cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.3.13.69 By Nicolas Coolman (2016/03/10)
~ Run by Zaboon (Administrator) (2016/03/14 10:44:50)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Zaboon\Desktop\ZHPDiag.txt
~ Report: C:\Users\Zaboon\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)

---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v48.0.2564.116
MFIE: Mozilla Firefox 43.0.4 (x86 fr)
MSIE: Internet Explorer v11.0.10240.16724

---\\ Windows Product Information (3) - 1s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ System protection software (3) - 1s
Avira Antivirus v15.0.16.282
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender (Deactivate)

---\\ System optimization software (1) - 1s
CCleaner v5.05

---\\ Surveillance software (2) - 1s
Adobe Flash Player 21 NPAPI
Adobe Reader XI

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8339.056 MB (71% free)
System Restore: Activé (Enable)
System drive C: has 306 GB () free of 477 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: ZABOON-PC
~ User Name: Zaboon
~ Logged in as Administrator

---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 306 GB free of 477 GB (System)
~ Drive F: has 26 GB free of 476 GB

---\\ State of the Windows Security Center (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Search Generic System Files (24) - 7s
[MD5.D2EAEC106F183572317AF7D68E381063] - 25/11/2015 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [4532304] =>.Microsoft Windows®
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 04/08/2015 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [290312] =>.Microsoft Windows Publisher®
[MD5.71EF55BA035CD459D8230501D067D2F8] - 31/01/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [2849792] =>.Microsoft Corporation
[MD5.DA32F9BFA7851AD4247353EA03755DE6] - 05/01/2016 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [578560] =>.Microsoft Corporation
[MD5.ECB1943967424DFB96E03F6A098434EF] - 04/08/2015 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [680256] =>.Microsoft Windows®
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] =>.Microsoft Windows®
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] =>.Microsoft Windows®
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] =>.Microsoft Corporation
[MD5.55D5C5B0B9F9B65BD452136A384E6EAC] - 23/02/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] =>.Microsoft Corporation
[MD5.27E248CD861AFED4DF0C48F4C853E7F0] - 25/11/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] =>.Microsoft Corporation
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] =>.Microsoft Corporation
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] =>.Microsoft Corporation
[MD5.BA8DC96D1DD7785EB0589CB1777208B7] - 01/12/2015 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2115936] =>.Microsoft Windows®
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation
[MD5.2521520142F7853E39028AE6BD66E072] - 23/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] =>.Microsoft Corporation
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] =>.Microsoft Windows®
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (32) - 4s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Avira Mail Protection (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Scheduler (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Real-Time Protection (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Web Protection (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira Service Host.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: ECOSERVICE (ECOSERVICE) . (.Micro-Star International Co., Ltd. - MSI ECO_Service.) - C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O23 - Service: Everything (Everything) . (.Copyright (C) 2014 David Carpenter - Everything.) - C:\Program Files\Everything\Everything.exe {7B523EBF727602C8813FF39239A3BA58} =>.Copyright (c) 2014 David Carpenter
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (.Foxit Software Inc. - Foxit Cloud Safe Update Service.) - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe =>.Foxit Software Incorporated®
O23 - Service: GamingApp_Service (GamingApp_Service) . (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe =>.NVIDIA Corporation®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Intel(R) Smart Connect Technology Agent (ISCTAgent) . (.Copyright© 2011-2013 Intel Corporation - ISCT Agent Application.) - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe =>.Intel CASE®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
O23 - Service: Kinoni Service (KinoniSvc) . (...) - C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Intel® Management Engine Firmware®
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: Mobiola Wave Service (Mobiola Wave Service) . (...) - C:\Program Files (x86)\Common Files\SHAPE Services\Mobiola Wave Service\MobiolaWaveService.exe {0100000000012CA6215D9F}
O23 - Service: MSICTL_CC (MSICTL_CC) . (...) - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
O23 - Service: MSI_FastBoot (MSI_FastBoot) . (.MSI - FastBootService.) - C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O23 - Service: MSI_SuperCharger (MSI_SuperCharger) . (.MSI - Super Charger Service.) - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 361.7.) - C:\Windows\System32\nvvsvc.exe =>.NVIDIA Corporation®
O23 - Service: Qualcomm Atheros Killer Service V2 (Qualcomm Atheros Killer Service V2) . (.Qualcomm Atheros - Qualcomm Atheros Killer Network Service.) - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe =>.Qualcomm Atheros
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) . (.Copyright © 2013-2015 - GameScannerService.) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe =>.Razer Inc.®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
O23 - Service: SuperRAIDSvc (SuperRAIDSvc) . (.Micro-Star International - SuperRAIDSvc.) - C:\MSI\Smart Utilities\SuperRAIDSvc.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®

---\\ Services not Microsoft (SR=Run, SS=Stop) (51) - 41s

SR - Auto [13/12/2015] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [12/03/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Auto [08/03/2016] [ 955736] Avira Mail Protection (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [08/03/2016] [ 466504] Avira Scheduler (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [08/03/2016] [ 466504] Avira Real-Time Protection (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [08/03/2016] [ 1424880] Avira Web Protection (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [27/01/2016] [ 260456] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe =>.Avira Operations GmbH & Co. KG®
SR - Auto [07/10/2010] [ 345376] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - Auto [04/06/2014] [ 2224752] ECOSERVICE (ECOSERVICE) . (.Micro-Star International Co., Ltd..) - C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
SR - Auto [24/11/2015] [ 1832704] Everything (Everything) . (.Copyright (C) 2014 David Carpenter.) - C:\Program Files\Everything\Everything.exe {7B523EBF727602C8813FF39239A3BA58} =>.Copyright (c) 2014 David Carpenter
SR - Auto [09/09/2015] [ 244392] Foxit Cloud Safe Update Service (FoxitCloudUpdateService) . (.Foxit Software Inc..) - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe =>.Foxit Software Incorporated®
SR - Auto [13/03/2014] [ 20512] GamingApp_Service (GamingApp_Service) . (.Micro-Star Int'l Co., Ltd..) - C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
SR - Auto [12/01/2016] [ 1163200] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe =>.NVIDIA Corporation®
SS - Auto [29/08/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [29/08/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [26/12/2014] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe =>.Google Inc®
SS - Demand [02/01/2013] [ 171632] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SS - Demand [31/01/2014] [ 887232] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service®
SR - Auto [24/04/2014] [ 209712] Intel(R) Smart Connect Technology Agent (ISCTAgent) . (.Copyright© 2011-2013 Intel Corporation.) - C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe =>.Intel CASE®
SR - Auto [03/04/2014] [ 154584] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [12/11/2014] [ 524800] Kinoni Service (KinoniSvc) . (...) - C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe
SR - Auto [03/04/2014] [ 398296] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Intel® Management Engine Firmware®
SR - Auto [05/10/2015] [ 1513784] (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
SS - Auto [05/10/2015] [ 1135416] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [11/04/2011] [ 125088] Mobiola Wave Service (Mobiola Wave Service) . (...) - C:\Program Files (x86)\Common Files\SHAPE Services\Mobiola Wave Service\MobiolaWaveService.exe {0100000000012CA6215D9F}
SS - Demand [12/01/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SS - Demand [21/10/2014] [ 2099712] MSIBIOSData_CC (MSIBIOSData_CC) . (.MSI.) - C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe =>.MSI
SS - Demand [26/09/2014] [ 4026880] MSIClock_CC (MSIClock_CC) . (.MSI.) - C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe =>.MSI
SS - Demand [05/11/2014] [ 2117632] MSICOMM_CC (MSICOMM_CC) . (...) - C:\Program Files (x86)\MSI\Command Center\MSICommService.exe
SS - Demand [26/09/2014] [ 4157440] MSICPU_CC (MSICPU_CC) . (...) - C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe
SR - Auto [26/09/2014] [ 1993216] MSICTL_CC (MSICTL_CC) . (...) - C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
SS - Demand [21/10/2014] [ 2242048] MSIDDR_CC (MSIDDR_CC) . (...) - C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
SS - Demand [28/07/2014] [ 2063360] MSISMB_CC (MSISMB_CC) . (...) - C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe
SS - Demand [29/10/2014] [ 575488] MSISuperIO_CC (MSISuperIO_CC) . (...) - C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe
SR - Auto [26/10/2012] [ 103992] MSI_FastBoot (MSI_FastBoot) . (.MSI.) - C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
SR - Auto [17/03/2014] [ 162800] MSI_SuperCharger (MSI_SuperCharger) . (.MSI.) - C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
SR - Auto [12/01/2016] [ 1879488] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation®
SR - Demand [12/01/2016] [ 6308288] NVIDIA Streamer Network Service (NvStreamNetworkSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe =>.NVIDIA Corporation®
SR - Auto [12/01/2016] [ 4812736] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation®
SR - Auto [23/01/2016] [ 1263040] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SS - Demand [16/12/2015] [ 38200] OpenVPN Service (OpenVPNService) . (.The OpenVPN Project.) - C:\Program Files\OpenVPN\bin\openvpnserv.exe =>.OpenVPN Technologies, Inc.®
SR - Auto [17/04/2014] [ 344576] Qualcomm Atheros Killer Service V2 (Qualcomm Atheros Killer Service V2) . (.Qualcomm Atheros.) - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe =>.Qualcomm Atheros
SR - Auto [05/02/2015] [ 187072] Razer Game Scanner (Razer Game Scanner Service) . (.Copyright © 2013-2015.) - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe =>.Razer Inc.®
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [04/02/2016] [ 835152] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve®
SR - Auto [23/01/2016] [ 424384] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
SR - Auto [30/04/2014] [ 27632] SuperRAIDSvc (SuperRAIDSvc) . (.Micro-Star International.) - C:\MSI\Smart Utilities\SuperRAIDSvc.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
SR - Auto [11/09/2015] [ 5702416] TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®
SS - Demand [01/05/2014] [ 24576] wampapache64 (wampapache64) . (.Apache Software Foundation.) - F:\wamp\bin\apache\apache2.4.9\bin\httpd.exe =>.Apache Software Foundation
SS - Demand [01/05/2014] [12942848] wampmysqld64 (wampmysqld64) . (...) - F:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe

---\\ Task Planned Automatically (17) - 5s
[MD5.4EAF6F8F0B3BE33A0E3877EB7FFD48D4] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656] =>.Adobe Systems, Incorporated®
[MD5.99B993BD0F4C033D832B50D5E83BEBEC] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.A33833D1CB24AA28372CE0D43D4F5112] [APT] [AdobeAAMUpdater-1.0-Zaboon-PC-Zaboon] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936] =>.Adobe Systems Incorporated®
[MD5.6DD7175EE1C04C805941D96E9A64926E] [APT] [AutoKMS] (.CODYQX4.) -- C:\Windows\AutoKMS\AutoKMS.exe [5046784] =>HackTool.AutoKMS
[MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6278424] =>.Piriform Ltd®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [914] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [918] =>.Google Inc®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3972] =>.Adobe Systems, Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3804] =>.Adobe Systems Incorporated®
O39 - APT: AdobeAAMUpdater-1.0-Zaboon-PC-Zaboon - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-Zaboon-PC-Zaboon [3616] =>.Adobe Systems Incorporated®
O39 - APT: AutoKMS - (.CODYQX4.) -- C:\WINDOWS\System32\Tasks\AutoKMS [3808] =>HackTool.AutoKMS
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2904] =>.Piriform Ltd®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3744] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3976] =>.Google Inc®

