CDA14D023C] - (.Copyright (C) 2013 - loggings Application.) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\loggingserver.exe [168336] [PID.2716] =>Toolbar.AVGSearch
[MD5.F97961FD74E83E3E96DB45B69B33B157] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe [3105144] [PID.2868] ©
[MD5.AD0C173AFB2F47C0B61560A01571B835] - (.Baidu Inc. - PC App Store DeskTool.) -- C:\Program Files\PC App Store\5.0.1.8490\AppStoreDeskTool.exe [849952] [PID.2876]
[MD5.B543D9B6FC03CEEED3F9A92D54C4B974] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\REALTEK\Audio\HDA\RtHDVCpl.exe [14685936] [PID.2944] ©
[MD5.70903CD03F9B0A23826C4F9A35185EE6] - (...) -- C:\ProgramData\ZDSupport\ZDServ\CancelAutoPlay_Server.exe [426752] [PID.2964] =>PUP.Optional.Salus
[MD5.83FF82FE209E7997067B375DAD6CF23D] - (.Intel Corporation - Intel(R) Integrated Clock Controller Servic.) -- C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752] [PID.284] ©
[MD5.C0BAEBF68D73F7A46DDB28777049AEFF] - (.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG2015\avgnsx.exe [1071632] [PID.2788] ©
[MD5.1C2089573B379457DABA27F3A02DF131] - (.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files\AVG\AVG2015\avgemcx.exe [669200] [PID.2832] ©
[MD5.22167BB39BF4B08931A9794A34E2E6AA] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\Program Files\AVG\AVG2015\avgrsx.exe [884240] [PID.3048] ©
[MD5.FD7857769B15CC394E0735E3F4EF196F] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) -- C:\Program Files\AVG\AVG2015\avgcsrvx.exe [691216] [PID.4444] ©
[MD5.7A3C392B6328E5E48BCF624433E36FCB] - (.AVG Secure Search - avgcefrend.) -- C:\Program Files\AVG Web TuneUp\avgcefrend.exe [1402768] [PID.2916] =>Toolbar.AVGSafeGuard
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.5836] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.5928] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.2124] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.2308] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.5856] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.1644] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.3956] ©
[MD5.C4E4AFD1779608D9E4055892CF6F02D2] - (.AVG Secure Search - ScriptHelper.) -- C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\40.1.6\ScriptHelper.exe [2484112] [PID.5628] =>Toolbar.AVGSearch
[MD5.6189C8A4DD0C54A28429CAF3F101908C] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3886672] [PID.4324] ©
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [269848] [PID.3520] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.4168] ©
[MD5.6A47DAC7CE1D527F3004DCB97FC4EBED] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\johq\Desktop\ZHPDiag3.exe [1970176] [PID.5412] ©
---\\ Google Chrome, Start,Search,Extensions (14) - 55s
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cegfejpmmodikpdebjkdnkgcifhfepfi] [https://epicunitscan.info/00service/update2/crx] __MSG_application_title__ =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [chfdnecihphmhljaaejmgoiahnihplgn] AVG Web TuneUp =>Toolbar.AVGSafeGuard
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ejidjjhkpiempkbhmpbfngldlkglhimk] [https://epicunitscan.info/00service/update2/crx] __MSG_WEBSTORE_PRONGHORN_PRODUCT_NAME__ =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [eooboalmgfkpilfmmhicinaalnjcgdph] [https://epicunitscan.info/00service/update2/crx] my IP address =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [epbfmioobedknooiakdehepogalbgkng] [https://epicunitscan.info/00service/update2/crx] Google Chrome manifest =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock
G2 - GCE: Preference [User Data\Default] [gkojfkhlekighikafcpjkiklfbnlmeio] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nngdfnnnkccipoglcgppagpgjkkbfclo] goMovix Start
G2 - GCE: Preference [User Data\Default] [opnbmdkdflhjiclaoiiifmheknpccalb] Instagram for Chrome
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (22) - 6s
M0 - MFSP: prefs.js [johq - 1d31vx74.default] http://websearch.goodforsearch.info/?pid=24392&r=2015/05/10&hid=15867019612213773964&lg=EN&cc=DZ&unqvl=86 =>PUP.Optional.GoodForSearch
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\4sharedCopyLinks.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\webnavigation@linkzb.com.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{ea61041c-1e22-4400-99a0-aea461e69d04}.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\searchplugins\Web Search.xml
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\searchplugins\WebSearch.xml =>PUP.Optional.SimpleSearches
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\default-search.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\dlsecuretb.xml
P2 - EXT: (. - YoutubeAdBlocke.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\3s3Qp@o.net
P2 - EXT: (. - youtubeadblocker.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\bEab@HhXH.com
P2 - EXT: (.Microsoft Corporation - Bing Search Engine.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\bingsearch.full@microsoft.com ©
P2 - EXT: (.roc - FF Toolbar.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\fftoolbar2014@etech.com =>PUP.Optional.FFToolBar
P2 - EXT: (. - BuyNsave.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\k@CtR9Sk.org
P2 - EXT: (. - unIsaales.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\sB82Y@DqOQ.org
P2 - EXT: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\staged
P2 - EXT: (. - Sites.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{121761af-0fa5-4896-a2a8-cfdbac4e4982}
P2 - EXT: (.ClientConnect Ltd. - Hotspot Shield .) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d} =>PUP.Optional.ClientConnect
P2 - EXT: (.Snap.Do - Snap.Do .) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{F71D1265-2781-7E88-51A5-E0D967695BCD}
P2 - FPN: [HKLM] [@adobe.com/AuthorwarePlayer] - (.Macromedia, Inc..) -- C:\Windows\System32\Macromed\AUTHORWA\np32asw.dll
P2 - FPN: [HKLM] [@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin] - (...) -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.1.6\\npsitesafety.dll =>Toolbar.AVGSearch
---\\ Opera, Plugins,Start,Search (5) - 0s
B2 - EXT: [stefanvd] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccbdoklfbpcifppcfahmmpmbkfdjjccm
B2 - EXT: [fdeth] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccdcdeciofigkmmhblkcalfmofhbcepb
B2 - EXT: [Christoph D.] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\dppmcfgmeabflhohikbaegalkbjnbomd
B2 - EXT: [pushbullet] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\jacmgnhcnfdmjdkdlfndaccecdegacba
B2 - EXT: [download-station-extension] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\npihmpojeldffinbnjhaecpjjcfccjkm
---\\ Internet Explorer Extensions, Start, Search (9) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://websearch.goodforsearch.info/ =>PUP.Optional.GoodForSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {c95a4e8e-816d-4655-8c79-d736da1adb6d} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (7) - 1s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:9666 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (30)
---\\ Browser Helper Object (BHO) (8) - 1s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll ©
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll ©
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll ©
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG - AVG Web TuneUp.dll.) -- C:\Program Files\AVG Web TuneUp\4.1.6.294\AVG Web TuneUp.dll =>Toolbar.AVGSafeGuard
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll ©
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} . (.IDM - QUICKfind BHO Object.) -- C:\Program Files\IDM\QUICKfind\PlugIns\IEHelp.dll
O2 - BHO: Hotspot Shield - {c95a4e8e-816d-4655-8c79-d736da1adb6d} (Orphean)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll ©
---\\ Internet Explorer Toolbars (4) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: 0x8E4E5AC96D8155468C79D736DA1ADB6D - [HKCU]{C95A4E8E-816D-4655-8C79-D736DA1ADB6D} . (...) -- (.not file.)
O3 - Toolbar: Hotspot Shield Toolbar - [HKLM]{c95a4e8e-816d-4655-8c79-d736da1adb6d} . (...) -- (.not file.)
O3 - Toolbar: DLSecure Toolbar - [HKLM]{7bcc228a-c730-4004-93f9-72cbb7033a62} . (...) -- (.not file.)
---\\ Auto loading programs from Registry and folders (19) - 1s
O4 - HKLM\..\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2015\avgui.exe ©
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe ©
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe ©
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe ©
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe ©
O4 - HKLM\..\Run: [LManager] . (.Dritek System Inc. - Launch Manager.) -- C:\Program Files\Launch Manager\LManager.exe ©
O4 - HKLM\..\Run: [vProt] . (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files\AVG Web TuneUp\vprot.exe =>Toolbar.AVGSafeGuard
O4 - HKLM\..\Run: [PCAppStore_AppStoreDeskTool] . (.Baidu Inc. - PC App Store DeskTool.) -- C:\Program Files\PC App Store\5.0.1.8490\AppStoreDeskTool.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\REALTEK\Audio\HDA\RtHDVCpl.exe ©
O4 - HKCU\..\Run: [Viber] . (. - Viber.) -- C:\Users\johq\AppData\Local\Viber\Viber.exe
O4 - HKCU\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe ©
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-2823981878-1480480070-4291226948-1000\..\Run: [Viber] . (. - Viber.) -- C:\Users\johq\AppData\Local\Viber\Viber.exe
O4 - HKUS\S-1-5-21-2823981878-1480480070-4291226948-1000\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe ©
---\\ Global shortcuts Startup (4) - 13s
O4 - GS\Quicklaunch [Administrator]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
O4 - GS\Quicklaunch [Guest]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
O4 - GS\Quicklaunch [johq]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
O4 - GS\CommonDesktop [Public]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
---\\ Lop.com/Domain Hijackers (20) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 209.244.0.3 84.200.69.80
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 209.244.0.3 84.200.69.80
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 209.244.0.3 84.200.69.80
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.0.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1
---\\ Extra protocols (23) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©
---\\ Software installed (90) - 28s
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM] -- 7-Zip
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Shockwave Player + Authorware Web Player - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player + Authorware Web Player ©
O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player ©
O42 - Logiciel: AIMP3 - (.AIMP DevTeam.) [HKLM] -- AIMP3 ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {E1DB0812-2D60-43DB-AE09-6C7027D93B28} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: AVG 2015 - (.AVG Technologies.) [HKLM] -- {B7985C63-D021-4C98-A8D2-5A7EE44086CA} ©
O42 - Logiciel: AVG Web TuneUp - (.AVG Technologies.) [HKLM] -- AVG Web TuneUp ©
O42 - Logiciel: Broadcom Card Reader Driver Installer - (.Broadcom Corporation.) [HKLM] -- {4710662C-8204-4334-A977-B1AC9E547819} ©
O42 - Logiciel: Cambridge Advanced Learner's Dictionary - 3rd Edition - (...) [HKLM] -- NSIS_cald3
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} ©
O42 - Logiciel: Convenient shortcuts - (.DriverPack.) [HKLM] -- handyShortcuts ©
O42 - Logiciel: Data Doctor Recovery - SIM Card (Demo) - (.Pro Data Doctor Pvt. Ltd..) [HKLM] -- {56FE9BA1-FD2F-4C78-9FA0-6EBA28B22905}_is1
O42 - Logiciel: Dead To Rights 2 - (...) [HKLM] -- Dead To Rights 2
O42 - Logiciel: Driver Booster 2.1 - (.IObit.) [HKLM] -- Driver Booster_is1 ©
O42 - Logiciel: DriverEasy 4.9.3 - (.Easeware.) [HKLM] -- DriverEasy_is1 ©
O42 - Logiciel: DriverPack Solution Updater - (.DriverPack Solution.) [HKCU] -- DRPSu Updater
O42 - Logiciel: Euro Truck Simulator 2 - (.SCS Software.) [HKLM] -- {1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1 ©
O42 - Logiciel: EZDownloader - (.EZDownloader.) [HKLM] -- {0F44DC3A-6E62-4961-A14B-95323C512F9B}_is1 ©
O42 - Logiciel: FiddlerCoreAPI - (...) [HKCU] -- FiddlerCoreAPI
O42 - Logiciel: File Association Helper - (.WinZip Computing International, LLC.) [HKLM] -- {8975E3CB-A762-4B14-BD62-A3972A098E82} ©
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 ©
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM] -- Foxit Reader_is1 ©
O42 - Logiciel: FreeLanguageTranslator 3.4 - (.Decebal Mihailescu.) [HKLM] -- {607D6C12-915A-4ACD-8049-3E3728F609C7}
O42 - Logiciel: GlassWire 1.0 (remove only) - (.SecureMix LLC.) [HKLM] -- GlassWire 1.0 ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {9C350701-AC04-48BA-A435-BD5E0D82897E} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: GTA2 - (...) [HKLM] -- {2987EE84-C4EE-4FF5-8160-32DE00D6ABC6}
O42 - Logiciel: Hostless MOBICONNECT - (.ZTE Corporation.) [HKLM] -- {BCE97917-E58C-41FA-9B53-859E3FDCE924} ©
O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM] -- {760BB327-3973-4608-85C8-88162E2FF3B6} ©
O42 - Logiciel: inSSIDer Home - (.MetaGeek, LLC.) [HKLM] -- {9E54E4AE-B67A-4925-8E92-0E1F9817FD73}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} ©
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} ©
O42 - Logiciel: Intel® Watchdog Timer Driver (Intel® WDT) - (.Intel Corporation.) [HKLM] -- {3FD0C489-0F02-481a-A3E1-9754CD396761} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager ©
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall ©
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} ©
O42 - Logiciel: Java 8 Update 40 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218040F0} ©
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} ©
O42 - Logiciel: K-Lite Mega Codec Pack 5.1.0 - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: KMP Connect Program - (.PandoraTV.) [HKLM] -- {04F1B758-A24A-4409-88C8-7CA957A7E3C0}_is1
O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM] -- LManager ©
O42 - Logiciel: LG PC Suite - (.LG Electronics.) [HKLM] -- LG PC Suite ©
O42 - Logiciel: LPT System Updater Service - (.LPT.) [HKLM] -- {BC0BF363-63AB-4FF7-8EF1-AE0D7F711B24} =>PUP.Optional.Linkury
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: MobiConnect - (.Huawei Technologies Co.,Ltd.) [HKLM] -- MobiConnect ©
O42 - Logiciel: Mobile Broadband HL Service - (.Huawei Technologies Co.,Ltd.) [HKLM] -- Mobile Broadband HL Service ©
O42 - Logiciel: Mozilla Thunderbird 31.3.0 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird 31.3.0 (x86 en-US) ©
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM] -- Notepad++ ©
O42 - Logiciel: Ooredoo N'ternet - (.Ooredoo.) [HKLM] -- InstallShield_{E9AD7C62-C507-49BA-91AC-1A2D0F86A913}
O42 - Logiciel: OpenVPN 2.3.6-I601 - (...) [HKLM] -- OpenVPN
O42 - Logiciel: PC App Store - (.Baidu, Inc..) [HKLM] -- PC App Store 5.0.1.8490 ©
O42 - Logiciel: PC Cleaner - (.Systweak Software.) [HKLM] -- {25780A42-8553-4a2e-AA54-F413C5D8DA19}_is1
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} ©
O42 - Logiciel: QUICKfind server v1.1 - (.IDM.) [HKLM] -- QUICKfind
O42 - Logiciel: Ralink RT2870 Wireless LAN Card - (.Ralink.) [HKLM] -- {28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: REALTEK Wireless LAN Driver and Utility - (.Alfa Network, Inc..) [HKLM] -- {9C049499-055C-4a0c-A916-1D12314F45EB}
O42 - Logiciel: REALTEK Wireless LAN Driver and Utility - (.REALTEK Semiconductor Corp..) [HKLM] -- {0DF70CB6-553A-4C57-8E6D-876322ECFB78} ©
O42 - Logiciel: Remove Empty Directories version 2.2 - (.Jonas John.) [HKLM] -- {06F25DC8-71E2-44E2-805A-F15E15B51C74}_is1
O42 - Logiciel: Search App by Ask - (.APN, LLC.) [HKLM] -- {4254522D-5350-006A-76A7-A75C790C1800} =>PUP.Optional.BrowserTabSearch
O42 - Logiciel: ShowRoom for PowerPoint - (.GlobFX Technologies.) [HKLM] -- ShowRoom
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} ©
O42 - Logiciel: Skype™ 7.2 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Snap.Do - (.ReSoft Ltd..) [HKLM] -- {DF7124A7-0580-46B7-8243-8CFB924F851A} =>PUP.Optional.SmartBar
O42 - Logiciel: Snap.Do Engine - (.ReSoft Ltd..) [HKCU] -- {2d2827ab-67f6-4377-afd6-ef83b52072a3} =>PUP.Optional.SmartBar
O42 - Logiciel: Softonic Assistant - (.Softonic International S.A..) [HKCU] -- SoftonicAssistant =>PUP.Optional.Softonic
O42 - Logiciel: Softonic for Windows - (.Softonic International S.L..) [HKCU] -- Softonic for Windows =>PUP.Optional.Softonic
O42 - Logiciel: Software Informer 1.4.1152.0 - (.Informer Technologies, Inc..) [HKLM] -- Software Informer_is1
O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM] -- Update Engine ©
O42 - Logiciel: Sony PC Companion 2.10.289 - (.Sony.) [HKLM] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} ©
O42 - Logiciel: Supercopier 1.2.0.4 - (.Supercopier.) [HKLM] -- Supercopier ©
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} ©
O42 - Logiciel: TAP-Windows 9.21.1 - (...) [HKLM] -- TAP-Windows
O42 - Logiciel: Techbit - (.Techbit.) [HKLM] -- {12DA0E6F-5543-440C-BAA2-28BF01070AFA}{82ef9f5b}
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1 ©
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM] -- {933B4015-4618-4716-A828-5289FC03165F} ©
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU] -- Viber ©
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: WebcamMax - (...) [HKLM] -- WebcamMax
O42 - Logiciel: Who Is On My Wifi version 3.0.2 - (.IO3O LLC.) [HKLM] -- {010D45A1-093D-4534-8147-4E10E80F81CC}_is1
O42 - Logiciel: Win32DiskImager version 0.9.5 - (.ImageWriter Developers.) [HKLM] -- {D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM] -- WinPcapInst ©
O42 - Logiciel: WinRAR 5.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: x264vfw - H.264/MPEG-4 AVC codec (remove only) - (...) [HKLM] -- x264vfw
O42 - Logiciel: Your Freedom 20150309-01 - (.resolution GmbH.) [HKLM] -- Your_Deploy_1 ©
O42 - Logiciel: ZDServer - (.ZTE Corporation.) [HKLM] -- {C8197F5F-E0DC-44f1-8AF2-1AA5A84F695D} ©
---\\ HKCU & HKLM Software Keys (264) - 28s
HKLM\SOFTWARE\360Safe
HKLM\SOFTWARE\4shared Desktop
HKLM\SOFTWARE\7-Zip
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Adobe Systems
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\AMD
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\Aureal
HKLM\SOFTWARE\Avg
HKLM\SOFTWARE\AVG Tuneup
HKLM\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKLM\SOFTWARE\AviSynth
HKLM\SOFTWARE\baidu
HKLM\SOFTWARE\Baidu Security
HKLM\SOFTWARE\Baidu_Drp_pos
HKLM\SOFTWARE\CloudOpt
HKLM\SOFTWARE\Codec Tweak Tool
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\d9c16e49-4ebc-472c-9bd4-0832cd03d0c6 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\DC-Unlocker
HKLM\SOFTWARE\Disc Soft
HKLM\SOFTWARE\DivX
HKLM\SOFTWARE\DMA Design Ltd
HKLM\SOFTWARE\Dolby
HKLM\SOFTWARE\Dritek
HKLM\SOFTWARE\DtsEncodeTools
HKLM\SOFTWARE\Eset
HKLM\SOFTWARE\Foxit Software
HKLM\SOFTWARE\Gabest
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\Glarysoft
HKLM\SOFTWARE\GlobFX Technologies
HKLM\SOFTWARE\GN2
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HD Sentinel
HKLM\SOFTWARE\Hola
HKLM\SOFTWARE\HSPA
HKLM\SOFTWARE\Huawei technologies
HKLM\SOFTWARE\Icaros
HKLM\SOFTWARE\IDM
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\IN Wallpaper ProjectTool
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\InterVideo
HKLM\SOFTWARE\IO3O
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\KMP
HKLM\SOFTWARE\Knowles
HKLM\SOFTWARE\Kromtech
HKLM\SOFTWARE\LAV
HKLM\SOFTWARE\LG Electronics
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\LiveUpdate360
HKLM\SOFTWARE\LogMeInRescueCallingCard
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Nahimic
HKLM\SOFTWARE\Namco
HKLM\SOFTWARE\Nico Mak Computing
HKLM\SOFTWARE\Nokia
HKLM\SOFTWARE\Norton
HKLM\SOFTWARE\Notepad++
HKLM\SOFTWARE\NSIS_cald3
HKLM\SOFTWARE\Nuance
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OpenVPN
HKLM\SOFTWARE\OpenVPN-GUI
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKLM\SOFTWARE\PC Connectivity Solution
HKLM\SOFTWARE\PCSuite
HKLM\SOFTWARE\Preserver
HKLM\SOFTWARE\Qualcomm Atheros WiFi Driver Installation
HKLM\SOFTWARE\Ralink
HKLM\SOFTWARE\RealNetworks
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Reg
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Rockstar Games
HKLM\SOFTWARE\Rovio Entertainment Ltd.
