Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.10.4.180 By Nicolas Coolman (2016/10/04)
~ Run by ManUtd (Administrator) (2016/10/05 10:36:49)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\ManUtd\Desktop\ZHPDiag.txt
~ Report: C:\Users\ManUtd\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Ultimate, 64-bit (Build 7600)
---\\ Internet Browsers (4) - 0s
~ GCIE: Google Chrome v53.0.2785.143
~ MFIE: Mozilla Firefox 45.0.1 (x86 en-US)
~ OPIE: Opera 40.0.2308.62
~ MSIE: Internet Explorer v8.0.7600.16385
---\\ Windows Product Information (4) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ System protection software (2) - 6s
~ Avast Free Antivirus v11.2.2262
~ Malwarebytes Anti-Malware version 2.2.1.1043
---\\ Surveillance software (2) - 8s
~ Adobe Flash Player 22 PPAPI
~ Adobe Reader XI
---\\ Sharing software PeerToPeer (1) - 9s
~ µTorrent v3.4.8.42576
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8202.604 MB (75% free)
System Restore: Activé (Enable)
System drive C: has 39 GB () free of 199 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: MANUTD-PC
~ User Name: ManUtd
~ Logged in as Administrator
---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 39 GB free of 199 GB (System)
~ Drive D: has 46 GB free of 299 GB
~ Drive E: has 57 GB free of 453 GB
~ Drive G: has GB free of 0 GB
---\\ State of the Windows Security Center (12) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (26) - 1s
[MD5.C235A51CB740E45FFA0EBFB9BAFCDA64] - 14/07/2009 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2868224] =>.Microsoft Corporation
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.0D874F3BC751CC2198AF2E6783FB8B35] - 14/07/2009 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [977920] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [0] =>.Microsoft Corporation
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - 14/07/2009 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [193024] =>.Microsoft Corporation
[MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [269824] =>.Microsoft Corporation
[MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [269824] =>.Microsoft Corporation
[MD5.D8714A5FB3141F8226D16861F20C5AC4] - 13/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [0] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (15) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: AtherosSvc (AtherosSvc) . (.Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Atheros Commnucations
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe =>.NVIDIA Corporation®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe =>.Atheros
---\\ Services not Microsoft (SR=Run, SS=Stop) (19) - 51s
SR - Auto [25/06/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [20/02/2012] [ 106144] AtherosSvc (AtherosSvc) . (.Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Atheros Commnucations
SR - Auto [21/05/2016] [ 243296] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
SR - Demand [21/05/2016] [ 5570272] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe =>.AVAST Software a.s.®
SS - Demand [07/03/2012] [ 276248] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation®
SS - Auto [04/08/2015] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [04/08/2015] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [11/12/2014] [ 89864] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
SR - Auto [01/02/2012] [ 13592] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
SR - Auto [02/02/2012] [ 628448] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
SR - Auto [08/02/2012] [ 161560] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
SR - Auto [08/02/2012] [ 277784] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SR - Auto [30/08/2013] [ 920864] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SR - Auto [05/09/2013] [ 1364256] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe =>.NVIDIA Corporation®
SS - Auto [25/07/2016] [ 324224] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [30/03/2015] [ 5448464] TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®
SR - Auto [08/02/2012] [ 363800] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SR - Auto [19/02/2012] [ 72864] ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros.) - C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe =>.Atheros
---\\ Task Planned Automatically (23) - 6s
=>.Superfluous.Empty
[MD5.BE1A1E8EEA50BE1E1A78EB3D7F4CE8CF] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1110232] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.3E0C13FF3080B01C3C5DBAE7A8D14507] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe [1210560] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.1282F8C897DBF180BCF3F6F6968DE2C3] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1517200] (.Activate.) =>.AVAST Software a.s.®
[MD5.9A1F3AEA8D61AA67D90F1B336C00984E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [5496600] (.Activate.) =>.Piriform Ltd®
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.944F1258DCD24F405D505CA91116BFF3] [APT] [HPCustParticipation HP Deskjet 3510 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [4078440] (.Activate.) =>.Hewlett Packard®
[MD5.71213582282F44577FF773C848BE965B] [APT] [Opera scheduled Autoupdate 1422607015] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [896280] (.Activate.) =>.Opera Software ASA®
[MD5.2E696C90B2D1DD842F59E38FD212D225] [APT] [SafeZone scheduled Autoupdate 1458050786] (.Avast Software.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe [735736] (.Activate.) =>.AVAST Software s.r.o.®
[MD5.CD11D500328F07AE1666D046F94179E0] [APT] [AVAST Software] (.AVAST Software.) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [702056] (.Activate.) =>.AVAST Software a.s.®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [892] =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [894] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [898] =>.Google Inc®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Systems, Incorporated®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [3892] =>.Adobe Systems Incorporated®
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] =>.AVAST Software a.s.®
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2774] =>.Piriform Ltd®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3642] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3894] =>.Google Inc®
O39 - APT: HPCustParticipation HP Deskjet 3510 series - (.Hewlett-Packard Co..) -- C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 3510 series [3620] =>.Hewlett Packard®
O39 - APT: Opera scheduled Autoupdate 1422607015 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1422607015 [3848] =>.Opera Software ASA®
O39 - APT: SafeZone scheduled Autoupdate 1458050786 - (.Avast Software.) -- C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458050786 [3892] =>.AVAST Software s.r.o.®
---\\ Process running (26) - 2s
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.360] =>.NVIDIA Corporation
[MD5.F73AE30945F674DF57D2CBFD6397C85F] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1171744] [PID.1340] =>.NVIDIA Corporation®
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.1348] =>.NVIDIA Corporation
[MD5.A24AF1F8186B4B69D54DCC4B059CA695] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296] [PID.1420] =>.AVAST Software a.s.®
[MD5.68E7DEA59FDEF410BAF29FDB5B7A6EEF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1260] =>.Adobe Systems, Incorporated®
[MD5.AFF8FD222BFEB2D7AAF7F5E1AFF48A46] - (.Atheros Commnucations - AdminService Application.) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144] [PID.2184] =>.Atheros Commnucations
[MD5.4DB356DF142BAD89A5F9E798B2A01E01] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864] [PID.2304] =>.Hewlett-Packard Company®
[MD5.832CE330DD987227B7DEA8C03F22AEFA] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [628448] [PID.2568] =>.Intel® Upgrade Service®
[MD5.DBD76BC1D498FE368F2C8CB76C3E00A4] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.2592] =>.Intel Corporation®
[MD5.E98CED53B8E912D19D9F229B0D299F30] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5448464] [PID.2776] =>.TeamViewer®
[MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.2812] =>.Microsoft Corporation®
[MD5.79BC44FF509C79D4E34DED3CD6EFD92B] - (.Atheros - Atheros Coex Service Application.) -- C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864] [PID.2852] =>.Atheros
[MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.656] =>.Microsoft Corporation®
[MD5.FDB183541A4DBA94EB7FF0AF1DB8E8FD] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5570272] [PID.3360] =>.AVAST Software a.s.®
[MD5.BB8609D796C1D93561DBFBB11A920168] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2450208] [PID.3528] =>.NVIDIA Corporation®
[MD5.545462D0DBE24AF379BA869B7C185CCD] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.2268] =>.Intel Corporation®
[MD5.86E4CC39C953D11EF57CF54C4DC78238] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.3420] =>.Intel Corporation®
[MD5.C63E582366EAD77978BFFD959A66DBB8] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1364256] [PID.3652] =>.NVIDIA Corporation®
[MD5.D80B1075B69B57A3AB78F750CE463ECE] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.1064] =>.Intel Corporation®
[MD5.6522AA1BCFC503A2417B7358E31F4EB9] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12343400] [PID.2532] =>.Realtek Semiconductor Corp®
[MD5.350AE710634AF327DDC90B897BBBA23A] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712] [PID.2648] =>.Realtek Semiconductor Corp®
[MD5.A07E8935CC8DCE6DB787DC99129CA17C] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408] [PID.3580] =>.DT Soft Ltd®
[MD5.1E06B301F4FA22A01B8CC314FC7A7E1C] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [7408312] [PID.3508] =>.AVAST Software a.s.®
[MD5.9A1F3AEA8D61AA67D90F1B336C00984E] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [5496600] [PID.3656] =>.Piriform Ltd®
[MD5.82C49207EBEC9C066D97425A71F6077E] - (.MetaQuotes Software Corp. - MetaTrader.) -- C:\Program Files (x86)\XM MT4\terminal.exe [10408936] [PID.4432] =>.MetaQuotes Software Corp.®
[MD5.C4295798A009476A618F942B0D2FF4F0] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\ManUtd\Desktop\ZHPDiag3.exe [2382848] [PID.148] =>.Nicolas Coolman
---\\ Google Chrome, Start,Search,Extensions (17) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ext.thehotgames.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://go2l.ink
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ui.ff.avast.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdn.extprotech.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://gamification.ff.avast.com:8743