---\\ Process running (59) - 6s
[MD5.AC855DAF48D88318D0475F6A22834B6A] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 361.7.) -- C:\Windows\System32\nvvsvc.exe [1263040] [PID.1216] =>.NVIDIA Corporation®
[MD5.7D076C1B67B7134D1AB1007AF78AE486] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [424384] [PID.1300] =>.NVIDIA Corporation®
[MD5.B84733AE8F9AA802A1894D068722EBDE] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1261504] [PID.1544] =>.NVIDIA Corporation®
[MD5.AC855DAF48D88318D0475F6A22834B6A] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 361.7.) -- C:\Windows\System32\nvvsvc.exe [1263040] [PID.1552] =>.NVIDIA Corporation®
[MD5.98C06275DB53A1E70AB8CB94013B20D4] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [466504] [PID.2100] =>.Avira Operations GmbH & Co. KG®
[MD5.98C06275DB53A1E70AB8CB94013B20D4] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [466504] [PID.2356] =>.Avira Operations GmbH & Co. KG®
[MD5.F2CEEE9ABBCEF207ACB103215AC28BC2] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2364] =>.Adobe Systems, Incorporated®
[MD5.3EB903DA33CB9E11BDCD62F38430DB40] - (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) -- C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [20512] [PID.2388] =>.MICRO-STAR INTERNATIONAL CO., LTD.®
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [345376] [PID.2416] =>.Apple Inc.®
[MD5.D8E559F4CDDBF7BB5A10C373843D8D25] - (...) -- C:\Program Files (x86)\Common Files\SHAPE Services\Mobiola Wave Service\MobiolaWaveService.exe [125088] [PID.2492] {0100000000012CA6215D9F}
[MD5.8240E65C7B19D70D8BC60E5D4C245E79] - (.Foxit Software Inc. - Foxit Cloud Safe Update Service.) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392] [PID.2512] =>.Foxit Software Incorporated®
[MD5.C82AF497033D82D6C699CF28BD499CF8] - (.Micro-Star International Co., Ltd. - MSI ECO_Service.) -- C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe [2224752] [PID.2560] =>.MICRO-STAR INTERNATIONAL CO., LTD.®
[MD5.34A03BDAB3A3D61750667843D0F143DB] - (.Copyright© 2011-2013 Intel Corporation - ISCT Agent Application.) -- C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [209712] [PID.2580] =>.Intel CASE®
[MD5.4CBC390EDFBA8FF93632ACA68CE6334F] - (...) -- C:\Program Files (x86)\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe [524800] [PID.2588]
[MD5.AB176B9E59C0435499D83047D84EDD59] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784] [PID.2596] =>.Malwarebytes Corporation®
[MD5.C721307F25A8D3719938C6DFE19B9FC0] - (.Copyright (C) 2014 David Carpenter - Everything.) -- C:\Program Files\Everything\Everything.exe [1832704] [PID.2604] {7B523EBF727602C8813FF39239A3BA58} =>.Copyright (c) 2014 David Carpenter
[MD5.629CC5BE3BD275ECD8BBDBEC412C3C8A] - (.MSI - FastBootService.) -- C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992] [PID.2612] =>.MICRO-STAR INTERNATIONAL CO., LTD.®
[MD5.6AFCD25B843D0C731B6987E39995AE72] - (.MSI - Super Charger Service.) -- C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [162800] [PID.2704] =>.MICRO-STAR INTERNATIONAL CO., LTD.®
[MD5.061CC5C12C39899D7398CFEBFD19F69F] - (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200] [PID.2712] =>.NVIDIA Corporation®
[MD5.78DCAAB9E4A51CB1BADCDF2643F96739] - (...) -- C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [1993216] [PID.2764]
[MD5.1E3277F1C9F62F90488D02869A9522B7] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488] [PID.2948] =>.NVIDIA Corporation®
[MD5.0AF624035C3BDCFB50F500D467D50940] - (.Qualcomm Atheros - Qualcomm Atheros Killer Network Service.) -- C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576] [PID.3012] =>.Qualcomm Atheros
[MD5.266512CCC3B2E195CDE3A7A2C98A353A] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736] [PID.1704] =>.NVIDIA Corporation®
[MD5.67EAD2898F681B4ECA6E385AA39C8539] - (.Copyright © 2013-2015 - GameScannerService.) -- C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072] [PID.344] =>.Razer Inc.®
[MD5.98BB62ABFD17F284C3C5DE40F8266F3C] - (.Avira Operations GmbH & Co. KG - Avira Service Host.) -- C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456] [PID.3276] =>.Avira Operations GmbH & Co. KG®
[MD5.1DA090D603EBAC2658CC895B1C6AC399] - (.Micro-Star International - SuperRAIDSvc.) -- C:\MSI\Smart Utilities\SuperRAIDSvc.exe [27632] [PID.3336] =>.MICRO-STAR INTERNATIONAL CO., LTD.®
[MD5.2AA61246A5B813C1B12BCCFAA6F23DD8] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416] [PID.3724] =>.TeamViewer®
[MD5.10578A03586B8727D4B549351CAF4174] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe [1036576] [PID.5944] =>.Avira Operations GmbH & Co. KG®
[MD5.9B4B3747C6756F49B986398A46EC1FE0] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288] [PID.2572] =>.NVIDIA Corporation®
[MD5.6818ABE67E1EF0B1B5A75C1090D1AF2F] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe [20069312] [PID.7260] =>.NVIDIA Corporation®
[MD5.E445C0DB7E5E89C657FC89C0C4CCEDE5] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264] [PID.7732] =>.NVIDIA Corporation®
[MD5.22EBD5AE3B3220D713E544D1D3AB3FEE] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800] [PID.7880] =>.Realtek Semiconductor Corp®
[MD5.7AF7BA5067595A6131817493C2B64054] - (.Intel Corporation - ISCT SysTray.) -- C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656] [PID.7964] =>.Intel CASE®
[MD5.C721307F25A8D3719938C6DFE19B9FC0] - (.Copyright (C) 2014 David Carpenter - Everything.) -- C:\Program Files\Everything\Everything.exe [1832704] [PID.8116] {7B523EBF727602C8813FF39239A3BA58} =>.Copyright (c) 2014 David Carpenter
[MD5.5400677699FBBBDFF1CB48D05AF55EEC] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524848] [PID.340] =>.Spotify AB®
[MD5.634859A97475593D7D8DE0894D4F2A4A] - (.Spotify Ltd - Spotify.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\Spotify.exe [6754928] [PID.1508] =>.Spotify AB®
[MD5.44A9229022A519ED45294A1934C05EEC] - (.Flux Software LLC - f.lux.) -- C:\Users\Zaboon\AppData\Local\FluxSoftware\Flux\flux.exe [1017224] [PID.7120] =>.Michael Herf®
[MD5.C81F59B7D524FB462F73B27757084618] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8204056] [PID.8044] =>.Piriform Ltd®
[MD5.5614ED4B8156BA48CA3E28787FE46603] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [50378880] [PID.3720] =>.Skype Software Sarl®
[MD5.E4085C9692976E98DC081828485BDE48] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3911248] [PID.3128] =>.Tonec Inc.
[MD5.809E0E120A973D1904D20EAA72160CD4] - (.SHAPE Services - Mobiola WebCamera Server for iPhone.) -- C:\Program Files (x86)\Mobiola WebCamera for iPhone\WebcamForIPhone.exe [1398208] [PID.5428] {0100000000012CA6215D9F} =>.SHAPE Services
[MD5.CE4718D13E1B7E70704DDFFE8BFB8D37] - (.Copyright © 2012 - NetworkManager.) -- C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe [300544] [PID.8228]
[MD5.CF7604160B828C019C287B61CA6FA4BB] - (.Creative Technology Ltd - Sound Blaster Cinema 2.) -- C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe [1440768] [PID.8240] =>.Creative Technology Ltd
[MD5.40FE8F8A56C9B8EC13997B4DD8481CFC] - (.Spotify Ltd - SpotifyCrashService.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\SpotifyCrashService.exe [538736] [PID.8248] =>.Spotify AB®
[MD5.7F0F61FC286FA22F8D065D9AD65E4AEA] - (.ROCCAT GmbH Co., Ltd. - Roccat Talk Application.) -- C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe [2425344] [PID.8276] =>.ROCCAT GmbH Co., Ltd.
[MD5.BD2C0CDD525902E3033DAA8D08D0F015] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848] [PID.8300] =>.Intel Corporation - Software and Firmware Products®
[MD5.1F0185EDCA0FC5CBBFE5598C15208BFB] - (.ROCCAT GmbH Co., Ltd. - Ryos MK Monitor.) -- C:\Program Files (x86)\ROCCAT\Ryos Keyboard\Ryos MK Monitor.exe [4805632] [PID.8380] =>.ROCCAT GmbH Co., Ltd.
[MD5.EB4212AF1B951C617B80A5B237B93F11] - (.SteelSeries ApS - SteelSeries Engine 3 Core.) -- C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe [18580232] [PID.8508] =>.SteelSeries ApS®
[MD5.B0FCC4B7BB21FA6112532D424EE1B1AD] - (.MSI - Super Charger.) -- C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1047536] [PID.8544] =>.MICRO-STAR INTERNATIONAL CO., LTD.®
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.8636] =>.Tonec Inc.®
[MD5.1CE11C53E562D5F7EAFCF47E0E696516] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [807392] [PID.8644] =>.Avira Operations GmbH & Co. KG®
[MD5.B4B4971EFD3EF2E75D106DD74440DACE] - (.Micro-Star INT'L CO.,LTD. - Fast Boot.) -- C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe [847344] [PID.8700] =>.MICRO-STAR INTERNATIONAL CO., LTD.®
[MD5.4EAF6F8F0B3BE33A0E3877EB7FFD48D4] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656] [PID.8784] =>.Adobe Systems, Incorporated®
[MD5.6FE53879034CC120747C5505422573D8] - (.Avira Operations GmbH & Co. KG - Avira Launcher.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [139928] [PID.8844] =>.Avira Operations GmbH & Co. KG®
[MD5.634859A97475593D7D8DE0894D4F2A4A] - (.Spotify Ltd - Spotify.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\Spotify.exe [6754928] [PID.5000] =>.Spotify AB®
[MD5.634859A97475593D7D8DE0894D4F2A4A] - (.Spotify Ltd - Spotify.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\Spotify.exe [6754928] [PID.8] =>.Spotify AB®
[MD5.302E96B57A6D43BEAE5D58A0C5B5A16E] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Zaboon\AppData\Roaming\ZHP\ZHPDiag3.exe [2152960] [PID.9964] =>.Nicolas Coolman
[MD5.0B93A01F786F37A4B1EDE84E639FFF10] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584] [PID.9900] =>.Intel Corporation - Intel® Management Engine Firmware®
[MD5.C31139E0907170E2A3FA8D19DCC23D35] - (.Intel Corporation - Intel(R) Local Management Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [398296] [PID.9940] =>.Intel Corporation - Intel® Management Engine Firmware®

---\\ Google Chrome, Start,Search,Extensions (33) - 6s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.delta-search.com/ =>Toolbar.DeltaSearch
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://isearch.omiga-plus.com/ =>PUP.Optional.OmigaPlus
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www2.delta-search.com/ =>Toolbar.DeltaSearch
G2 - GCE: Preference [User Data\Default] [aabcgdmkeabbnleenpncegpcngjpnjkc] Easy Auto Refresh
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [abjcfabbhafbcdfjoecdgepllmpfceif] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [bepbmhgboaologfdajaanbcjmnhjmhfn] Google Voice Search Hotword (Beta)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__ =>.AdblocPlus Plugin
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [dhdgffkkebhmkfjojejmpbldmpobfkfo] Tampermonkey
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [fjnbnpbmkenffdnngjfgmeleoegfcffe] Stylish
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock
G2 - GCE: Preference [User Data\Default] [gkojfkhlekighikafcpjkiklfbnlmeio] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [hmhgeddbohgjknpmjagkdomcpobmllji] JetBrains IDE Support
G2 - GCE: Preference [User Data\Default] [ikekaljapjnibdneolnnpeefjkdnipec] Unbabel
G2 - GCE: Preference [User Data\Default] [inmmhkeajgflmokoaaoadgkhhmibjbpj] Facebook Invite All
G2 - GCE: Preference [User Data\Default] [klbibkeccnjlkjkiokjodocebajanakg] The Great Suspender
G2 - GCE: Preference [User Data\Default] [mkpfodpjhekjdhkchalfflggeoamfajh] Easy disposable email address
G2 - GCE: Preference [User Data\Default] [molncoemjfmpgdkbdlbjmhlcgniigdnf] Project Naptha
G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [nlbjncdgjeocebhnmkbbbdekmmmcbfjd] __MSG_rss_subscription_name__
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [npeicpdbkakmehahjeeohfdhnlpdklia] __MSG_NETLI_APPNAME__
G2 - GCE: Preference [User Data\Default] [oefkkgfcahbeccgckjgbnfclcmnjgidg] Real-Debrid extension
G2 - GCE: Preference [User Data\Default] [olnoeeagkgpkplnhmnnlgodjnjgckhja] Oddshot
G2 - GCE: Preference [User Data\Default] [pdabfienifkbhoihedcgeogidfmibmhp] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (10) - 8s
M0 - MFSP: prefs.js [Zaboon - nhfnxo5w.default] https://fr.yahoo.com/?type=orcl_hpset
P2 - EXT FILE: (...) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\extensions\firebug@software.joehewitt.com.xpi
P2 - EXT FILE: (...) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\extensions\useragentoverrider@qixinglu.com.xpi
P2 - EXT FILE: (...) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi
P2 - EXT FILE: (...) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\extensions\{9c51bd27-6ed8-4000-a2bf-36cb95c0c947}.xpi
P2 - EXT FILE: (...) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\searchplugins\yahoo-ysp.xml
P2 - EXT: (.Daniel Savard - Просмотр HTTP заголовков.) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a}
P2 - EXT: (.V@no - Cookies Manager+.) -- C:\Users\Zaboon\AppData\Roaming\Mozilla\Firefox\Profiles\nhfnxo5w.default\extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d} =>.V@no
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_182.dll =>.Adobe Systems Incorporated

---\\ Internet Explorer Extensions, Start, Search (21) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKEY_USERS\S-1-5-21-1694485428-3222779623-4293154241-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1

---\\ Internet Explorer, Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (23)

---\\ Browser Helper Object (BHO) (4) - 1s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll =>.Google Inc®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®

---\\ Auto loading programs from Registry and folders (41) - 1s
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [MBCfg64] . (.Creative Technology Ltd. - .) -- C:\Windows\System32\MBCfg64.dll {17531918961ED0B7582E7BC5281521FE} =>.Creative Technology Ltd.
O4 - HKLM\..\Run: [ISCT Tray] . (.Intel Corporation - ISCT SysTray.) -- C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe =>.Intel CASE®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe =>.NVIDIA Corporation®
O4 - HKLM\..\Run: [ShadowPlay] . (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe =>.Microsoft Corporation
O4 - HKLM\..\Run: [Everything] . (.Copyright (C) 2014 David Carpenter - Everything.) -- C:\Program Files\Everything\Everything.exe {7B523EBF727602C8813FF39239A3BA58} =>.Copyright (c) 2014 David Carpenter
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>.Google Inc®
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.Disc Soft Ltd®
O4 - HKCU\..\Run: [puush] . (. - puush.) -- C:\Program Files (x86)\puush\puush.exe =>.Dean Herbert®
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB®
O4 - HKCU\..\Run: [MK LOL] . (.MKGame - .) -- F:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe =>.Beijing Stone Age Network Technology Limited Company®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Zaboon\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - HKCU\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\Zaboon\AppData\Local\FluxSoftware\Flux\flux.exe =>.Michael Herf®
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKCU\..\Run: [Mobiola WebCamera for iPhone] . (.SHAPE Services - Mobiola WebCamera Server for iPhone.) -- C:\Program Files (x86)\Mobiola WebCamera for iPhone\WebcamForIPhone.exe {0100000000012CA6215D9F} =>.SHAPE Services
O4 - HKCU\..\Run: [cacaoweb] C:\Users\Zaboon\AppData\Roaming\cacaoweb\cacaoweb.exe (.not file.) =>.Superfluous.CacaoWeb
O4 - HKLM\..\Wow6432Node\Run: [Sound Blaster Cinema 2] . (.Creative Technology Ltd - Sound Blaster Cinema 2.) -- C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe =>.Creative Technology Ltd
O4 - HKLM\..\Wow6432Node\Run: [UpdReg] . (.Creative Technology Ltd. - Creative UpdReg.) -- C:\Windows\Updreg.EXE =>.Creative Technology Ltd.
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe =>.Intel Corporation - Software and Firmware Products®
O4 - HKLM\..\Wow6432Node\Run: [Super Charger] . (.MSI - Super Charger.) -- C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [Fast Boot] . (...) -- C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe =>.Avira Operations GmbH & Co. KG®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe =>.Google Inc®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.Disc Soft Ltd®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [puush] . (. - puush.) -- C:\Program Files (x86)\puush\puush.exe =>.Dean Herbert®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\SpotifyWebHelper.exe =>.Spotify AB®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [MK LOL] . (.MKGame - .) -- F:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe =>.Beijing Stone Age Network Technology Limited Company®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Zaboon\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Zaboon\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\Zaboon\AppData\Local\FluxSoftware\Flux\flux.exe =>.Michael Herf®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [Mobiola WebCamera for iPhone] . (.SHAPE Services - Mobiola WebCamera Server for iPhone.) -- C:\Program Files (x86)\Mobiola WebCamera for iPhone\WebcamForIPhone.exe {0100000000012CA6215D9F} =>.SHAPE Services
O4 - HKUS\S-1-5-21-1694485428-3222779623-4293154241-1000\..\Run: [cacaoweb] C:\Users\Zaboon\AppData\Roaming\cacaoweb\cacaoweb.exe (.not file.) =>.Superfluous.CacaoWeb