HKLM\SOFTWARE\RtWLan
HKLM\SOFTWARE\S3R521
HKLM\SOFTWARE\SCS Software
HKLM\SOFTWARE\SiteSee =>PUP.Optional.SiteSee
HKLM\SOFTWARE\SIV
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SlimWare Utilities Inc
HKLM\SOFTWARE\SmartPCFixer
HKLM\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\Sony
HKLM\SOFTWARE\Sony Mobile
HKLM\SOFTWARE\SpeedBit
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\SystemAugmenter
HKLM\SOFTWARE\SystemBuilder
HKLM\SOFTWARE\SystemLifter
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\TAP-Windows
HKLM\SOFTWARE\Trymedia Systems =>PUP.Optional.Trymedia
HKLM\SOFTWARE\Tune =>PUP.Optional.Systweak
HKLM\SOFTWARE\TuneUp
HKLM\SOFTWARE\UCBrowserPID
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\VMware, Inc.
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WebcamMax
HKLM\SOFTWARE\WIBU-SYSTEMS
HKLM\SOFTWARE\WidCommUpdate
HKLM\SOFTWARE\WinPcap
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\WLITE
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\wtu
HKLM\SOFTWARE\WXLITE
HKLM\SOFTWARE\Your Freedom
HKLM\SOFTWARE\ZTEUSBDriverFlag
HKCU\SOFTWARE\4shared Desktop
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\AC3Filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Avg
HKCU\SOFTWARE\Avg Secure Update
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\Camfrog
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\CatalinaGroup
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Cineform
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Decebal Mihailescu
HKCU\SOFTWARE\DeviceBlock
HKCU\SOFTWARE\Digital River
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\Distromatic
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Dritek
HKCU\SOFTWARE\Driver Pro
HKCU\SOFTWARE\DriverToolkit =>.Superfluous.DriverToolkit
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DSP-worx
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GetData
HKCU\SOFTWARE\GlarySoft
HKCU\SOFTWARE\GlassWire
HKCU\SOFTWARE\GlobFX Technologies
HKCU\SOFTWARE\GN2
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GSpot Appliance Corp
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Heaventools
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IDM Computer Solutions
HKCU\SOFTWARE\ilivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\ImageShack
HKCU\SOFTWARE\Informer Technologies, Inc.
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\LG Electronics
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\LiveUpdate360
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\LowRegistry
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mailinfo
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MetaGeek, LLC
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\MultiLanguage PCHA
HKCU\SOFTWARE\Namco
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\Nilings
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKCU\SOFTWARE\PC App Store
HKCU\SOFTWARE\Psiphon3
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Real
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\Revenger inc.
HKCU\SOFTWARE\SamLab.ws
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\SIV
HKCU\SOFTWARE\skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\SlimWare Utilities Inc
HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Sony
HKCU\SOFTWARE\SYNCJM
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\Tbccint_HKLM =>PUP.Optional.Conduit
HKCU\SOFTWARE\Telerik
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Tune =>PUP.Optional.Systweak
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\UCBrowserPID
HKCU\SOFTWARE\Ultracopier
HKCU\SOFTWARE\undelete360
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\Wireshark
HKCU\SOFTWARE\Yahoo
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Toolbar
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\Amazon
HKCU\SOFTWARE\AppDataLow\Software\Hotspot_Shield
HKCU\SOFTWARE\AppDataLow\Software\ilividbandoomoviestoolbar =>PUP.Optional.Bandoo
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\TbccintSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contents of the Common Files folders (460) - 29s
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Adobe
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files\AIMP3
O43 - CFD: 27/03/2015 - [] D -- C:\Program Files\Apple Software Update
O43 - CFD: 14/11/2015 - [0] D -- C:\Program Files\Ashampoo
O43 - CFD: 19/07/2015 - [] D -- C:\Program Files\AskPartnerNetwork =>Toolbar.AskBar
O43 - CFD: 25/10/2007 - [] D -- C:\Program Files\AST Dictionary
O43 - CFD: 30/06/2015 - [] D -- C:\Program Files\Atheros
O43 - CFD: 11/02/2015 - [] D -- C:\Program Files\AVG
O43 - CFD: 27/09/2015 - [] D -- C:\Program Files\AVG Web TuneUp =>Toolbar.AVGSafeGuard
O43 - CFD: 25/01/2015 - [] D -- C:\Program Files\baidu
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files\Baidu Security
O43 - CFD: 22/10/2014 - [] D -- C:\Program Files\Bonjour
O43 - CFD: 17/08/2015 - [0] D -- C:\Program Files\Break For Games
O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\Broadcom
O43 - CFD: 19/01/2015 - [] D -- C:\Program Files\BuyNsave =>PUP.Optional.BuyNSave
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\Cambridge
O43 - CFD: 07/03/2015 - [] D -- C:\Program Files\Cisco
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files\CodeMeter
O43 - CFD: 08/09/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 03/05/2015 - [] D -- C:\Program Files\Data Doctor Recovery - SIM Card (Demo)
O43 - CFD: 11/05/2015 - [] D -- C:\Program Files\DC-Unlocker
O43 - CFD: 28/02/2015 - [] D -- C:\Program Files\DeskSMS Send and Receive Texts Messages
O43 - CFD: 13/08/2015 - [] D -- C:\Program Files\directx
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files\DivX
O43 - CFD: 16/08/2015 - [] AD -- C:\Program Files\DriverPackSolution
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files\DriverToolkit =>.Superfluous.DriverToolkit
O43 - CFD: 03/12/2014 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 26/06/2015 - [] D -- C:\Program Files\Easeware
O43 - CFD: 19/03/2015 - [] D -- C:\Program Files\Elantech
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files\ESET
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Euro Truck Simulator 2
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\EZDownloader
O43 - CFD: 02/01/2015 - [] D -- C:\Program Files\File Association Helper
O43 - CFD: 02/11/2014 - [] D -- C:\Program Files\Foxit Software
O43 - CFD: 11/11/2015 - [] D -- C:\Program Files\FreeLanguageTranslator 3.4
O43 - CFD: 10/01/2015 - [] D -- C:\Program Files\FreeTime
O43 - CFD: 31/10/2014 - [] D -- C:\Program Files\Glary Utilities 5
O43 - CFD: 27/11/2014 - [] D -- C:\Program Files\GlassWire
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\GlobFX
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Google
O43 - CFD: 27/09/2015 - [0] D -- C:\Program Files\GUM2404.tmp
O43 - CFD: 18/11/2014 - [] D -- C:\Program Files\GUMC21A.tmp
O43 - CFD: 20/02/2015 - [] D -- C:\Program Files\Hard Disk Sentinel
O43 - CFD: 01/09/2015 - [] D -- C:\Program Files\Hola
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\HomeGuard
O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\Hostless Modem
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\HSPA USB Modem
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\IDM
O43 - CFD: 05/03/2015 - [0] D -- C:\Program Files\IndepthRunner =>PUP.Optional.Graftor
O43 - CFD: 13/11/2015 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 20/03/2015 - [] D -- C:\Program Files\Intel
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files\IO3O LLC
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files\IObit
O43 - CFD: 24/04/2015 - [] D -- C:\Program Files\Java
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\JIRA assistant for Google Chrome
O43 - CFD: 24/11/2015 - [] D -- C:\Program Files\KMPConnect
O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\Launch Manager
O43 - CFD: 26/10/2014 - [] D -- C:\Program Files\LG Electronics
O43 - CFD: 25/12/2014 - [] D -- C:\Program Files\Mailinfo
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\MetaGeek
O43 - CFD: 09/11/2014 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 26/10/2014 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 12/08/2015 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 03/12/2014 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 31/08/2015 - [] D -- C:\Program Files\MobiConnect
O43 - CFD: 19/02/2015 - [] D -- C:\Program Files\Movies App =>PUP.Optional.CrossRider
O43 - CFD: 29/01/2015 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 10/12/2014 - [] D -- C:\Program Files\Mozilla Thunderbird
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 04/01/2015 - [] D -- C:\Program Files\MSECache
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files\Namco
O43 - CFD: 23/12/2014 - [] D -- C:\Program Files\Nokia
O43 - CFD: 23/07/2015 - [] D -- C:\Program Files\Notepad++
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files\OpenVPN
O43 - CFD: 10/05/2015 - [0] D -- C:\Program Files\oTweak =>PUP.Optional.oTweak
O43 - CFD: 14/01/2015 - [] D -- C:\Program Files\PC App Store
O43 - CFD: 19/08/2015 - [] D -- C:\Program Files\PC Cleaner
O43 - CFD: 13/03/2015 - [] D -- C:\Program Files\PC Faster
O43 - CFD: 28/02/2015 - [0] D -- C:\Program Files\PragmaEngine =>PUP.Optional.Generic
O43 - CFD: 13/05/2015 - [] D -- C:\Program Files\PRiceeMinus =>PUP.Optional.Multiplug
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\PriceMinous =>PUP.Optional.Multiplug
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\PriceMinus =>PUP.Optional.Multiplug
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\PrIceMMIInnus =>PUP.Optional.Multiplug
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files\Proxy Mask
O43 - CFD: 29/12/2014 - [] D -- C:\Program Files\Ralink
O43 - CFD: 02/02/2015 - [] D -- C:\Program Files\Real
O43 - CFD: 01/02/2015 - [] D -- C:\Program Files\RealNetworks
O43 - CFD: 23/08/2015 - [] D -- C:\Program Files\REALTEK
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 08/03/2015 - [0] D -- C:\Program Files\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\Remove Empty Directories
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files\ReviverSoft
O43 - CFD: 04/09/2015 - [] D -- C:\Program Files\Rockstar Games
O43 - CFD: 29/12/2014 - [] D -- C:\Program Files\Rovio Entertainment Ltd
O43 - CFD: 22/10/2014 - [] D -- C:\Program Files\Safari
O43 - CFD: 21/10/2014 - [] D -- C:\Program Files\SAM CoDeC Pack
O43 - CFD: 26/02/2015 - [0] D -- C:\Program Files\Samsung
O43 - CFD: 27/10/2014 - [] D -- C:\Program Files\SDA
O43 - CFD: 19/11/2015 - [] RD -- C:\Program Files\Skype
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\Smart QrCode Generator
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Sony
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files\Sony Mobile
O43 - CFD: 01/03/2015 - [] D -- C:\Program Files\Start
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files\Supercopier
O43 - CFD: 01/02/2015 - [] D -- C:\Program Files\SupportAppCB
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files\TAP-Windows
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files\Tbccint =>PUP.Optional.Conduit
O43 - CFD: 18/07/2015 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 23/11/2014 - [] D -- C:\Program Files\TuneUp Utilities 2014
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\UCBrowser
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\UniDeals =>PUP.Optional.Multiplug
O43 - CFD: 28/02/2015 - [0] D -- C:\Program Files\UnIDeeals =>PUP.Optional.Deeal
O43 - CFD: 01/03/2015 - [] D -- C:\Program Files\UniDEEAlse =>PUP.Optional.Deeal
O43 - CFD: 28/06/2015 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\unIsaales =>PUP.Optional.Multiplug
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\uNisalEs =>PUP.Optional.Multiplug
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files\USB Disk Security
O43 - CFD: 21/10/2014 - [] D -- C:\Program Files\uTorrent
O43 - CFD: 27/02/2015 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 11/03/2015 - [] D -- C:\Program Files\VMware
O43 - CFD: 27/11/2014 - [] D -- C:\Program Files\WASEL Pro VPN Service
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\WebcamMax
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 11/11/2015 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 26/06/2015 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 23/10/2014 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 16/01/2015 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 23/12/2014 - [] D -- C:\Program Files\WinPcap
O43 - CFD: 20/01/2015 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 20/10/2014 - [] D -- C:\Program Files\x264vfw
O43 - CFD: 04/08/2015 - [] D -- C:\Program Files\Your Freedom
O43 - CFD: 21/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 28/01/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 27/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
O43 - CFD: 19/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alfa 11n USB Wireless LAN Utility
O43 - CFD: 07/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
O43 - CFD: 22/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Break For Games
O43 - CFD: 16/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Free
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cambridge
O43 - CFD: 03/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Data Doctor Recovery - SIM Card (Demo)
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
O43 - CFD: 26/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZDownloader
O43 - CFD: 03/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 17/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 26/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 05/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hostless MOBICONNECT
O43 - CFD: 28/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
O43 - CFD: 23/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 08/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 21/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 01/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 03/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 21/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMP Connect
O43 - CFD: 26/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite
O43 - CFD: 25/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mailinfo
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek
O43 - CFD: 28/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 12/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 01/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiPony
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MobiConnect
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Namco
O43 - CFD: 22/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 01/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ooredoo N'ternet
O43 - CFD: 23/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
O43 - CFD: 30/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Cleaner
O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 10/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ralink Wireless
O43 - CFD: 02/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REALTEK Wireless LAN Utility
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remove Empty Directories
O43 - CFD: 04/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio Entertainment Ltd
O43 - CFD: 22/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAM CoDeC Pack
O43 - CFD: 27/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
O43 - CFD: 06/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 26/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Informer
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 01/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 07/02/2015 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 11/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Translator3
O43 - CFD: 31/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 22/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uTorrent
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 28/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WASEL Pro VPN Service
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebcamMax
O43 - CFD: 08/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Who Is On My Wifi
O43 - CFD: 23/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Freedom
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\11456329611893396231
O43 - CFD: 28/03/2015 - [] D -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 28/01/2015 - [] D -- C:\ProgramData\akkhemohldoigkbhijgphdmpehcmpdid
O43 - CFD: 02/03/2015 - [] D -- C:\ProgramData\APN =>Toolbar.Ask
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Apple
O43 - CFD: 27/03/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 07/01/2015 - [] D -- C:\ProgramData\Ashampoo
O43 - CFD: 30/06/2015 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 17/01/2015 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 23/10/2014 - [] D -- C:\ProgramData\AVG
O43 - CFD: 08/09/2015 - [] D -- C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 08/09/2015 - [] D -- C:\ProgramData\AVG Security Toolbar =>Toolbar.AVGSearch
O43 - CFD: 08/09/2015 - [] D -- C:\ProgramData\AVG Web TuneUp =>Toolbar.AVGSafeGuard
O43 - CFD: 12/12/2014 - [] D -- C:\ProgramData\AVG2014
O43 - CFD: 19/01/2015 - [] D -- C:\ProgramData\AVG2015
O43 - CFD: 18/08/2015 - [] D -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Baidu Security
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\BCloudScan_exe
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 13/02/2015 - [] D -- C:\ProgramData\cckidplnoficjdalhmiehaabjekkeiaf
O43 - CFD: 14/03/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\DatacardService
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 28/01/2015 - [] D -- C:\ProgramData\fcnmlphegoldcdgncjicdnnpbcofdjko
O43 - CFD: 14/11/2015 - [0] D -- C:\ProgramData\GlarySoft
O43 - CFD: 17/11/2014 - [] D -- C:\ProgramData\GlassWire
O43 - CFD: 13/02/2015 - [] D -- C:\ProgramData\hglccbdbhpggmlmlikeieeigeghhggkc
O43 - CFD: 07/01/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\IDMComp
O43 - CFD: 26/10/2014 - [] D -- C:\ProgramData\Informer Technologies, Inc
O43 - CFD: 23/12/2014 - [] D -- C:\ProgramData\Installations
O43 - CFD: 20/03/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 27/01/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\JollyBear
O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Kromtech
O43 - CFD: 28/02/2015 - [] D -- C:\ProgramData\leoebbkcpolgpljllpiacpiaienepall
O43 - CFD: 28/02/2015 - [] D -- C:\ProgramData\liimbpcnmhghlffgbnanlhkpoeabccac =>PUP.Optional.BundleInstaller
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\log
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\loifehnibneaijdapadeofecfbjkoemo
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\miajiigchnnafabiiddknnjfeldgbldh
O43 - CFD: 16/05/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 31/08/2015 - [] D -- C:\ProgramData\MobiConnect
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Mobile Partner =>Toolbar.YahooPartner
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\MobileBrServ
O43 - CFD: 29/01/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 31/12/2014 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 26/01/2015 - [] D -- C:\ProgramData\Oberon Games
O43 - CFD: 22/02/2015 - [] D -- C:\ProgramData\Office Genuine Advantage
O43 - CFD: 02/02/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 03/12/2014 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 28/11/2014 - [] D -- C:\ProgramData\ParetoLogic =>.Superfluous.Paretologic
O43 - CFD: 13/03/2015 - [] D -- C:\ProgramData\PC Faster
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\pdogjmapichlpfhdgbjcjeadjcpcghgh
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\pehkliacingeelefhlaencmkdnfajkon
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\ProductData =>PUP.Optional.Generic
O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\Ralink
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\Ralink Driver
O43 - CFD: 01/02/2015 - [] D -- C:\ProgramData\Real
O43 - CFD: 08/02/2015 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 25/10/2014 - [] D -- C:\ProgramData\Sony
O43 - CFD: 25/10/2014 - [] D -- C:\ProgramData\Sony Mobile
O43 - CFD: 08/05/2015 - [] D -- C:\ProgramData\SpeedBit
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 21/10/2014 - [] D -- C:\ProgramData\Sun
O43 - CFD: 01/09/2015 - [0] D -- C:\ProgramData\SurfEasy VPN
O43 - CFD: 24/08/2015 - [] D -- C:\ProgramData\SurfEasyService
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Tbccint =>PUP.Optional.Conduit
O43 - CFD: 27/06/2015 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 09/08/2015 - [] D -- C:\ProgramData\Thunder Network
O43 - CFD: 22/11/2014 - [] D -- C:\ProgramData\Trusted Publisher =>PUP.Optional.TopAppSoft
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Trymedia =>PUP.Optional.Trymedia
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 16/11/2014 - [] D -- C:\ProgramData\USB Block
O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\VMware
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\WCMShare
O43 - CFD: 23/09/2015 - [] D -- C:\ProgramData\WebcamMax
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Zbshareware Lab
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\ZDSupport
O43 - CFD: 28/02/2015 - [] D -- C:\ProgramData\{24c7e9c4-7378-35b4-24c7-7e9c4737a711}
O43 - CFD: 05/03/2015 - [] D -- C:\ProgramData\{446be9fc-3e60-229e-446b-be9fc3e6a7f0}
O43 - CFD: 01/03/2015 - [] D -- C:\ProgramData\{7d6c815e-f083-00b8-7d6c-c815ef08057b}
O43 - CFD: 11/02/2015 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files\Common Files\Adobe Systems Shared
O43 - CFD: 18/08/2015 - [] D -- C:\Program Files\Common Files\Apple
O43 - CFD: 08/11/2015 - [] D -- C:\Program Files\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 26/10/2014 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files\Common Files\DivX Shared
O43 - CFD: 23/02/2015 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 26/01/2015 - [] D -- C:\Program Files\Common Files\IObit
O43 - CFD: 01/11/2014 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 25/01/2015 - [] D -- C:\Program Files\Common Files\Oberon Media
O43 - CFD: 20/11/2014 - [] D -- C:\Program Files\Common Files\ParetoLogic =>.Superfluous.Paretologic
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 06/03/2015 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 25/11/2014 - [] D -- C:\Program Files\Common Files\SpeedBit
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\4shared Desktop
O43 - CFD: 07/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\AC3Filter
O43 - CFD: 22/10/2015 - [] D -- C:\Users\johq\AppData\Roaming\Adobe
O43 - CFD: 02/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\AIMP3
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\Apple Computer
O43 - CFD: 23/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\AVG
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\AVG2015
O43 - CFD: 25/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Baidu
O43 - CFD: 15/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\BavMini
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\cald3
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\DivX
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\DMCache
O43 - CFD: 20/11/2014 - [] D -- C:\Users\johq\AppData\Roaming\DriverCure =>.Superfluous.Paretologic
O43 - CFD: 31/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Dropbox
O43 - CFD: 14/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\DRPSu
O43 - CFD: 18/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Easeware
O43 - CFD: 25/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\EZDownloader
O43 - CFD: 03/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Foxit Software
O43 - CFD: 20/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\FreeLanguageTranslator
O43 - CFD: 14/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\GlarySoft
O43 - CFD: 18/02/2015 - [] D -- C:\Users\johq\AppData\Roaming\Hard Disk Sentinel
O43 - CFD: 22/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Hola
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\IDM
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\IDMComp
O43 - CFD: 29/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\IObit
O43 - CFD: 30/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\LG Electronics
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\Macromedia
O43 - CFD: 14/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Media Player Classic
O43 - CFD: 25/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\MI
O43 - CFD: 30/06/2015 - [] SD -- C:\Users\johq\AppData\Roaming\Microsoft
O43 - CFD: 30/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\Mipony
O43 - CFD: 19/05/2015 - [] D -- C:\Users\johq\AppData\Roaming\Mobile Atlas Creator
O43 - CFD: 05/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Mozilla
O43 - CFD: 17/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\MPC-HC
O43 - CFD: 04/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\Notepad++
O43 - CFD: 26/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Oberon Games
O43 - CFD: 11/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\Opera Software
O43 - CFD: 02/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\PC App Store
O43 - CFD: 13/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\PC Faster
O43 - CFD: 03/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\PE Explorer