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek]
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake]
G2 - GCE: Preference [User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast SafePrice
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap]
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi]
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [jknmpnbgkaekopldbncmggaejjamkemn] WhatsApp Web For Chrome
G2 - GCE: Preference [User Data\Default] [mngdadkapbemiekajhhalpakdpleogfn] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Internet Explorer Extensions, Start, Search (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
---\\ Internet Explorer, Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (22)
---\\ Browser Helper Object (BHO) (2) - 1s
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software a.s.®
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
---\\ Auto loading programs from Registry and folders (11) - 0s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [RtHDVBg_Dolby] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe =>.AVAST Software a.s.®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1201148638-1517609983-1709938563-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-1201148638-1517609983-1709938563-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
---\\ Global shortcuts Startup (117) - 11s
O4 - GS\Desktop [Administrator]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [Administrator]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [Administrator]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [Administrator]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [Administrator]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [Administrator]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [Administrator]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [Administrator]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [Administrator]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Administrator]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [Administrator]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [Administrator]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [Administrator]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [Administrator]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [ASPNET]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [ASPNET]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [ASPNET]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [ASPNET]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [ASPNET]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [ASPNET]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [ASPNET]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [ASPNET]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [ASPNET]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [ASPNET]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [ASPNET]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [ASPNET]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [ASPNET]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [ASPNET]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [ASPNET]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [ASPNET]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [ASPNET]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [ASPNET]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [ASPNET]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [ASPNET]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [Guest]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [Guest]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [Guest]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [Guest]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [Guest]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [Guest]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [Guest]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [Guest]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Guest]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [Guest]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [Guest]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [Guest]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [Guest]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [ManUtd]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [ManUtd]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [ManUtd]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [ManUtd]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [ManUtd]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [ManUtd]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [ManUtd]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [ManUtd]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [ManUtd]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [ManUtd]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [ManUtd]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [ManUtd]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [ManUtd]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [ManUtd]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [ManUtd]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [ManUtd]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [ManUtd]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [ManUtd]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [ManUtd]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [ManUtd]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\CommonDesktop [Public]: ESBUnitConv.lnk . (.ESB Consultancy - ESB Unit Conversion Utility.) C:\Program Files (x86)\ESBUnitConv\ESBUnitConv.exe {00949C5D046C3A1D1BD3925A95A8DAB272}
O4 - GS\CommonDesktop [Public]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Medieval II Total War.lnk . (...) C:\Program Files (x86)\Medieval II Total War\Launcher.exe
O4 - GS\CommonDesktop [Public]: PDF Password Remover.lnk . (.Password Unlocker, Inc. - Password Unlocker.) C:\Program Files (x86)\PDF Password Remover\PdfPasswordRemover.exe =>.Password Unlocker, Inc.
O4 - GS\CommonDesktop [Public]: TeamViewer 10.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer®
O4 - GS\CommonDesktop [Public]: XM MT4.lnk . (.MetaQuotes Software Corp. - MetaTrader.) C:\Program Files (x86)\XM MT4\terminal.exe =>.MetaQuotes Software Corp.®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Windows Command Processor.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Private Character Editor.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Windows Calculator.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Display Switch.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Math Input Panel Accessory.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Windows Mobility Center.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Windows Sound Recorder.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Sticky Notes.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Windows host process (Rundll32).) C:\Windows\system32\rundll32.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Microsoft® Disk Defragmenter.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Disk Space Cleanup Manager for Windows.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Resource and Performance Monitor.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - System Information.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Microsoft® Windows System Restore.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Windows Easy Transfer Post Migration Applic.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Windows Easy Transfer Application.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{C53F2321-A87D-401F-9CE3-8BFE0F0FE291}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Extra protocols (25) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: grooveLocalGWS [64Bits] - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll =>.Microsoft Corporation®
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (108) - 25s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 4U M2TS Converter (version 2.0.9) - (.4U Computing, Inc..) [HKLM][64Bits] -- 4U M2TS Converter_is1
O42 - Logiciel: Ace Stream Media 3.1.2 - (.Ace Stream Media.) [HKCU][64Bits] -- AceStream =>.Ace Stream Media
O42 - Logiciel: Adobe Flash Player 22 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.17) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824191728} =>.Adobe Systems Incorporated
O42 - Logiciel: Atheros Bluetooth Suite (64) - (.Atheros.) [HKLM][64Bits] -- {230D1595-57DA-4933-8C4E-375797EBB7E1} =>.Atheros
O42 - Logiciel: AutoCorect 4.1.5 - (.Cosmin Ciupercă & Dan Morlova.) [HKLM][64Bits] -- AutoCorect stil contemporan_is1
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast =>.AVAST Software a.s.®
O42 - Logiciel: Banished v1.0.0 64-bit - (.Shining Rock Software LLC.) [HKLM][64Bits] -- {72C32B02-0B78-45F8-8528-2C93F62A7B47} =>.Shining Rock Software LLC
O42 - Logiciel: Broadcom Card Reader Driver Installer - (.Broadcom Corporation.) [HKLM][64Bits] -- {4710662C-8204-4334-A977-B1AC9E547819} =>.Broadcom Corporation
O42 - Logiciel: Broadcom NetLink Controller - (.Broadcom Corporation.) [HKLM][64Bits] -- {C91DCB72-F5BB-410D-A91A-314F5D1B4284} =>.Broadcom Corporation
O42 - Logiciel: BS.Player FREE - (.AB Team, d.o.o..) [HKLM][64Bits] -- BSPlayerf
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd®
O42 - Logiciel: Dolby Home Theater v4 - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B26438B4-BF51-49C3-9567-7F14A5E40CB9} =>.Dolby Laboratories Inc
O42 - Logiciel: ESBUnitConv - (.ESB Consultancy.) [HKLM][64Bits] -- ESBUnitConv4_is1
O42 - Logiciel: Football Manager 2015 version 15.3.2 - (.SEGA.) [HKLM][64Bits] -- {BD2F10CE-5561-4A0A-BD82-EB56E87D4FFB}_is1 =>.SEGA
O42 - Logiciel: Free TS Converter 1.0.28 - (.free-videoconverter.) [HKLM][64Bits] -- {D19D3F81-C2A7-4225-A97E-DB61D80535BA}_is1 =>.LongEasy Co., Ltd®
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Hearts of Iron IV - (...) [HKLM][64Bits] -- Hearts of Iron IV_is1
O42 - Logiciel: High-Definition Video Playback - (.Nero AG.) [HKLM][64Bits] -- {58CB9A9A-1EFB-4EA8-B50C-3097E754AC21} =>.Nero AG
O42 - Logiciel: HP Deskjet 3510 series Basic Device Software - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {0AB0989D-2EBF-4772-830A-B370E0D7ED71} =>.Hewlett-Packard Co.
O42 - Logiciel: HP Deskjet 3510 series Help - (.Hewlett Packard.) [HKLM][64Bits] -- {97C1C98D-6AE5-4C71-9B00-EBBD9E014450} =>.Hewlett Packard
O42 - Logiciel: HP Deskjet 3510 series Product Improvement Study - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {2CFC157D-6224-4072-9732-54DD8C07F334} =>.Hewlett-Packard Co.