---\\ Global shortcuts Startup (70) - 22s
O4 - GS\Desktop [Administrator]: Assassins Creed Syndicate.lnk . (...) F:\Games\Assassins Creed Syndicate\ACS.exe
O4 - GS\Desktop [Administrator]: Discord.lnk . (.Paul Betts - Update.) C:\Users\Zaboon\AppData\Local\Discord\Update.exe =>.Hammer & Chisel Inc.®
O4 - GS\Desktop [Administrator]: Fallout 4.lnk . (...) F:\Games\Fallout 4\Fallout4Launcher.exe
O4 - GS\Desktop [Administrator]: HitLeap Viewer.lnk . (...) C:\Users\Zaboon\AppData\Roaming\Microsoft\Installer\{31B12C11-AE4E-479F-8D6D-242DC265368D}\HitLeap_Viewer.exe
O4 - GS\Desktop [Administrator]: MSI Afterburner.lnk . (.Copyright © 2009-2015 Alexey Nicolaychuk aka Unwinder - MSIAfterburner.) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - GS\Desktop [Administrator]: Open Broadcaster Software.lnk . (.Copyright (C) 2013-2015 - Open Broadcaster Software.) C:\Program Files (x86)\OBS\OBS.exe
O4 - GS\Desktop [Administrator]: Popcorn Time.lnk . (...) C:\Users\Zaboon\AppData\Local\Popcorn Time\node-webkit\Popcorn Time.exe
O4 - GS\Desktop [Administrator]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Zaboon\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Administrator]: Taiga.lnk . (.erengy - Taiga.) C:\Users\Zaboon\AppData\Roaming\Taiga\Taiga.exe
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Zaboon\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Foxit Reader.lnk . (.Foxit Software Inc. - Foxit Reader 7.0, Best Reader for Everyday.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: JDownloader 2.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\Users\Zaboon\AppData\Local\JDownloader v2.0\JDownloader2.exe =>.Appwork GmbH®
O4 - GS\Quicklaunch [Administrator]: MemTurbo - PC Optimizer.lnk . (.SammSoft (www.sammsoft.com) - MemTurbo™.) C:\Program Files (x86)\MemTurbo 4\MemTurbo.exe
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\sendTo [Administrator]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: Assassins Creed Syndicate.lnk . (...) F:\Games\Assassins Creed Syndicate\ACS.exe
O4 - GS\Desktop [Guest]: Discord.lnk . (.Paul Betts - Update.) C:\Users\Zaboon\AppData\Local\Discord\Update.exe =>.Hammer & Chisel Inc.®
O4 - GS\Desktop [Guest]: Fallout 4.lnk . (...) F:\Games\Fallout 4\Fallout4Launcher.exe
O4 - GS\Desktop [Guest]: HitLeap Viewer.lnk . (...) C:\Users\Zaboon\AppData\Roaming\Microsoft\Installer\{31B12C11-AE4E-479F-8D6D-242DC265368D}\HitLeap_Viewer.exe
O4 - GS\Desktop [Guest]: MSI Afterburner.lnk . (.Copyright © 2009-2015 Alexey Nicolaychuk aka Unwinder - MSIAfterburner.) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - GS\Desktop [Guest]: Open Broadcaster Software.lnk . (.Copyright (C) 2013-2015 - Open Broadcaster Software.) C:\Program Files (x86)\OBS\OBS.exe
O4 - GS\Desktop [Guest]: Popcorn Time.lnk . (...) C:\Users\Zaboon\AppData\Local\Popcorn Time\node-webkit\Popcorn Time.exe
O4 - GS\Desktop [Guest]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Zaboon\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Guest]: Taiga.lnk . (.erengy - Taiga.) C:\Users\Zaboon\AppData\Roaming\Taiga\Taiga.exe
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Zaboon\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Foxit Reader.lnk . (.Foxit Software Inc. - Foxit Reader 7.0, Best Reader for Everyday.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: JDownloader 2.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\Users\Zaboon\AppData\Local\JDownloader v2.0\JDownloader2.exe =>.Appwork GmbH®
O4 - GS\Quicklaunch [Guest]: MemTurbo - PC Optimizer.lnk . (.SammSoft (www.sammsoft.com) - MemTurbo™.) C:\Program Files (x86)\MemTurbo 4\MemTurbo.exe
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\sendTo [Guest]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Zaboon]: Assassins Creed Syndicate.lnk . (...) F:\Games\Assassins Creed Syndicate\ACS.exe
O4 - GS\Desktop [Zaboon]: Discord.lnk . (.Paul Betts - Update.) C:\Users\Zaboon\AppData\Local\Discord\Update.exe =>.Hammer & Chisel Inc.®
O4 - GS\Desktop [Zaboon]: Fallout 4.lnk . (...) F:\Games\Fallout 4\Fallout4Launcher.exe
O4 - GS\Desktop [Zaboon]: HitLeap Viewer.lnk . (...) C:\Users\Zaboon\AppData\Roaming\Microsoft\Installer\{31B12C11-AE4E-479F-8D6D-242DC265368D}\HitLeap_Viewer.exe
O4 - GS\Desktop [Zaboon]: MSI Afterburner.lnk . (.Copyright © 2009-2015 Alexey Nicolaychuk aka Unwinder - MSIAfterburner.) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O4 - GS\Desktop [Zaboon]: Open Broadcaster Software.lnk . (.Copyright (C) 2013-2015 - Open Broadcaster Software.) C:\Program Files (x86)\OBS\OBS.exe
O4 - GS\Desktop [Zaboon]: Popcorn Time.lnk . (...) C:\Users\Zaboon\AppData\Local\Popcorn Time\node-webkit\Popcorn Time.exe
O4 - GS\Desktop [Zaboon]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Zaboon\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation
O4 - GS\Desktop [Zaboon]: Taiga.lnk . (.erengy - Taiga.) C:\Users\Zaboon\AppData\Roaming\Taiga\Taiga.exe
O4 - GS\Desktop [Zaboon]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Zaboon\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Zaboon]: Foxit Reader.lnk . (.Foxit Software Inc. - Foxit Reader 7.0, Best Reader for Everyday.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated®
O4 - GS\Quicklaunch [Zaboon]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Zaboon]: JDownloader 2.lnk . (.AppWork GmbH - JDownloader 2 Launcher.) C:\Users\Zaboon\AppData\Local\JDownloader v2.0\JDownloader2.exe =>.Appwork GmbH®
O4 - GS\Quicklaunch [Zaboon]: MemTurbo - PC Optimizer.lnk . (.SammSoft (www.sammsoft.com) - MemTurbo™.) C:\Program Files (x86)\MemTurbo 4\MemTurbo.exe
O4 - GS\sendTo [Zaboon]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\sendTo [Zaboon]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer®
O4 - GS\TaskBar [Zaboon]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: 3D Vision Photo Viewer.lnk . (.NVIDIA Corporation - NVIDIA 3D Vision Photo Viewer.) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe =>.NVIDIA Corporation®
O4 - GS\CommonDesktop [Public]: Adobe Application Manager.lnk . (.Adobe Systems Incorporated - Adobe Application Manager.) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDapp.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: DS3 Tool.lnk . (.www.motioninjoy.com - DS3_Tool.) C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe =>.www.motioninjoy.com
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Hearthstone.lnk . (.Blizzard Entertainment - Hearthstone Beta Launcher.) F:\Program Files (x86)\Hearthstone\Hearthstone Beta Launcher.exe =>.Blizzard Entertainment, Inc.®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Minecraft.lnk . (.Mojang - Minecraft launcher.) C:\Program Files (x86)\Minecraft\MinecraftLauncher.exe =>.Mojang AB®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: OpenVPN GUI.lnk . (...) C:\Program Files\OpenVPN\bin\openvpn-gui.exe =>.OpenVPN Technologies, Inc.®
O4 - GS\CommonDesktop [Public]: Oracle VM VirtualBox.lnk . (...) F:\Program Files\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation®
O4 - GS\CommonDesktop [Public]: Unity 5.3.3f1 (64-bit).lnk . (.Unity Technologies ApS - Unity Editor.) C:\Program Files\Unity\Editor\Unity.exe =>.Unity Technologies SF®
O4 - GS\CommonDesktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) C:\Program Files (x86)\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Startup [Public]: Killer Network Manager.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{4692B750-DE88-4DCF-9163-745AF5604B24}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe =>.Qualcomm Atheros, Inc.®
O4 - GS\Startup [Public]: Roccat Talk.lnk . (.ROCCAT GmbH Co., Ltd. - Roccat Talk Application.) C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe =>.ROCCAT GmbH Co., Ltd.
O4 - GS\Startup [Public]: Ryos Driver.lnk . (.ROCCAT GmbH Co., Ltd. - Ryos MK Monitor.) C:\Program Files (x86)\ROCCAT\Ryos Keyboard\Ryos MK Monitor.exe =>.ROCCAT GmbH Co., Ltd.
O4 - GS\Startup [Public]: SteelSeries Engine 3.lnk . (.SteelSeries ApS - SteelSeries Engine 3 Core.) C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe =>.SteelSeries ApS®
O4 - GS\Programs [Public]: HitLeap Viewer.lnk . (...) C:\Users\Zaboon\AppData\Roaming\Microsoft\Installer\{31B12C11-AE4E-479F-8D6D-242DC265368D}\favicon.exe
O4 - GS\Programs [Public]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Zaboon\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\Programs [Public]: Start Tor Browser.lnk . (.Mozilla Corporation - Tor Browser.) C:\Users\Zaboon\Desktop\Tor Browser\Browser\firefox.exe =>.Mozilla Corporation