O43 - CFD: 11/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\ProductData
O43 - CFD: 08/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Proxy Mask
O43 - CFD: 03/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Real
O43 - CFD: 07/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\RHEng =>PUP.Optional.Conduit
O43 - CFD: 29/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Rovio
O43 - CFD: 29/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Rovio Entertainment Ltd
O43 - CFD: 03/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Samsung
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Skype
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\Software Informer
O43 - CFD: 28/04/2015 - [] D -- C:\Users\johq\AppData\Roaming\Sun
O43 - CFD: 08/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Systweak =>PUP.Optional.Systweak
O43 - CFD: 01/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Thunderbird
O43 - CFD: 31/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\TuneUp Software
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\UpdaterEX =>PUP.Optional.Dealply
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\ViberPC
O43 - CFD: 23/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\vlc
O43 - CFD: 18/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\VMware
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\WCMShare
O43 - CFD: 27/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\WebcamMax
O43 - CFD: 24/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\WinRAR
O43 - CFD: 25/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Wireshark
O43 - CFD: 31/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Zbshareware Lab
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\ZHP
O43 - CFD: 11/01/2015 - [] D -- C:\Users\johq\AppData\Local\1BN_Software_&_IT_Solutio
O43 - CFD: 30/06/2015 - [] D -- C:\Users\johq\AppData\Local\Adobe
O43 - CFD: 27/03/2015 - [] D -- C:\Users\johq\AppData\Local\Apple Computer
O43 - CFD: 20/10/2014 - [0] SHD -- C:\Users\johq\AppData\Local\Application Data
O43 - CFD: 27/10/2014 - [] D -- C:\Users\johq\AppData\Local\Apps
O43 - CFD: 13/01/2015 - [] D -- C:\Users\johq\AppData\Local\Ares
O43 - CFD: 02/02/2015 - [] D -- C:\Users\johq\AppData\Local\AskPartnerNetwork =>Toolbar.AskBar
O43 - CFD: 26/08/2015 - [] D -- C:\Users\johq\AppData\Local\AutorunX2
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Local\Avg
O43 - CFD: 08/09/2015 - [] D -- C:\Users\johq\AppData\Local\AVG Web TuneUp =>Toolbar.AVGSafeGuard
O43 - CFD: 14/09/2015 - [] D -- C:\Users\johq\AppData\Local\Avg2015
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Local\cald3
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Local\com.surfeasy.se0200
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Local\CrashDumps
O43 - CFD: 28/08/2015 - [] D -- C:\Users\johq\AppData\Local\Diagnostics
O43 - CFD: 07/11/2014 - [] D -- C:\Users\johq\AppData\Local\downloadius
O43 - CFD: 28/08/2015 - [] D -- C:\Users\johq\AppData\Local\ElevatedDiagnostics
O43 - CFD: 27/06/2015 - [0] SHD -- C:\Users\johq\AppData\Local\EmieBrowserModeList
O43 - CFD: 27/06/2015 - [0] SHD -- C:\Users\johq\AppData\Local\EmieSiteList
O43 - CFD: 27/06/2015 - [0] SHD -- C:\Users\johq\AppData\Local\EmieUserList
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Local\Facebook
O43 - CFD: 08/07/2015 - [] D -- C:\Users\johq\AppData\Local\Foxit Reader
O43 - CFD: 17/11/2014 - [] D -- C:\Users\johq\AppData\Local\GlassWire
O43 - CFD: 27/09/2015 - [] D -- C:\Users\johq\AppData\Local\Google
O43 - CFD: 28/06/2015 - [] D -- C:\Users\johq\AppData\Local\GWX
O43 - CFD: 20/10/2014 - [0] SHD -- C:\Users\johq\AppData\Local\History
O43 - CFD: 03/07/2015 - [] D -- C:\Users\johq\AppData\Local\Hola
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Local\iLivid =>PUP.Optional.Bandoo
O43 - CFD: 11/11/2014 - [] D -- C:\Users\johq\AppData\Local\Kromtech
O43 - CFD: 26/10/2014 - [] D -- C:\Users\johq\AppData\Local\LG Electronics
O43 - CFD: 25/12/2014 - [] D -- C:\Users\johq\AppData\Local\Mailinfo
O43 - CFD: 02/07/2015 - [] D -- C:\Users\johq\AppData\Local\MetaGeek,_LLC
O43 - CFD: 20/10/2014 - [] D -- C:\Users\johq\AppData\Local\MFAData
O43 - CFD: 02/09/2015 - [] D -- C:\Users\johq\AppData\Local\Microsoft
O43 - CFD: 30/10/2014 - [] D -- C:\Users\johq\AppData\Local\Mindspark_Interactive_Net
O43 - CFD: 25/01/2015 - [] D -- C:\Users\johq\AppData\Local\MiniService
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Local\Mozilla
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Local\Opera Software
O43 - CFD: 14/11/2015 - [] D -- C:\Users\johq\AppData\Local\Programs
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Local\Remove_Empty_Directories
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Local\Skype
O43 - CFD: 28/10/2014 - [] D -- C:\Users\johq\AppData\Local\SlimWare Utilities Inc
O43 - CFD: 21/11/2015 - [] D -- C:\Users\johq\AppData\Local\Softonic =>PUP.Optional.Softonic
O43 - CFD: 04/01/2015 - [] D -- C:\Users\johq\AppData\Local\SoftonicAssistant =>PUP.Optional.Softonic
O43 - CFD: 27/10/2014 - [] D -- C:\Users\johq\AppData\Local\Sony
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Local\Temp
O43 - CFD: 16/01/2015 - [] D -- C:\Users\johq\AppData\Local\Temp23675
O43 - CFD: 20/10/2014 - [0] SHD -- C:\Users\johq\AppData\Local\Temporary Internet Files
O43 - CFD: 05/12/2014 - [] D -- C:\Users\johq\AppData\Local\Thunderbird
O43 - CFD: 07/07/2015 - [] D -- C:\Users\johq\AppData\Local\Torch =>.Superfluous.Torch
O43 - CFD: 14/11/2014 - [] D -- C:\Users\johq\AppData\Local\TuneUp Software
O43 - CFD: 12/11/2015 - [] D -- C:\Users\johq\AppData\Local\Viber
O43 - CFD: 12/11/2015 - [] D -- C:\Users\johq\AppData\Local\Viber Media S.à r.l
O43 - CFD: 24/10/2014 - [] D -- C:\Users\johq\AppData\Local\VirtualStore
O43 - CFD: 18/07/2015 - [] D -- C:\Users\johq\AppData\Local\VMware
O43 - CFD: 02/03/2015 - [] D -- C:\Users\johq\AppData\Local\VNT
O43 - CFD: 04/08/2015 - [] D -- C:\Users\johq\AppData\Local\Your Freedom
O43 - CFD: 14/07/2009 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 17/08/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Break For Games
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cambridge
O43 - CFD: 16/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DC-Unlocker
O43 - CFD: 03/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 27/11/2014 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GlassWire 1.0
O43 - CFD: 16/11/2014 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HomeGuard
O43 - CFD: 08/04/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/07/2009 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Namco
O43 - CFD: 16/01/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 10/05/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\oTweak Software =>PUP.Optional.oTweak
O43 - CFD: 23/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store
O43 - CFD: 07/02/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Softonic =>PUP.Optional.Softonic
O43 - CFD: 05/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 06/02/2015 - [0] HD -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
O43 - CFD: 21/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supercopier
O43 - CFD: 11/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Translator3
O43 - CFD: 20/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 18/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\تطبيقات Chrome
O43 - CFD: 16/12/2014 - [0] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
---\\ ShellIconOverlayIdentifiers (SIOI) (6) - 1s
O106 - SIOI: Google Drive Shell extension [ GoogleDriveBlacklisted] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll ©
O106 - SIOI: Google Drive Shell extension [ GoogleDriveSynced] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll ©
O106 - SIOI: Google Drive Shell extension [ GoogleDriveSyncing] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: IDM Shell Extension [IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©
---\\ System Drivers List (139) - 102s
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] ©
O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] ©
O58 - SDL:2011/03/11 06:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] ©
O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] ©
O58 - SDL:2011/03/11 06:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] ©
O58 - SDL:2015/05/19 14:02:42 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athr.sys [3208496] ©
O58 - SDL:2014/06/18 20:03:34 A . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) -- C:\Windows\System32\drivers\avgdiskx.sys [121624] ©
O58 - SDL:2013/09/26 19:00:38 A . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) -- C:\Windows\System32\drivers\avgfwd6x.sys [47928] ©
O58 - SDL:2014/12/08 21:25:06 A . (.AVG Technologies CZ, s.r.o. - AVG IDS Application Activity Monitor Driver.) -- C:\Windows\System32\drivers\avgidsdriverx.sys [208152] ©
O58 - SDL:2014/11/18 21:41:58 A . (.AVG Technologies CZ, s.r.o. - AVG Application Activity Monitor Helper Dri.) -- C:\Windows\System32\drivers\avgidshx.sys [154904] ©
O58 - SDL:2014/06/18 20:03:34 A . (.AVG Technologies CZ, s.r.o. - AVG IDS Application Activity Monitor Loader.) -- C:\Windows\System32\drivers\avgidsshimx.sys [21272] ©
O58 - SDL:2014/08/28 20:43:36 A . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\System32\drivers\avgldx86.sys [192792] ©
O58 - SDL:2014/07/18 14:55:24 A . (.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) -- C:\Windows\System32\drivers\avglogx.sys [230680] ©
O58 - SDL:2014/10/05 20:42:06 A . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\System32\drivers\avgmfx86.sys [98584] ©
O58 - SDL:2014/06/18 20:03:36 A . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\Windows\System32\drivers\avgrkx86.sys [27416] ©
O58 - SDL:2014/10/10 14:13:58 A . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\Windows\System32\drivers\avgtdix.sys [200984] ©
O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888] ©
O58 - SDL:2011/11/04 09:21:18 A . (.Broadcom Corporation - Broadcom xD Picture Card Bus Driver.) -- C:\Windows\System32\drivers\b57xdbd.sys [60968] ©
O58 - SDL:2011/11/04 09:21:20 A . (.Broadcom Corporation - Broadcom xD Picture Card Miniport Driver.) -- C:\Windows\System32\drivers\b57xdmp.sys [17960] ©
O58 - SDL:2006/06/26 12:20:10 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\bcmwl5.sys [564224] ©
O58 - SDL:2015/05/15 04:09:47 A . (. - bdark.) -- C:\Windows\System32\drivers\bdark.sys [82376]
O58 - SDL:2015/04/09 22:27:03 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\Windows\System32\drivers\BProtectEx.sys [113992] ©
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] ©
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] ©
O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] ©
O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] ©
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] ©
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] ©
O58 - SDL:2011/09/02 13:37:10 A . (.Broadcom Corporation - Broadcom Memory Stick Driver.) -- C:\Windows\System32\drivers\bScsiMSx.sys [43560] ©
O58 - SDL:2012/06/01 16:36:08 A . (.Broadcom Corporation - Broadcom SD 3.0 Driver.) -- C:\Windows\System32\drivers\bScsiSDx.sys [52856] ©
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\ccdcmb.sys [18560] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\ccdcmbo.sys [23168] ©
O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] ©
O58 - SDL:2013/06/29 17:10:58 A . (.Mobile Connector - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\cmusbser.sys [103552] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] ©
O58 - SDL:2013/08/23 03:49:26 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\Windows\System32\drivers\ETD.sys [334664] ©
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] ©
O58 - SDL:2010/10/08 09:55:06 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [25856] ©
O58 - SDL:2013/03/04 09:20:27 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [199168] ©
O58 - SDL:2013/03/21 02:55:42 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbwwan.sys [380416] ©
O58 - SDL:2010/09/26 11:09:22 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\Windows\System32\drivers\ew_hwupgrade.sys [19200] ©
O58 - SDL:2013/01/25 02:16:33 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ew_hwusbdev.sys [95232] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [77824] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\Windows\System32\drivers\ew_jucdcacm.sys [101248] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_jucdcecm.sys [70528] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\Windows\System32\drivers\ew_juextctrl.sys [27776] ©
O58 - SDL:2013/04/10 09:45:19 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_juwwanecm.sys [207872] ©
O58 - SDL:2012/12/22 02:46:02 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\Windows\System32\drivers\ew_usbenumfilter.sys [11904] ©
O58 - SDL:2014/10/25 21:51:23 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\Windows\System32\drivers\ggflt.sys [13528] ©
O58 - SDL:2014/10/25 21:51:23 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\Windows\System32\drivers\ggsomc.sys [26328] ©
O58 - SDL:2014/11/05 06:41:44 A . (.SecureMix LLC - GlassWire Driver.) -- C:\Windows\System32\drivers\gwdrv.sys [27616] ©
O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] ©
O58 - SDL:2013/01/23 15:57:32 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys [56432] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] ©
O58 - SDL:2015/01/10 14:20:31 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840]
O58 - SDL:2011/03/11 06:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] ©
O58 - SDL:2012/05/17 11:57:08 A . (.Intel Corporation - Intel(R) Watchdog Timer Driver (Intel(R) WD.) -- C:\Windows\System32\drivers\ICCWDT.sys [22040] ©
O58 - SDL:2015/06/12 03:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [123968] ©
O58 - SDL:2015/06/01 20:00:00 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [3788752] ©
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] ©
O58 - SDL:2014/09/09 05:13:28 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [368912] ©
O58 - SDL:2013/07/17 22:43:40 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [16880] ©
O58 - SDL:2013/07/26 09:01:50 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60x.sys [408272] ©
O58 - SDL:2014/05/27 18:10:20 A . (.Google Inc - ADB Interface.) -- C:\Windows\System32\drivers\lgandnetadb.sys [25856] ©
O58 - SDL:2014/05/27 18:04:22 A . (.LG Electronics Inc. - LGE AndroidNet Driver.) -- C:\Windows\System32\drivers\lgandnetdiag.sys [23168] ©
O58 - SDL:2014/05/27 18:04:22 A . (.LG Electronics Inc. - LGE AndroidNet Driver.) -- C:\Windows\System32\drivers\lgandnetmodem.sys [27776] ©
O58 - SDL:2014/05/28 04:29:56 A . (.LG Electronics Inc. - LGE AndroidNet USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\lgandnetndis.sys [74240] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] ©
O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] ©
O58 - SDL:2011/08/29 11:42:56 A . (.MBB Incorporated - CDROM Filter.) -- C:\Windows\System32\drivers\massfilter.sys [9216] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] ©
O58 - SDL:2010/08/06 00:42:34 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\drivers\mod7700.sys [861696]
O58 - SDL:2014/08/14 10:18:28 A . (.NT Kernel Resources - NDISRD helper driver.) -- C:\Windows\System32\drivers\ndisrd.sys [37408] ©
O58 - SDL:2015/03/14 13:39:24 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28u.sys [1321568] ©
O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] ©
O58 - SDL:2013/03/01 02:48:42 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [36600] ©
O58 - SDL:2011/03/11 06:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] ©
O58 - SDL:2011/03/11 06:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] ©
O58 - SDL:2015/01/10 19:07:35 A . (.QUALCOMM Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\qcusbser.sys [205312] ©
O58 - SDL:2015/06/17 08:54:36 A . (.FORGE Incorporated - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\qcusbwwan.sys [422976]
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] ©
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] ©
O58 - SDL:2015/08/14 04:57:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [3599600] ©
O58 - SDL:2010/01/07 02:20:22 A . (.Realtek Semiconductor Corporation - Realtek RTL8187 NDIS Driver.) -- C:\Windows\System32\drivers\RTL8187.sys [375808] ©
O58 - SDL:2010/03/31 10:13:28 A . (.Realtek Semiconductor Corporation - Realtek RTL8187B NDIS Driver.) -- C:\Windows\System32\drivers\rtl8187B.sys [379904] ©
O58 - SDL:2011/02/11 02:35:00 A . (.Realtek Semiconductor Corporation - Realtek RTL8192C USB NDIS Driver.) -- C:\Windows\System32\drivers\rtl8192cu.sys [693760] ©
O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2014/09/03 15:49:36 A . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\Windows\System32\drivers\ser2pl.sys [140800] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] ©
O58 - SDL:2011/01/03 09:38:36 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadcm.sys [10472] ©
O58 - SDL:2011/01/03 09:38:36 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadwh.sys [10344] ©
O58 - SDL:2010/12/21 06:55:02 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssm_cm.sys [12544] ©
O58 - SDL:2010/12/21 06:55:02 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssm_wh.sys [12416] ©
O58 - SDL:2015/07/09 02:51:19 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [84248] ©
O58 - SDL:2014/01/22 07:52:12 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [184192] ©
O58 - SDL:2011/02/18 06:40:06 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android RNDIS Filter Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudnflt.sys [15936] ©
O58 - SDL:2014/01/22 07:52:12 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (M.) -- C:\Windows\System32\drivers\ssudserd.sys [184192] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] ©
O58 - SDL:2014/11/17 13:56:46 A . (...) -- C:\Windows\System32\drivers\SWDUMon.sys [13464]
O58 - SDL:2014/11/05 14:16:26 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\Windows\System32\drivers\tap0901.sys [23040] ©
O58 - SDL:2013/06/17 21:50:44 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tapse01.sys [33720] ©
O58 - SDL:2015/07/28 20:37:20 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriver.sys [155424] ©
O58 - SDL:2013/09/28 03:56:48 A . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\Windows\System32\drivers\tmcomm.sys [289352] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Filter Driver for Nokia USB Phone Bus Drive.) -- C:\Windows\System32\drivers\usbser_lowerflt.sys [8192] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Filter Driver for Nokia USB Phone Bus Drive.) -- C:\Windows\System32\drivers\usbser_lowerfltj.sys [8192] ©
O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] ©
O58 - SDL:2013/10/18 12:44:58 A . (.VMware, Inc. - VMware virtual network driver (32-bit).) -- C:\Windows\System32\drivers\vmnet.sys [20048] ©
O58 - SDL:2013/10/18 12:44:58 A . (.VMware, Inc. - VMware virtual network adapter driver (32-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [17104] ©
O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] ©
O58 - SDL:2012/04/15 22:32:14 A . (.Windows (R) Win 7 DDK provider - WebcamMax Capture.) -- C:\Windows\System32\drivers\wcmvcam.sys [1068216] ©
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys [107520] ©
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbnmea.sys [107520] ©
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbser6k.sys [107520] ©
O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:2002/05/02 12:52:22 A . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\Windows\System32\PCANDIS5.SYS [17134] ©
---\\ Last modified or created user files (4) - 39s
O61 - LFC: 2015/11/24 09:49:09 A . (..) -- C:\Users\johq\AppData\Roaming\IDM\DwnlData\johq\ZHPDiag2_436\ZHPDiag2.exe [0]
O61 - LFC: 2015/11/24 09:32:51 A . (..) -- C:\Users\johq\AppData\Roaming\IDM\DwnlData\johq\ZHPDiag2_435\ZHPDiag2.exe [0]
O61 - LFC: 2015/11/24 09:30:13 A . (..) -- C:\Users\johq\AppData\Roaming\IDM\DwnlData\johq\ZHPDiag2_434\ZHPDiag2.exe [0]
O61 - LFC: 2015/11/24 09:02:42 A . (..) -- C:\Users\johq\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ File Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ©
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Apple Inc. - Safari.) -- C:\Program Files\Safari\Safari.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files\Safari\Safari.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Apple Inc. - Safari.) -- C:\Program Files\Safari\Safari.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Apple Inc. - Safari.) -- C:\Program Files\Safari\Safari.exe ©
---\\ Search Browser Infection (31) - 8s
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.FF19Solved", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.UserID", "UN30077343722968821"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.dum", "2"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.fullUserID", "UN30077343722968821.IN.20150130140510"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installDate", "30/01/2015 14:05:16"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installSessionId", "-1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installSp", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installerVersion", "1.11.0.11"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.searchRevert", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.searchUninstallUserMode", "8"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.searchUserMode", "8"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.toolbarInstallDate", "30-01-2015 14:05:12"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.versionFromInstaller", "10.37.0.8"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.xpeMode", "1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.newtab.url", "http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklm31XHoHPezyxuXcoLyh8uf9z5dZwwHq6nuWiYNK9d1ZkLgvSksf6l22[...] =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.defaulturl", "http://websearch.goodforsearch.info/?pid=24392&r=2015/05/10&hid=15867019612213773964&lg=EN[...] =>PUP.Optional.GoodForSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.alias", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.iconURL", "http://www.mystartsearch.com/favicon.ico"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.name", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.ptid", "wpc"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.uid", "TOSHIBAXMQ01ABF050_23LIS4GQSXX23LIS4GQS"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.url", "http://www.mystartsearch.com/web/?type=ds&ts=1422186438&from=wpc&uid=TOSHIBAXMQ01ABF[...] =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.startup.homepage", "http://websearch.goodforsearch.info/?pid=24392&r=2015/05/10&hid=15867019612213773964&lg=EN&[...] =>PUP.Optional.GoodForSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("smartbar.machineId", "GBP73JSKCTHRX2U1J2O2GJGCOBDRT0WQW+PTAIBOS58YWHTWRGLV5T9KJJ90PAYGGOGJJTTJHZ75MC/ODWZKMW"); =>PUP.Optional.SmartBar
O69 - SBI: SearchScopes [HKCU] 296CA5FF4231424D8A7A06E96D2D9946 - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {80547E65-A29E-4A5A-9CAD-D6DD9D915F92} [DefaultScope] - ((www.google.com) Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://mysearch.avg.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Search Svchost Services (34) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [62464] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [168960] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [593408] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [679424] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [475136] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [286208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [75264] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [49664] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [300544] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [242176] ©
O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.AVG Technologies - AVG Theme Extension.) -- C:\Windows\System32\uxtuneup.dll [36664] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [523776] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2061824] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [585728] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [328192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [499712] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [21504] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [47104] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [114688] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [49664] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [61440] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [98304] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164864] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [751104] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [71168] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [113664] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [102912] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [37376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [76800] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [149504] ©
---\\ Firewall Active Exception List (6) - 3s
O87 - FAEL: "{6DA0EF40-7964-4AD3-A86F-91780D408759}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Baidu Security\PC Faster\WifiHotspot.exe (.not file.)