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations =>.Visan Industries®
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E35601C0-BA8E-4F32-919A-C7EF4CA81F67} =>.Hewlett-Packard Company
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34} =>.Intel Corporation
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: Mathcad 14 - (.PTC.) [HKLM][64Bits] -- {E666A69B-A76D-43D5-AF28-4B2150A6EDE2} =>.PTC
O42 - Logiciel: Mathcad 14 Help - (.Mathsoft.) [HKLM][64Bits] -- {205ACCD7-5342-4694-91F3-3A99E4FD5AA6}
O42 - Logiciel: Mathcad 14 Resource Center - (.Mathsoft.) [HKLM][64Bits] -- {EBD38AE9-D52D-448D-9DB4-4D5F66E1DAFC}
O42 - Logiciel: Medieval II Total War - (.SEGA.) [HKLM][64Bits] -- {C0698BDA-0D29-40EE-8570-A31106DF9AB1} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Americas - (.SEGA.) [HKLM][64Bits] -- {75983B66-804C-40D1-BA13-64DAF652A6F1} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Britannia - (.SEGA.) [HKLM][64Bits] -- {CEDDEE73-3D36-41C2-AA40-29355D9FBD63} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Crusades - (.SEGA.) [HKLM][64Bits] -- {02A10468-2F1C-447C-AD8E-4DEDDEA25AE2} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Teutonic - (.SEGA.) [HKLM][64Bits] -- {7AEE1963-7001-4C37-BC20-2FAEB74AA41C} =>.Macrovision Corporation®
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Text-to-Speech Engine 4.0 (English) - (...) [HKLM][64Bits] -- MSTTS
O42 - Logiciel: Mozilla Firefox 45.0.1 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 45.0.1 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} =>.Microsoft
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC} =>.Microsoft Corporation
O42 - Logiciel: Nero 10 Menu TemplatePack Basic - (.Nero AG.) [HKLM][64Bits] -- {63AA3EAB-23BB-48B2-9AD0-44F878075604} =>.Nero AG
O42 - Logiciel: Nero 10 Movie ThemePack Basic - (.Nero AG.) [HKLM][64Bits] -- {F5CB822F-B365-43D1-BCC0-4FDA1A2017A7} =>.Nero AG
O42 - Logiciel: Nero BackItUp 10 - (.Nero AG.) [HKLM][64Bits] -- {68AB6930-5BFF-4FF6-923B-516A91984FE6} =>.Nero AG
O42 - Logiciel: Nero BackItUp 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {08C8666B-C502-4AB3-B4CB-D74AC42D14FE} =>.Nero AG
O42 - Logiciel: Nero Burning ROM 10 - (.Nero AG.) [HKLM][64Bits] -- {7A5D731D-B4B3-490E-B339-75685712BAAB} =>.Nero AG
O42 - Logiciel: Nero BurningROM 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {9B6B24BE-80E7-46C4-9FA5-B167D5E0F345} =>.Nero AG
O42 - Logiciel: Nero BurnRights 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {555868C6-49FB-484F-BB43-8980651A1B00} =>.Nero AG
O42 - Logiciel: Nero Control Center 10 - (.Nero AG.) [HKLM][64Bits] -- {6DFB899F-17A2-48F0-A533-ED8D6866CF38} =>.Nero AG
O42 - Logiciel: Nero ControlCenter 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {523B2B1B-D8DB-4B41-90FF-C4D799E2758A} =>.Nero AG
O42 - Logiciel: Nero Core Components 10 - (.Nero AG.) [HKLM][64Bits] -- {2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F} =>.Nero AG
O42 - Logiciel: Nero CoverDesigner 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C3273C55-E1E4-41FF-8D69-0158090DB8D8} =>.Nero AG
O42 - Logiciel: Nero DiscSpeed 10 - (.Nero AG.) [HKLM][64Bits] -- {34490F4E-48D0-492E-8249-B48BECF0537C} =>.Nero AG
O42 - Logiciel: Nero DiscSpeed 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C18A0418-442A-4186-AF98-D08F5054A2FC} =>.Nero AG
O42 - Logiciel: Nero Dolby Files 10 - (.Nero AG.) [HKLM][64Bits] -- {C3580AC4-C827-4332-B935-9A282ED5BB97} =>.Nero AG
O42 - Logiciel: Nero Express 10 - (.Nero AG.) [HKLM][64Bits] -- {70550193-1C22-445C-8FA4-564E155DB1A7} =>.Nero AG
O42 - Logiciel: Nero Express 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {33643918-7957-4839-92C7-EA96CB621A98} =>.Nero AG
O42 - Logiciel: Nero InfoTool 10 - (.Nero AG.) [HKLM][64Bits] -- {F412B4AF-388C-4FF5-9B2F-33DB1C536953} =>.Nero AG
O42 - Logiciel: Nero InfoTool 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {66049135-9659-4AAD-9169-9CCA269EBB3E} =>.Nero AG
O42 - Logiciel: Nero Kwik Media - (.Nero AG.) [HKLM][64Bits] -- {1F7D9F37-C39C-486C-BDF8-8F440FFB3352} =>.Nero AG
O42 - Logiciel: Nero Multimedia Suite 10 Platinum HD - (.Nero AG.) [HKLM][64Bits] -- {277C1559-4CF7-44FF-8D07-98AA9C13AABD} =>.Nero AG
O42 - Logiciel: Nero Recode 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF} =>.Nero AG
O42 - Logiciel: Nero RescueAgent 10 - (.Nero AG.) [HKLM][64Bits] -- {E337E787-CF61-4B7B-B84F-509202A54023} =>.Nero AG
O42 - Logiciel: Nero RescueAgent 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {92E25238-61A3-4ACD-A407-3C480EEF47A7} =>.Nero AG
O42 - Logiciel: Nero SoundTrax 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {16987E99-C95C-4513-9239-7B44A0A71DB5} =>.Nero AG
O42 - Logiciel: Nero StartSmart 10 - (.Nero AG.) [HKLM][64Bits] -- {F61D489E-6C44-49AC-AD02-7DA8ACA73A65} =>.Nero AG
O42 - Logiciel: Nero StartSmart 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F6117F9C-ADB5-4590-9BE4-12C7BEC28702} =>.Nero AG
O42 - Logiciel: Nero Vision 10 - (.Nero AG.) [HKLM][64Bits] -- {9A4297F3-2A51-4ED9-92CA-4BCB8380947E} =>.Nero AG
O42 - Logiciel: Nero Vision 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {329411A0-19F3-4740-874F-17400B126F27} =>.Nero AG
O42 - Logiciel: Nero WaveEditor 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {7A295D8F-484B-4FFB-89AB-C1FD497591FE} =>.Nero AG
O42 - Logiciel: NeroKwikMedia Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {02FCAA8F-59D3-4198-822E-135C61EE4F0B} =>.Nero AG
O42 - Logiciel: NVIDIA Control Panel 327.02 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Graphics Driver 327.02 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Optimus 1.14.17 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {64467D47-FFE4-4FBC-ABBA-A0DB829A17EB} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX System Software 9.12.0613 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update 1.14.17 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Components - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update =>.NVIDIA Corporation
O42 - Logiciel: Opera Stable 40.0.2308.62 - (.Opera Software.) [HKLM][64Bits] -- Opera 40.0.2308.62 =>.Opera Software ASA®
O42 - Logiciel: PDF Password Remover - (.PDF Password Remover, Inc..) [HKLM][64Bits] -- {7F4CFF03-15E4-45BD-BFA3-5323A8EAE2F1}_is1
O42 - Logiciel: Pro Evolution Soccer 2015 - (...) [HKLM][64Bits] -- UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1
O42 - Logiciel: Pro Evolution Soccer 2016 - (...) [HKLM][64Bits] -- UHJvRXZvbHV0aW9uU29jY2VyMjAxNg==_is1
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Qualcomm Atheros
O42 - Logiciel: RAR Password Unlocker - (.RAR Password Unlocker, Inc..) [HKLM][64Bits] -- {69B77D45-F5AD-4AB9-933D-352703324469}_is1 =>.RAR Password Unlocker, Inc.
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: SafeZone Stable 1.48.2066.101 - (.Avast Software.) [HKLM][64Bits] -- SafeZone 1.48.2066.101 =>.AVAST Software s.r.o.®
O42 - Logiciel: Skype™ 7.28 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: SopCast 4.0.0 - (.www.sopcast.com.) [HKLM][64Bits] -- SopCast =>.www.sopcast.com
O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer®
O42 - Logiciel: The Sims 4 - (...) [HKLM][64Bits] -- The Sims 4_is1
O42 - Logiciel: Tropico 5 - Espionage - (...) [HKLM][64Bits] -- Tropico 5 - Espionage_is1
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Massive®
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber =>.Viber Media S.a.r.l®
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: XM MT4 - (.MetaQuotes Software Corp..) [HKLM][64Bits] -- XM MT4 =>.MetaQuotes Software Corp.®
O42 - Logiciel: Yahoo! Software Update - (...) [HKLM][64Bits] -- Yahoo! Software Update
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 =>.Nicolas Coolman
---\\ HKCU & HKLM Software Keys (118) - 25s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies =>.AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\Wow6432Node\AS_Mubashir
HKLM\SOFTWARE\Wow6432Node\ATHEROS =>.Atheros
HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Wow6432Node\Danger Close Games =>.Danger Close Games
HKLM\SOFTWARE\Wow6432Node\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mathsoft
HKLM\SOFTWARE\Wow6432Node\Maxis
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nalpeiron =>.Nalpeiron
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\Nitro =>.Nitro
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\Panda Security =>.Panda Security
HKLM\SOFTWARE\Wow6432Node\Panda Software
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros WiFi Driver Installation
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RocketLife =>.RocketLife
HKLM\SOFTWARE\Wow6432Node\SEGA =>.SEGA
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\SopCast
HKLM\SOFTWARE\Wow6432Node\SOSVirus =>.SosVirus
HKLM\SOFTWARE\Wow6432Node\Sysinternals =>.Sysinternals
HKLM\SOFTWARE\Wow6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\Wow6432Node\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\Wow6432Node\Visan
HKLM\SOFTWARE\Wow6432Node\Voice
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\Webteh
HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\4Videosoft Studio =>.4Videosoft Studio
HKCU\SOFTWARE\AceStream
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Atheros =>.Atheros
HKCU\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\BitTorrent =>.BitTorrent
HKCU\SOFTWARE\BST
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Colossal Order
HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Dolby =>.Dolby
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\free-videoconverter
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Haemimont Games =>.Haemimont Games
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Ligos
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Mathsoft
HKCU\SOFTWARE\MetaQuotes Software =>.MetaQuotes Software
HKCU\SOFTWARE\MOHWSplash
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Nitro =>.Nitro
HKCU\SOFTWARE\Nitro PDF =>.Nitro PDF
HKCU\SOFTWARE\NVIDIA Corporation =>.NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\PlagiarismCheckerX
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Search Options
HKCU\SOFTWARE\Shining Rock Software LLC =>.Shining Rock Software LLC
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SOG
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\The Creative Assembly =>.The Creative Assembly
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Typhoon Software
HKCU\SOFTWARE\Ugzmedia
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Xilisoft =>.Xilisoft
HKCU\SOFTWARE\Yahoo =>.Yahoo!