---\\ Lop.com/Domain Hijackers (5) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{01b2abd5-f816-4408-9c4d-10e1f977cedb}: NameServer = 127.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{01b2abd5-f816-4408-9c4d-10e1f977cedb}: DhcpNameServer = 10.122.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{06c99ea1-1fd8-49ff-8eb9-5137563b6866}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{89e8b877-bdca-4c3d-9fea-0e27731ddf78}: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Extra protocols (24) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-minsb.16 [64Bits] - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Software installed (218) - 21s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} =>.Igor Pavlov
O42 - Logiciel: ActiveState ActivePython 2.7.8.10 (64-bit) - (.ActiveState Software Inc..) [HKLM][64Bits] -- {1C2C54C6-AC67-4BD7-825D-D16C10AE5ABF}
O42 - Logiciel: Adobe Flash Player 21 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Illustrator CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {5680D629-B263-49CC-821E-3CEBD4507B51} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Photoshop CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {793C2BF7-A4FE-4608-91C9-9282C5801C21} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.14) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824166751} =>.Adobe Systems Incorporated
O42 - Logiciel: Application Insights Tools for Visual Studio 2015 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9F429DF7-F8DD-4980-9673-E6DACA012F6C} =>.Microsoft Corporation
O42 - Logiciel: Avira Antivirus v15.0.16.282 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Avira Launcher v1.1.56.9119 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {083E4B17-EF54-4FD6-A3C8-CA2069FC1315} =>.Avira Operations GmbH & Co. KG
O42 - Logiciel: Avira Launcher v1.1.56.9119 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {3b87484e-d70b-4b4f-ad59-2ae89571e2cf} =>.Avira Operations GmbH & Co. KG®
O42 - Logiciel: Azure AD Authentication Connected Service - (.Microsoft Corporation.) [HKLM][64Bits] -- {3FEAC561-1CF6-41D6-B0F3-BECDD9C88A1B} =>.Microsoft Corporation
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Blend for Visual Studio SDK for .NET 4.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {37E53780-3944-4A6A-842F-727128E8616E} =>.Microsoft Corporation
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {E4F5E48E-7155-4CF9-88CD-7F377EC9AC54} =>.Apple Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Counter-Strike: Global Offensive - (.Valve.) [HKLM][64Bits] -- Steam App 730 =>.Valve®
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.Disc Soft Ltd
O42 - Logiciel: Demonbuddy - (.Bossland GmbH.) [HKCU][64Bits] -- {9bd10375-472a-4b80-bb79-bc4d85613c09} =>.Bossland GmbH
O42 - Logiciel: Demonbuddy - (.Bossland GmbH.) [HKLM][64Bits] -- {4D8FB164-2A7D-43B2-A59E-E16BF568ACB0} =>.Bossland GmbH
O42 - Logiciel: Diablo III - (.Blizzard Entertainment.) [HKLM][64Bits] -- Diablo III =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Discord - (.Hammer & Chisel.) [HKCU][64Bits] -- Discord =>.Hammer & Chisel Inc.®
O42 - Logiciel: Distance - (.Refract.) [HKLM][64Bits] -- Steam App 233610 =>.Valve®
O42 - Logiciel: Everything 1.4.0.713b (x64) - (.David Carpenter.) [HKLM][64Bits] -- Everything
O42 - Logiciel: f.lux - (...) [HKCU][64Bits] -- Flux
O42 - Logiciel: Far Cry 4 - (.Ubisoft.) [HKLM][64Bits] -- Uplay Install 420 =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: FileZilla Client 3.12.0.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: Git version 2.7.2 - (.The Git Development Community.) [HKLM][64Bits] -- Git_is1 {3385BEEB33D0394E5191BB8C650B5C1F} =>.The Git Development Community
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {895D0391-459F-4D45-B8DD-13F0DE70C66E} =>.Google, Inc.
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} =>.Google Inc.
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Grand Theft Auto V - (.Rockstar Games.) [HKLM][64Bits] -- {E01FA564-2094-4833-8F2F-1FFEC6AFCC46} =>.Rockstar Games
O42 - Logiciel: Gtk# for .Net 2.12.26 - (.Xamarin, Inc..) [HKLM][64Bits] -- {BC25B808-A11C-4C9F-9C0A-6682E47AAB83} =>.Xamarin, Inc.
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM][64Bits] -- Hearthstone =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: HitLeap Viewer 2.8 - (.HitLeap Ltd..) [HKLM][64Bits] -- {31B12C11-AE4E-479F-8D6D-242DC265368D} =>.HitLeap Ltd.
O42 - Logiciel: HMA! Pro VPN 2.8.19.0 - (.Privax Ltd.) [HKLM][64Bits] -- HMA! Pro VPN =>.Privax LTD®
O42 - Logiciel: Honorbuddy - (.Bossland GmbH.) [HKCU][64Bits] -- {a143bfc7-f704-4376-910c-6349c757353d} =>.Bossland GmbH
O42 - Logiciel: Honorbuddy - (.Bossland GmbH.) [HKLM][64Bits] -- {6D8FB164-2A7D-43B2-A59E-E16BF56C8AB0} =>.Bossland GmbH
O42 - Logiciel: HP Deskjet 2540 series Basic Device Software - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {6A79CD11-0C1C-4E24-A8C6-46A02F680346} =>.Hewlett-Packard Co.
O42 - Logiciel: IdleMaster - (.IdleMaster.) [HKCU][64Bits] -- 1d85483b1c982d8c
O42 - Logiciel: Imaging Tools Support - (.Microsoft.) [HKLM][64Bits] -- {48E91B94-884E-D4D0-CAF2-D87962031E2E} =>.Microsoft
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel Corporation.) [HKLM][64Bits] -- {46C478DE-C381-4200-9627-0DA025B555EB} =>.Intel Corporation
O42 - Logiciel: Intel(R) Chipset Device Software - (.Intel(R) Corporation.) [HKLM][64Bits] -- {4a87bd28-a855-4a8d-b133-60ca8ccffd30} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {0D01BDA8-C995-40AD-95F8-26B7EA4DCF9F} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700} =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {98900FE1-9C17-4553-B0D1-132BF9126412} =>.Intel Corporation
O42 - Logiciel: Intel(R) ME UninstallLegacy - (.Intel Corporation.) [HKLM][64Bits] -- {E8B134CC-098E-4623-BD85-0A432FE5DDFB} =>.Intel Corporation
O42 - Logiciel: Intel(R) Smart Connect Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3176A965-90E6-4FC3-8501-C674AB09DA05} =>.Intel Corporation
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} =>.Intel Corporation - Software and Firmware Products®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {3DE97849-544D-4D68-9255-11DF6F9F10D8} =>.Intel Corporation
O42 - Logiciel: Intel® Watchdog Timer Driver (Intel® WDT) - (.Intel Corporation.) [HKLM][64Bits] -- {3FD0C489-0F02-481a-A3E1-9754CD396761} =>.Intel Corporation
O42 - Logiciel: Intel® Watchdog Timer Driver (Intel® WDT) - (.Intel Corporation.) [HKLM][64Bits] -- 3FD0C489-0F02-481a-A3E1-9754CD396761 =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Java 8 Update 71 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218071F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: JDownloader 2 - (.AppWork GmbH.) [HKLM][64Bits] -- jdownloader2 =>.Appwork GmbH®
O42 - Logiciel: JetBrains PhpStorm 9.0 - (.JetBrains s.r.o..) [HKLM][64Bits] -- PhpStorm 9.0 =>.JetBrains s.r.o.
O42 - Logiciel: KinoniDrivers 2.8.1 - (.Kinoni.) [HKLM][64Bits] -- KinoniDrivers =>.Kinoni
O42 - Logiciel: Kits Configuration Installer - (.Microsoft.) [HKLM][64Bits] -- {9B730BD8-8B62-3FB0-41DA-9621128792E4} =>.Microsoft
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {3E75652D-99B1-417E-B163-BEF33CAD3F16} =>.Riot Games
O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- League of Legends 3.0.1 =>.Riot Games
O42 - Logiciel: LOLReplay - (.www.leaguereplays.com.) [HKLM][64Bits] -- LOLReplay =>.www.leaguereplays.com
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: METAL GEAR SOLID V: THE PHANTOM PAIN - (.Konami Digital Entertainment.) [HKLM][64Bits] -- Steam App 287700 =>.Valve®
O42 - Logiciel: Microsoft Access MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0015-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Azure Mobile Services Connected Service - (.Microsoft Corporation.) [HKLM][64Bits] -- {A4495E4F-5218-48FB-8AD2-F3076011B9E1} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Azure Storage Connected Service - (.Microsoft Corporation.) [HKLM][64Bits] -- {7BF895D8-8378-4970-8906-8AB7AB7E2CB4} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Blend for Visual Studio 2015 - (.Microsoft Corporation.) [HKLM][64Bits] -- {13AB5388-77C1-3DE1-8EFD-93E3B8C62DC2} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Blend for Visual Studio 2015 - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {12166E79-5002-30D1-93E1-531FFF632B86} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Build Tools 14.0 (amd64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2BDE4E1E-FE85-471C-8419-35CC61408E27} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Build Tools 14.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {477F7BAD-67AD-4E4F-B704-4AF4F44CB9BD} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Build Tools 2015 - (.Microsoft Corporation.) [HKLM][64Bits] -- {d21da0dd-4ba4-4838-ba58-64cf7a77131a} =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Build Tools Language Resources 14.0 (amd64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {C01C2C4C-9950-4791-9D96-F3BAF4B5A1BA} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Build Tools Language Resources 14.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {42F91172-21DC-4582-9DB6-7D62F1FECE2F} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0090-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0016-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Expression Blend SDK for .NET 4 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9B3A1C97-A361-463E-8817-444F9F88CDFE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00BA-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0044-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft NuGet - Visual Studio 2015 - (.Microsoft Corporation.) [HKLM][64Bits] -- {4BE72B6B-1E33-3D51-82CE-AE9702AA2664} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneNote MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001A-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {AD11FCAB-4B38-3815-818A-CF08413C2089} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack Language Pack - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {A558DC22-5B52-3D20-BC6B-20F9F705FB01} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0018-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-0019-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Skype for Business MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-012B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (French) 2016 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-001B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft.VisualStudio.Office365 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3196EC29-B75D-4EE3-8AB0-46418BC31483} =>.Microsoft Corporation
O42 - Logiciel: Minecraft - (.Mojang.) [HKLM][64Bits] -- {1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872} =>.Mojang
O42 - Logiciel: MK LOL - (...) [HKCU][64Bits] -- MK LOL
O42 - Logiciel: Mozilla Firefox 43.0.4 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 43.0.4 (x86 fr) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Mreader - (...) [HKLM][64Bits] -- ST6UNST #1
O42 - Logiciel: MSI Afterburner 4.1.1 - (.MSI Co., LTD.) [HKLM][64Bits] -- Afterburner =>.MSI Co., LTD
O42 - Logiciel: MSI Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {BF51EEA5-56A0-4AC8-BCE5-0E3E20C1516F} =>.Intel Corporation
O42 - Logiciel: MSI Intel Extreme Tuning Utility - (.Intel Corporation.) [HKLM][64Bits] -- {fbd55c4e-e884-4210-a79b-5f158834b133} =>.Intel(R) Software®
O42 - Logiciel: Multi-Device Hybrid Apps using C# - Templates - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {12D99739-FFD3-3761-8AA6-F929E0FE407E} =>.Microsoft Corporation
O42 - Logiciel: Node.js - (.Node.js Foundation.) [HKLM][64Bits] -- {EFC51347-F9E2-43C2-965E-65F3E30F94E8}
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ =>.Notepad++ Team
O42 - Logiciel: NVIDIA 3D Vision Controller Driver 352.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA 3D Vision Driver 361.75 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Control Panel 361.75 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA GeForce Experience 2.9.1.22 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA GeForce Experience Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Graphics Driver 361.75 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA HD Audio Driver 1.3.34.4 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA LED Visualizer 1.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Network Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX System Software 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA ShadowPlay 2.9.1.22 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo =>.NVIDIA Corporation®
O42 - Logiciel: NVIDIA Update 2.9.1.22 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Virtual Audio 1.2.34 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation
O42 - Logiciel: Open Broadcaster Software - (...) [HKLM][64Bits] -- Open Broadcaster Software
O42 - Logiciel: OpenOffice 4.1.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {121727D5-FDF3-4723-BA57-EB383440ED72} =>.Apache Software Foundation
O42 - Logiciel: OpenVPN 2.3.9-I601 - (...) [HKLM][64Bits] -- OpenVPN
O42 - Logiciel: Oracle VM VirtualBox 4.3.34 - (.Oracle Corporation.) [HKLM][64Bits] -- {F6D95A64-A1AB-4F03-A151-57AFC231450B} =>.Oracle Corporation
O42 - Logiciel: PAYDAY 2 - (.OVERKILL - a Starbreeze Studio..) [HKLM][64Bits] -- Steam App 218620 =>.Valve®
O42 - Logiciel: Pidgin - (...) [HKLM][64Bits] -- Pidgin
O42 - Logiciel: pidgin-otr 4.0.1 - (.Cypherpunks CA.) [HKLM][64Bits] -- pidgin-otr
O42 - Logiciel: puush - (.Dean Herbert.) [HKLM][64Bits] -- {C3592426-531E-4110-911D-BFECE2CE284B} =>.Dean Herbert
O42 - Logiciel: Python 3.4.3 - (.Python Software Foundation.) [HKLM][64Bits] -- {CCD588A7-8D55-49F1-A30C-47FAB40889ED} =>.Python Software Foundation
O42 - Logiciel: Qualcomm Atheros Bandwidth Control Filter Driver - (.Qualcomm Atheros.) [HKLM][64Bits] -- {CCD797F1-171F-4B3A-BD30-4F59F653E1A0} =>.Qualcomm Atheros
O42 - Logiciel: Qualcomm Atheros Killer E220x Drivers - (.Qualcomm Atheros.) [HKLM][64Bits] -- {F45761DC-2470-47FF-9E9B-F4016568C29A} =>.Qualcomm Atheros
O42 - Logiciel: Qualcomm Atheros Killer Network Manager Suite - (.Qualcomm Atheros.) [HKLM][64Bits] -- {E70DB50B-10B4-46BC-9DE2-AB8B49E061EE} =>.Qualcomm Atheros, Inc.®
O42 - Logiciel: Qualcomm Atheros Network Manager - (.Qualcomm Atheros.) [HKLM][64Bits] -- {4692B750-DE88-4DCF-9163-745AF5604B24} =>.Qualcomm Atheros
O42 - Logiciel: Razer Synapse - (.Razer Inc..) [HKLM][64Bits] -- {0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6} =>.Razer Inc.
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM][64Bits] -- Revo Uninstaller =>.VS Revo Group
O42 - Logiciel: RivaTuner Statistics Server 6.3.0 - (.Unwinder.) [HKLM][64Bits] -- RTSS =>.Unwinder
O42 - Logiciel: ROCCAT Ryos Keyboard Driver - (.Roccat GmbH.) [HKLM][64Bits] -- {70F3EF93-44F4-446A-90B8-33DAB2799AF1} =>.ROCCAT GmbH
O42 - Logiciel: Roccat Talk - (.Roccat GmbH.) [HKLM][64Bits] -- {605D671E-1D1E-4840-84D9-BFACE17F160D} =>.ROCCAT GmbH
O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club =>.Take-Two Interactive Software, Inc.®
O42 - Logiciel: SDK ARM Additions - (.Microsoft Corporation.) [HKLM][64Bits] -- {DD21D96E-D85E-F3A9-48FA-3A56A48B0072} =>.Microsoft Corporation
O42 - Logiciel: SDK ARM Additions EULA - (.Microsoft Corporations.) [HKLM][64Bits] -- {52316FB7-4A1D-C3E3-8A99-AC7CA4BE371E} =>Heuristic.Suspect
O42 - Logiciel: SDK ARM Redistributables - (.Microsoft Corporation.) [HKLM][64Bits] -- {344F4229-B11E-571F-833E-4E822F51A449} =>.Microsoft Corporation
O42 - Logiciel: SDK Debuggers ARM - (.Microsoft Corporation.) [HKLM][64Bits] -- {9B5F36AF-9F65-DB80-A64B-F019F74212EE} =>.Microsoft Corporation
O42 - Logiciel: Secure Download Manager - (.Kivuto Solutions Inc..) [HKLM][64Bits] -- {E040B65B-8683-4228-8C33-D44A141E40EA} =>.Kivuto Solutions Inc.
O42 - Logiciel: SHIELD Streaming - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv =>.NVIDIA Corporation
O42 - Logiciel: SHIELD Wireless Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController =>.NVIDIA Corporation
O42 - Logiciel: Skype™ 7.17 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: Sound Blaster Cinema 2 - (.Creative Technology Limited.) [HKLM][64Bits] -- {B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7} =>.Creative Technology Limited
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify =>.Spotify AB®
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam =>.Valve®
O42 - Logiciel: SteelSeries Engine 3.3.7.1 - (.SteelSeries ApS.) [HKLM][64Bits] -- SteelSeries Engine 3 =>.SteelSeries ApS®
O42 - Logiciel: System Requirements Lab CYRI - (.Husdawg, LLC.) [HKLM][64Bits] -- {906B34E5-573C-445A-A5D3-40B6BF0A2EC4} =>.Husdawg, LLC
O42 - Logiciel: Taiga - (.erengy.) [HKCU][64Bits] -- Taiga
O42 - Logiciel: TAP-Windows 9.21.1 - (...) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client =>.TeamSpeak Systems GmbH
O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer®
O42 - Logiciel: TP-LINK Wireless Client Utility - (.TP-LINK.) [HKLM][64Bits] -- {3BD98AAF-61B5-46E0-A6C8-593C242C7C48} =>.TP-LINK
O42 - Logiciel: TShell - (.Microsoft.) [HKLM][64Bits] -- {CAA89F0E-679C-42C4-8434-4219C4532EBE} =>.Microsoft
O42 - Logiciel: Unity - (.Unity Technologies ApS.) [HKLM][64Bits] -- Unity =>.Unity Technologies SF®
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer =>.Unity Technologies ApS
O42 - Logiciel: Update for (KB2504637) - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637 =>.Microsoft Corporation
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Entertainment Sweden AB®
O42 - Logiciel: Visual C++ Compiler/Tools X86 Base Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {8AD0C8F9-D528-375B-987F-477BC3F7BFDD} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ Compiler/Tools X86 Base Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {EBF3D1E4-8B2E-34BA-BDA8-76883CFEFA6C} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ Compiler/Tools X86 Base Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {2A135E4E-2267-3CAD-B5D0-3215D2029F62} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ Compiler/Tools X86 Base Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {CD1CCAF1-CE9D-316E-8361-1D514EB390C4} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Base Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {258AD9AC-A8B0-316B-9046-4567ECFF5CA6} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Base Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {1ECA24CC-5551-31C9-A10F-1DDC0D21C855} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Base Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {E6D09370-D4B1-3421-A0F6-45DF6999EBED} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Common Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {8180F038-C440-343A-BEEE-83D2EB4668BC} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Common Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {F217537F-E23A-3BF0-AB12-3703E43C1B15} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Core Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {CCE0CA57-815B-3B8E-8C4B-F230D7E3769C} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Core Professional Plus Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {F8FAB397-1D65-3EB1-A56C-F96D524B0C02} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Debugger Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {F9D8905A-3DDF-3413-AF44-5D90E29C2525} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Debugger Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {D2CF2656-87AD-34DD-848B-995610CF2362} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE Professional Core Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {C4A53446-13B0-3562-8D86-D05E36710260} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ IDE x64 Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {6C2F8AC4-E9EE-3880-933F-544B80491CC7} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ Library PGO X86 Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {E90FA148-5D32-382A-8AE5-543B56C34221} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ MSBuild ARM Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {33AAB2BF-0A02-38CF-81A3-A12884C21C43} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ MSBuild Base Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {5CD96030-DA11-3D1F-9C1B-41E1534000CE} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ MSBuild Base Resource Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {E0B41ABB-A332-3B2D-B407-62C1566A04AE} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ MSBuild X64 Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {06C8CA92-588B-3144-8A70-C80CF060E2B0} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ MSBuild X86 Package - (.Microsoft Corporation.) [HKLM][64Bits] -- {3CAAD1CA-A110-3817-9056-482E5A0C8715} =>.Microsoft Corporation
O42 - Logiciel: Visual Studio 2015 Prerequisites - (.Microsoft Corporation.) [HKLM][64Bits] -- {DF32E41C-24AD-4A87-B43A-B38553B1806E} =>.Microsoft Corporation
O42 - Logiciel: Visual Studio 2015 Prerequisites - ENU Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {83B181F2-20B8-4F00-8E71-C66E951A8D4F} =>.Microsoft Corporation
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WCF Data Services 5.6.4 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {DB85E7BD-B2DD-43D4-B3C0-23D7B527B597} =>.Microsoft Corporation
O42 - Logiciel: Windows 7 WDK Headers and Libs - (.Microsoft Corporation.) [HKLM][64Bits] -- {A14C14BB-F118-66EC-3C7A-D8B0E7B84D1F} =>.Microsoft Corporation
O42 - Logiciel: Windows 8 WDK Headers and Libs - (.Microsoft Corporation.) [HKLM][64Bits] -- {35285A72-8FCF-C3B1-5708-D2FD942C2B86} =>.Microsoft Corporation
O42 - Logiciel: Windows 8.1 WDK Headers and Libs - (.Microsoft Corporation.) [HKLM][64Bits] -- {0299B55A-3086-C5C0-01C3-DC2A691DC080} =>.Microsoft Corporation
O42 - Logiciel: Windows Debugging WDK Integration - (.Microsoft Corporation.) [HKLM][64Bits] -- {74AFF642-A750-0BAB-583E-E8FE76E79667} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Framework ARM Headers and Libs - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B4C9822-AE06-FFF8-531E-19EC97DC343C} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Framework Headers and Libs - (.Microsoft Corporation.) [HKLM][64Bits] -- {EBBE82F2-8E4B-0F4B-64F2-B4D3F4EBB169} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Kit - (.Microsoft Corporation.) [HKLM][64Bits] -- {43973507-E002-65B7-7E74-6046E6F765C1} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Kit - Windows 10.0.26639 - (.Microsoft Corporation.) [HKLM][64Bits] -- {b45ec982-d862-4b61-a7f5-17ee4cf43f1b} =>.Microsoft Corporation®
O42 - Logiciel: Windows Driver Kit ARM Additions - (.Microsoft Corporation.) [HKLM][64Bits] -- {EAAE8BF0-2D97-4209-703D-77A9934B37E4} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Kit ARM Headers and Libs - (.Microsoft Corporation.) [HKLM][64Bits] -- {3A282CCA-716D-C7E3-9314-009BAC3A8FCE} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Kit Headers and Libs - (.Microsoft Corporation.) [HKLM][64Bits] -- {2389A8D0-0296-A3A1-1AEC-AD7FB371ECB6} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Kit MSBuild Content Dev14 - (.Microsoft Corporation.) [HKLM][64Bits] -- {6FAD981A-F68C-5FAC-E43D-BA533896DA6F} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Kit Root Dev14 Content - (.Microsoft Corporation.) [HKLM][64Bits] -- {09C78446-1605-3B44-5362-A1961BEBEA2E} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Common Packaging and Test Tools (NT_x86_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F95E82E5-B6BB-7C11-A620-7F857A7664C7} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Driver Kit - (.Microsoft Corporation.) [HKLM][64Bits] -- {7B471F38-AF7D-6FD7-FFD6-035C33240388} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Driver Kit (MC_amd64_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {6F20DEE2-FB54-64F5-90F9-4CF781F6412E} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Driver Kit (MC_arm_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {AF47E6B0-B581-C157-32BC-F8F2DBED2957} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Driver Kit (MC_arm64_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {AC4CD47F-BE2E-F5F3-D71A-B2E62D047594} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Driver Kit (MC_x86_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {15076459-F572-0AC4-836A-523F3BDEA492} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Miscellaneous Content (MC_amd64_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {DA7663F5-A1D5-5398-C0A9-63808B7D675A} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Miscellaneous Content (MC_arm_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {C4BDC644-0800-CE17-7A4B-55D7423DBB5C} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Miscellaneous Content (MC_arm64_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {80C61575-7B08-1817-45D5-8A5A6AB3382C} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone Miscellaneous Content (MC_x86_fre) - (.Microsoft Corporation.) [HKLM][64Bits] -- {99E233B6-C7A0-5376-B4BB-BEE03C3903E6} =>.Microsoft Corporation
O42 - Logiciel: Windows Phone SDK 8.0 Assemblies for Visual Studio 2015 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1B4546A1-92FF-3979-8E8E-DB88B7F925BC} =>.Microsoft Corporation
O42 - Logiciel: Windows SDK ARM Desktop Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {70BFA3C5-352B-02EE-325C-FD608FD9291A} =>.Microsoft Corporation
O42 - Logiciel: Windows SDK ARM Headers Libs Metadata - (.Microsoft Corporation.) [HKLM][64Bits] -- {807E1276-C096-095B-77E2-2FD572C15334} =>.Microsoft Corporation
O42 - Logiciel: WinRAR 5.20 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM][64Bits] -- World of Warcraft =>.Blizzard Entertainment, Inc.®
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 =>.Nicolas Coolman