O87 - FAEL: "{79B349C4-0CBC-403E-8603-5B2BD8293ADA}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Baidu Security\PC Faster\WifiHotspot.exe (.not file.)
O87 - FAEL: "{C089A0CE-E71B-445F-9688-A92350C7622B}" [In-None-P6-TRUE] .(...) -- C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe (.not file.)
O87 - FAEL: "{D0DD6408-6989-4E18-9EDE-DC51DCBF5D97}" [In-None-P17-TRUE] .(...) -- C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe (.not file.)
O87 - FAEL: "{30A46275-D998-45D8-8A8A-06373A2B4E18}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Ralink\Common\RaMediaServer.exe (.not file.)
O87 - FAEL: "{4A5A8BEE-D23A-4F18-A0AA-B40AD1A56FB2}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Ralink\Common\RaMediaServer.exe (.not file.)
---\\ Product Upgrade Codes (2) - 3s
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) =>Toolbar.AsktBar
O90 - PUC: "D22545240535A600677A7AC597C08100" . (.Search App by Ask.) -- C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1800}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch
---\\ Services not Microsoft (SR=Run, SS=Stop) (28) - 80s
SS - Demand [03/12/2014] [ 81088] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Disabled [20/08/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SS - Demand [19/01/2015] [ 60744] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
SR - Auto [18/12/2014] [ 1486664] AVG Firewall (avgfws) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2015\avgfws.exe ©
SR - Auto [18/12/2014] [ 3432976] AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2015\avgidsagent.exe ©
SR - Auto [18/12/2014] [ 298080] AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2015\avgwdsvc.exe ©
SS - Demand [31/08/2011] [ 390504] Bonjour Service (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe ©
SR - Auto [27/11/2013] [ 3105144] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe ©
SS - Demand [01/06/2015] [ 290224] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\System32\IntelCpHeciSvc.exe ©
SR - Auto [23/03/2012] [ 355920] Dritek WMI Service (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files\Launch Manager\dsiwmis.exe ©
SS - Demand [06/11/2014] [ 6279976] GlassWire Control Service (GlassWire) . (.SecureMix LLC.) - C:\Program Files\GlassWire\GWCtlSrv.exe ©
SS - Auto [27/09/2015] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [27/09/2015] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SR - Auto [14/03/2011] [ 271712] HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008.) - C:\ProgramData\DatacardService\HWDeviceService.exe
SR - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe ©
SS - Demand [16/01/2015] [ 2724128] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [20/08/2014] [ 242256] Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2014.) - C:\ProgramData\MobileBrServ\mbbservice.exe
SS - Demand [01/12/2014] [ 33080] OpenVPN Service (OpenVPNService) . (.The OpenVPN Project.) - C:\Program Files\OpenVPN\bin\openvpnserv.exe ©
SS - Demand [12/01/2015] [ 571424] PC App Store Service 5.0.1.8490 (PCAppStoreSvc_{PCAppStore_5.0.1.8490}) . (.Baidu Inc..) - C:\Program Files\PC App Store\5.0.1.8490\PCAppStoreSvc.exe
SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files\WinPcap\rpcapd.exe ©
SR - Auto [19/05/2014] [ 389232] Service_KAir (ServiceKAirModule) . (...) - C:\Program Files\KMPConnect\KMPConnectService.exe
SS - Demand [02/01/2015] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe ©
SS - Demand [10/06/2015] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files\Sony\Sony PC Companion\PCCService.exe ©
SS - Auto [18/10/2013] [ 437328] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\System32\vmnat.exe ©
SR - Auto [08/09/2015] [ 1874320] (vToolbarUpdater40.1.6) . (.AVG Secure Search.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe =>Toolbar.AVGSearch
SR - Auto [27/09/2015] [ 1205136] WtuSystemSupport (WtuSystemSupport) . (.Copyright (C) 2015.) - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe =>Toolbar.AVGSafeGuard
SR - Auto [06/11/2013] [ 427264] ZDServ (ZDServ) . (.Copyright (C) 2013.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>PUP.Optional.Salus
---\\ Search Tracing Registry Key (6) - 4s
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASAPI32 =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASMANCS =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector
---\\ Additional Scan (O88) (111) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater40.1.6 =>Toolbar.AVGSearch
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe =>Toolbar.AVGSearch
HKLM\SYSTEM\CurrentControlSet\Services\WtuSystemSupport =>Toolbar.AVGSafeGuard
C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe =>Toolbar.AVGSafeGuard
HKLM\SYSTEM\CurrentControlSet\Services\ZDServ =>PUP.Optional.Salus
C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>PUP.Optional.Salus
C:\Program Files\AVG Web TuneUp\vprot.exe =>Toolbar.AVGSafeGuard
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\loggingserver.exe =>Toolbar.AVGSearch
C:\ProgramData\ZDSupport\ZDServ\CancelAutoPlay_Server.exe =>PUP.Optional.Salus
C:\Program Files\AVG Web TuneUp\avgcefrend.exe =>Toolbar.AVGSafeGuard
C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\40.1.6\ScriptHelper.exe =>Toolbar.AVGSearch
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\cegfejpmmodikpdebjkdnkgcifhfepfi =>Hijacker.Browser
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn =>Toolbar.AVGSafeGuard
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk =>Hijacker.Browser
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooboalmgfkpilfmmhicinaalnjcgdph =>Hijacker.Browser
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbfmioobedknooiakdehepogalbgkng =>Hijacker.Browser
C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\searchplugins\WebSearch.xml =>PUP.Optional.SimpleSearches
C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\fftoolbar2014@etech.com =>PUP.Optional.FFToolBar
C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d} =>PUP.Optional.ClientConnect
C:\Program Files\AVG Web TuneUp\4.1.6.294\AVG Web TuneUp.dll =>Toolbar.AVGSafeGuard
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} =>Toolbar.AVGSafeGuard
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4254522D-5350-006A-76A7-A75C790C1800} =>PUP.Optional.BrowserTabSearch
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BC0BF363-63AB-4FF7-8EF1-AE0D7F711B24} =>PUP.Optional.Linkury
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DF7124A7-0580-46B7-8243-8CFB924F851A} =>PUP.Optional.SmartBar
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic for Windows =>PUP.Optional.Softonic
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftonicAssistant =>PUP.Optional.Softonic
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2d2827ab-67f6-4377-afd6-ef83b52072a3} =>PUP.Optional.SmartBar
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\d9c16e49-4ebc-472c-9bd4-0832cd03d0c6 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKLM\SOFTWARE\SiteSee =>PUP.Optional.SiteSee
HKLM\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Trymedia Systems =>PUP.Optional.Trymedia
HKLM\SOFTWARE\Tune =>PUP.Optional.Systweak
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKCU\SOFTWARE\DriverToolkit =>.Superfluous.DriverToolkit
HKCU\SOFTWARE\ilivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\Tbccint_HKLM =>PUP.Optional.Conduit
HKCU\SOFTWARE\Tune =>PUP.Optional.Systweak
HKCU\SOFTWARE\AppDataLow\Software\ilividbandoomoviestoolbar =>PUP.Optional.Bandoo
HKCU\SOFTWARE\AppDataLow\Software\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\TbccintSearchScopes =>PUP.Optional.Conduit
C:\Program Files\AskPartnerNetwork =>Toolbar.AskBar
C:\Program Files\AVG Web TuneUp =>Toolbar.AVGSafeGuard
C:\Program Files\BuyNsave =>PUP.Optional.BuyNSave
C:\Program Files\DriverToolkit =>.Superfluous.DriverToolkit
C:\Program Files\IndepthRunner =>PUP.Optional.Graftor
C:\Program Files\Movies App =>PUP.Optional.CrossRider
C:\Program Files\oTweak =>PUP.Optional.oTweak
C:\Program Files\PragmaEngine =>PUP.Optional.Generic
C:\Program Files\PRiceeMinus =>PUP.Optional.Multiplug
C:\Program Files\PriceMinous =>PUP.Optional.Multiplug
C:\Program Files\PriceMinus =>PUP.Optional.Multiplug
C:\Program Files\PrIceMMIInnus =>PUP.Optional.Multiplug
C:\Program Files\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\Program Files\Tbccint =>PUP.Optional.Conduit
C:\Program Files\UniDeals =>PUP.Optional.Multiplug
C:\Program Files\UnIDeeals =>PUP.Optional.Deeal
C:\Program Files\UniDEEAlse =>PUP.Optional.Deeal
C:\Program Files\unIsaales =>PUP.Optional.Multiplug
C:\Program Files\uNisalEs =>PUP.Optional.Multiplug
C:\ProgramData\APN =>Toolbar.Ask
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
C:\ProgramData\AVG Security Toolbar =>Toolbar.AVGSearch
C:\ProgramData\AVG Web TuneUp =>Toolbar.AVGSafeGuard
C:\ProgramData\liimbpcnmhghlffgbnanlhkpoeabccac =>PUP.Optional.BundleInstaller
C:\ProgramData\Mobile Partner =>Toolbar.YahooPartner
C:\ProgramData\ParetoLogic =>.Superfluous.Paretologic
C:\ProgramData\ProductData =>PUP.Optional.Generic
C:\ProgramData\Tbccint =>PUP.Optional.Conduit
C:\ProgramData\Trusted Publisher =>PUP.Optional.TopAppSoft
C:\ProgramData\Trymedia =>PUP.Optional.Trymedia
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
C:\Program Files\Common Files\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files\Common Files\ParetoLogic =>.Superfluous.Paretologic
C:\Users\johq\AppData\Roaming\DriverCure =>.Superfluous.Paretologic
C:\Users\johq\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\johq\AppData\Roaming\RHEng =>PUP.Optional.Conduit
C:\Users\johq\AppData\Roaming\Systweak =>PUP.Optional.Systweak
C:\Users\johq\AppData\Roaming\UpdaterEX =>PUP.Optional.Dealply
C:\Users\johq\AppData\Local\AskPartnerNetwork =>Toolbar.AskBar
C:\Users\johq\AppData\Local\AVG Web TuneUp =>Toolbar.AVGSafeGuard
C:\Users\johq\AppData\Local\iLivid =>PUP.Optional.Bandoo
C:\Users\johq\AppData\Local\Softonic =>PUP.Optional.Softonic
C:\Users\johq\AppData\Local\SoftonicAssistant =>PUP.Optional.Softonic
C:\Users\johq\AppData\Local\Torch =>.Superfluous.Torch
C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\oTweak Software =>PUP.Optional.oTweak
C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Softonic =>PUP.Optional.Softonic
HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AsktBar
HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AsktBar
C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1800}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Products\D22545240535A600677A7AC597C08100 =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Features\D22545240535A600677A7AC597C08100 =>PUP.Optional.BrowserTabSearch
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASAPI32 =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASMANCS =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector
---\\ Summary of the elements found (44) - 0s
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AVGSearch
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AVGSafeGuard
http://www.nicolascoolman.fr/?p=2645 =>PUP.Optional.Salus
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Paretologic
http://www.nicolascoolman.fr/?p=203 =>PUP.Optional.Dealply
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GoodForSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SimpleSearches
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.FFToolBar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.ClientConnect
http://www.nicolascoolman.fr/?p=1974 =>PUP.Optional.BrowserTabSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Linkury
http://www.nicolascoolman.fr/?p=308 =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AskBar
http://www.nicolascoolman.fr/?p=210 =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=4060 =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SiteSee
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SettingsManager
http://www.nicolascoolman.fr/?p=2580 =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/?p=564 =>PUP.Optional.Trymedia
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.DriverToolkit
http://www.nicolascoolman.fr/?p=237 =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/?p=381 =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/?p=324 =>PUP.Optional.OptimizerPro
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BuyNSave
http://www.nicolascoolman.fr/?p=2460 =>PUP.Optional.Graftor
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.oTweak
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/?p=558 =>PUP.Optional.RegistryPowerCleaner
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Deeal
http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BundleInstaller
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.YahooPartner
http://www.nicolascoolman.fr/?p=1915 =>PUP.Optional.TopAppSoft
http://www.nicolascoolman.fr/?p=197 =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Torch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AsktBar
http://www.nicolascoolman.fr/?p=336 =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/?p=220 =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/?p=533 =>PUP.Optional.BProtector
~ End of the scan, 30854 items in 458 seconds (1542)(0)
~ Run by johq (Administrator) (2015/11/24 10:09:52)
~ Web: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\johq\Desktop\ZHPDiag.txt
~ Report: C:\Users\johq\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)
---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v46.0.2490.86
MFIE: Mozilla Thunderbird 31.3.0 (x86 en-US) v31.3.0
MSIE: Internet Explorer v11.0.9600.18097
---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ System protection software (1) - 22s
Windows Defender W7 (Deactivate)
---\\ Surveillance software (1) - 22s
Adobe Flash Player 18 ActiveX
---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2705.776 MB (18% free)
System Restore: Activé (Enable)
System drive C: has 22 GB () free of 126 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: JOHA
~ User Name: johq
~ Logged in as Administrator
---\\ Enumeration of the disk units (5) - 0s
~ Drive C: has 22 GB free of 126 GB (System)
~ Drive D: has 89 GB free of 199 GB
~ Drive E: has 41 GB free of 149 GB
~ Drive F: has 3 GB free of 4 GB
~ Drive G: has 1 GB free of 1 GB
---\\ State of the Windows Security Center (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (24) - 4s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - 25/02/2011 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2616320] ©
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [96256] ©
[MD5.832CA97817B20B74E2D74A8154630311] - 30/10/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2011136] ©
[MD5.52449FD429D6053B78AE564DEF303870] - 17/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [304128] ©
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [193536] ©
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [270336] ©
[MD5.93B49FA857F7036A4EFF32371F6E7391] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] ©
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] ©
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] ©
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] ©
[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] ©
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] ©
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] ©
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] ©
[MD5.C7492026F6691A92C4508DDDB041CE4E] - 20/10/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [124416] ©
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - 20/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] ©
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - 24/01/2014 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1212352] ©
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] ©
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632] ©
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] ©
[MD5.BB8817D0508DD5EA69C770C8DEF5AB67] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752] ©
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [245632] ©
---\\ Non Microsoft non disabled Windows Services (13) - 2s
O23 - Service: AVG Firewall (avgfws) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\Program Files\AVG\AVG2015\avgfws.exe ©
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files\AVG\AVG2015\avgidsagent.exe ©
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG2015\avgwdsvc.exe ©
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe ©
O23 - Service: Dritek WMI Service (DsiWMIService) . (.Dritek System Inc. - Dritek WMI Service.) - C:\Program Files\Launch Manager\dsiwmis.exe ©
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008 - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2014 - .) - C:\ProgramData\MobileBrServ\mbbservice.exe
O23 - Service: Service_KAir (ServiceKAirModule) . (...) - C:\Program Files\KMPConnect\KMPConnectService.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\Windows\System32\vmnat.exe ©
O23 - Service: (vToolbarUpdater40.1.6) . (.AVG Secure Search - ToolbarU Application.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe =>Toolbar.AVGSearch
O23 - Service: WtuSystemSupport (WtuSystemSupport) . (.Copyright (C) 2015 - WtuSyste Application.) - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe =>Toolbar.AVGSafeGuard
O23 - Service: ZDServ (ZDServ) . (.Copyright (C) 2013 - ZDServ Application.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>PUP.Optional.Salus
---\\ Process running (44) - 8s
[MD5.5094EBFB810FFE410419670CA72BAF2F] - (.Copyright (C) 2015 - WtuSyste Application.) -- C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [1205136] [PID.772] =>Toolbar.AVGSafeGuard
[MD5.D6916995A3736E41224FC757E6520060] - (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) -- C:\Program Files\AVG\AVG2015\avgfws.exe [1486664] [PID.1884] ©
[MD5.225B28E9303D375314C744AE181DF95F] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files\AVG\AVG2015\avgidsagent.exe [3432976] [PID.324] ©
[MD5.2B38C7E964FA19A298D04CA177FF8B6F] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080] [PID.1480] ©
[MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.1920] ©
[MD5.C02FF01B821FBB72104132E56EC5B881] - (.Dritek System Inc. - Dritek WMI Service.) -- C:\Program Files\Launch Manager\dsiwmis.exe [355920] [PID.1500] ©
[MD5.1A7F10605F9672E101BFA27CAED210D5] - (.Dritek System Inc. - Launch Manager Worker.) -- C:\Program Files\Launch Manager\LMworker.exe [343632] [PID.2068] ©
[MD5.5EF3427AE503B5C03A48F7C9FF458B69] - (.Copyright (C) 2008 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService.exe [271712] [PID.2076]
[MD5.D98B7ABBBB55FD3A4D9F7B8A7869FCBF] - (.Dritek System Inc. - Launch Manager utility process.) -- C:\Program Files\Launch Manager\LMutilps32.exe [419408] [PID.2092] ©
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.2148] ©
[MD5.533AA4A69EE91B1C53910EF57E314DEF] - (.Copyright (C) 2014 - .) -- C:\ProgramData\MobileBrServ\mbbservice.exe [242256] [PID.2176]
[MD5.7E713E2ED0226EA82E97A630684115BE] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2015\avgui.exe [3667472] [PID.2184] ©
[MD5.5CCBD3C6661057501F7C50AD0295E228] - (...) -- C:\Program Files\KMPConnect\KMPConnectService.exe [389232] [PID.2356]
[MD5.3F98B594E5404311D464769733DF5125] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [658632] [PID.2368] ©
[MD5.5FA22B1D96C24A90CB8A912F1B7E728E] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [192432] [PID.2444] ©
[MD5.E12D13AD8928BA4E9E70B6CA2781878E] - (...) -- C:\Program Files\KMPConnect\KMPConnectCore.exe [749168] [PID.2472]
[MD5.453345E0B1BECA4230799CC553B43DFD] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [201136] [PID.2524] ©
[MD5.FE668B0E3E87077A46FE77AFB0E27F9C] - (.Dritek System Inc. - Launch Manager.) -- C:\Program Files\Launch Manager\LManager.exe [1105488] [PID.2596] ©
[MD5.179B9E35E4F705D4D646B05E7916F605] - (.AVG Secure Search - ToolbarU Application.) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe [1874320] [PID.2636] =>Toolbar.AVGSearch
[MD5.D76147BF57D40F74E41B3A3DB2CD6391] - (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files\AVG Web TuneUp\vprot.exe [3175312] [PID.2660] =>Toolbar.AVGSafeGuard
[MD5.177BA0F6744354379D79F66CD7AE33EE] - (.Copyright (C) 2013 - ZDServ Application.) -- C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe [427264] [PID.2704] =>PUP.Optional.Salus
[MD5.C4B5B632405768AE113B03CDA14D023C] - (.Copyright (C) 2013 - loggings Application.) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\loggingserver.exe [168336] [PID.2716] =>Toolbar.AVGSearch
[MD5.F97961FD74E83E3E96DB45B69B33B157] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe [3105144] [PID.2868] ©