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Yahoo
---\\ Contents of the Common Files folders (272) - 58s
O43 - CFD: 14/03/2016 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software s.r.o.®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Broadcom =>.Broadcom
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd®
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files\Football Manager 2015 =>.Valve Corp.®
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\HP =>.Hewlett Packard®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Intel =>.Intel® Upgrade Service®
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [0] D -- C:\Program Files\Nitro =>.Nitro
O43 - CFD: 17/12/2014 - [] D -- C:\Program Files\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Atheros =>.Atheros
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\AutoCorect
O43 - CFD: 29/03/2016 - [] D -- C:\Program Files (x86)\Banished
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Bluetooth Suite =>.ASUSTeK
O43 - CFD: 09/12/2014 - [] D -- C:\Program Files (x86)\BSPlayer
O43 - CFD: 23/09/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 23/03/2015 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd®
O43 - CFD: 16/04/2016 - [] D -- C:\Program Files (x86)\ESBUnitConv {00949C5D046C3A1D1BD3925A95A8DAB272}
O43 - CFD: 10/10/2015 - [] D -- C:\Program Files (x86)\FMRTE 15
O43 - CFD: 10/10/2015 - [] D -- C:\Program Files (x86)\Football Manager 15
O43 - CFD: 19/07/2016 - [] D -- C:\Program Files (x86)\free-videoconverter =>.LongEasy Co., Ltd®
O43 - CFD: 04/08/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Grand Ages Medieval {009EE70750185A0129CA287E2947079A6A}
O43 - CFD: 16/08/2016 - [0] D -- C:\Program Files (x86)\GUMC7C6.tmp
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\Hearts of Iron IV
O43 - CFD: 29/09/2016 - [] D -- C:\Program Files (x86)\Hearts.of.Iron.IV.v1.2.0
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company®
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files (x86)\Hp =>.Hewlett-Packard Company®
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files (x86)\HP Photo Creations =>.Visan Industries®
O43 - CFD: 01/08/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 23/03/2015 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Program Files (x86)\M2TS Converter
O43 - CFD: 02/04/2016 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 16/01/2015 - [] D -- C:\Program Files (x86)\Mathcad
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files (x86)\Medieval II Total War
O43 - CFD: 17/01/2015 - [0] D -- C:\Program Files (x86)\Microsoft =>.Microsoft
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Microsoft Works =>.Microsoft Corporation
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 05/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 16/01/2015 - [0] D -- C:\Program Files (x86)\MSXML 4.0 =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\Program Files (x86)\Nero =>.Nero AG®
O43 - CFD: 04/03/2016 - [0] D -- C:\Program Files (x86)\Nitro =>.Nitro
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 26/09/2016 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA®
O43 - CFD: 14/03/2015 - [] D -- C:\Program Files (x86)\Panda Security =>.Panda Security
O43 - CFD: 20/04/2015 - [] D -- C:\Program Files (x86)\PDF Password Remover
O43 - CFD: 22/08/2015 - [] D -- C:\Program Files (x86)\Pro Evolution Soccer 2015
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Pro Evolution Soccer 2016
O43 - CFD: 17/07/2015 - [] D -- C:\Program Files (x86)\RAR Password Unlocker
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 23/03/2015 - [] D -- C:\Program Files (x86)\SEGA =>.SEGA
O43 - CFD: 30/08/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 08/09/2015 - [] D -- C:\Program Files (x86)\SopCast =>.SopCast.com
O43 - CFD: 10/12/2014 - [] D -- C:\Program Files (x86)\Steam =>.SteamApps
O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\TeamViewer =>.TeamViewer®
O43 - CFD: 08/12/2014 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 13/02/2016 - [] D -- C:\Program Files (x86)\The Sims 4
O43 - CFD: 23/05/2015 - [] D -- C:\Program Files (x86)\Ubisoft =>.Ubisoft Massive®
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation®
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\XM MT4 =>.MetaQuotes Software Corp.®
O43 - CFD: 12/01/2016 - [] HD -- C:\Program Files (x86)\Zero G Registry =>.Flexera
O43 - CFD: 16/03/2015 - [] D -- C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 03/04/2016 - [] D -- C:\Program Files (x86)\ZHPFix =>.Nicolas Coolman
O43 - CFD: 22/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4U M2TS Converter
O43 - CFD: 09/12/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 23/03/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 05/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCorect
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software =>.AVAST Software
O43 - CFD: 08/12/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
O43 - CFD: 23/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby =>.Dolby
O43 - CFD: 16/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESBUnitConv
O43 - CFD: 10/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FM15
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free-videoconverter
O43 - CFD: 21/01/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 11/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP =>.Hewlett-Packard
O43 - CFD: 08/12/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 03/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kalypso Media Digital =>.Kalypso Media Digital
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 02/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware =>.Malwarebytes
O43 - CFD: 16/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mathcad
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero =>.Ahead Software
O43 - CFD: 20/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Remover
O43 - CFD: 17/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Unlocker
O43 - CFD: 06/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA =>.SEGA
O43 - CFD: 26/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 04/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast =>.SopCast.com
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XM MT4
O43 - CFD: 03/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 13/06/2015 - [] D -- C:\ProgramData\.mono
O43 - CFD: 11/12/2014 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Atheros =>.Atheros
O43 - CFD: 14/03/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Caphyon =>.Caphyon
O43 - CFD: 27/12/2014 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 04/05/2016 - [] D -- C:\ProgramData\DesktopTrader
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\free-videoconverter
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\HP =>.Hewlett-Packard
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\HP Photo Creations =>.HP Photo Creations
O43 - CFD: 17/07/2015 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 18/09/2016 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 09/12/2014 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\MetaQuotes
O43 - CFD: 20/04/2015 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 15/03/2015 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\ProgramData\Nero =>.Ahead Software
O43 - CFD: 12/03/2015 - [] D -- C:\ProgramData\Nitro =>.Nitro
O43 - CFD: 17/12/2014 - [] D -- C:\ProgramData\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 23/05/2015 - [] D -- C:\ProgramData\Orbit =>.Orbit
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 13/02/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 03/04/2016 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software
O43 - CFD: 23/09/2016 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 12/01/2016 - [] D -- C:\ProgramData\Sports Interactive =>.Sports Interactive
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 22/02/2015 - [] D -- C:\ProgramData\Steam =>.SteamApps
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\Visan =>.Visan Industries
O43 - CFD: 28/04/2016 - [] D -- C:\ProgramData\X360CE =>.Microsoft Corporation
O43 - CFD: 06/09/2016 - [] D -- C:\ProgramData\Yahoo! =>.Yahoo!