---\\ HKCU & HKLM Software Keys (158) - 21s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ARCHAEOPTERYX
HKLM\SOFTWARE\Wow6432Node\Atheros
HKLM\SOFTWARE\Wow6432Node\Avira
HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks
HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment
HKLM\SOFTWARE\Wow6432Node\BoL
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\cd projekt red
HKLM\SOFTWARE\Wow6432Node\Creative Tech
HKLM\SOFTWARE\Wow6432Node\Disc Soft
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JetBrains
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\LOLReplay
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes Anti-Rootkit
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mojang
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\MSI
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\Nuance
HKLM\SOFTWARE\Wow6432Node\NuGet
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Open Broadcaster Software
HKLM\SOFTWARE\Wow6432Node\OpenOffice
HKLM\SOFTWARE\Wow6432Node\pidgin
HKLM\SOFTWARE\Wow6432Node\pidgin-otr
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\Privax
HKLM\SOFTWARE\Wow6432Node\Python
HKLM\SOFTWARE\Wow6432Node\Razer
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\Riot Games
HKLM\SOFTWARE\Wow6432Node\Rockstar Games
HKLM\SOFTWARE\Wow6432Node\Sammsoft
HKLM\SOFTWARE\Wow6432Node\SHAPE Services
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\TP-LINK
HKLM\SOFTWARE\Wow6432Node\Ubisoft
HKLM\SOFTWARE\Wow6432Node\Unwinder
HKLM\SOFTWARE\Wow6432Node\Valve
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\X-AVCSD
HKLM\SOFTWARE\Wow6432Node\Xamarin
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\7-Zip
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\AppWork
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\cacaoweb =>.Superfluous.CacaoWeb
HKCU\SOFTWARE\cd projekt red
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\Creative Tech
HKCU\SOFTWARE\Disc Soft
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\e-academy Inc.
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Emulators
HKCU\SOFTWARE\Enterbrain
HKCU\SOFTWARE\ForceInterfaceCOM
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\HitLeap
HKCU\SOFTWARE\Hobbyist Software
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Initex
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\JetBrains
HKCU\SOFTWARE\Kivuto Solutions Inc.
HKCU\SOFTWARE\L2j Community Network
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Logitech
HKCU\SOFTWARE\LOLReplay
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Michael Herf
HKCU\SOFTWARE\Mojang
HKCU\SOFTWARE\MountAndBladeWarbandKeys
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MPC-HC
HKCU\SOFTWARE\MSI
HKCU\SOFTWARE\MurGee.com
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Node.js
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OpenOffice
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\Perfect World Platform Client
HKCU\SOFTWARE\pidgin
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Privax
HKCU\SOFTWARE\puush
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Qualcomm
HKCU\SOFTWARE\Razer
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Refract
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\ROCCAT
HKCU\SOFTWARE\Sammsoft
HKCU\SOFTWARE\SHAPE Services
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SplitmediaLabs
HKCU\SOFTWARE\Spoon
HKCU\SOFTWARE\Spotify
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\System Requirements Lab
HKCU\SOFTWARE\Taiga
HKCU\SOFTWARE\TeamSpeak 3 Client
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\Unity Technologies
HKCU\SOFTWARE\Unwinder
HKCU\SOFTWARE\user32.dll
HKCU\SOFTWARE\Vaclav Slavik
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VSRevoGroup
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wintertree
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Unity