[MD5.AD0C173AFB2F47C0B61560A01571B835] - (.Baidu Inc. - PC App Store DeskTool.) -- C:\Program Files\PC App Store\5.0.1.8490\AppStoreDeskTool.exe [849952] [PID.2876]
[MD5.B543D9B6FC03CEEED3F9A92D54C4B974] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\REALTEK\Audio\HDA\RtHDVCpl.exe [14685936] [PID.2944] ©
[MD5.70903CD03F9B0A23826C4F9A35185EE6] - (...) -- C:\ProgramData\ZDSupport\ZDServ\CancelAutoPlay_Server.exe [426752] [PID.2964] =>PUP.Optional.Salus
[MD5.83FF82FE209E7997067B375DAD6CF23D] - (.Intel Corporation - Intel(R) Integrated Clock Controller Servic.) -- C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752] [PID.284] ©
[MD5.C0BAEBF68D73F7A46DDB28777049AEFF] - (.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files\AVG\AVG2015\avgnsx.exe [1071632] [PID.2788] ©
[MD5.1C2089573B379457DABA27F3A02DF131] - (.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files\AVG\AVG2015\avgemcx.exe [669200] [PID.2832] ©
[MD5.22167BB39BF4B08931A9794A34E2E6AA] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\Program Files\AVG\AVG2015\avgrsx.exe [884240] [PID.3048] ©
[MD5.FD7857769B15CC394E0735E3F4EF196F] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) -- C:\Program Files\AVG\AVG2015\avgcsrvx.exe [691216] [PID.4444] ©
[MD5.7A3C392B6328E5E48BCF624433E36FCB] - (.AVG Secure Search - avgcefrend.) -- C:\Program Files\AVG Web TuneUp\avgcefrend.exe [1402768] [PID.2916] =>Toolbar.AVGSafeGuard
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.5836] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.5928] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.2124] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.2308] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.5856] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.1644] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.3956] ©
[MD5.C4E4AFD1779608D9E4055892CF6F02D2] - (.AVG Secure Search - ScriptHelper.) -- C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\40.1.6\ScriptHelper.exe [2484112] [PID.5628] =>Toolbar.AVGSearch
[MD5.6189C8A4DD0C54A28429CAF3F101908C] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3886672] [PID.4324] ©
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe [269848] [PID.3520] ©
[MD5.7A2870C2A8283B3630BF7670D0362B94] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [811848] [PID.4168] ©
[MD5.6A47DAC7CE1D527F3004DCB97FC4EBED] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\johq\Desktop\ZHPDiag3.exe [1970176] [PID.5412] ©
---\\ Google Chrome, Start,Search,Extensions (14) - 55s
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cegfejpmmodikpdebjkdnkgcifhfepfi] [https://epicunitscan.info/00service/update2/crx] __MSG_application_title__ =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [chfdnecihphmhljaaejmgoiahnihplgn] AVG Web TuneUp =>Toolbar.AVGSafeGuard
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ejidjjhkpiempkbhmpbfngldlkglhimk] [https://epicunitscan.info/00service/update2/crx] __MSG_WEBSTORE_PRONGHORN_PRODUCT_NAME__ =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [eooboalmgfkpilfmmhicinaalnjcgdph] [https://epicunitscan.info/00service/update2/crx] my IP address =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [epbfmioobedknooiakdehepogalbgkng] [https://epicunitscan.info/00service/update2/crx] Google Chrome manifest =>Hijacker.Browser
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock
G2 - GCE: Preference [User Data\Default] [gkojfkhlekighikafcpjkiklfbnlmeio] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nngdfnnnkccipoglcgppagpgjkkbfclo] goMovix Start
G2 - GCE: Preference [User Data\Default] [opnbmdkdflhjiclaoiiifmheknpccalb] Instagram for Chrome
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (22) - 6s
M0 - MFSP: prefs.js [johq - 1d31vx74.default] http://websearch.goodforsearch.info/?pid=24392&r=2015/05/10&hid=15867019612213773964&lg=EN&cc=DZ&unqvl=86 =>PUP.Optional.GoodForSearch
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA}
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\4sharedCopyLinks.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\webnavigation@linkzb.com.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{ea61041c-1e22-4400-99a0-aea461e69d04}.xpi
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\searchplugins\Web Search.xml
P2 - EXT FILE: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\searchplugins\WebSearch.xml =>PUP.Optional.SimpleSearches
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\default-search.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\dlsecuretb.xml
P2 - EXT: (. - YoutubeAdBlocke.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\3s3Qp@o.net
P2 - EXT: (. - youtubeadblocker.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\bEab@HhXH.com
P2 - EXT: (.Microsoft Corporation - Bing Search Engine.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\bingsearch.full@microsoft.com ©
P2 - EXT: (.roc - FF Toolbar.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\fftoolbar2014@etech.com =>PUP.Optional.FFToolBar
P2 - EXT: (. - BuyNsave.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\k@CtR9Sk.org
P2 - EXT: (. - unIsaales.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\sB82Y@DqOQ.org
P2 - EXT: (...) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\staged
P2 - EXT: (. - Sites.) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{121761af-0fa5-4896-a2a8-cfdbac4e4982}
P2 - EXT: (.ClientConnect Ltd. - Hotspot Shield .) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d} =>PUP.Optional.ClientConnect
P2 - EXT: (.Snap.Do - Snap.Do .) -- C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{F71D1265-2781-7E88-51A5-E0D967695BCD}
P2 - FPN: [HKLM] [@adobe.com/AuthorwarePlayer] - (.Macromedia, Inc..) -- C:\Windows\System32\Macromed\AUTHORWA\np32asw.dll
P2 - FPN: [HKLM] [@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin] - (...) -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.1.6\\npsitesafety.dll =>Toolbar.AVGSearch
---\\ Opera, Plugins,Start,Search (5) - 0s
B2 - EXT: [stefanvd] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccbdoklfbpcifppcfahmmpmbkfdjjccm
B2 - EXT: [fdeth] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\ccdcdeciofigkmmhblkcalfmofhbcepb
B2 - EXT: [Christoph D.] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\dppmcfgmeabflhohikbaegalkbjnbomd
B2 - EXT: [pushbullet] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\jacmgnhcnfdmjdkdlfndaccecdegacba
B2 - EXT: [download-station-extension] C:\Users\johq\AppData\Roaming\Opera Software\Opera Stable\Extensions\npihmpojeldffinbnjhaecpjjcfccjkm
---\\ Internet Explorer Extensions, Start, Search (9) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://websearch.goodforsearch.info/ =>PUP.Optional.GoodForSearch
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {c95a4e8e-816d-4655-8c79-d736da1adb6d} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (7) - 1s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:9666 =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (30)
---\\ Browser Helper Object (BHO) (8) - 1s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll ©
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll ©
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll ©
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG - AVG Web TuneUp.dll.) -- C:\Program Files\AVG Web TuneUp\4.1.6.294\AVG Web TuneUp.dll =>Toolbar.AVGSafeGuard
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll ©
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} . (.IDM - QUICKfind BHO Object.) -- C:\Program Files\IDM\QUICKfind\PlugIns\IEHelp.dll
O2 - BHO: Hotspot Shield - {c95a4e8e-816d-4655-8c79-d736da1adb6d} (Orphean)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll ©
---\\ Internet Explorer Toolbars (4) - 0s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)
O3 - Toolbar: 0x8E4E5AC96D8155468C79D736DA1ADB6D - [HKCU]{C95A4E8E-816D-4655-8C79-D736DA1ADB6D} . (...) -- (.not file.)
O3 - Toolbar: Hotspot Shield Toolbar - [HKLM]{c95a4e8e-816d-4655-8c79-d736da1adb6d} . (...) -- (.not file.)
O3 - Toolbar: DLSecure Toolbar - [HKLM]{7bcc228a-c730-4004-93f9-72cbb7033a62} . (...) -- (.not file.)
---\\ Auto loading programs from Registry and folders (19) - 1s
O4 - HKLM\..\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files\AVG\AVG2015\avgui.exe ©
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe ©
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe ©
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe ©
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe ©
O4 - HKLM\..\Run: [LManager] . (.Dritek System Inc. - Launch Manager.) -- C:\Program Files\Launch Manager\LManager.exe ©
O4 - HKLM\..\Run: [vProt] . (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files\AVG Web TuneUp\vprot.exe =>Toolbar.AVGSafeGuard
O4 - HKLM\..\Run: [PCAppStore_AppStoreDeskTool] . (.Baidu Inc. - PC App Store DeskTool.) -- C:\Program Files\PC App Store\5.0.1.8490\AppStoreDeskTool.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\REALTEK\Audio\HDA\RtHDVCpl.exe ©
O4 - HKCU\..\Run: [Viber] . (. - Viber.) -- C:\Users\johq\AppData\Local\Viber\Viber.exe
O4 - HKCU\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe ©
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\spreview.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-21-2823981878-1480480070-4291226948-1000\..\Run: [Viber] . (. - Viber.) -- C:\Users\johq\AppData\Local\Viber\Viber.exe
O4 - HKUS\S-1-5-21-2823981878-1480480070-4291226948-1000\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe ©
---\\ Global shortcuts Startup (4) - 13s
O4 - GS\Quicklaunch [Administrator]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
O4 - GS\Quicklaunch [Guest]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
O4 - GS\Quicklaunch [johq]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
O4 - GS\CommonDesktop [Public]: PC Cleaner.lnk . (.Systweak Software., (www.systweak.com) - Systweak PC Cleaner.) C:\Program Files\PC Cleaner\PCCleaner.exe =>
---\\ Lop.com/Domain Hijackers (20) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 209.244.0.3 84.200.69.80
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 209.244.0.3 84.200.69.80
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.4.4 =>.Google Public DNS
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 209.244.0.3 84.200.69.80
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 192.168.0.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.8.1 192.168.8.1
---\\ Extra protocols (23) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©
---\\ Software installed (90) - 28s
O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM] -- 7-Zip
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Shockwave Player + Authorware Web Player - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player + Authorware Web Player ©
O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player ©
O42 - Logiciel: AIMP3 - (.AIMP DevTeam.) [HKLM] -- AIMP3 ©
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {E1DB0812-2D60-43DB-AE09-6C7027D93B28} ©
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} ©
O42 - Logiciel: AVG 2015 - (.AVG Technologies.) [HKLM] -- {B7985C63-D021-4C98-A8D2-5A7EE44086CA} ©
O42 - Logiciel: AVG Web TuneUp - (.AVG Technologies.) [HKLM] -- AVG Web TuneUp ©
O42 - Logiciel: Broadcom Card Reader Driver Installer - (.Broadcom Corporation.) [HKLM] -- {4710662C-8204-4334-A977-B1AC9E547819} ©
O42 - Logiciel: Cambridge Advanced Learner's Dictionary - 3rd Edition - (...) [HKLM] -- NSIS_cald3
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} ©
O42 - Logiciel: Convenient shortcuts - (.DriverPack.) [HKLM] -- handyShortcuts ©
O42 - Logiciel: Data Doctor Recovery - SIM Card (Demo) - (.Pro Data Doctor Pvt. Ltd..) [HKLM] -- {56FE9BA1-FD2F-4C78-9FA0-6EBA28B22905}_is1
O42 - Logiciel: Dead To Rights 2 - (...) [HKLM] -- Dead To Rights 2
O42 - Logiciel: Driver Booster 2.1 - (.IObit.) [HKLM] -- Driver Booster_is1 ©
O42 - Logiciel: DriverEasy 4.9.3 - (.Easeware.) [HKLM] -- DriverEasy_is1 ©
O42 - Logiciel: DriverPack Solution Updater - (.DriverPack Solution.) [HKCU] -- DRPSu Updater
O42 - Logiciel: Euro Truck Simulator 2 - (.SCS Software.) [HKLM] -- {1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1 ©
O42 - Logiciel: EZDownloader - (.EZDownloader.) [HKLM] -- {0F44DC3A-6E62-4961-A14B-95323C512F9B}_is1 ©
O42 - Logiciel: FiddlerCoreAPI - (...) [HKCU] -- FiddlerCoreAPI
O42 - Logiciel: File Association Helper - (.WinZip Computing International, LLC.) [HKLM] -- {8975E3CB-A762-4B14-BD62-A3972A098E82} ©
O42 - Logiciel: Foxit Cloud - (.Foxit Software Inc..) [HKLM] -- {41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1 ©
O42 - Logiciel: Foxit Reader - (.Foxit Software Inc..) [HKLM] -- Foxit Reader_is1 ©
O42 - Logiciel: FreeLanguageTranslator 3.4 - (.Decebal Mihailescu.) [HKLM] -- {607D6C12-915A-4ACD-8049-3E3728F609C7}
O42 - Logiciel: GlassWire 1.0 (remove only) - (.SecureMix LLC.) [HKLM] -- GlassWire 1.0 ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM] -- {9C350701-AC04-48BA-A435-BD5E0D82897E} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ©
O42 - Logiciel: GTA2 - (...) [HKLM] -- {2987EE84-C4EE-4FF5-8160-32DE00D6ABC6}
O42 - Logiciel: Hostless MOBICONNECT - (.ZTE Corporation.) [HKLM] -- {BCE97917-E58C-41FA-9B53-859E3FDCE924} ©
O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM] -- {760BB327-3973-4608-85C8-88162E2FF3B6} ©
O42 - Logiciel: inSSIDer Home - (.MetaGeek, LLC.) [HKLM] -- {9E54E4AE-B67A-4925-8E92-0E1F9817FD73}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} ©
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} ©
O42 - Logiciel: Intel® Watchdog Timer Driver (Intel® WDT) - (.Intel Corporation.) [HKLM] -- {3FD0C489-0F02-481a-A3E1-9754CD396761} ©
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM] -- Internet Download Manager ©
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall ©
O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} ©
O42 - Logiciel: Java 8 Update 40 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218040F0} ©
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} ©
O42 - Logiciel: K-Lite Mega Codec Pack 5.1.0 - (...) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: KMP Connect Program - (.PandoraTV.) [HKLM] -- {04F1B758-A24A-4409-88C8-7CA957A7E3C0}_is1
O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM] -- LManager ©
O42 - Logiciel: LG PC Suite - (.LG Electronics.) [HKLM] -- LG PC Suite ©
O42 - Logiciel: LPT System Updater Service - (.LPT.) [HKLM] -- {BC0BF363-63AB-4FF7-8EF1-AE0D7F711B24} =>PUP.Optional.Linkury
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: MobiConnect - (.Huawei Technologies Co.,Ltd.) [HKLM] -- MobiConnect ©
O42 - Logiciel: Mobile Broadband HL Service - (.Huawei Technologies Co.,Ltd.) [HKLM] -- Mobile Broadband HL Service ©
O42 - Logiciel: Mozilla Thunderbird 31.3.0 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird 31.3.0 (x86 en-US) ©
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM] -- Notepad++ ©
O42 - Logiciel: Ooredoo N'ternet - (.Ooredoo.) [HKLM] -- InstallShield_{E9AD7C62-C507-49BA-91AC-1A2D0F86A913}
O42 - Logiciel: OpenVPN 2.3.6-I601 - (...) [HKLM] -- OpenVPN
O42 - Logiciel: PC App Store - (.Baidu, Inc..) [HKLM] -- PC App Store 5.0.1.8490 ©
O42 - Logiciel: PC Cleaner - (.Systweak Software.) [HKLM] -- {25780A42-8553-4a2e-AA54-F413C5D8DA19}_is1
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} ©
O42 - Logiciel: QUICKfind server v1.1 - (.IDM.) [HKLM] -- QUICKfind
O42 - Logiciel: Ralink RT2870 Wireless LAN Card - (.Ralink.) [HKLM] -- {28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D} ©
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} ©
O42 - Logiciel: REALTEK Wireless LAN Driver and Utility - (.Alfa Network, Inc..) [HKLM] -- {9C049499-055C-4a0c-A916-1D12314F45EB}
O42 - Logiciel: REALTEK Wireless LAN Driver and Utility - (.REALTEK Semiconductor Corp..) [HKLM] -- {0DF70CB6-553A-4C57-8E6D-876322ECFB78} ©
O42 - Logiciel: Remove Empty Directories version 2.2 - (.Jonas John.) [HKLM] -- {06F25DC8-71E2-44E2-805A-F15E15B51C74}_is1
O42 - Logiciel: Search App by Ask - (.APN, LLC.) [HKLM] -- {4254522D-5350-006A-76A7-A75C790C1800} =>PUP.Optional.BrowserTabSearch
O42 - Logiciel: ShowRoom for PowerPoint - (.GlobFX Technologies.) [HKLM] -- ShowRoom
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} ©
O42 - Logiciel: Skype™ 7.2 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Snap.Do - (.ReSoft Ltd..) [HKLM] -- {DF7124A7-0580-46B7-8243-8CFB924F851A} =>PUP.Optional.SmartBar
O42 - Logiciel: Snap.Do Engine - (.ReSoft Ltd..) [HKCU] -- {2d2827ab-67f6-4377-afd6-ef83b52072a3} =>PUP.Optional.SmartBar
O42 - Logiciel: Softonic Assistant - (.Softonic International S.A..) [HKCU] -- SoftonicAssistant =>PUP.Optional.Softonic
O42 - Logiciel: Softonic for Windows - (.Softonic International S.L..) [HKCU] -- Softonic for Windows =>PUP.Optional.Softonic
O42 - Logiciel: Software Informer 1.4.1152.0 - (.Informer Technologies, Inc..) [HKLM] -- Software Informer_is1
O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM] -- Update Engine ©
O42 - Logiciel: Sony PC Companion 2.10.289 - (.Sony.) [HKLM] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} ©
O42 - Logiciel: Supercopier 1.2.0.4 - (.Supercopier.) [HKLM] -- Supercopier ©
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} ©
O42 - Logiciel: TAP-Windows 9.21.1 - (...) [HKLM] -- TAP-Windows
O42 - Logiciel: Techbit - (.Techbit.) [HKLM] -- {12DA0E6F-5543-440C-BAA2-28BF01070AFA}{82ef9f5b}
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1 ©
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM] -- {933B4015-4618-4716-A828-5289FC03165F} ©
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU] -- Viber ©
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player ©
O42 - Logiciel: WebcamMax - (...) [HKLM] -- WebcamMax
O42 - Logiciel: Who Is On My Wifi version 3.0.2 - (.IO3O LLC.) [HKLM] -- {010D45A1-093D-4534-8147-4E10E80F81CC}_is1
O42 - Logiciel: Win32DiskImager version 0.9.5 - (.ImageWriter Developers.) [HKLM] -- {D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM] -- WinPcapInst ©
O42 - Logiciel: WinRAR 5.20 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver ©
O42 - Logiciel: x264vfw - H.264/MPEG-4 AVC codec (remove only) - (...) [HKLM] -- x264vfw
O42 - Logiciel: Your Freedom 20150309-01 - (.resolution GmbH.) [HKLM] -- Your_Deploy_1 ©
O42 - Logiciel: ZDServer - (.ZTE Corporation.) [HKLM] -- {C8197F5F-E0DC-44f1-8AF2-1AA5A84F695D} ©
---\\ HKCU & HKLM Software Keys (264) - 28s
HKLM\SOFTWARE\360Safe
HKLM\SOFTWARE\4shared Desktop
HKLM\SOFTWARE\7-Zip
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\Adobe Systems
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\AMD
HKLM\SOFTWARE\AppDataLow
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Apple Inc.
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\Aureal
HKLM\SOFTWARE\Avg
HKLM\SOFTWARE\AVG Tuneup
HKLM\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKLM\SOFTWARE\AviSynth
HKLM\SOFTWARE\baidu
HKLM\SOFTWARE\Baidu Security
HKLM\SOFTWARE\Baidu_Drp_pos
HKLM\SOFTWARE\CloudOpt
HKLM\SOFTWARE\Codec Tweak Tool
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\d9c16e49-4ebc-472c-9bd4-0832cd03d0c6 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\DC-Unlocker
HKLM\SOFTWARE\Disc Soft
HKLM\SOFTWARE\DivX
HKLM\SOFTWARE\DMA Design Ltd
HKLM\SOFTWARE\Dolby
HKLM\SOFTWARE\Dritek
HKLM\SOFTWARE\DtsEncodeTools
HKLM\SOFTWARE\Eset
HKLM\SOFTWARE\Foxit Software
HKLM\SOFTWARE\Gabest
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\Glarysoft
HKLM\SOFTWARE\GlobFX Technologies
HKLM\SOFTWARE\GN2
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HD Sentinel
HKLM\SOFTWARE\Hola
HKLM\SOFTWARE\HSPA
HKLM\SOFTWARE\Huawei technologies
HKLM\SOFTWARE\Icaros
HKLM\SOFTWARE\IDM
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\IN Wallpaper ProjectTool
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\InterVideo
HKLM\SOFTWARE\IO3O
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\KMP
HKLM\SOFTWARE\Knowles
HKLM\SOFTWARE\Kromtech
HKLM\SOFTWARE\LAV
HKLM\SOFTWARE\LG Electronics
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\LiveUpdate360
HKLM\SOFTWARE\LogMeInRescueCallingCard
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\Nahimic
HKLM\SOFTWARE\Namco
HKLM\SOFTWARE\Nico Mak Computing
HKLM\SOFTWARE\Nokia
HKLM\SOFTWARE\Norton
HKLM\SOFTWARE\Notepad++
HKLM\SOFTWARE\NSIS_cald3
HKLM\SOFTWARE\Nuance
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\OpenVPN
HKLM\SOFTWARE\OpenVPN-GUI
HKLM\SOFTWARE\Opera Software
HKLM\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKLM\SOFTWARE\PC Connectivity Solution
HKLM\SOFTWARE\PCSuite
HKLM\SOFTWARE\Preserver
HKLM\SOFTWARE\Qualcomm Atheros WiFi Driver Installation
HKLM\SOFTWARE\Ralink
HKLM\SOFTWARE\RealNetworks
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\Reg
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Rockstar Games
HKLM\SOFTWARE\Rovio Entertainment Ltd.