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Atheros =>.Atheros
O43 - CFD: 04/12/2015 - [] D -- C:\Program Files (x86)\Common Files\AV =>.Avast
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 16/01/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Software
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\postureAgent =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 23/09/2016 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Windows Live =>.Microsoft Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Wondershare =>.Wondershare
O43 - CFD: 02/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\.ACEStream
O43 - CFD: 13/06/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\.mono
O43 - CFD: 06/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ACEStream
O43 - CFD: 02/02/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 04/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\AS
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Atheros =>.Atheros
O43 - CFD: 05/03/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\AutoCorect Contemporan
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\AVAST Software =>.AVAST Software
O43 - CFD: 26/07/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\BSplayer
O43 - CFD: 09/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\BSplayer Pro
O43 - CFD: 23/09/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 01/08/2015 - [0] D -- C:\Users\ManUtd\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 28/02/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 16/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ESBUnitConv
O43 - CFD: 10/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\FMRTE15
O43 - CFD: 18/01/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\HpUpdate =>.Hewlett-Packard
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Kalypso Media =>.Kalypso Media
O43 - CFD: 20/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 16/01/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Mathsoft
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\ManUtd\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 17/04/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\MetaQuotes
O43 - CFD: 10/07/2016 - [] SD -- C:\Users\ManUtd\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 23/03/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 25/06/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Nero =>.Ahead Software
O43 - CFD: 03/09/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Nitro =>.Nitro
O43 - CFD: 25/11/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Nitro PDF =>.Nitro PDF
O43 - CFD: 03/07/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 30/01/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Opera Software =>.Opera Software
O43 - CFD: 03/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Plagiarism Checker X, LLC
O43 - CFD: 23/09/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Skype =>.Skype
O43 - CFD: 12/01/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Sports Interactive =>.Sports Interactive
O43 - CFD: 13/06/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Steam =>.SteamApps
O43 - CFD: 02/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\TeamViewer =>.TeamViewer
O43 - CFD: 11/04/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\The Creative Assembly =>.The Creative Assembly
O43 - CFD: 21/06/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Tropico 5
O43 - CFD: 04/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\uTorrent =>.uTorrent
O43 - CFD: 30/09/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ViberPC =>.Viber
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 23/07/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Xilisoft =>.Xilisoft
O43 - CFD: 06/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 05/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 05/08/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Adobe =>.Adobe
O43 - CFD: 08/12/2014 - [0] SHD -- C:\Users\ManUtd\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 19/09/2016 - [] D -- C:\Users\ManUtd\AppData\Local\ApplicationHistory =>.Microsoft Corporation
O43 - CFD: 13/06/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Colossal Order =>.Colossal Order Ltd
O43 - CFD: 31/08/2016 - [0] D -- C:\Users\ManUtd\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 23/02/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 22/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\fontconfig =>.Portable Apps
O43 - CFD: 19/07/2016 - [] D -- C:\Users\ManUtd\AppData\Local\free-videoconverter
O43 - CFD: 22/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\gegl-0.2
O43 - CFD: 17/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Google =>.Google
O43 - CFD: 22/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\gtk-2.0
O43 - CFD: 08/12/2014 - [0] SHD -- C:\Users\ManUtd\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 03/01/2015 - [] D -- C:\Users\ManUtd\AppData\Local\HP =>.Hewlett-Packard
O43 - CFD: 13/10/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Ibcpsoft
O43 - CFD: 16/01/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Mathsoft
O43 - CFD: 05/03/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 25/06/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [0] D -- C:\Users\ManUtd\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 23/03/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Nero =>.Ahead Software
O43 - CFD: 22/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Nero_AG =>.Ahead
O43 - CFD: 30/01/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Opera Software =>.Opera Software
O43 - CFD: 09/12/2014 - [] D -- C:\Users\ManUtd\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 23/05/2015 - [] D -- C:\Users\ManUtd\AppData\Local\PunkBuster =>.PunkBuster Games
O43 - CFD: 13/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\SKIDROW =>.SKIDROW
O43 - CFD: 26/03/2016 - [0] D -- C:\Users\ManUtd\AppData\Local\Skype =>.Skype
O43 - CFD: 10/12/2014 - [] D -- C:\Users\ManUtd\AppData\Local\Sports Interactive =>.Sports Interactive
O43 - CFD: 05/10/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [0] SHD -- C:\Users\ManUtd\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 23/05/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Ubisoft Game Launcher =>.Ubisoft
O43 - CFD: 13/10/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Ugzmedia
O43 - CFD: 30/09/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Viber =>.Viber
O43 - CFD: 14/11/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Viber Media S.à r.l
O43 - CFD: 23/03/2015 - [] D -- C:\Users\ManUtd\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 31/08/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Windows Live =>.Microsoft Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Wondershare =>.Wondershare
O43 - CFD: 23/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Xilisoft =>.Xilisoft
O43 - CFD: 09/12/2014 - [0] D -- C:\Users\ManUtd\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 06/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media =>.Ace Stream Media
O43 - CFD: 08/12/2014 - [] RD -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 03/08/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicații Chrome
O43 - CFD: 01/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 29/03/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shining Rock Software LLC =>.Shining Rock Software LLC
O43 - CFD: 23/05/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 14/07/2009 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.®
---\\ ShareTools MSconfig StartupReg (11) - 1s
O53 - SMSR:HKLM\...\startupreg\AceStream [Key] . (.Innovative Digital Technologies - Ace Stream.) -- C:\Users\ManUtd\AppData\Roaming\ACEStream\engine\ace_engine.exe =>.Innovative Digital Technologies
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\AthBtTray [Key] . (.Atheros Commnucations - Bluetooth Tray.) -- C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe =>.Atheros Commnucations
O53 - SMSR:HKLM\...\startupreg\AtherosBtStack [Key] . (.Atheros Commnucations - Bluetooth Tray.) -- C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe =>.Atheros Commnucations
O53 - SMSR:HKLM\...\startupreg\Dolby Home Theater v4 [Key] . (.Dolby Laboratories Inc. - Dolby Profile Selector.) -- C:\Dolby PCEE4\pcee4.exe =>.Dolby Laboratories Inc.
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard
O53 - SMSR:HKLM\...\startupreg\IAStorIcon [Key] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\Wondershare Helper Compact.exe [Key] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe =>.Wondershare
---\\ System Drivers List (72) - 8s
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [37656] =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2016/05/21 13:40:18 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\drivers\aswKbd.sys [37144] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [107792] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [103064] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [74544] =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2016/05/21 13:40:19 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1070904] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [465792] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:53 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [166432] =>.AVAST Software a.s.®
O58 - SDL:2016/08/05 12:39:14 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswvmm.sys [292704] =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2012/02/15 02:41:34 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrx.sys [3538432] =>.Atheros Communications, Inc.