---\\ Contents of the Common Files folders (384) - 130s
O43 - CFD: 09/02/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 14/03/2016 - [] D -- C:\Program Files (x86)\AdwCleaner
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\AppInsights
O43 - CFD: 03/08/2015 - [] D -- C:\Program Files (x86)\Avira =>.Avira Operations GmbH & Co. KG®
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Bonjour =>.Apple Inc.®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files (x86)\Creative
O43 - CFD: 27/01/2015 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite =>.Disc Soft Ltd®
O43 - CFD: 11/09/2015 - [] D -- C:\Program Files (x86)\EasyPHP-DevServer-14.1VC11
O43 - CFD: 09/07/2015 - [] D -- C:\Program Files (x86)\FileZilla FTP Client =>.Open Source Developer, Tim Kosse®
O43 - CFD: 06/09/2015 - [] D -- C:\Program Files (x86)\Foxit Software =>.Foxit Software Incorporated®
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\GtkSharp
O43 - CFD: 03/02/2016 - [0] D -- C:\Program Files (x86)\GUMA6CF.tmp
O43 - CFD: 08/08/2015 - [] D -- C:\Program Files (x86)\HitLeap =>.HitLeap Ltd.®
O43 - CFD: 25/04/2015 - [] D -- C:\Program Files (x86)\HMA! Pro VPN =>.Privax LTD®
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files (x86)\HP =>.Hewlett Packard®
O43 - CFD: 22/05/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files (x86)\Intel =>.Intel(R) Software®
O43 - CFD: 19/12/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 10/03/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 19/01/2016 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 05/02/2016 - [] D -- C:\Program Files (x86)\Kinoni
O43 - CFD: 20/08/2015 - [] D -- C:\Program Files (x86)\LOLReplay
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 10/08/2015 - [] D -- C:\Program Files (x86)\MemTurbo 4
O43 - CFD: 20/01/2016 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft Help Viewer
O43 - CFD: 20/01/2016 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft Office365 Tools
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft SDKs =>.Microsoft Corporation®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 29/02/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 12.0
O43 - CFD: 29/02/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 14.0 =>.Microsoft Corporation®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft WCF Data Services =>.Microsoft Corporation®
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 30/12/2015 - [] D -- C:\Program Files (x86)\Minecraft =>.Mojang AB®
O43 - CFD: 12/05/2015 - [] D -- C:\Program Files (x86)\MKJogo =>.Beijing Stone Age Network Technology Limited Company®
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Mobiola WebCamera for iPhone {0100000000012CA6215D9F}
O43 - CFD: 20/01/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 19/01/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 06/09/2015 - [] D -- C:\Program Files (x86)\Mreader
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation®
O43 - CFD: 06/09/2015 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 24/03/2015 - [] D -- C:\Program Files (x86)\MSI =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O43 - CFD: 14/09/2015 - [] D -- C:\Program Files (x86)\MSI Afterburner =>.MICRO-STAR INTERNATIONAL CO., LTD.®
O43 - CFD: 13/05/2015 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\NuGet
O43 - CFD: 03/08/2015 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 15/05/2015 - [] D -- C:\Program Files (x86)\OBS
O43 - CFD: 06/09/2015 - [] D -- C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files (x86)\Pidgin
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files (x86)\pidgin-otr
O43 - CFD: 08/09/2015 - [] D -- C:\Program Files (x86)\Poedit =>.Václav Slavík®
O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\Proxifier {00E92FB2EAEF08EEAB1A386A7B7C389089}
O43 - CFD: 31/03/2015 - [] D -- C:\Program Files (x86)\puush =>.Dean Herbert®
O43 - CFD: 03/08/2015 - [] D -- C:\Program Files (x86)\Razer =>.Razer Inc.®
O43 - CFD: 27/12/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 04/08/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 20/08/2015 - [] D -- C:\Program Files (x86)\RivaTuner Statistics Server
O43 - CFD: 21/05/2015 - [] D -- C:\Program Files (x86)\ROCCAT
O43 - CFD: 22/05/2015 - [] D -- C:\Program Files (x86)\Rockstar Games =>.Take-Two Interactive Software, Inc.®
O43 - CFD: 22/02/2015 - [] D -- C:\Program Files (x86)\Setup Files
O43 - CFD: 19/12/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 29/01/2016 - [] D -- C:\Program Files (x86)\TeamViewer =>.TeamViewer®
O43 - CFD: 26/12/2014 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 26/05/2015 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files (x86)\VS Revo Group =>.VS Revo Group®
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Windows Kits
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/03/2016 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files (x86)\Windows Phone TShell =>.Microsoft Corporation®
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 10/03/2016 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 03/08/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 27/08/2015 - [] D -- C:\Program Files (x86)\Wing IDE 5.1
O43 - CFD: 09/02/2015 - [] D -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 18/02/2016 - [] D -- C:\Program Files (x86)\World of Warcraft =>.Blizzard Entertainment, Inc.®
O43 - CFD: 19/01/2016 - [] D -- C:\Program Files (x86)\Yahoo! =>.Yahoo! Inc.®
O43 - CFD: 13/03/2016 - [] D -- C:\Program Files (x86)\ZHPFix
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
O43 - CFD: 05/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 03/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ActiveState ActivePython 2.7 (64-bit)
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 20/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assassins Creed Syndicate
O43 - CFD: 02/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Mouse Click by MurGee.com
O43 - CFD: 08/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
O43 - CFD: 07/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskCryptor
O43 - CFD: 11/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EasyPHP DevServer 14.1 VC11
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout 4
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 06/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 03/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 01/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
O43 - CFD: 12/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 13/02/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HMA! Pro VPN
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 19/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JetBrains
O43 - CFD: 05/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kinoni
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 03/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 10/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MemTurbo
O43 - CFD: 20/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metal Gear Solid V Ground Zeroes
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
O43 - CFD: 30/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobiola WebCamera for iPhone
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MotioninJoy
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Intel Extreme Tuning Utility
O43 - CFD: 11/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 04/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 06/09/2015 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
O43 - CFD: 16/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
O43 - CFD: 20/01/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proxifier
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\puush
O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Python 3.4
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 03/08/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity 5.3.3f1 (64-bit)
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
O43 - CFD: 20/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer
O43 - CFD: 11/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
O43 - CFD: 11/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Phone TShell
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wing IDE 5.1
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 11/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wooxy
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
O43 - CFD: 13/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 03/02/2016 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Apple
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Avira
O43 - CFD: 18/02/2016 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 13/02/2015 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\Creative
O43 - CFD: 27/01/2015 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 27/12/2014 - [] D -- C:\ProgramData\Downloaded Installations
O43 - CFD: 03/08/2015 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 01/03/2016 - [] D -- C:\ProgramData\Git
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\Google
O43 - CFD: 19/05/2015 - [] D -- C:\ProgramData\Hobbyist Software
O43 - CFD: 27/08/2015 - [] D -- C:\ProgramData\HP
O43 - CFD: 20/08/2015 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 20/08/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 11/01/2015 - [] D -- C:\ProgramData\Intel Application Pairing
O43 - CFD: 03/02/2016 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 04/02/2016 - [0] D -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
O43 - CFD: 24/02/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 20/01/2016 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 03/08/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 20/01/2016 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 15/06/2015 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\NuGet
O43 - CFD: 14/03/2016 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 04/02/2016 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 19/01/2016 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 03/11/2015 - [] D -- C:\ProgramData\Orbit
O43 - CFD: 02/03/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 27/12/2014 - [] D -- C:\ProgramData\Qualcomm
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\Razer
O43 - CFD: 13/07/2015 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 24/02/2016 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\Riot Games
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 27/05/2015 - [] D -- C:\ProgramData\SplitMediaLabs
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\SteelSeries
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\Sun
O43 - CFD: 26/12/2014 - [] D -- C:\ProgramData\SystemRequirementsLab
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 10/03/2015 - [] D -- C:\ProgramData\TP-LINK
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\VsTelemetry
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 22/07/2015 - [0] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Designer
O43 - CFD: 27/12/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 19/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 24/02/2016 - [0] D -- C:\Program Files (x86)\Common Files\Merge Modules
O43 - CFD: 11/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft
O43 - CFD: 24/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 26/12/2014 - [] D -- C:\Program Files (x86)\Common Files\PostureAgent
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Common Files\SHAPE Services
O43 - CFD: 19/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 03/08/2015 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 17/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Steam
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 05/01/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\.minecraft
O43 - CFD: 21/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\.purple
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Adobe
O43 - CFD: 02/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Auto Mouse Click by MurGee.com
O43 - CFD: 01/04/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Avira
O43 - CFD: 28/05/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\B326A299-CC1A-4D0C-940D-BB57E09A854C
O43 - CFD: 18/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Battle.net
O43 - CFD: 23/06/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\BoL
O43 - CFD: 05/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\cacaoweb =>.Superfluous.CacaoWeb
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 28/09/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\discord
O43 - CFD: 25/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\DMCache
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\DS4Windows
O43 - CFD: 27/01/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\e-academy Inc
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Everything
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\FileZilla
O43 - CFD: 08/03/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Foxit Software
O43 - CFD: 26/05/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\HighVoltz
O43 - CFD: 19/05/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Hobbyist Software
O43 - CFD: 27/12/2014 - [] D -- C:\Users\Zaboon\AppData\Roaming\Identities
O43 - CFD: 08/03/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\IDM
O43 - CFD: 30/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\java
O43 - CFD: 09/07/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\JetBrains
O43 - CFD: 30/09/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\LolClient
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5
O43 - CFD: 26/12/2014 - [] D -- C:\Users\Zaboon\AppData\Roaming\Macromedia
O43 - CFD: 12/04/2011 - [0] D -- C:\Users\Zaboon\AppData\Roaming\Media Center Programs
O43 - CFD: 04/02/2016 - [] SD -- C:\Users\Zaboon\AppData\Roaming\Microsoft
O43 - CFD: 18/02/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\MotioninJoy
O43 - CFD: 15/06/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Mozilla
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\MPC-HC
O43 - CFD: 13/05/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Notepad++
O43 - CFD: 11/01/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\npm
O43 - CFD: 01/03/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\npm-cache
O43 - CFD: 13/07/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\NVIDIA
O43 - CFD: 15/06/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\OBS
O43 - CFD: 06/09/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\OpenOffice
O43 - CFD: 13/07/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Poedit
O43 - CFD: 26/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Proxifier
O43 - CFD: 27/01/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\puush
O43 - CFD: 02/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Riot Games
O43 - CFD: 20/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\SHAPE Services
O43 - CFD: 14/03/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Skype
O43 - CFD: 14/03/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Spotify
O43 - CFD: 08/09/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Steam
O43 - CFD: 24/05/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Sublime Text 2
O43 - CFD: 19/01/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Sun
O43 - CFD: 13/07/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Taiga
O43 - CFD: 20/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\TeamViewer
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\TS3Client
O43 - CFD: 27/05/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\UBot Studio
O43 - CFD: 21/11/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\uplay
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\uTorrent
O43 - CFD: 24/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\vlc
O43 - CFD: 27/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Wing IDE 5
O43 - CFD: 09/02/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\WinRAR
O43 - CFD: 20/05/2015 - [] SHD -- C:\Users\Zaboon\AppData\Roaming\wyUpdate AU
O43 - CFD: 14/03/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\ZHP
O43 - CFD: 14/03/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Adobe
O43 - CFD: 03/08/2015 - [0] SHD -- C:\Users\Zaboon\AppData\Local\Application Data
O43 - CFD: 23/05/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Apps
O43 - CFD: 18/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Battle.net
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\BetterDS3
O43 - CFD: 11/02/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Blizzard
O43 - CFD: 16/01/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Blizzard Entertainment
O43 - CFD: 20/05/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Bossland GmbH
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Local\CEF
O43 - CFD: 20/10/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Comms
O43 - CFD: 13/03/2016 - [] D -- C:\Users\Zaboon\AppData\Local\CrashDumps
O43 - CFD: 26/12/2014 - [] D -- C:\Users\Zaboon\AppData\Local\Creative
O43 - CFD: 08/08/2015 - [0] D -- C:\Users\Zaboon\AppData\Local\Deployment
O43 - CFD: 07/09/2015 - [0] D -- C:\Users\Zaboon\AppData\Local\Diagnostics
O43 - CFD: 21/09/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Discord
O43 - CFD: 17/06/2015 - [0] D -- C:\Users\Zaboon\AppData\Local\dx
O43 - CFD: 27/01/2015 - [] D -- C:\Users\Zaboon\AppData\Local\e-academy Inc
O43 - CFD: 13/03/2016 - [] D -- C:\Users\Zaboon\AppData\Local\ElevatedDiagnostics
O43 - CFD: 09/07/2015 - [0] SHD -- C:\Users\Zaboon\AppData\Local\EmieBrowserModeList
O43 - CFD: 09/07/2015 - [0] SHD -- C:\Users\Zaboon\AppData\Local\EmieSiteList
O43 - CFD: 09/07/2015 - [0] SHD -- C:\Users\Zaboon\AppData\Local\EmieUserList
O43 - CFD: 01/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Everything
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Fallout4
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Zaboon\AppData\Local\FluxSoftware
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Google
O43 - CFD: 17/08/2015 - [] D -- C:\Users\Zaboon\AppData\Local\gtk-2.0
O43 - CFD: 15/06/2015 - [] D -- C:\Users\Zaboon\AppData\Local\GWX
O43 - CFD: 03/08/2015 - [0] SHD -- C:\Users\Zaboon\AppData\Local\History
O43 - CFD: 19/10/2015 - [] D -- C:\Users\Zaboon\AppData\Local\HP
O43 - CFD: 21/05/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Intel_Corporation
O43 - CFD: 12/02/2015 - [] D -- C:\Users\Zaboon\AppData\Local\IsolatedStorage
O43 - CFD: 24/12/2015 - [] D -- C:\Users\Zaboon\AppData\Local\JDownloader v2.0
O43 - CFD: 24/06/2015 - [] D -- C:\Users\Zaboon\AppData\Local\LeagueSharp
O43 - CFD: 31/01/2016 - [] D -- C:\Users\Zaboon\AppData\Local\lolvochanger
O43 - CFD: 15/06/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Macromedia
O43 - CFD: 20/08/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Micro-Star_Int'l_Co.,_Ltd
O43 - CFD: 24/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Microsoft
O43 - CFD: 20/01/2016 - [0] D -- C:\Users\Zaboon\AppData\Local\Microsoft Help
O43 - CFD: 15/09/2015 - [] D -- C:\Users\Zaboon\AppData\Local\MicrosoftEdge
O43 - CFD: 15/06/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Mozilla
O43 - CFD: 03/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\NVIDIA
O43 - CFD: 25/11/2015 - [] D -- C:\Users\Zaboon\AppData\Local\NVIDIA Corporation
O43 - CFD: 24/10/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Package Cache
O43 - CFD: 04/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Packages
O43 - CFD: 21/08/2015 - [] D -- C:\Users\Zaboon\AppData\Local\PAYDAY 2
O43 - CFD: 05/08/2015 - [0] D -- C:\Users\Zaboon\AppData\Local\PeerDistRepub
O43 - CFD: 26/08/2015 - [] D -- C:\Users\Zaboon\AppData\Local\pip
O43 - CFD: 17/02/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Popcorn Time
O43 - CFD: 14/05/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Popcorn-Time
O43 - CFD: 19/05/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Programs
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Publishers
O43 - CFD: 26/12/2014 - [] D -- C:\Users\Zaboon\AppData\Local\Razer
O43 - CFD: 22/05/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Rockstar Games
O43 - CFD: 10/03/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Script_Updater
O43 - CFD: 19/12/2015 - [0] D -- C:\Users\Zaboon\AppData\Local\Skype
O43 - CFD: 14/03/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Spotify
O43 - CFD: 21/09/2015 - [] D -- C:\Users\Zaboon\AppData\Local\SquirrelTemp
O43 - CFD: 04/11/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Steam
O43 - CFD: 20/12/2015 - [] D -- C:\Users\Zaboon\AppData\Local\SteelSeries Engine 3 Client
O43 - CFD: 14/03/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Temp
O43 - CFD: 03/08/2015 - [0] SHD -- C:\Users\Zaboon\AppData\Local\Temporary Internet Files
O43 - CFD: 21/02/2015 - [] D -- C:\Users\Zaboon\AppData\Local\The Witcher
O43 - CFD: 21/02/2015 - [] D -- C:\Users\Zaboon\AppData\Local\The Witcher 2
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Local\TileDataLayer
O43 - CFD: 15/05/2015 - [] D -- C:\Users\Zaboon\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 24/02/2016 - [] D -- C:\Users\Zaboon\AppData\Local\Unity
O43 - CFD: 06/09/2015 - [] D -- C:\Users\Zaboon\AppData\Local\VirtualStore
O43 - CFD: 27/08/2015 - [0] D -- C:\Users\Zaboon\AppData\Local\Wing IDE 5
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 03/08/2015 - [] RD -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/03/2016 - [] RD -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Everything
O43 - CFD: 03/11/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 21/09/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
O43 - CFD: 08/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IdleMaster
O43 - CFD: 19/12/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 20/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
O43 - CFD: 21/02/2015 - [0] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LMS Forsaken World - Dysil's Wrath
O43 - CFD: 10/07/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo
O43 - CFD: 06/09/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mreader
O43 - CFD: 20/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
O43 - CFD: 13/05/2015 - [0] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
O43 - CFD: 16/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\pidgin-otr
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
O43 - CFD: 12/11/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 20/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
O43 - CFD: 12/03/2016 - [] RD -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 20/02/2016 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Taiga
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 03/08/2015 - [] D -- C:\Users\Zaboon\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Zaboon\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Zaboon\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Zaboon\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Zaboon\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\Zaboon\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL =>.Microsoft Corporation®