HKLM\SOFTWARE\RtWLan
HKLM\SOFTWARE\S3R521
HKLM\SOFTWARE\SCS Software
HKLM\SOFTWARE\SiteSee =>PUP.Optional.SiteSee
HKLM\SOFTWARE\SIV
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SlimWare Utilities Inc
HKLM\SOFTWARE\SmartPCFixer
HKLM\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\Sony
HKLM\SOFTWARE\Sony Mobile
HKLM\SOFTWARE\SpeedBit
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\SystemAugmenter
HKLM\SOFTWARE\SystemBuilder
HKLM\SOFTWARE\SystemLifter
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\TAP-Windows
HKLM\SOFTWARE\Trymedia Systems =>PUP.Optional.Trymedia
HKLM\SOFTWARE\Tune =>PUP.Optional.Systweak
HKLM\SOFTWARE\TuneUp
HKLM\SOFTWARE\UCBrowserPID
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\VMware, Inc.
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\Waves Audio
HKLM\SOFTWARE\WebcamMax
HKLM\SOFTWARE\WIBU-SYSTEMS
HKLM\SOFTWARE\WidCommUpdate
HKLM\SOFTWARE\WinPcap
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\WLITE
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\wtu
HKLM\SOFTWARE\WXLITE
HKLM\SOFTWARE\Your Freedom
HKLM\SOFTWARE\ZTEUSBDriverFlag
HKCU\SOFTWARE\4shared Desktop
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\AC3Filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AnchorFree
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Avg
HKCU\SOFTWARE\Avg Secure Update
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKCU\SOFTWARE\Baidu
HKCU\SOFTWARE\Baidu Security
HKCU\SOFTWARE\BVRP Software
HKCU\SOFTWARE\Camfrog
HKCU\SOFTWARE\Caphyon
HKCU\SOFTWARE\CatalinaGroup
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Cineform
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Decebal Mihailescu
HKCU\SOFTWARE\DeviceBlock
HKCU\SOFTWARE\Digital River
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\Distromatic
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\Dritek
HKCU\SOFTWARE\Driver Pro
HKCU\SOFTWARE\DriverToolkit =>.Superfluous.DriverToolkit
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\DSP-worx
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GetData
HKCU\SOFTWARE\GlarySoft
HKCU\SOFTWARE\GlassWire
HKCU\SOFTWARE\GlobFX Technologies
HKCU\SOFTWARE\GN2
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GSpot Appliance Corp
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Heaventools
HKCU\SOFTWARE\Icaros
HKCU\SOFTWARE\IDM Computer Solutions
HKCU\SOFTWARE\ilivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\ImageShack
HKCU\SOFTWARE\Informer Technologies, Inc.
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\KasperskyLabSetup
HKCU\SOFTWARE\Kromtech
HKCU\SOFTWARE\LG Electronics
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\LiveUpdate360
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\LowRegistry
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mailinfo
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MetaGeek, LLC
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\MultiLanguage PCHA
HKCU\SOFTWARE\Namco
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nico Mak Computing
HKCU\SOFTWARE\Nilings
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKCU\SOFTWARE\PC App Store
HKCU\SOFTWARE\Psiphon3
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Real
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Reg
HKCU\SOFTWARE\Revenger inc.
HKCU\SOFTWARE\SamLab.ws
HKCU\SOFTWARE\Samsung
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\SIV
HKCU\SOFTWARE\skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\SlimWare Utilities Inc
HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Sony
HKCU\SOFTWARE\SYNCJM
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\Tbccint_HKLM =>PUP.Optional.Conduit
HKCU\SOFTWARE\Telerik
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Tune =>PUP.Optional.Systweak
HKCU\SOFTWARE\TuneUp
HKCU\SOFTWARE\UCBrowserPID
HKCU\SOFTWARE\Ultracopier
HKCU\SOFTWARE\undelete360
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\WebApp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\Wireshark
HKCU\SOFTWARE\Yahoo
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Toolbar
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\Amazon
HKCU\SOFTWARE\AppDataLow\Software\Hotspot_Shield
HKCU\SOFTWARE\AppDataLow\Software\ilividbandoomoviestoolbar =>PUP.Optional.Bandoo
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\TbccintSearchScopes =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\Unity
---\\ Contents of the Common Files folders (460) - 29s
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\7-Zip
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Adobe
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files\AIMP3
O43 - CFD: 27/03/2015 - [] D -- C:\Program Files\Apple Software Update
O43 - CFD: 14/11/2015 - [0] D -- C:\Program Files\Ashampoo
O43 - CFD: 19/07/2015 - [] D -- C:\Program Files\AskPartnerNetwork =>Toolbar.AskBar
O43 - CFD: 25/10/2007 - [] D -- C:\Program Files\AST Dictionary
O43 - CFD: 30/06/2015 - [] D -- C:\Program Files\Atheros
O43 - CFD: 11/02/2015 - [] D -- C:\Program Files\AVG
O43 - CFD: 27/09/2015 - [] D -- C:\Program Files\AVG Web TuneUp =>Toolbar.AVGSafeGuard
O43 - CFD: 25/01/2015 - [] D -- C:\Program Files\baidu
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files\Baidu Security
O43 - CFD: 22/10/2014 - [] D -- C:\Program Files\Bonjour
O43 - CFD: 17/08/2015 - [0] D -- C:\Program Files\Break For Games
O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\Broadcom
O43 - CFD: 19/01/2015 - [] D -- C:\Program Files\BuyNsave =>PUP.Optional.BuyNSave
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\Cambridge
O43 - CFD: 07/03/2015 - [] D -- C:\Program Files\Cisco
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files\CodeMeter
O43 - CFD: 08/09/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 03/05/2015 - [] D -- C:\Program Files\Data Doctor Recovery - SIM Card (Demo)
O43 - CFD: 11/05/2015 - [] D -- C:\Program Files\DC-Unlocker
O43 - CFD: 28/02/2015 - [] D -- C:\Program Files\DeskSMS Send and Receive Texts Messages
O43 - CFD: 13/08/2015 - [] D -- C:\Program Files\directx
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files\DivX
O43 - CFD: 16/08/2015 - [] AD -- C:\Program Files\DriverPackSolution
O43 - CFD: 21/01/2015 - [] D -- C:\Program Files\DriverToolkit =>.Superfluous.DriverToolkit
O43 - CFD: 03/12/2014 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 26/06/2015 - [] D -- C:\Program Files\Easeware
O43 - CFD: 19/03/2015 - [] D -- C:\Program Files\Elantech
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files\ESET
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Euro Truck Simulator 2
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\EZDownloader
O43 - CFD: 02/01/2015 - [] D -- C:\Program Files\File Association Helper
O43 - CFD: 02/11/2014 - [] D -- C:\Program Files\Foxit Software
O43 - CFD: 11/11/2015 - [] D -- C:\Program Files\FreeLanguageTranslator 3.4
O43 - CFD: 10/01/2015 - [] D -- C:\Program Files\FreeTime
O43 - CFD: 31/10/2014 - [] D -- C:\Program Files\Glary Utilities 5
O43 - CFD: 27/11/2014 - [] D -- C:\Program Files\GlassWire
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\GlobFX
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files\Google
O43 - CFD: 27/09/2015 - [0] D -- C:\Program Files\GUM2404.tmp
O43 - CFD: 18/11/2014 - [] D -- C:\Program Files\GUMC21A.tmp
O43 - CFD: 20/02/2015 - [] D -- C:\Program Files\Hard Disk Sentinel
O43 - CFD: 01/09/2015 - [] D -- C:\Program Files\Hola
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\HomeGuard
O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\Hostless Modem
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\HSPA USB Modem
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\IDM
O43 - CFD: 05/03/2015 - [0] D -- C:\Program Files\IndepthRunner =>PUP.Optional.Graftor
O43 - CFD: 13/11/2015 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 20/03/2015 - [] D -- C:\Program Files\Intel
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\Internet Download Manager
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 08/01/2015 - [] D -- C:\Program Files\IO3O LLC
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files\IObit
O43 - CFD: 24/04/2015 - [] D -- C:\Program Files\Java
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\JIRA assistant for Google Chrome
O43 - CFD: 24/11/2015 - [] D -- C:\Program Files\KMPConnect
O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\Launch Manager
O43 - CFD: 26/10/2014 - [] D -- C:\Program Files\LG Electronics
O43 - CFD: 25/12/2014 - [] D -- C:\Program Files\Mailinfo
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\MetaGeek
O43 - CFD: 09/11/2014 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 26/10/2014 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 12/08/2015 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 03/12/2014 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 31/08/2015 - [] D -- C:\Program Files\MobiConnect
O43 - CFD: 19/02/2015 - [] D -- C:\Program Files\Movies App =>PUP.Optional.CrossRider
O43 - CFD: 29/01/2015 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 10/12/2014 - [] D -- C:\Program Files\Mozilla Thunderbird
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 04/01/2015 - [] D -- C:\Program Files\MSECache
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files\Namco
O43 - CFD: 23/12/2014 - [] D -- C:\Program Files\Nokia
O43 - CFD: 23/07/2015 - [] D -- C:\Program Files\Notepad++
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files\OpenVPN
O43 - CFD: 10/05/2015 - [0] D -- C:\Program Files\oTweak =>PUP.Optional.oTweak
O43 - CFD: 14/01/2015 - [] D -- C:\Program Files\PC App Store
O43 - CFD: 19/08/2015 - [] D -- C:\Program Files\PC Cleaner
O43 - CFD: 13/03/2015 - [] D -- C:\Program Files\PC Faster
O43 - CFD: 28/02/2015 - [0] D -- C:\Program Files\PragmaEngine =>PUP.Optional.Generic
O43 - CFD: 13/05/2015 - [] D -- C:\Program Files\PRiceeMinus =>PUP.Optional.Multiplug
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\PriceMinous =>PUP.Optional.Multiplug
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\PriceMinus =>PUP.Optional.Multiplug
O43 - CFD: 10/05/2015 - [] D -- C:\Program Files\PrIceMMIInnus =>PUP.Optional.Multiplug
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files\Proxy Mask
O43 - CFD: 29/12/2014 - [] D -- C:\Program Files\Ralink
O43 - CFD: 02/02/2015 - [] D -- C:\Program Files\Real
O43 - CFD: 01/02/2015 - [] D -- C:\Program Files\RealNetworks
O43 - CFD: 23/08/2015 - [] D -- C:\Program Files\REALTEK
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 08/03/2015 - [0] D -- C:\Program Files\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\Remove Empty Directories
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files\ReviverSoft
O43 - CFD: 04/09/2015 - [] D -- C:\Program Files\Rockstar Games
O43 - CFD: 29/12/2014 - [] D -- C:\Program Files\Rovio Entertainment Ltd
O43 - CFD: 22/10/2014 - [] D -- C:\Program Files\Safari
O43 - CFD: 21/10/2014 - [] D -- C:\Program Files\SAM CoDeC Pack
O43 - CFD: 26/02/2015 - [0] D -- C:\Program Files\Samsung
O43 - CFD: 27/10/2014 - [] D -- C:\Program Files\SDA
O43 - CFD: 19/11/2015 - [] RD -- C:\Program Files\Skype
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\Smart QrCode Generator
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Sony
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files\Sony Mobile
O43 - CFD: 01/03/2015 - [] D -- C:\Program Files\Start
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files\Supercopier
O43 - CFD: 01/02/2015 - [] D -- C:\Program Files\SupportAppCB
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files\TAP-Windows
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files\Tbccint =>PUP.Optional.Conduit
O43 - CFD: 18/07/2015 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 23/11/2014 - [] D -- C:\Program Files\TuneUp Utilities 2014
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\UCBrowser
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\UniDeals =>PUP.Optional.Multiplug
O43 - CFD: 28/02/2015 - [0] D -- C:\Program Files\UnIDeeals =>PUP.Optional.Deeal
O43 - CFD: 01/03/2015 - [] D -- C:\Program Files\UniDEEAlse =>PUP.Optional.Deeal
O43 - CFD: 28/06/2015 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\unIsaales =>PUP.Optional.Multiplug
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\uNisalEs =>PUP.Optional.Multiplug
O43 - CFD: 05/11/2015 - [] D -- C:\Program Files\USB Disk Security
O43 - CFD: 21/10/2014 - [] D -- C:\Program Files\uTorrent
O43 - CFD: 27/02/2015 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 11/03/2015 - [] D -- C:\Program Files\VMware
O43 - CFD: 27/11/2014 - [] D -- C:\Program Files\WASEL Pro VPN Service
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\WebcamMax
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 11/11/2015 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 26/06/2015 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 23/10/2014 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 16/01/2015 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 23/12/2014 - [] D -- C:\Program Files\WinPcap
O43 - CFD: 20/01/2015 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 20/10/2014 - [] D -- C:\Program Files\x264vfw
O43 - CFD: 04/08/2015 - [] D -- C:\Program Files\Your Freedom
O43 - CFD: 21/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 28/01/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 27/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 02/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
O43 - CFD: 19/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alfa 11n USB Wireless LAN Utility
O43 - CFD: 07/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
O43 - CFD: 22/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Break For Games
O43 - CFD: 16/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Free
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cambridge
O43 - CFD: 03/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Data Doctor Recovery - SIM Card (Demo)
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
O43 - CFD: 26/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZDownloader
O43 - CFD: 03/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 17/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 26/06/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 05/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hostless MOBICONNECT
O43 - CFD: 28/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
O43 - CFD: 23/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer
O43 - CFD: 08/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 08/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 21/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 01/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
O43 - CFD: 03/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 21/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMP Connect
O43 - CFD: 26/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite
O43 - CFD: 25/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mailinfo
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MetaGeek
O43 - CFD: 28/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 12/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 01/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiPony
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MobiConnect
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Namco
O43 - CFD: 22/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 01/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ooredoo N'ternet
O43 - CFD: 23/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
O43 - CFD: 30/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Cleaner
O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 10/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ralink Wireless
O43 - CFD: 02/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REALTEK Wireless LAN Utility
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remove Empty Directories
O43 - CFD: 04/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio Entertainment Ltd
O43 - CFD: 22/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAM CoDeC Pack
O43 - CFD: 27/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
O43 - CFD: 06/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 26/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Informer
O43 - CFD: 13/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 01/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 07/02/2015 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 11/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Translator3
O43 - CFD: 31/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 22/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uTorrent
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 28/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WASEL Pro VPN Service
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebcamMax
O43 - CFD: 08/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Who Is On My Wifi
O43 - CFD: 23/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Freedom
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\11456329611893396231
O43 - CFD: 28/03/2015 - [] D -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 28/01/2015 - [] D -- C:\ProgramData\akkhemohldoigkbhijgphdmpehcmpdid
O43 - CFD: 02/03/2015 - [] D -- C:\ProgramData\APN =>Toolbar.Ask
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Apple
O43 - CFD: 27/03/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 07/01/2015 - [] D -- C:\ProgramData\Ashampoo
O43 - CFD: 30/06/2015 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 17/01/2015 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 23/10/2014 - [] D -- C:\ProgramData\AVG
O43 - CFD: 08/09/2015 - [] D -- C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 08/09/2015 - [] D -- C:\ProgramData\AVG Security Toolbar =>Toolbar.AVGSearch
O43 - CFD: 08/09/2015 - [] D -- C:\ProgramData\AVG Web TuneUp =>Toolbar.AVGSafeGuard
O43 - CFD: 12/12/2014 - [] D -- C:\ProgramData\AVG2014
O43 - CFD: 19/01/2015 - [] D -- C:\ProgramData\AVG2015
O43 - CFD: 18/08/2015 - [] D -- C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Baidu
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Baidu Security
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\BCloudScan_exe
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 13/02/2015 - [] D -- C:\ProgramData\cckidplnoficjdalhmiehaabjekkeiaf
O43 - CFD: 14/03/2015 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\DatacardService
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\DivX
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 28/01/2015 - [] D -- C:\ProgramData\fcnmlphegoldcdgncjicdnnpbcofdjko
O43 - CFD: 14/11/2015 - [0] D -- C:\ProgramData\GlarySoft
O43 - CFD: 17/11/2014 - [] D -- C:\ProgramData\GlassWire
O43 - CFD: 13/02/2015 - [] D -- C:\ProgramData\hglccbdbhpggmlmlikeieeigeghhggkc
O43 - CFD: 07/01/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\IDMComp
O43 - CFD: 26/10/2014 - [] D -- C:\ProgramData\Informer Technologies, Inc
O43 - CFD: 23/12/2014 - [] D -- C:\ProgramData\Installations
O43 - CFD: 20/03/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 27/01/2015 - [] D -- C:\ProgramData\IObit
O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\JollyBear
O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 19/11/2015 - [] D -- C:\ProgramData\Kaspersky Lab Setup Files
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Kromtech
O43 - CFD: 28/02/2015 - [] D -- C:\ProgramData\leoebbkcpolgpljllpiacpiaienepall
O43 - CFD: 28/02/2015 - [] D -- C:\ProgramData\liimbpcnmhghlffgbnanlhkpoeabccac =>PUP.Optional.BundleInstaller
O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\log
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\loifehnibneaijdapadeofecfbjkoemo
O43 - CFD: 24/11/2015 - [] D -- C:\ProgramData\MFAData
O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\miajiigchnnafabiiddknnjfeldgbldh
O43 - CFD: 16/05/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 31/08/2015 - [] D -- C:\ProgramData\MobiConnect
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Mobile Partner =>Toolbar.YahooPartner
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\MobileBrServ
O43 - CFD: 29/01/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 31/12/2014 - [] D -- C:\ProgramData\NortonInstaller
O43 - CFD: 26/01/2015 - [] D -- C:\ProgramData\Oberon Games
O43 - CFD: 22/02/2015 - [] D -- C:\ProgramData\Office Genuine Advantage
O43 - CFD: 02/02/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 03/12/2014 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 28/11/2014 - [] D -- C:\ProgramData\ParetoLogic =>.Superfluous.Paretologic
O43 - CFD: 13/03/2015 - [] D -- C:\ProgramData\PC Faster
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\pdogjmapichlpfhdgbjcjeadjcpcghgh
O43 - CFD: 10/05/2015 - [] D -- C:\ProgramData\pehkliacingeelefhlaencmkdnfajkon
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\ProductData =>PUP.Optional.Generic
O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\Ralink
O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\Ralink Driver
O43 - CFD: 01/02/2015 - [] D -- C:\ProgramData\Real
O43 - CFD: 08/02/2015 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 25/10/2014 - [] D -- C:\ProgramData\Sony
O43 - CFD: 25/10/2014 - [] D -- C:\ProgramData\Sony Mobile
O43 - CFD: 08/05/2015 - [] D -- C:\ProgramData\SpeedBit
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 21/10/2014 - [] D -- C:\ProgramData\Sun
O43 - CFD: 01/09/2015 - [0] D -- C:\ProgramData\SurfEasy VPN
O43 - CFD: 24/08/2015 - [] D -- C:\ProgramData\SurfEasyService
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Tbccint =>PUP.Optional.Conduit
O43 - CFD: 27/06/2015 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 09/08/2015 - [] D -- C:\ProgramData\Thunder Network
O43 - CFD: 22/11/2014 - [] D -- C:\ProgramData\Trusted Publisher =>PUP.Optional.TopAppSoft
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Trymedia =>PUP.Optional.Trymedia
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\TuneUp Software
O43 - CFD: 16/11/2014 - [] D -- C:\ProgramData\USB Block
O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\VMware
O43 - CFD: 01/09/2015 - [] D -- C:\ProgramData\WCMShare
O43 - CFD: 23/09/2015 - [] D -- C:\ProgramData\WebcamMax
O43 - CFD: 05/11/2015 - [] D -- C:\ProgramData\Zbshareware Lab
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\ZDSupport
O43 - CFD: 28/02/2015 - [] D -- C:\ProgramData\{24c7e9c4-7378-35b4-24c7-7e9c4737a711}
O43 - CFD: 05/03/2015 - [] D -- C:\ProgramData\{446be9fc-3e60-229e-446b-be9fc3e6a7f0}
O43 - CFD: 01/03/2015 - [] D -- C:\ProgramData\{7d6c815e-f083-00b8-7d6c-c815ef08057b}
O43 - CFD: 11/02/2015 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files\Common Files\Adobe Systems Shared
O43 - CFD: 18/08/2015 - [] D -- C:\Program Files\Common Files\Apple
O43 - CFD: 08/11/2015 - [] D -- C:\Program Files\Common Files\AVG Secure Search =>Toolbar.AVGSearch
O43 - CFD: 26/10/2014 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files\Common Files\DivX Shared
O43 - CFD: 23/02/2015 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 26/01/2015 - [] D -- C:\Program Files\Common Files\IObit
O43 - CFD: 01/11/2014 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 25/01/2015 - [] D -- C:\Program Files\Common Files\Oberon Media
O43 - CFD: 20/11/2014 - [] D -- C:\Program Files\Common Files\ParetoLogic =>.Superfluous.Paretologic
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 06/03/2015 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 25/11/2014 - [] D -- C:\Program Files\Common Files\SpeedBit
O43 - CFD: 25/10/2014 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\4shared Desktop
O43 - CFD: 07/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\AC3Filter
O43 - CFD: 22/10/2015 - [] D -- C:\Users\johq\AppData\Roaming\Adobe
O43 - CFD: 02/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\AIMP3
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\Apple Computer
O43 - CFD: 23/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\AVG
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\AVG2015
O43 - CFD: 25/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Baidu
O43 - CFD: 15/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\BavMini
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\cald3
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\DivX
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\DMCache
O43 - CFD: 20/11/2014 - [] D -- C:\Users\johq\AppData\Roaming\DriverCure =>.Superfluous.Paretologic
O43 - CFD: 31/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Dropbox
O43 - CFD: 14/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\DRPSu
O43 - CFD: 18/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Easeware
O43 - CFD: 25/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\EZDownloader
O43 - CFD: 03/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Foxit Software
O43 - CFD: 20/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\FreeLanguageTranslator
O43 - CFD: 14/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\GlarySoft
O43 - CFD: 18/02/2015 - [] D -- C:\Users\johq\AppData\Roaming\Hard Disk Sentinel
O43 - CFD: 22/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Hola
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\IDM
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\IDMComp
O43 - CFD: 29/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\IObit
O43 - CFD: 30/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\LG Electronics
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\Macromedia
O43 - CFD: 14/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Media Player Classic
O43 - CFD: 25/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\MI
O43 - CFD: 30/06/2015 - [] SD -- C:\Users\johq\AppData\Roaming\Microsoft
O43 - CFD: 30/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\Mipony
O43 - CFD: 19/05/2015 - [] D -- C:\Users\johq\AppData\Roaming\Mobile Atlas Creator
O43 - CFD: 05/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Mozilla
O43 - CFD: 17/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\MPC-HC
O43 - CFD: 04/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\Notepad++
O43 - CFD: 26/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Oberon Games
O43 - CFD: 11/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\Opera Software
O43 - CFD: 02/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\PC App Store
O43 - CFD: 13/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\PC Faster
O43 - CFD: 03/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\PE Explorer
O43 - CFD: 11/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\ProductData
O43 - CFD: 08/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Proxy Mask