O58 - SDL:2009/06/10 23:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2011/11/04 11:21:36 A . (.Broadcom Corporation - Broadcom xD Picture Card Bus Driver.) -- C:\Windows\System32\drivers\b57xdbd.sys [68648] =>.Broadcom Corporation®
O58 - SDL:2011/11/04 11:21:38 A . (.Broadcom Corporation - Broadcom xD Picture Card Miniport Driver.) -- C:\Windows\System32\drivers\b57xdmp.sys [19496] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 04:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2011/09/02 15:36:58 A . (.Broadcom Corporation - Broadcom Memory Stick Driver.) -- C:\Windows\System32\drivers\bScsiMSa.sys [51752] =>.Broadcom Corporation®
O58 - SDL:2012/05/03 23:59:06 A . (.Broadcom Corporation - Broadcom SD 3.0 Driver.) -- C:\Windows\System32\drivers\bScsiSDa.sys [81928] =>.Broadcom Corporation®
O58 - SDL:2012/02/20 13:33:56 A . (.Atheros - Atheros BUS driver.) -- C:\Windows\System32\drivers\btath_bus.sys [30368] =>.Atheros
O58 - SDL:2009/06/10 23:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 04:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2015/03/23 21:49:12 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [254528] =>.DT Soft Ltd®
O58 - SDL:2009/07/14 04:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 23:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/06/10 23:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2012/07/17 19:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] =>.Intel Corporation®
O58 - SDL:2009/07/14 04:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888] =>.Microsoft Windows®
O58 - SDL:2012/02/01 17:16:40 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [568600] =>.Intel Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688] =>.Microsoft Windows®
O58 - SDL:2012/02/28 11:55:26 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [14741632] =>.Intel Corporation
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2011/12/06 14:23:10 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [331264] =>.Intel(R) Corporation
O58 - SDL:2012/01/19 01:30:42 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60a.sys [435240] =>.Broadcom Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:08:54 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [27008] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/10 14:08:58 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [140672] =>.Malwarebytes Corporation®
O58 - SDL:2016/10/04 22:43:34 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:09:06 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [64896] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2016/05/21 13:39:59 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [161760] =>.AVAST Software a.s.®
O58 - SDL:2013/09/05 03:36:46 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11273504] =>.NVIDIA Corporation®
O58 - SDL:2013/09/05 03:37:00 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvpciflt.sys [30496] =>.NVIDIA Corporation®
O58 - SDL:2009/07/14 04:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488] =>.Microsoft Windows®
O58 - SDL:2013/04/29 09:17:34 A . (.Panda Security, S.L. - Panda Kernel Memory Access Driver (x86).) -- C:\Windows\System32\drivers\PSKMAD.sys [47632] =>.Panda Security S.L®
O58 - SDL:2009/07/14 04:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2012/01/03 13:55:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4730344] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 23:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 04:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2016/04/03 11:44:22 A . (.Authors - .) -- C:\Windows\System32\drivers\TrueSight.sys [24688] =>.Adlice®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
---\\ Last modified or created user files (167) - 52s
O61 - LFC: 2016/09/19 20:25:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000007240000DDA2D4E9.bin [816]
O61 - LFC: 2016/09/19 20:26:17 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000000A140000D3F5D0E8.bin [924]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000000F0400000682802A.bin [704]
O61 - LFC: 2016/09/19 20:26:13 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000000F240000DD655F08.bin [1124]
O61 - LFC: 2016/09/19 20:26:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000001E240000C113F8A0.bin [760]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000001ED30000ABDA584B.bin [280]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000001F400000709B68CD.bin [328]
O61 - LFC: 2016/09/19 20:26:19 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002154000058343115.bin [1304]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002411000074A335D2.bin [1112]
O61 - LFC: 2016/09/19 20:24:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000024110000AC036C11.bin [796]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002860000092F2AFE2.bin [280]
O61 - LFC: 2016/09/19 20:25:29 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002E240000460BE823.bin [816]
O61 - LFC: 2016/09/19 20:25:38 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002E24000062BE8A88.bin [816]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002ED3000018CFEE93.bin [280]
O61 - LFC: 2016/09/19 20:25:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000382400006A82EB9A.bin [816]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000003F40000055CA37D8.bin [272]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000464400000BA5D6F0.bin [1132]
O61 - LFC: 2016/09/19 20:25:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000049340000FA5CA46F.bin [1520]
O61 - LFC: 2016/09/19 20:26:18 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004B140000D7915D02.bin [924]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004B2400001EF97283.bin [816]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004DD300000E93FF45.bin [280]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004FD3000022A72D81.bin [280]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000050010000872B25A2.bin [356]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000510100000887C260.bin [356]
O61 - LFC: 2016/09/19 20:25:33 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000582400009E1B2010.bin [1052]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000005D4000008FB94F90.bin [360]
O61 - LFC: 2016/09/19 20:25:35 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000005F540000FBDDE390.bin [2468]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000060600000CDC6B697.bin [384]
O61 - LFC: 2016/09/19 20:26:19 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006254000054FEE3A5.bin [1304]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006DD30000705D55F2.bin [280]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006ED30000B6994C48.bin [280]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006F24000095AAE41E.bin [840]
O61 - LFC: 2016/09/19 20:25:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000007464000080B648C7.bin [2468]
O61 - LFC: 2016/09/19 20:24:29 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000079400000CA0B1406.bin [312]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000007A140000B687A06C.bin [596]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000007F0400002676D5A9.bin [784]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000081110000373DB327.bin [356]
O61 - LFC: 2016/09/19 20:25:27 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000085440000C8BCE38E.bin [1132]
O61 - LFC: 2016/09/19 20:25:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000085640000E6F9A53C.bin [2468]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000089500000A96A6A4B.bin [436]
O61 - LFC: 2016/09/19 20:23:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000008C4000002C473430.bin [368]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000008CD30000A3D373EE.bin [280]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000008ED300004CC3D1F9.bin [280]
O61 - LFC: 2016/09/19 20:25:33 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000094640000663480C1.bin [2468]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000097440000543D5AB2.bin [1340]
O61 - LFC: 2016/09/19 20:26:15 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000098140000520637C4.bin [924]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000009A040000CF88DA08.bin [700]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000A3D30000722437DE.bin [584]
O61 - LFC: 2016/09/19 20:24:55 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000A8700000C2111E51.bin [804]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000AD400000E38A1B4A.bin [368]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000ADD3000018A96334.bin [280]
O61 - LFC: 2016/09/19 20:26:21 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000B0140000222FE5D5.bin [784]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000C3B3000045060A82.bin [332]
O61 - LFC: 2016/09/19 20:24:57 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000C6400000D085A913.bin [252]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000CEB3000058C7EFDB.bin [424]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000CF0400007DB28469.bin [424]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000CFC300002C800A4B.bin [324]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000D64400005BFCDE8C.bin [1340]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000D660000041DCB923.bin [280]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000DDC300000A66C90D.bin [324]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000DF400000D4F69538.bin [172]
O61 - LFC: 2016/09/19 20:26:46 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000E0340000BCB5E8A2.bin [872]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000E2140000260F5919.bin [564]
O61 - LFC: 2016/09/19 20:26:14 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000EB2400002841B622.bin [1124]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000ECC30000C05EB5F9.bin [536]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000F201000077415785.bin [796]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000F2010000C690CDF3.bin [1112]
O61 - LFC: 2016/09/19 20:26:11 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000FD2400008AC120FE.bin [1124]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000001500000C415A6F8.bin [316]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000001500000ECADA865.bin [316]
O61 - LFC: 2016/09/19 20:26:15 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000016F000009C8D79C.bin [4412]
O61 - LFC: 2016/09/19 20:24:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000008710000CE9045E1.bin [1268]
O61 - LFC: 2016/09/19 20:24:44 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000008710000FF6EAE3E.bin [1964]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000000E3D0000E89108B7.bin [952]
O61 - LFC: 2016/09/19 20:26:13 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000012A010008BFC6EAC.bin [11940]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000182E00004F94170A.bin [216]
O61 - LFC: 2016/09/19 20:24:44 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000001871000024431860.bin [1964]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000018710000B008413C.bin [1268]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000190E00006A94F238.bin [252]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000001B0E0000C380505B.bin [1640]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000001B7000005D0BB43B.bin [504]
O61 - LFC: 2016/09/19 20:26:14 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000023A010007935B2E7.bin [6916]
O61 - LFC: 2016/09/19 20:26:18 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000025801000B0E64EDF.bin [5068]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000275100007F530223.bin [300]
O61 - LFC: 2016/09/19 20:24:29 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000029400000FDB0BC0F.bin [220]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000002B7000004C441D20.bin [504]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000034A01000FFE898D6.bin [5580]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000003A0E0000557F03A3.bin [1488]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000451D00002977424C.bin [248]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000492F0000B9BA26BF.bin [2404]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000004A400000D370F92B.bin [124]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000531D0000008FB184.bin [248]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000540D000059D38802.bin [512]
O61 - LFC: 2016/09/19 20:26:15 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000055FE000077AFAF01.bin [2004]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000005C500000801A81A4.bin [340]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000005C50000089AADCF5.bin [336]