---\\ System Drivers List (74) - 17s
O58 - SDL:2015/07/10 11:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2016/03/08 21:42:01 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\WINDOWS\System32\drivers\avgntflt.sys [128664] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/03/08 21:42:01 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\WINDOWS\System32\drivers\avipbb.sys [137952] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2015/12/02 11:36:25 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\WINDOWS\System32\drivers\avkmgr.sys [35488] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2016/03/08 21:42:01 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\WINDOWS\System32\drivers\avnetflt.sys [68936] =>.Avira Operations GmbH & Co. KG®
O58 - SDL:2015/07/10 11:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2014/04/10 10:43:10 A . (.Qualcomm Atheros, Inc. - Qualcomm Atheros Bandwidth Control Filter D.) -- C:\WINDOWS\System32\drivers\bflwfx64.sys [82096] =>.Qualcomm Atheros, Inc.®
O58 - SDL:2015/07/10 11:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2014/07/09 09:42:16 A . (.http://diskcryptor.net/ - DiskCryptor driver.) -- C:\WINDOWS\System32\drivers\dcrypt.sys [210632] {0B9E9ED13253182A960781904367CC0F}
O58 - SDL:2015/01/27 20:40:22 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064] =>.Disc Soft Ltd®
O58 - SDL:2014/03/27 10:29:52 A . (.Qualcomm Atheros, Inc. - Killer e2200 PCI-E Gigabit Ethernet Control.) -- C:\WINDOWS\System32\drivers\e22w7x64.sys [129200] =>.Qualcomm Atheros, Inc.®
O58 - SDL:2015/07/10 11:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 11:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 11:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2013/08/13 01:01:22 A . (.Intel Corporation - Intel(R) Watchdog Timer Driver (Intel(R) WD.) -- C:\WINDOWS\System32\drivers\ICCWDT.sys [27608] =>.Intel Corporation - Intel® Management Engine Firmware®
O58 - SDL:2015/12/10 09:53:24 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [199152] =>.Tonec Inc.®
O58 - SDL:2014/02/03 12:46:40 A . (...) -- C:\WINDOWS\System32\drivers\ikbevent.sys [22216] =>.Intel CASE®
O58 - SDL:2014/02/03 12:46:42 A . (...) -- C:\WINDOWS\System32\drivers\imsevent.sys [22728] =>.Intel CASE®
O58 - SDL:2014/04/03 09:53:02 A . (...) -- C:\WINDOWS\System32\drivers\INETMON.sys [25800] =>.Intel CASE®
O58 - SDL:2014/02/03 12:46:42 A . (.Copyright (C) 2011-2012 - Intel(R) Smart Connect Technology Device Dr.) -- C:\WINDOWS\System32\drivers\ISCTD.sys [44744] =>.Intel CASE®
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation®
O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/13 20:17:05 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2015/06/24 21:57:00 A . (.Creative Technology Ltd. - Creative Audio Driver.) -- C:\WINDOWS\System32\drivers\MBfilt64.sys [41088] =>.Creative Labs Inc®
O58 - SDL:2015/07/10 11:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2012/05/12 12:31:00 A . (.MotioninJoy - MotioninJoy DS3 driver.) -- C:\WINDOWS\System32\drivers\MijXfilt.sys [121416] =>.MotionInjoy
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2011/04/06 17:52:18 A . (.SHAPE Services GmbH - Mobiola Video Source.) -- C:\WINDOWS\System32\drivers\mobiolavs.sys [28304] =>.SHAPE Services GmbH®
O58 - SDL:2011/04/06 17:51:44 A . (.SHAPE Services - Mobiola Wave.) -- C:\WINDOWS\System32\drivers\mobiolawave.sys [29120] =>.SHAPE Services GmbH®
O58 - SDL:2015/07/10 11:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/10/05 09:50:22 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216] =>.Malwarebytes Corporation®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2015/11/16 04:54:55 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\WINDOWS\System32\drivers\nvhda64v.sys [205456] =>.NVIDIA Corporation®
O58 - SDL:2016/01/25 18:34:40 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\WINDOWS\System32\drivers\nvlddmkm.sys [12474312] =>.NVIDIA Corporation®
O58 - SDL:2015/07/10 11:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/12/18 07:11:06 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\WINDOWS\System32\drivers\nvvad64v.sys [47760] =>.NVIDIA Corporation®
O58 - SDL:2015/07/10 11:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2015/06/24 21:57:00 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4504320] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/02/05 00:24:36 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\WINDOWS\System32\drivers\rzpmgrk.sys [37184] =>.Razer Inc.®
O58 - SDL:2014/12/10 21:43:07 A . (.Razer, Inc. - Razer Overlay Support.) -- C:\WINDOWS\System32\drivers\rzpnk.sys [129600] =>.Razer Inc.®
O58 - SDL:2013/05/05 22:32:46 A . (.Scarlet.Crush Productions - Scp Virtual Bus Driver.) -- C:\WINDOWS\System32\drivers\ScpVBus.sys [39168] =>.Bruce James®
O58 - SDL:2015/07/10 11:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2015/06/01 22:13:32 A . (.SteelSeries ApS - SteelSeries Device Factory Driver.) -- C:\WINDOWS\System32\drivers\ssdevfactory.sys [32792] =>.SteelSeries ApS®
O58 - SDL:2015/07/10 11:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2014/11/05 14:16:32 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver (NDIS 6..) -- C:\WINDOWS\System32\drivers\tap0901.sys [27136] =>.The OpenVPN Project
O58 - SDL:2014/09/30 16:47:28 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverx64.sys [129312] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O58 - SDL:2015/07/10 11:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2015/11/10 22:13:20 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys [926800] =>.Oracle Corporation®
O58 - SDL:2015/11/10 22:12:06 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys [141440] =>.Oracle Corporation®
O58 - SDL:2015/11/10 22:12:06 A . (.Oracle Corporation - VirtualBox Bridged Networking Driver.) -- C:\WINDOWS\System32\drivers\VBoxNetFlt.sys [158432] =>.Oracle Corporation®
O58 - SDL:2015/11/10 22:12:06 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys [128592] =>.Oracle Corporation®
O58 - SDL:2015/07/10 11:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 11:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®
O58 - SDL:2015/06/06 04:16:54 A . (.Intel Corporation - Intel(R) Acpi Control Driver.) -- C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840] =>.Intel(R) Software®
O58 - SDL:2010/01/05 19:23:18 RA . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\WINDOWS\System32\athurx.sys [1847296] =>.Atheros Communications, Inc.