O43 - CFD: 03/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Real
O43 - CFD: 07/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\RHEng =>PUP.Optional.Conduit
O43 - CFD: 29/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Rovio
O43 - CFD: 29/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Rovio Entertainment Ltd
O43 - CFD: 03/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Samsung
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Skype
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\Software Informer
O43 - CFD: 28/04/2015 - [] D -- C:\Users\johq\AppData\Roaming\Sun
O43 - CFD: 08/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Systweak =>PUP.Optional.Systweak
O43 - CFD: 01/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Thunderbird
O43 - CFD: 31/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\TuneUp Software
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\UpdaterEX =>PUP.Optional.Dealply
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\ViberPC
O43 - CFD: 23/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\vlc
O43 - CFD: 18/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\VMware
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\WCMShare
O43 - CFD: 27/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\WebcamMax
O43 - CFD: 24/10/2014 - [] D -- C:\Users\johq\AppData\Roaming\WinRAR
O43 - CFD: 25/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Wireshark
O43 - CFD: 31/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Zbshareware Lab
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\ZHP
O43 - CFD: 11/01/2015 - [] D -- C:\Users\johq\AppData\Local\1BN_Software_&_IT_Solutio
O43 - CFD: 30/06/2015 - [] D -- C:\Users\johq\AppData\Local\Adobe
O43 - CFD: 27/03/2015 - [] D -- C:\Users\johq\AppData\Local\Apple Computer
O43 - CFD: 20/10/2014 - [0] SHD -- C:\Users\johq\AppData\Local\Application Data
O43 - CFD: 27/10/2014 - [] D -- C:\Users\johq\AppData\Local\Apps
O43 - CFD: 13/01/2015 - [] D -- C:\Users\johq\AppData\Local\Ares
O43 - CFD: 02/02/2015 - [] D -- C:\Users\johq\AppData\Local\AskPartnerNetwork =>Toolbar.AskBar
O43 - CFD: 26/08/2015 - [] D -- C:\Users\johq\AppData\Local\AutorunX2
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Local\Avg
O43 - CFD: 08/09/2015 - [] D -- C:\Users\johq\AppData\Local\AVG Web TuneUp =>Toolbar.AVGSafeGuard
O43 - CFD: 14/09/2015 - [] D -- C:\Users\johq\AppData\Local\Avg2015
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Local\cald3
O43 - CFD: 01/09/2015 - [] D -- C:\Users\johq\AppData\Local\com.surfeasy.se0200
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Local\CrashDumps
O43 - CFD: 28/08/2015 - [] D -- C:\Users\johq\AppData\Local\Diagnostics
O43 - CFD: 07/11/2014 - [] D -- C:\Users\johq\AppData\Local\downloadius
O43 - CFD: 28/08/2015 - [] D -- C:\Users\johq\AppData\Local\ElevatedDiagnostics
O43 - CFD: 27/06/2015 - [0] SHD -- C:\Users\johq\AppData\Local\EmieBrowserModeList
O43 - CFD: 27/06/2015 - [0] SHD -- C:\Users\johq\AppData\Local\EmieSiteList
O43 - CFD: 27/06/2015 - [0] SHD -- C:\Users\johq\AppData\Local\EmieUserList
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Local\Facebook
O43 - CFD: 08/07/2015 - [] D -- C:\Users\johq\AppData\Local\Foxit Reader
O43 - CFD: 17/11/2014 - [] D -- C:\Users\johq\AppData\Local\GlassWire
O43 - CFD: 27/09/2015 - [] D -- C:\Users\johq\AppData\Local\Google
O43 - CFD: 28/06/2015 - [] D -- C:\Users\johq\AppData\Local\GWX
O43 - CFD: 20/10/2014 - [0] SHD -- C:\Users\johq\AppData\Local\History
O43 - CFD: 03/07/2015 - [] D -- C:\Users\johq\AppData\Local\Hola
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Local\iLivid =>PUP.Optional.Bandoo
O43 - CFD: 11/11/2014 - [] D -- C:\Users\johq\AppData\Local\Kromtech
O43 - CFD: 26/10/2014 - [] D -- C:\Users\johq\AppData\Local\LG Electronics
O43 - CFD: 25/12/2014 - [] D -- C:\Users\johq\AppData\Local\Mailinfo
O43 - CFD: 02/07/2015 - [] D -- C:\Users\johq\AppData\Local\MetaGeek,_LLC
O43 - CFD: 20/10/2014 - [] D -- C:\Users\johq\AppData\Local\MFAData
O43 - CFD: 02/09/2015 - [] D -- C:\Users\johq\AppData\Local\Microsoft
O43 - CFD: 30/10/2014 - [] D -- C:\Users\johq\AppData\Local\Mindspark_Interactive_Net
O43 - CFD: 25/01/2015 - [] D -- C:\Users\johq\AppData\Local\MiniService
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Local\Mozilla
O43 - CFD: 21/10/2014 - [] D -- C:\Users\johq\AppData\Local\Opera Software
O43 - CFD: 14/11/2015 - [] D -- C:\Users\johq\AppData\Local\Programs
O43 - CFD: 03/01/2015 - [] D -- C:\Users\johq\AppData\Local\Remove_Empty_Directories
O43 - CFD: 12/12/2014 - [] D -- C:\Users\johq\AppData\Local\Skype
O43 - CFD: 28/10/2014 - [] D -- C:\Users\johq\AppData\Local\SlimWare Utilities Inc
O43 - CFD: 21/11/2015 - [] D -- C:\Users\johq\AppData\Local\Softonic =>PUP.Optional.Softonic
O43 - CFD: 04/01/2015 - [] D -- C:\Users\johq\AppData\Local\SoftonicAssistant =>PUP.Optional.Softonic
O43 - CFD: 27/10/2014 - [] D -- C:\Users\johq\AppData\Local\Sony
O43 - CFD: 24/11/2015 - [] D -- C:\Users\johq\AppData\Local\Temp
O43 - CFD: 16/01/2015 - [] D -- C:\Users\johq\AppData\Local\Temp23675
O43 - CFD: 20/10/2014 - [0] SHD -- C:\Users\johq\AppData\Local\Temporary Internet Files
O43 - CFD: 05/12/2014 - [] D -- C:\Users\johq\AppData\Local\Thunderbird
O43 - CFD: 07/07/2015 - [] D -- C:\Users\johq\AppData\Local\Torch =>.Superfluous.Torch
O43 - CFD: 14/11/2014 - [] D -- C:\Users\johq\AppData\Local\TuneUp Software
O43 - CFD: 12/11/2015 - [] D -- C:\Users\johq\AppData\Local\Viber
O43 - CFD: 12/11/2015 - [] D -- C:\Users\johq\AppData\Local\Viber Media S.à r.l
O43 - CFD: 24/10/2014 - [] D -- C:\Users\johq\AppData\Local\VirtualStore
O43 - CFD: 18/07/2015 - [] D -- C:\Users\johq\AppData\Local\VMware
O43 - CFD: 02/03/2015 - [] D -- C:\Users\johq\AppData\Local\VNT
O43 - CFD: 04/08/2015 - [] D -- C:\Users\johq\AppData\Local\Your Freedom
O43 - CFD: 14/07/2009 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 17/08/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Break For Games
O43 - CFD: 19/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cambridge
O43 - CFD: 16/03/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DC-Unlocker
O43 - CFD: 03/09/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 27/11/2014 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GlassWire 1.0
O43 - CFD: 16/11/2014 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HomeGuard
O43 - CFD: 08/04/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/07/2009 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 27/08/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Namco
O43 - CFD: 16/01/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 10/05/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\oTweak Software =>PUP.Optional.oTweak
O43 - CFD: 23/12/2014 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store
O43 - CFD: 07/02/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Softonic =>PUP.Optional.Softonic
O43 - CFD: 05/11/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 06/02/2015 - [0] HD -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup-Disabled
O43 - CFD: 21/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Supercopier
O43 - CFD: 11/11/2015 - [0] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Translator3
O43 - CFD: 20/01/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 18/07/2015 - [] D -- C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\تطبيقات Chrome
O43 - CFD: 16/12/2014 - [0] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
---\\ ShellIconOverlayIdentifiers (SIOI) (6) - 1s
O106 - SIOI: Google Drive Shell extension [ GoogleDriveBlacklisted] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll ©
O106 - SIOI: Google Drive Shell extension [ GoogleDriveSynced] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll ©
O106 - SIOI: Google Drive Shell extension [ GoogleDriveSyncing] - {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}. (.Google - Google Drive shell extension.) -- C:\Program Files\Google\Drive\googledrivesync32.dll ©
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: IDM Shell Extension [IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files\Internet Download Manager\IDMShellExt.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll ©
---\\ System Drivers List (139) - 102s
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422976] ©
O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [297552] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [146512] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [14400] ©
O58 - SDL:2011/03/11 06:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [80256] ©
O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [159312] ©
O58 - SDL:2011/03/11 06:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [22400] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [76368] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [86608] ©
O58 - SDL:2015/05/19 14:02:42 A . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\drivers\athr.sys [3208496] ©
O58 - SDL:2014/06/18 20:03:34 A . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) -- C:\Windows\System32\drivers\avgdiskx.sys [121624] ©
O58 - SDL:2013/09/26 19:00:38 A . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) -- C:\Windows\System32\drivers\avgfwd6x.sys [47928] ©
O58 - SDL:2014/12/08 21:25:06 A . (.AVG Technologies CZ, s.r.o. - AVG IDS Application Activity Monitor Driver.) -- C:\Windows\System32\drivers\avgidsdriverx.sys [208152] ©
O58 - SDL:2014/11/18 21:41:58 A . (.AVG Technologies CZ, s.r.o. - AVG Application Activity Monitor Helper Dri.) -- C:\Windows\System32\drivers\avgidshx.sys [154904] ©
O58 - SDL:2014/06/18 20:03:34 A . (.AVG Technologies CZ, s.r.o. - AVG IDS Application Activity Monitor Loader.) -- C:\Windows\System32\drivers\avgidsshimx.sys [21272] ©
O58 - SDL:2014/08/28 20:43:36 A . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\System32\drivers\avgldx86.sys [192792] ©
O58 - SDL:2014/07/18 14:55:24 A . (.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) -- C:\Windows\System32\drivers\avglogx.sys [230680] ©
O58 - SDL:2014/10/05 20:42:06 A . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\System32\drivers\avgmfx86.sys [98584] ©
O58 - SDL:2014/06/18 20:03:36 A . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\Windows\System32\drivers\avgrkx86.sys [27416] ©
O58 - SDL:2014/10/10 14:13:58 A . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\Windows\System32\drivers\avgtdix.sys [200984] ©
O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys [229888] ©
O58 - SDL:2011/11/04 09:21:18 A . (.Broadcom Corporation - Broadcom xD Picture Card Bus Driver.) -- C:\Windows\System32\drivers\b57xdbd.sys [60968] ©
O58 - SDL:2011/11/04 09:21:20 A . (.Broadcom Corporation - Broadcom xD Picture Card Miniport Driver.) -- C:\Windows\System32\drivers\b57xdmp.sys [17960] ©
O58 - SDL:2006/06/26 12:20:10 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\bcmwl5.sys [564224] ©
O58 - SDL:2015/05/15 04:09:47 A . (. - bdark.) -- C:\Windows\System32\drivers\bdark.sys [82376]
O58 - SDL:2015/04/09 22:27:03 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\Windows\System32\drivers\BProtectEx.sys [113992] ©
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568] ©
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248] ©
O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [272128] ©
O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336] ©
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160] ©
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904] ©
O58 - SDL:2011/09/02 13:37:10 A . (.Broadcom Corporation - Broadcom Memory Stick Driver.) -- C:\Windows\System32\drivers\bScsiMSx.sys [43560] ©
O58 - SDL:2012/06/01 16:36:08 A . (.Broadcom Corporation - Broadcom SD 3.0 Driver.) -- C:\Windows\System32\drivers\bScsiSDx.sys [52856] ©
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys [430080] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\ccdcmb.sys [18560] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\ccdcmbo.sys [23168] ©
O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [15952] ©
O58 - SDL:2013/06/29 17:10:58 A . (.Mobile Connector - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\cmusbser.sys [103552] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [70720] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [453712] ©
O58 - SDL:2013/08/23 03:49:26 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\Windows\System32\drivers\ETD.sys [334664] ©
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys [3100160] ©
O58 - SDL:2010/10/08 09:55:06 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [25856] ©
O58 - SDL:2013/03/04 09:20:27 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [199168] ©
O58 - SDL:2013/03/21 02:55:42 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbwwan.sys [380416] ©
O58 - SDL:2010/09/26 11:09:22 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\Windows\System32\drivers\ew_hwupgrade.sys [19200] ©
O58 - SDL:2013/01/25 02:16:33 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ew_hwusbdev.sys [95232] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [77824] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\Windows\System32\drivers\ew_jucdcacm.sys [101248] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_jucdcecm.sys [70528] ©
O58 - SDL:2013/03/04 09:31:10 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\Windows\System32\drivers\ew_juextctrl.sys [27776] ©
O58 - SDL:2013/04/10 09:45:19 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_juwwanecm.sys [207872] ©
O58 - SDL:2012/12/22 02:46:02 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\Windows\System32\drivers\ew_usbenumfilter.sys [11904] ©
O58 - SDL:2014/10/25 21:51:23 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\Windows\System32\drivers\ggflt.sys [13528] ©
O58 - SDL:2014/10/25 21:51:23 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\Windows\System32\drivers\ggsomc.sys [26328] ©
O58 - SDL:2014/11/05 06:41:44 A . (.SecureMix LLC - GlassWire Driver.) -- C:\Windows\System32\drivers\gwdrv.sys [27616] ©
O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [26624] ©
O58 - SDL:2013/01/23 15:57:32 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys [56432] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [67152] ©
O58 - SDL:2015/01/10 14:20:31 A . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\drivers\HWiNFO32.SYS [23840]
O58 - SDL:2011/03/11 06:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys [332160] ©
O58 - SDL:2012/05/17 11:57:08 A . (.Intel Corporation - Intel(R) Watchdog Timer Driver (Intel(R) WD.) -- C:\Windows\System32\drivers\ICCWDT.sys [22040] ©
O58 - SDL:2015/06/12 03:00:58 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [123968] ©
O58 - SDL:2015/06/01 20:00:00 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [3788752] ©
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41040] ©
O58 - SDL:2014/09/09 05:13:28 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [368912] ©
O58 - SDL:2013/07/17 22:43:40 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [16880] ©
O58 - SDL:2013/07/26 09:01:50 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60x.sys [408272] ©
O58 - SDL:2014/05/27 18:10:20 A . (.Google Inc - ADB Interface.) -- C:\Windows\System32\drivers\lgandnetadb.sys [25856] ©
O58 - SDL:2014/05/27 18:04:22 A . (.LG Electronics Inc. - LGE AndroidNet Driver.) -- C:\Windows\System32\drivers\lgandnetdiag.sys [23168] ©
O58 - SDL:2014/05/27 18:04:22 A . (.LG Electronics Inc. - LGE AndroidNet Driver.) -- C:\Windows\System32\drivers\lgandnetmodem.sys [27776] ©
O58 - SDL:2014/05/28 04:29:56 A . (.LG Electronics Inc. - LGE AndroidNet USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\lgandnetndis.sys [74240] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [95824] ©
O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89168] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [54864] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96848] ©
O58 - SDL:2011/08/29 11:42:56 A . (.MBB Incorporated - CDROM Filter.) -- C:\Windows\System32\drivers\massfilter.sys [9216] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [30800] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [235584] ©
O58 - SDL:2010/08/06 00:42:34 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\drivers\mod7700.sys [861696]
O58 - SDL:2014/08/14 10:18:28 A . (.NT Kernel Resources - NDISRD helper driver.) -- C:\Windows\System32\drivers\ndisrd.sys [37408] ©
O58 - SDL:2015/03/14 13:39:24 A . (.Ralink Technology Corp. - Ralink 802.11n Wireless Adapter Driver.) -- C:\Windows\System32\drivers\netr28u.sys [1321568] ©
O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [44624] ©
O58 - SDL:2013/03/01 02:48:42 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [36600] ©
O58 - SDL:2011/03/11 06:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [117120] ©
O58 - SDL:2011/03/11 06:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [143744] ©
O58 - SDL:2015/01/10 19:07:35 A . (.QUALCOMM Incorporated - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\qcusbser.sys [205312] ©
O58 - SDL:2015/06/17 08:54:36 A . (.FORGE Incorporated - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\qcusbwwan.sys [422976]
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1383488] ©
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106064] ©
O58 - SDL:2015/08/14 04:57:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [3599600] ©
O58 - SDL:2010/01/07 02:20:22 A . (.Realtek Semiconductor Corporation - Realtek RTL8187 NDIS Driver.) -- C:\Windows\System32\drivers\RTL8187.sys [375808] ©
O58 - SDL:2010/03/31 10:13:28 A . (.Realtek Semiconductor Corporation - Realtek RTL8187B NDIS Driver.) -- C:\Windows\System32\drivers\rtl8187B.sys [379904] ©
O58 - SDL:2011/02/11 02:35:00 A . (.Realtek Semiconductor Corporation - Realtek RTL8192C USB NDIS Driver.) -- C:\Windows\System32\drivers\rtl8192cu.sys [693760] ©
O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480] ©
O58 - SDL:2014/09/03 15:49:36 A . (.Prolific Technology Inc. - USB-to-Serial Cable Driver.) -- C:\Windows\System32\drivers\ser2pl.sys [140800] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [40016] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [77888] ©
O58 - SDL:2011/01/03 09:38:36 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadcm.sys [10472] ©
O58 - SDL:2011/01/03 09:38:36 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssadwh.sys [10344] ©
O58 - SDL:2010/12/21 06:55:02 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssm_cm.sys [12544] ©
O58 - SDL:2010/12/21 06:55:02 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ssm_wh.sys [12416] ©
O58 - SDL:2015/07/09 02:51:19 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudbus.sys [84248] ©
O58 - SDL:2014/01/22 07:52:12 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudmdm.sys [184192] ©
O58 - SDL:2011/02/18 06:40:06 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android RNDIS Filter Driver (MSS Ve.) -- C:\Windows\System32\drivers\ssudnflt.sys [15936] ©
O58 - SDL:2014/01/22 07:52:12 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Mobile Logging Device Driver (M.) -- C:\Windows\System32\drivers\ssudserd.sys [184192] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [21072] ©
O58 - SDL:2014/11/17 13:56:46 A . (...) -- C:\Windows\System32\drivers\SWDUMon.sys [13464]
O58 - SDL:2014/11/05 14:16:26 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\Windows\System32\drivers\tap0901.sys [23040] ©
O58 - SDL:2013/06/17 21:50:44 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\drivers\tapse01.sys [33720] ©
O58 - SDL:2015/07/28 20:37:20 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriver.sys [155424] ©
O58 - SDL:2013/09/28 03:56:48 A . (.Trend Micro Inc. - TrendMicro Common Module.) -- C:\Windows\System32\drivers\tmcomm.sys [289352] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Filter Driver for Nokia USB Phone Bus Drive.) -- C:\Windows\System32\drivers\usbser_lowerflt.sys [8192] ©
O58 - SDL:2013/01/23 11:31:50 A . (.Nokia - Filter Driver for Nokia USB Phone Bus Drive.) -- C:\Windows\System32\drivers\usbser_lowerfltj.sys [8192] ©
O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [16976] ©
O58 - SDL:2013/10/18 12:44:58 A . (.VMware, Inc. - VMware virtual network driver (32-bit).) -- C:\Windows\System32\drivers\vmnet.sys [20048] ©
O58 - SDL:2013/10/18 12:44:58 A . (.VMware, Inc. - VMware virtual network adapter driver (32-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [17104] ©
O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [141904] ©
O58 - SDL:2012/04/15 22:32:14 A . (.Windows (R) Win 7 DDK provider - WebcamMax Capture.) -- C:\Windows\System32\drivers\wcmvcam.sys [1068216] ©
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys [107520] ©
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbnmea.sys [107520] ©
O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\Windows\System32\drivers\ZTEusbser6k.sys [107520] ©
O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:2002/05/02 12:52:22 A . (.Printing Communications Assoc., Inc. (PCAUSA) - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\Windows\System32\PCANDIS5.SYS [17134] ©
---\\ Last modified or created user files (4) - 39s
O61 - LFC: 2015/11/24 09:49:09 A . (..) -- C:\Users\johq\AppData\Roaming\IDM\DwnlData\johq\ZHPDiag2_436\ZHPDiag2.exe [0]
O61 - LFC: 2015/11/24 09:32:51 A . (..) -- C:\Users\johq\AppData\Roaming\IDM\DwnlData\johq\ZHPDiag2_435\ZHPDiag2.exe [0]
O61 - LFC: 2015/11/24 09:30:13 A . (..) -- C:\Users\johq\AppData\Roaming\IDM\DwnlData\johq\ZHPDiag2_434\ZHPDiag2.exe [0]
O61 - LFC: 2015/11/24 09:02:42 A . (..) -- C:\Users\johq\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082]
---\\ File Associations Shell Spawning (11) - 1s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (31) - 8s
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.FF19Solved", "true"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.UserID", "UN30077343722968821"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.dum", "2"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.fullUserID", "UN30077343722968821.IN.20150130140510"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installDate", "30/01/2015 14:05:16"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installSessionId", "-1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installSp", "FALSE"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.installerVersion", "1.11.0.11"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.searchRevert", "false"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.searchUninstallUserMode", "8"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.searchUserMode", "8"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.toolbarInstallDate", "30-01-2015 14:05:12"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.versionFromInstaller", "10.37.0.8"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("CT1561552.xpeMode", "1"); =>PUP.Optional.Conduit
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.newtab.url", "http://feed.snapdo.com/?p=mKO_AwFzXIpYRaklm31XHoHPezyxuXcoLyh8uf9z5dZwwHq6nuWiYNK9d1ZkLgvSksf6l22[...] =>PUP.Optional.SmartBar
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.defaulturl", "http://websearch.goodforsearch.info/?pid=24392&r=2015/05/10&hid=15867019612213773964&lg=EN[...] =>PUP.Optional.GoodForSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.alias", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.iconURL", "http://www.mystartsearch.com/favicon.ico"); =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.name", "mystartsearch"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.ptid", "wpc"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.uid", "TOSHIBAXMQ01ABF050_23LIS4GQSXX23LIS4GQS"); =>PUP.Optional.SearchEngine
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.search.searchengine.url", "http://www.mystartsearch.com/web/?type=ds&ts=1422186438&from=wpc&uid=TOSHIBAXMQ01ABF[...] =>PUP.Optional.StartSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("browser.startup.homepage", "http://websearch.goodforsearch.info/?pid=24392&r=2015/05/10&hid=15867019612213773964&lg=EN&[...] =>PUP.Optional.GoodForSearch
O69 - SBI: prefs.js [johq - 1d31vx74.default] user_pref("smartbar.machineId", "GBP73JSKCTHRX2U1J2O2GJGCOBDRT0WQW+PTAIBOS58YWHTWRGLV5T9KJJ90PAYGGOGJJTTJHZ75MC/ODWZKMW"); =>PUP.Optional.SmartBar
O69 - SBI: SearchScopes [HKCU] 296CA5FF4231424D8A7A06E96D2D9946 - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {80547E65-A29E-4A5A-9CAD-D6DD9D915F92} [DefaultScope] - ((www.google.com) Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://mysearch.avg.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Search Svchost Services (34) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [62464] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [67584] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [168960] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [593408] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [679424] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll [475136] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [286208] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [75264] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [49664] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [300544] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [242176] ©
O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.AVG Technologies - AVG Theme Extension.) -- C:\Windows\System32\uxtuneup.dll [36664] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [523776] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2061824] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [585728] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [328192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [499712] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [21504] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [47104] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [114688] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll [49664] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [61440] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [98304] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164864] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [751104] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL [71168] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [113664] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [102912] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [37376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [76800] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [149504] ©
---\\ Firewall Active Exception List (6) - 3s
O87 - FAEL: "{6DA0EF40-7964-4AD3-A86F-91780D408759}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Baidu Security\PC Faster\WifiHotspot.exe (.not file.)