O61 - LFC: 2016/09/19 20:26:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000005C8F00001212D1DF.bin [8120]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000062600000D70DEB17.bin [364]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000657100003335A98B.bin [484]
O61 - LFC: 2016/09/19 20:24:51 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000667000002860021C.bin [520]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000676100006141ECB5.bin [300]
O61 - LFC: 2016/09/19 20:24:44 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000067610000D032B30A.bin [300]
O61 - LFC: 2016/09/19 20:26:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000006B5F00005C6E2429.bin [6784]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000007260000020BAD4CC.bin [364]
O61 - LFC: 2016/09/19 20:26:17 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000728010003647D128.bin [10840]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000007571000065103A68.bin [484]
O61 - LFC: 2016/09/19 20:26:46 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000075AF000053FBB611.bin [8852]
O61 - LFC: 2016/09/19 20:23:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000007D400000448A7EC3.bin [220]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000008150000022EA1424.bin [336]
O61 - LFC: 2016/09/19 20:24:55 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000084400000187ACF90.bin [156]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000872E0000B128CF8E.bin [540]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000008F600000C9EA1093.bin [408]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000935D0000192CD1A9.bin [788]
O61 - LFC: 2016/09/19 20:24:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000009961000035ACCA84.bin [1060]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000099610000E95F0CC1.bin [1756]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000009B51000065526092.bin [1756]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000009B510000B2FB316A.bin [1060]
O61 - LFC: 2016/09/19 20:25:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000A02F0000A5836BDA.bin [156]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000A13D00004B85354D.bin [596]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000AE40000042716C21.bin [288]
O61 - LFC: 2016/09/19 20:25:35 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000B080100050A62F7A.bin [5620]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000B650000042AEDB86.bin [328]
O61 - LFC: 2016/09/19 20:26:19 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000B900100080AF28B2.bin [10112]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000BA0E000057203B08.bin [840]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000BE40000002C218CE.bin [288]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C01F0000CF7FB2DB.bin [448]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C460000002A95BAD.bin [376]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C46100009D2A9895.bin [300]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C62E00007FA166D8.bin [216]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C75100001E333DC3.bin [300]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C9400000B53D758B.bin [248]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C95100003C9BB2AB.bin [300]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C9510000B4758740.bin [248]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C9510000C6697259.bin [300]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D0700000D8BD41C7.bin [600]
O61 - LFC: 2016/09/19 20:25:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D58010008961215D.bin [6260]
O61 - LFC: 2016/09/19 20:25:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D78010002BD52F68.bin [9208]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D7801000CA023F6D.bin [9208]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D82E0000423DF7FA.bin [540]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D8500000C0D5C4CD.bin [328]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D90E0000848C3A0C.bin [716]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000DB0E0000E25DC301.bin [2072]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E2500000F44A0AAC.bin [300]
O61 - LFC: 2016/09/19 20:26:18 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E3801000BCB67306.bin [10668]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E3BD0000C0197A1E.bin [832]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E40D0000D8949E96.bin [592]
O61 - LFC: 2016/09/19 20:25:46 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E6801000EB143385.bin [6616]
O61 - LFC: 2016/09/19 20:24:57 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000EC30000027E77B4D.bin [124]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000EE1F0000A78A7852.bin [176]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F15000007118ACAA.bin [300]
O61 - LFC: 2016/09/19 20:26:21 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F2A01000FB1B6101.bin [11212]
O61 - LFC: 2016/09/19 20:25:37 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F48010009A0D3AFB.bin [6168]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F4AE00007DB41F34.bin [2064]
O61 - LFC: 2016/09/19 20:25:34 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F58010006E432D5E.bin [6344]
O61 - LFC: 2016/09/19 20:25:04 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F66100007EBBB97A.bin [248]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F6610000A016F2A3.bin [248]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F70D00002882ECDF.bin [892]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F85100002E0BCDF8.bin [248]
O61 - LFC: 2016/09/19 20:25:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F8BF0000B8ABDC4F.bin [2080]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F90E0000F49264B4.bin [420]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F940000027957D83.bin [248]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000FA00100084E7A528.bin [7596]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000FA0E00003B8E9D3C.bin [1948]
O61 - LFC: 2016/09/19 20:25:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000FD1F00008CF08A9D.bin [156]
O61 - LFC: 2016/09/30 22:58:20 A . (..) -- C:\Users\ManUtd\AppData\Roaming\ViberPC\6.3.0.1532\ViberUpdater.cmd [1732]
O61 - LFC: 2016/09/30 22:58:20 A . (..) -- C:\Users\ManUtd\AppData\Roaming\ViberPC\6.3.0.1532\6.3.0.1532\ViberUpdater.cmd [1732]
O61 - LFC: 2016/10/03 20:11:58 A . (..) -- C:\Users\ManUtd\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [118065]
---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
---\\ Start Menu Internet (20) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe =>.Opera Software ASA®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe =>.AVAST Software s.r.o.®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software
---\\ Search Browser Infection (2) - 7s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
---\\ Search Svchost Services (33) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [235520] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [776192] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [845824] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [676864] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [343552] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316416] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [706560] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2428952] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [848384] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [369664] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [565760] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1104384] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation
---\\ Firewall Active Exception List (10) - 5s
O87 - FAEL: "TCP Query User{2EA5FBB6-16C0-481E-A0AB-C18A4A6C2F0B}C:\program files (x86)\fifa 13\game\fifa13.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\fifa 13\game\fifa13.exe (.not file.)
O87 - FAEL: "UDP Query User{B90AE177-8938-4237-A6A4-028045EBA0D3}C:\program files (x86)\fifa 13\game\fifa13.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\fifa 13\game\fifa13.exe (.not file.)
O87 - FAEL: "TCP Query User{819C5812-0D8D-4C23-84E6-8E981AB485EF}C:\users\manutd\appdata\roaming\as\rtmpgw.exe" [In-None-P6-TRUE] .(...) -- C:\users\manutd\appdata\roaming\as\rtmpgw.exe
O87 - FAEL: "UDP Query User{85EC6EED-8189-4FAA-8B41-2AEDA25A0EF7}C:\users\manutd\appdata\roaming\as\rtmpgw.exe" [In-None-P17-TRUE] .(...) -- C:\users\manutd\appdata\roaming\as\rtmpgw.exe
O87 - FAEL: "{9E2F520F-45D1-416F-A5A3-BB5564FDC86A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O87 - FAEL: "{DDD78048-B0F7-4306-AF56-A3802A18DC86}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O87 - FAEL: "{D4CE955B-7503-45B8-83B5-9288EC478B97}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YServer.exe (.not file.)
O87 - FAEL: "{7E887E9D-3AD1-4ECE-A63B-2DB9B845F6A4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YServer.exe (.not file.)
O87 - FAEL: "{0056A742-C2C6-44D4-8794-096033B53F1D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YPager.exe (.not file.)
O87 - FAEL: "{2F6FF90B-24D3-412E-A58A-0ABFE8EEC356}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YPager.exe (.not file.)
---\\ Windows Installer Scan (1) - 5s
[MD5.] [WIS][2015/08/26 14:31:21] (.APN, LLC - Ask.com ® - Install Builder.) -- C:\Windows\Installer\24acf91.msi [0] =>PUP.Optional.Bandoo
---\\ Additional Scan (O88) (1) - 0s
C:\Windows\Installer\24acf91.msi =>PUP.Optional.Bandoo
---\\ Summary of the elements found (1) - 0s
https://www.nicolascoolman.com/fr/adware-bandoo/ =>PUP.Optional.Bandoo
~ End of the scan, 63237 items in 00h07mn49s (1273)
~ Run by ManUtd (Administrator) (2016/10/05 10:36:49)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\ManUtd\Desktop\ZHPDiag.txt
~ Report: C:\Users\ManUtd\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Ultimate, 64-bit (Build 7600)
---\\ Internet Browsers (4) - 0s
~ GCIE: Google Chrome v53.0.2785.143
~ MFIE: Mozilla Firefox 45.0.1 (x86 en-US)
~ OPIE: Opera 40.0.2308.62
~ MSIE: Internet Explorer v8.0.7600.16385
---\\ Windows Product Information (4) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ System protection software (2) - 6s
~ Avast Free Antivirus v11.2.2262
~ Malwarebytes Anti-Malware version 2.2.1.1043
---\\ Surveillance software (2) - 8s
~ Adobe Flash Player 22 PPAPI
~ Adobe Reader XI
---\\ Sharing software PeerToPeer (1) - 9s
~ µTorrent v3.4.8.42576
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8202.604 MB (75% free)
System Restore: Activé (Enable)
System drive C: has 39 GB () free of 199 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: MANUTD-PC
~ User Name: ManUtd
~ Logged in as Administrator
---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 39 GB free of 199 GB (System)
~ Drive D: has 46 GB free of 299 GB
~ Drive E: has 57 GB free of 453 GB
~ Drive G: has GB free of 0 GB
---\\ State of the Windows Security Center (12) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (26) - 1s
[MD5.C235A51CB740E45FFA0EBFB9BAFCDA64] - 14/07/2009 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2868224] =>.Microsoft Corporation
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [96256] =>.Microsoft Corporation
[MD5.0D874F3BC751CC2198AF2E6783FB8B35] - 14/07/2009 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [977920] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [0] =>.Microsoft Corporation
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - 14/07/2009 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [193024] =>.Microsoft Corporation
[MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [269824] =>.Microsoft Corporation
[MD5.6D5A49D6479EB753C7879F73A4C35E0F] - 14/07/2009 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [269824] =>.Microsoft Corporation
[MD5.D8714A5FB3141F8226D16861F20C5AC4] - 13/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [0] =>.Microsoft Windows®
[MD5.] - 0 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [0] =>.Microsoft Corporation
[MD5.] - 0 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [0] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (15) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: AtherosSvc (AtherosSvc) . (.Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Atheros Commnucations
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe =>.NVIDIA Corporation®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros - Atheros Coex Service Application.) - C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe =>.Atheros
---\\ Services not Microsoft (SR=Run, SS=Stop) (19) - 51s
SR - Auto [25/06/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [20/02/2012] [ 106144] AtherosSvc (AtherosSvc) . (.Atheros Commnucations.) - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe =>.Atheros Commnucations