---\\ Last modified or created user files (98) - 116s
O61 - LFC: 2016/03/13 20:33:25 A . (.LeagueSharp.) -- C:\Users\Zaboon\Downloads\LeagueSharp\System\LeagueSharp.Common.dll [1221632]
O61 - LFC: 2016/03/12 22:03:28 A . (..) -- C:\Users\Zaboon\Downloads\LeagueSharp\System\LeagueSharp.Core.dll [8637440]
O61 - LFC: 2016/03/12 21:59:26 A . (..) -- C:\Users\Zaboon\Downloads\LeagueSharp\System\LeagueSharp.dll [489984]
O61 - LFC: 2016/03/13 20:33:27 A . (.LeagueSharp.) -- C:\Users\Zaboon\Downloads\LeagueSharp\System\LeagueSharp.SDK.dll [1668608]
O61 - LFC: 2016/03/13 20:33:28 A . (.Copyright © 2016.) -- C:\Users\Zaboon\Downloads\LeagueSharp\System\SebbyLib.dll [43520]
O61 - LFC: 2016/03/13 20:33:28 A . (.Shine.) -- C:\Users\Zaboon\Downloads\LeagueSharp\System\SPrediction.dll [53760]
O61 - LFC: 2016/03/06 21:12:49 A . (..) -- C:\Users\Zaboon\AppData\Roaming\Spotify\natives_blob.bin [439857]
O61 - LFC: 2016/03/06 21:12:49 A . (..) -- C:\Users\Zaboon\AppData\Roaming\Spotify\snapshot_blob.bin [514840]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\BaseUlt302639d71-0935-35e8-9d1b-9dd1a2a34627.bin [2595]
O61 - LFC: 2016/03/08 13:13:00 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\DZAwarenessAIO02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [4536]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\ElCorki02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [9422]
O61 - LFC: 2016/03/13 18:20:34 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\EloFactory_Ekko02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [10934]
O61 - LFC: 2016/03/13 18:20:34 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\Evade02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [33846]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\ezEvade02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [229586]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\GodJungleTracker02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [15939]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\Humanizer02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [6580]
O61 - LFC: 2016/03/13 17:50:51 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\KoreanLucian02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [14146]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\LeagueSharp.Common02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [23306]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\OneKeyToWin_AIO_Sebby02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [320486]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\SFXUtility02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [165504]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\SharedConfig.bin [41718]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\SkinsSharp02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [11740]
O61 - LFC: 2016/03/08 13:42:44 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\Slutty ryze02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [14677]
O61 - LFC: 2016/03/10 17:29:41 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\SPrediction02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [3401]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\Stealth-Detector02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [2947]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\TheCheater02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [2344]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\UniversalGankAlerter02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [30932]
O61 - LFC: 2016/03/13 22:31:07 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\UniversalMinimapHack02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [3769]
O61 - LFC: 2016/03/08 12:22:44 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\YasuoSharpV202639d71-0935-35e8-9d1b-9dd1a2a34627.bin [31291]
O61 - LFC: 2016/03/10 14:07:32 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\MenuConfigCommon\[xcsoft] SharpShooter02639d71-0935-35e8-9d1b-9dd1a2a34627.bin [10885]
O61 - LFC: 2016/03/13 20:33:30 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\156DA95DOneKeyToBrain.exe [14336]
O61 - LFC: 2016/03/13 20:33:41 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\1869BFD1Velkoz.exe [17920]
O61 - LFC: 2016/03/13 20:33:50 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\193C6D0B[xcsoft] SharpShooter.exe [84992]
O61 - LFC: 2016/03/13 20:33:50 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\19ADE7E0ElUtilitySuite.exe [104960]
O61 - LFC: 2016/03/13 20:33:36 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\19EC2E71Syndra.exe [37376]
O61 - LFC: 2016/03/13 20:33:49 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\1C0CAB9BJustMalphite.exe [21504]
O61 - LFC: 2016/03/13 20:33:30 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\1C7F0740GodJungleTracker.exe [50688]
O61 - LFC: 2016/03/13 20:33:35 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\1D799B62Humanizer.exe [10240]
O61 - LFC: 2016/03/13 20:33:36 A . (.Copyright © jQuery Leaguesharp 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\27DFB710ElEasy.exe [91648]
O61 - LFC: 2016/03/13 20:33:51 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\30908BC7OneKeyToWin_AIO_Sebby.exe [519680]
O61 - LFC: 2016/03/13 20:33:49 A . (.Copyright © jQuery 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\34558036ElCorki.exe [20992]
O61 - LFC: 2016/03/13 20:33:38 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\383E33BElTristana.exe [24576]
O61 - LFC: 2016/03/13 20:33:52 A . (.jackisback.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\3A873DDFZed is back.exe [35328]
O61 - LFC: 2016/03/13 20:33:38 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\3E330091SkinHack.exe [39936]
O61 - LFC: 2016/03/13 20:33:36 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\3E3BD0C6Viktor.exe [23552]
O61 - LFC: 2016/03/13 20:33:49 A . (.LeagueSharp.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\4A691CEHoola Riven.exe [54784]
O61 - LFC: 2016/03/13 20:33:30 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\4ABC7377Tracker.exe [64000]
O61 - LFC: 2016/03/13 20:33:37 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\4B74A977iKalista.exe [50688]
O61 - LFC: 2016/03/13 20:33:44 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\4D3D1257ElSmite.exe [18944]
O61 - LFC: 2016/03/13 20:33:41 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\521517F0Azir.exe [23552]
O61 - LFC: 2016/03/13 20:33:38 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\5B022D8AMoonDraven.exe [18432]
O61 - LFC: 2016/03/13 20:33:32 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\5B981DB2CassioXD.exe [25088]
O61 - LFC: 2016/03/13 20:33:53 A . (.Copyright © 2016.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\5BAED561Jhin - The Virtuoso.exe [27648]
O61 - LFC: 2016/03/13 20:33:50 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\5CB6AD62VayneHunter Reborn.exe [216064]
O61 - LFC: 2016/03/13 20:33:31 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\6691D0F5Evade.exe [123392]
O61 - LFC: 2016/03/13 20:33:35 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\67D6B50EUniversalMinimapHack.exe [5100544]
O61 - LFC: 2016/03/13 20:33:38 A . (.LeagueSharp.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\68972B39KoreanLucian.exe [49664]
O61 - LFC: 2016/03/13 20:33:31 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\6B006A6BaseUlt3.exe [18944]
O61 - LFC: 2016/03/13 20:33:36 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\6D33F3ADSlutty ryze.exe [47616]
O61 - LFC: 2016/03/13 20:33:49 A . (.KurisuSolutions © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\704A179FKurisuMorgana.exe [41984]
O61 - LFC: 2016/03/13 20:33:55 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\7115E414iKalista.exe [52224]
O61 - LFC: 2016/03/13 20:33:51 A . (.xcsoft.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\7B8AD181SharpShooter.exe [176128]
O61 - LFC: 2016/03/13 20:33:38 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\817783EBMordekaiser.exe [53248]
O61 - LFC: 2016/03/13 20:33:55 A . (.Sentryfox.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\81AA6A1DSFXUtility.exe [1472000]
O61 - LFC: 2016/03/13 20:33:52 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\86F751C5ElTalon.exe [23552]
O61 - LFC: 2016/03/13 20:33:37 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\8C1E3119iSeries.exe [98816]
O61 - LFC: 2016/03/13 20:33:52 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\8D1DECA7ElLux.exe [20992]
O61 - LFC: 2016/03/13 20:33:44 A . (.LeagueSharp.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\8DE2C82BHoola Lucian.exe [41472]
O61 - LFC: 2016/03/13 20:33:31 A . (.L#.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\9483CC78Leblanc.exe [49664]
O61 - LFC: 2016/03/13 20:33:37 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\948E9BBASophies Soraka.exe [15872]
O61 - LFC: 2016/03/13 20:33:52 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\97C43B4ASAutoCarry.exe [340992]
O61 - LFC: 2016/03/13 20:33:40 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\9A1ABFATwistedFate.exe [15872]
O61 - LFC: 2016/03/13 20:33:33 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\9D8A686FUniversalGankAlerter.exe [13824]
O61 - LFC: 2016/03/13 20:33:44 A . (.LeagueSharp.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\A1A1FF35Hoola Master Yi.exe [36864]
O61 - LFC: 2016/03/13 20:33:39 A . (.Soresu.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\A22733CUnderratedAIO.exe [446976]
O61 - LFC: 2016/03/13 20:33:41 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\A2304DDBEloFactory_Ekko.exe [34304]
O61 - LFC: 2016/03/13 20:33:33 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\A4DDDA5AhriSharp.exe [16384]
O61 - LFC: 2016/03/13 20:33:29 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\A8B9A7C7Snitched.exe [100864]
O61 - LFC: 2016/03/13 20:33:40 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\AD853B7EShared Experience.exe [13312]
O61 - LFC: 2016/03/13 20:33:55 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\b070.dll [489984]
O61 - LFC: 2016/03/13 20:33:53 A . (.Copyright © Brian 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\B39287B6Brian Sharp.exe [253440]
O61 - LFC: 2016/03/13 20:33:40 A . (.Jackisback.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\CC6DD424Olafisback.exe [56320]
O61 - LFC: 2016/03/13 20:33:40 A . (.Copyright © jQuery 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\CD20458EElRengar.exe [24576]
O61 - LFC: 2016/03/13 20:33:39 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\D0C41F6AMid or Feed.exe [60416]
O61 - LFC: 2016/03/13 20:33:30 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\D4D14458ezEvade.exe [188928]
O61 - LFC: 2016/03/13 20:33:48 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\D5A75451RoyalSongOfSona.exe [15360]
O61 - LFC: 2016/03/13 20:33:33 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\D8199286Stealth-Detector.exe [12800]
O61 - LFC: 2016/03/13 20:33:36 A . (.Copyright © 2014.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\DA6F3406Orianna.exe [28160]
O61 - LFC: 2016/03/13 20:33:44 A . (.jackisback.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\DB209726LeeSin.exe [82432]
O61 - LFC: 2016/03/13 20:33:33 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\DBC034B4xSaliceReligionAIO.exe [343040]
O61 - LFC: 2016/03/13 20:33:39 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\E1FD5ABDThresh - The Chain Warden.exe [16384]
O61 - LFC: 2016/03/13 20:33:50 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\E571964ETheCheater.exe [13312]
O61 - LFC: 2016/03/13 20:33:40 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\EF85C7CIrelia Reloaded.exe [21504]
O61 - LFC: 2016/03/13 20:33:40 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\F3EEF8D9PainInMyKass.exe [9728]
O61 - LFC: 2016/03/13 20:33:31 A . (.Copyright © 2015.) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\FF70FF44KurisuRiven.exe [42496]
O61 - LFC: 2016/03/12 22:03:28 A . (..) -- C:\Users\Zaboon\AppData\Roaming\LS2E8D23B5\1\k370.dll [8637440]
O61 - LFC: 2016/03/14 10:38:58 A . (..) -- C:\Users\Zaboon\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2016/03/08 11:00:18 A . (..) -- C:\Users\Zaboon\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [6214715]

---\\ File Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.JetBrains s.r.o. - PhpStorm.) -- F:\Program Files (x86)\JetBrains\PhpStorm 9.0\bin\PhpStorm.exe {4C197955399C88E2681E883299AA2BFC} =>.JetBrains s.r.o.
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S

---\\ Start Menu Internet (10) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Search Browser Infection (3) - 3s
O69 - SBI: SearchScopes [HKCU] {10AD5CF3-A409-449C-999A-0DC9D235C37C} - (Yahoo Search) - http://fr.search.yahoo.com/ =>.Yahoo Search
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKLM] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com/

---\\ Search Svchost Services (42) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1335296] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [954368] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [93696] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [1008640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324096] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [371200] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [95744] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\WINDOWS\System32\NetSetupSvc.dll [189952] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [680448] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [497152] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2237952] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [1168896] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [593920] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [343040] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [712704] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1015808] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [359936] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [58368] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation

---\\ Firewall Active Exception List (24) - 6s
O87 - FAEL: "{D3037D4E-BEFE-4ADA-B664-B0535B8300D7}" [In-None-P17-TRUE] .(...) -- F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe (.not file.)
O87 - FAEL: "{883054D8-1BA9-46D3-A024-621C9A7CFAAF}" [In-None-P6-TRUE] .(...) -- F:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Far Cry 4\bin\IGE_WPF64.exe (.not file.)
O87 - FAEL: "UDP Query User{0E21FA7D-233D-4314-A0D6-54DE60B33D8A}F:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe" [In-None-P17-TRUE] .(...) -- F:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe (.not file.)
O87 - FAEL: "TCP Query User{74791943-96A7-4BCB-B583-534217730D33}F:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe" [In-None-P6-TRUE] .(...) -- F:\program files (x86)\ubisoft\ubisoft game launcher\games\far cry 4\bin\farcry4.exe (.not file.)
O87 - FAEL: "UDP Query User{13E8336E-4F43-4434-80D6-D84E38CCD9FD}C:\users\zaboon\documents\cracked honor\hbcd auth\hbcd_auth.exe" [In-None-P17-TRUE] .(.Copyright © 2012 - HB_Auth.) -- C:\users\zaboon\documents\cracked honor\hbcd auth\hbcd_auth.exe
O87 - FAEL: "TCP Query User{27795A14-F2AD-42E5-B788-F99F9F3AA01F}C:\users\zaboon\documents\cracked honor\hbcd auth\hbcd_auth.exe" [In-None-P6-TRUE] .(.Copyright © 2012 - HB_Auth.) -- C:\users\zaboon\documents\cracked honor\hbcd auth\hbcd_auth.exe
O87 - FAEL: "UDP Query User{F669D61A-F85E-4BD2-A7E6-1D84F9D8A28A}C:\users\zaboon\documents\cracked honor\honor\auth\hbcd_auth.exe" [In-None-P17-TRUE] .(.Copyright © 2012 - HB_Auth.) -- C:\users\zaboon\documents\cracked honor\honor\auth\hbcd_auth.exe
O87 - FAEL: "TCP Query User{76AC6E92-351A-4615-AA59-19FF334BF224}C:\users\zaboon\documents\cracked honor\honor\auth\hbcd_auth.exe" [In-None-P6-TRUE] .(.Copyright © 2012 - HB_Auth.) -- C:\users\zaboon\documents\cracked honor\honor\auth\hbcd_auth.exe
O87 - FAEL: "UDP Query User{6F5AC611-8054-4E40-BA60-F4136B96C644}F:\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P17-TRUE] .(...) -- F:\steam\steamapps\common\the witcher 2\bin\witcher2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{FCEC185E-5ACA-48AD-90AA-C295D77323FD}F:\steam\steamapps\common\the witcher 2\bin\witcher2.exe" [In-None-P6-TRUE] .(...) -- F:\steam\steamapps\common\the witcher 2\bin\witcher2.exe (.not file.) =>.Steam SteamApps Games
O87 - FAEL: "UDP Query User{2988C356-C5D1-4C19-9733-792840D16DE6}C:\users\zaboon\appdata\local\popcorn time\node-webkit\popcorn time.exe" [In-None-P17-TRUE] .(...) -- C:\users\zaboon\appdata\local\popcorn time\node-webkit\popcorn time.exe
O87 - FAEL: "TCP Query User{52F01EE8-C3D7-4BBA-9E92-5E17C57F81B0}C:\users\zaboon\appdata\local\popcorn time\node-webkit\popcorn time.exe" [In-None-P6-TRUE] .(...) -- C:\users\zaboon\appdata\local\popcorn time\node-webkit\popcorn time.exe
O87 - FAEL: "{AED14016-498F-47BE-9415-DE739F094DDA}" [In-None-P17-TRUE] .(...) -- F:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe =>.Steam SteamApps Games
O87 - FAEL: "{7166419A-D344-42D6-8D4A-2EE63809BB77}" [In-None-P6-TRUE] .(...) -- F:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe =>.Steam SteamApps Games
O87 - FAEL: "{133EE8B1-6C94-4435-AA9C-63566F2EFDD8}" [In-None-P6-TRUE] .(...) -- F:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe =>.Steam SteamApps Games
O87 - FAEL: "{EC79E327-7A2B-4E9E-B255-9DB44097307F}" [In-None-P17-TRUE] .(...) -- F:\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe =>.Steam SteamApps Games
O87 - FAEL: "TCP Query User{A1AC024A-5C49-4500-A0AA-CAD74CA0FC1C}C:\users\zaboon\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\zaboon\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>.Superfluous.CacaoWeb
O87 - FAEL: "UDP Query User{20525099-CD3E-433B-BFC2-D89E8D68AD88}C:\users\zaboon\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\zaboon\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>.Superfluous.CacaoWeb
O87 - FAEL: "TCP Query User{885A4FDE-BE96-4CAF-A403-C101651A58AA}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe (.not file.)
O87 - FAEL: "UDP Query User{D5D51162-E788-443F-B0A4-71CFAA935A05}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe (.not file.)
O87 - FAEL: "TCP Query User{B0F95E95-D536-401D-BF83-0555D490C0E4}C:\program files (x86)\java\jre1.8.0_51\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_51\bin\java.exe (.not file.)
O87 - FAEL: "UDP Query User{751513A6-B810-43C8-92CC-0649CCCF0814}C:\program files (x86)\java\jre1.8.0_51\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\java\jre1.8.0_51\bin\java.exe (.not file.)
O87 - FAEL: "{E62C96A9-3D43-4D26-9721-0F0AA641E277}" [In-None-P6-TRUE] .(...) -- F:\Steam\steamapps\common\Distance\Distance.exe =>.Steam SteamApps Games
O87 - FAEL: "{FF64FE4E-7D7C-479D-829B-FF28120883D3}" [In-None-P17-TRUE] .(...) -- F:\Steam\steamapps\common\Distance\Distance.exe =>.Steam SteamApps Games

---\\ Additional Scan (O88) (7) - 0s
C:\Windows\AutoKMS\AutoKMS.exe =>HackTool.AutoKMS
C:\WINDOWS\System32\Tasks\AutoKMS =>HackTool.AutoKMS
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{52316FB7-4A1D-C3E3-8A99-AC7CA4BE371E} =>Heuristic.Suspect
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{52316FB7-4A1D-C3E3-8A99-AC7CA4BE371E} =>Heuristic.Suspect
HKCU\SOFTWARE\cacaoweb =>.Superfluous.CacaoWeb
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\Users\Zaboon\AppData\Roaming\cacaoweb =>.Superfluous.CacaoWeb

---\\ Summary of the elements found (5) - 0s
http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS
http://www.nicolascoolman.fr/?p=273 =>Toolbar.DeltaSearch
http://www.nicolascoolman.fr/?p=1007 =>PUP.Optional.OmigaPlus
http://www.nicolascoolman.fr/?p=338 =>.Superfluous.CacaoWeb
http://www.nicolascoolman.fr/?p=4664 =>Heuristic.Suspect

~ End of the scan, 49996 items in 00h07mn02s (1509)(0)

Publicité


Signaler le contenu de ce document

Publicité