O87 - FAEL: "{79B349C4-0CBC-403E-8603-5B2BD8293ADA}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Baidu Security\PC Faster\WifiHotspot.exe (.not file.)
O87 - FAEL: "{C089A0CE-E71B-445F-9688-A92350C7622B}" [In-None-P6-TRUE] .(...) -- C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe (.not file.)
O87 - FAEL: "{D0DD6408-6989-4E18-9EDE-DC51DCBF5D97}" [In-None-P17-TRUE] .(...) -- C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe (.not file.)
O87 - FAEL: "{30A46275-D998-45D8-8A8A-06373A2B4E18}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Ralink\Common\RaMediaServer.exe (.not file.)
O87 - FAEL: "{4A5A8BEE-D23A-4F18-A0AA-B40AD1A56FB2}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Ralink\Common\RaMediaServer.exe (.not file.)
---\\ Product Upgrade Codes (2) - 3s
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) =>Toolbar.AsktBar
O90 - PUC: "D22545240535A600677A7AC597C08100" . (.Search App by Ask.) -- C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1800}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch
---\\ Services not Microsoft (SR=Run, SS=Stop) (28) - 80s
SS - Demand [03/12/2014] [ 81088] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Disabled [20/08/2015] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SS - Demand [19/01/2015] [ 60744] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
SR - Auto [18/12/2014] [ 1486664] AVG Firewall (avgfws) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2015\avgfws.exe ©
SR - Auto [18/12/2014] [ 3432976] AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2015\avgidsagent.exe ©
SR - Auto [18/12/2014] [ 298080] AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files\AVG\AVG2015\avgwdsvc.exe ©
SS - Demand [31/08/2011] [ 390504] Bonjour Service (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe ©
SR - Auto [27/11/2013] [ 3105144] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe ©
SS - Demand [01/06/2015] [ 290224] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\System32\IntelCpHeciSvc.exe ©
SR - Auto [23/03/2012] [ 355920] Dritek WMI Service (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files\Launch Manager\dsiwmis.exe ©
SS - Demand [06/11/2014] [ 6279976] GlassWire Control Service (GlassWire) . (.SecureMix LLC.) - C:\Program Files\GlassWire\GWCtlSrv.exe ©
SS - Auto [27/09/2015] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [27/09/2015] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SR - Auto [14/03/2011] [ 271712] HWDeviceService.exe (HWDeviceService.exe) . (.Copyright (C) 2008.) - C:\ProgramData\DatacardService\HWDeviceService.exe
SR - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe ©
SS - Demand [16/01/2015] [ 2724128] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe ©
SR - Auto [20/08/2014] [ 242256] Mobile Broadband HL Service (Mobile Broadband HL Service) . (.Copyright (C) 2014.) - C:\ProgramData\MobileBrServ\mbbservice.exe
SS - Demand [01/12/2014] [ 33080] OpenVPN Service (OpenVPNService) . (.The OpenVPN Project.) - C:\Program Files\OpenVPN\bin\openvpnserv.exe ©
SS - Demand [12/01/2015] [ 571424] PC App Store Service 5.0.1.8490 (PCAppStoreSvc_{PCAppStore_5.0.1.8490}) . (.Baidu Inc..) - C:\Program Files\PC App Store\5.0.1.8490\PCAppStoreSvc.exe
SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files\WinPcap\rpcapd.exe ©
SR - Auto [19/05/2014] [ 389232] Service_KAir (ServiceKAirModule) . (...) - C:\Program Files\KMPConnect\KMPConnectService.exe
SS - Demand [02/01/2015] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe ©
SS - Demand [10/06/2015] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files\Sony\Sony PC Companion\PCCService.exe ©
SS - Auto [18/10/2013] [ 437328] VMware NAT Service (VMware NAT Service) . (.VMware, Inc..) - C:\Windows\System32\vmnat.exe ©
SR - Auto [08/09/2015] [ 1874320] (vToolbarUpdater40.1.6) . (.AVG Secure Search.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe =>Toolbar.AVGSearch
SR - Auto [27/09/2015] [ 1205136] WtuSystemSupport (WtuSystemSupport) . (.Copyright (C) 2015.) - C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe =>Toolbar.AVGSafeGuard
SR - Auto [06/11/2013] [ 427264] ZDServ (ZDServ) . (.Copyright (C) 2013.) - C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>PUP.Optional.Salus
---\\ Search Tracing Registry Key (6) - 4s
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASAPI32 =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASMANCS =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector
---\\ Additional Scan (O88) (111) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\vToolbarUpdater40.1.6 =>Toolbar.AVGSearch
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\ToolbarUpdater.exe =>Toolbar.AVGSearch
HKLM\SYSTEM\CurrentControlSet\Services\WtuSystemSupport =>Toolbar.AVGSafeGuard
C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe =>Toolbar.AVGSafeGuard
HKLM\SYSTEM\CurrentControlSet\Services\ZDServ =>PUP.Optional.Salus
C:\ProgramData\ZDSupport\ZDServ\ZDServ.exe =>PUP.Optional.Salus
C:\Program Files\AVG Web TuneUp\vprot.exe =>Toolbar.AVGSafeGuard
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.6\loggingserver.exe =>Toolbar.AVGSearch
C:\ProgramData\ZDSupport\ZDServ\CancelAutoPlay_Server.exe =>PUP.Optional.Salus
C:\Program Files\AVG Web TuneUp\avgcefrend.exe =>Toolbar.AVGSafeGuard
C:\Program Files\Common Files\AVG Secure Search\ScriptHelperInstaller\40.1.6\ScriptHelper.exe =>Toolbar.AVGSearch
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\cegfejpmmodikpdebjkdnkgcifhfepfi =>Hijacker.Browser
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn =>Toolbar.AVGSafeGuard
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk =>Hijacker.Browser
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooboalmgfkpilfmmhicinaalnjcgdph =>Hijacker.Browser
C:\Users\johq\AppData\Local\Google\Chrome\User Data\Default\Extensions\epbfmioobedknooiakdehepogalbgkng =>Hijacker.Browser
C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\searchplugins\WebSearch.xml =>PUP.Optional.SimpleSearches
C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\fftoolbar2014@etech.com =>PUP.Optional.FFToolBar
C:\Users\johq\AppData\Roaming\Mozilla\Firefox\Profiles\1d31vx74.default\extensions\{c95a4e8e-816d-4655-8c79-d736da1adb6d} =>PUP.Optional.ClientConnect
C:\Program Files\AVG Web TuneUp\4.1.6.294\AVG Web TuneUp.dll =>Toolbar.AVGSafeGuard
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} =>Toolbar.AVGSafeGuard
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4254522D-5350-006A-76A7-A75C790C1800} =>PUP.Optional.BrowserTabSearch
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BC0BF363-63AB-4FF7-8EF1-AE0D7F711B24} =>PUP.Optional.Linkury
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DF7124A7-0580-46B7-8243-8CFB924F851A} =>PUP.Optional.SmartBar
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic for Windows =>PUP.Optional.Softonic
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftonicAssistant =>PUP.Optional.Softonic
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2d2827ab-67f6-4377-afd6-ef83b52072a3} =>PUP.Optional.SmartBar
HKLM\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar
HKLM\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKLM\SOFTWARE\Conduit =>PUP.Optional.Conduit
HKLM\SOFTWARE\d9c16e49-4ebc-472c-9bd4-0832cd03d0c6 =>PUP.Optional.CrossRider
HKLM\SOFTWARE\mystartsearchSoftware =>PUP.Optional.StartSearch
HKLM\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKLM\SOFTWARE\SiteSee =>PUP.Optional.SiteSee
HKLM\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKLM\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKLM\SOFTWARE\Trymedia Systems =>PUP.Optional.Trymedia
HKLM\SOFTWARE\Tune =>PUP.Optional.Systweak
HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit
HKCU\SOFTWARE\AVG Web TuneUp =>Toolbar.AVGSafeGuard
HKCU\SOFTWARE\DriverToolkit =>.Superfluous.DriverToolkit
HKCU\SOFTWARE\ilivid =>PUP.Optional.Bandoo
HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch
HKCU\SOFTWARE\Optimizer Pro =>PUP.Optional.OptimizerPro
HKCU\SOFTWARE\ParetoLogic =>.Superfluous.Paretologic
HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager
HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic
HKCU\SOFTWARE\Systweak =>PUP.Optional.Systweak
HKCU\SOFTWARE\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\Tbccint_HKLM =>PUP.Optional.Conduit
HKCU\SOFTWARE\Tune =>PUP.Optional.Systweak
HKCU\SOFTWARE\AppDataLow\Software\ilividbandoomoviestoolbar =>PUP.Optional.Bandoo
HKCU\SOFTWARE\AppDataLow\Software\Tbccint =>PUP.Optional.Conduit
HKCU\SOFTWARE\AppDataLow\Software\TbccintSearchScopes =>PUP.Optional.Conduit
C:\Program Files\AskPartnerNetwork =>Toolbar.AskBar
C:\Program Files\AVG Web TuneUp =>Toolbar.AVGSafeGuard
C:\Program Files\BuyNsave =>PUP.Optional.BuyNSave
C:\Program Files\DriverToolkit =>.Superfluous.DriverToolkit
C:\Program Files\IndepthRunner =>PUP.Optional.Graftor
C:\Program Files\Movies App =>PUP.Optional.CrossRider
C:\Program Files\oTweak =>PUP.Optional.oTweak
C:\Program Files\PragmaEngine =>PUP.Optional.Generic
C:\Program Files\PRiceeMinus =>PUP.Optional.Multiplug
C:\Program Files\PriceMinous =>PUP.Optional.Multiplug
C:\Program Files\PriceMinus =>PUP.Optional.Multiplug
C:\Program Files\PrIceMMIInnus =>PUP.Optional.Multiplug
C:\Program Files\RegClean Pro =>PUP.Optional.RegistryPowerCleaner
C:\Program Files\Tbccint =>PUP.Optional.Conduit
C:\Program Files\UniDeals =>PUP.Optional.Multiplug
C:\Program Files\UnIDeeals =>PUP.Optional.Deeal
C:\Program Files\UniDEEAlse =>PUP.Optional.Deeal
C:\Program Files\unIsaales =>PUP.Optional.Multiplug
C:\Program Files\uNisalEs =>PUP.Optional.Multiplug
C:\ProgramData\APN =>Toolbar.Ask
C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch
C:\ProgramData\AVG Security Toolbar =>Toolbar.AVGSearch
C:\ProgramData\AVG Web TuneUp =>Toolbar.AVGSafeGuard
C:\ProgramData\liimbpcnmhghlffgbnanlhkpoeabccac =>PUP.Optional.BundleInstaller
C:\ProgramData\Mobile Partner =>Toolbar.YahooPartner
C:\ProgramData\ParetoLogic =>.Superfluous.Paretologic
C:\ProgramData\ProductData =>PUP.Optional.Generic
C:\ProgramData\Tbccint =>PUP.Optional.Conduit
C:\ProgramData\Trusted Publisher =>PUP.Optional.TopAppSoft
C:\ProgramData\Trymedia =>PUP.Optional.Trymedia
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
C:\Program Files\Common Files\AVG Secure Search =>Toolbar.AVGSearch
C:\Program Files\Common Files\ParetoLogic =>.Superfluous.Paretologic
C:\Users\johq\AppData\Roaming\DriverCure =>.Superfluous.Paretologic
C:\Users\johq\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy
C:\Users\johq\AppData\Roaming\RHEng =>PUP.Optional.Conduit
C:\Users\johq\AppData\Roaming\Systweak =>PUP.Optional.Systweak
C:\Users\johq\AppData\Roaming\UpdaterEX =>PUP.Optional.Dealply
C:\Users\johq\AppData\Local\AskPartnerNetwork =>Toolbar.AskBar
C:\Users\johq\AppData\Local\AVG Web TuneUp =>Toolbar.AVGSafeGuard
C:\Users\johq\AppData\Local\iLivid =>PUP.Optional.Bandoo
C:\Users\johq\AppData\Local\Softonic =>PUP.Optional.Softonic
C:\Users\johq\AppData\Local\SoftonicAssistant =>PUP.Optional.Softonic
C:\Users\johq\AppData\Local\Torch =>.Superfluous.Torch
C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\oTweak Software =>PUP.Optional.oTweak
C:\Users\johq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Softonic =>PUP.Optional.Softonic
HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AsktBar
HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AsktBar
C:\Windows\Installer\{4254522D-5350-006A-76A7-A75C790C1800}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Products\D22545240535A600677A7AC597C08100 =>PUP.Optional.BrowserTabSearch
HKLM\Software\Classes\Installer\Features\D22545240535A600677A7AC597C08100 =>PUP.Optional.BrowserTabSearch
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASAPI32 =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\EliteUnzip_RASMANCS =>PUP.Optional.MyWebSearch
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector
HKLM\SOFTWARE\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector
---\\ Summary of the elements found (44) - 0s
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AVGSearch
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AVGSafeGuard
http://www.nicolascoolman.fr/?p=2645 =>PUP.Optional.Salus
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Paretologic
http://www.nicolascoolman.fr/?p=203 =>PUP.Optional.Dealply
http://www.nicolascoolman.fr/?p=4664 =>Hijacker.Browser
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.GoodForSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SimpleSearches
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.FFToolBar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.ClientConnect
http://www.nicolascoolman.fr/?p=1974 =>PUP.Optional.BrowserTabSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Linkury
http://www.nicolascoolman.fr/?p=308 =>PUP.Optional.SmartBar
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AskBar
http://www.nicolascoolman.fr/?p=210 =>PUP.Optional.Conduit
http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/?p=4060 =>PUP.Optional.StartSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SiteSee
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SettingsManager
http://www.nicolascoolman.fr/?p=2580 =>PUP.Optional.Systweak
http://www.nicolascoolman.fr/?p=564 =>PUP.Optional.Trymedia
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.DriverToolkit
http://www.nicolascoolman.fr/?p=237 =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/?p=381 =>PUP.Optional.LinkeySearch
http://www.nicolascoolman.fr/?p=324 =>PUP.Optional.OptimizerPro
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BuyNSave
http://www.nicolascoolman.fr/?p=2460 =>PUP.Optional.Graftor
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.oTweak
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug
http://www.nicolascoolman.fr/?p=558 =>PUP.Optional.RegistryPowerCleaner
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Deeal
http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BundleInstaller
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.YahooPartner
http://www.nicolascoolman.fr/?p=1915 =>PUP.Optional.TopAppSoft
http://www.nicolascoolman.fr/?p=197 =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/?p=4664 =>.Superfluous.Torch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SearchEngine
http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AsktBar
http://www.nicolascoolman.fr/?p=336 =>PUP.Optional.AdvancedSystemProtector
http://www.nicolascoolman.fr/?p=220 =>PUP.Optional.MyWebSearch
http://www.nicolascoolman.fr/?p=533 =>PUP.Optional.BProtector
~ End of the scan, 30854 items in 458 seconds (1542)(0)