SR - Auto [21/05/2016] [ 243296] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
SR - Demand [21/05/2016] [ 5570272] AvastVBox COM Service (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe =>.AVAST Software a.s.®
SS - Demand [07/03/2012] [ 276248] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation®
SS - Auto [04/08/2015] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [04/08/2015] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [11/12/2014] [ 89864] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe =>.Hewlett-Packard Company®
SR - Auto [01/02/2012] [ 13592] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
SR - Auto [02/02/2012] [ 628448] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
SR - Auto [08/02/2012] [ 161560] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
SR - Auto [08/02/2012] [ 277784] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SR - Auto [30/08/2013] [ 920864] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SR - Auto [05/09/2013] [ 1364256] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe =>.NVIDIA Corporation®
SS - Auto [25/07/2016] [ 324224] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SR - Auto [30/03/2015] [ 5448464] TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®
SR - Auto [08/02/2012] [ 363800] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SR - Auto [19/02/2012] [ 72864] ZAtheros Wlan Agent (ZAtheros Wlan Agent) . (.Atheros.) - C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe =>.Atheros
---\\ Task Planned Automatically (23) - 6s
=>.Superfluous.Empty
[MD5.BE1A1E8EEA50BE1E1A78EB3D7F4CE8CF] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1110232] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.3E0C13FF3080B01C3C5DBAE7A8D14507] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_pepper.exe [1210560] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.1282F8C897DBF180BCF3F6F6968DE2C3] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1517200] (.Activate.) =>.AVAST Software a.s.®
[MD5.9A1F3AEA8D61AA67D90F1B336C00984E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [5496600] (.Activate.) =>.Piriform Ltd®
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.944F1258DCD24F405D505CA91116BFF3] [APT] [HPCustParticipation HP Deskjet 3510 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3510 series\Bin\HPCustPartic.exe [4078440] (.Activate.) =>.Hewlett Packard®
[MD5.71213582282F44577FF773C848BE965B] [APT] [Opera scheduled Autoupdate 1422607015] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [896280] (.Activate.) =>.Opera Software ASA®
[MD5.2E696C90B2D1DD842F59E38FD212D225] [APT] [SafeZone scheduled Autoupdate 1458050786] (.Avast Software.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe [735736] (.Activate.) =>.AVAST Software s.r.o.®
[MD5.CD11D500328F07AE1666D046F94179E0] [APT] [AVAST Software] (.AVAST Software.) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [702056] (.Activate.) =>.AVAST Software a.s.®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [892] =>.Adobe Systems Incorporated®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [894] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [898] =>.Google Inc®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Systems, Incorporated®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [3892] =>.Adobe Systems Incorporated®
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] =>.AVAST Software a.s.®
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2774] =>.Piriform Ltd®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3642] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3894] =>.Google Inc®
O39 - APT: HPCustParticipation HP Deskjet 3510 series - (.Hewlett-Packard Co..) -- C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 3510 series [3620] =>.Hewlett Packard®
O39 - APT: Opera scheduled Autoupdate 1422607015 - (.Opera Software.) -- C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1422607015 [3848] =>.Opera Software ASA®
O39 - APT: SafeZone scheduled Autoupdate 1458050786 - (.Avast Software.) -- C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1458050786 [3892] =>.AVAST Software s.r.o.®
---\\ Process running (26) - 2s
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.360] =>.NVIDIA Corporation
[MD5.F73AE30945F674DF57D2CBFD6397C85F] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1171744] [PID.1340] =>.NVIDIA Corporation®
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.1348] =>.NVIDIA Corporation
[MD5.A24AF1F8186B4B69D54DCC4B059CA695] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296] [PID.1420] =>.AVAST Software a.s.®
[MD5.68E7DEA59FDEF410BAF29FDB5B7A6EEF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1260] =>.Adobe Systems, Incorporated®
[MD5.AFF8FD222BFEB2D7AAF7F5E1AFF48A46] - (.Atheros Commnucations - AdminService Application.) -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144] [PID.2184] =>.Atheros Commnucations
[MD5.4DB356DF142BAD89A5F9E798B2A01E01] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864] [PID.2304] =>.Hewlett-Packard Company®
[MD5.832CE330DD987227B7DEA8C03F22AEFA] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [628448] [PID.2568] =>.Intel® Upgrade Service®
[MD5.DBD76BC1D498FE368F2C8CB76C3E00A4] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.2592] =>.Intel Corporation®
[MD5.E98CED53B8E912D19D9F229B0D299F30] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5448464] [PID.2776] =>.TeamViewer®
[MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.2812] =>.Microsoft Corporation®
[MD5.79BC44FF509C79D4E34DED3CD6EFD92B] - (.Atheros - Atheros Coex Service Application.) -- C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864] [PID.2852] =>.Atheros
[MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.656] =>.Microsoft Corporation®
[MD5.FDB183541A4DBA94EB7FF0AF1DB8E8FD] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5570272] [PID.3360] =>.AVAST Software a.s.®
[MD5.BB8609D796C1D93561DBFBB11A920168] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2450208] [PID.3528] =>.NVIDIA Corporation®
[MD5.545462D0DBE24AF379BA869B7C185CCD] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.2268] =>.Intel Corporation®
[MD5.86E4CC39C953D11EF57CF54C4DC78238] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.3420] =>.Intel Corporation®
[MD5.C63E582366EAD77978BFFD959A66DBB8] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1364256] [PID.3652] =>.NVIDIA Corporation®
[MD5.D80B1075B69B57A3AB78F750CE463ECE] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.1064] =>.Intel Corporation®
[MD5.6522AA1BCFC503A2417B7358E31F4EB9] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12343400] [PID.2532] =>.Realtek Semiconductor Corp®
[MD5.350AE710634AF327DDC90B897BBBA23A] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712] [PID.2648] =>.Realtek Semiconductor Corp®
[MD5.A07E8935CC8DCE6DB787DC99129CA17C] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [1305408] [PID.3580] =>.DT Soft Ltd®
[MD5.1E06B301F4FA22A01B8CC314FC7A7E1C] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [7408312] [PID.3508] =>.AVAST Software a.s.®
[MD5.9A1F3AEA8D61AA67D90F1B336C00984E] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [5496600] [PID.3656] =>.Piriform Ltd®
[MD5.82C49207EBEC9C066D97425A71F6077E] - (.MetaQuotes Software Corp. - MetaTrader.) -- C:\Program Files (x86)\XM MT4\terminal.exe [10408936] [PID.4432] =>.MetaQuotes Software Corp.®
[MD5.C4295798A009476A618F942B0D2FF4F0] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\ManUtd\Desktop\ZHPDiag3.exe [2382848] [PID.148] =>.Nicolas Coolman
---\\ Google Chrome, Start,Search,Extensions (17) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ext.thehotgames.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://go2l.ink
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ui.ff.avast.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://cdn.extprotech.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://gamification.ff.avast.com:8743
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.google-analytics.com
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek]
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake]
G2 - GCE: Preference [User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast SafePrice
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap]
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi]
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [jknmpnbgkaekopldbncmggaejjamkemn] WhatsApp Web For Chrome
G2 - GCE: Preference [User Data\Default] [mngdadkapbemiekajhhalpakdpleogfn] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
---\\ Internet Explorer Extensions, Start, Search (16) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
---\\ Internet Explorer, Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (22)
---\\ Browser Helper Object (BHO) (2) - 1s
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software a.s.®
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
---\\ Auto loading programs from Registry and folders (11) - 0s
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [RtHDVBg_Dolby] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp®
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe =>.AVAST Software a.s.®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1201148638-1517609983-1709938563-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - HKUS\S-1-5-21-1201148638-1517609983-1709938563-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
---\\ Global shortcuts Startup (117) - 11s
O4 - GS\Desktop [Administrator]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [Administrator]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [Administrator]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [Administrator]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [Administrator]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [Administrator]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [Administrator]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [Administrator]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [Administrator]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Administrator]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [Administrator]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [Administrator]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [Administrator]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [Administrator]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [ASPNET]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [ASPNET]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [ASPNET]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [ASPNET]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [ASPNET]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [ASPNET]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [ASPNET]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [ASPNET]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [ASPNET]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [ASPNET]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [ASPNET]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [ASPNET]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [ASPNET]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [ASPNET]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [ASPNET]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [ASPNET]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [ASPNET]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [ASPNET]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [ASPNET]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [ASPNET]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Guest]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [Guest]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [Guest]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [Guest]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [Guest]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [Guest]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [Guest]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [Guest]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [Guest]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [Guest]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [Guest]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [Guest]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [Guest]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [Guest]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [ManUtd]: 01 - Final.lnk . (...) E:\School\Ph.D\04 - Teza - Cecetari privind optimizarea regimului de functionare al unor sonde de petrol\01 - Final
O4 - GS\Desktop [ManUtd]: Articol 5.lnk . (...) E:\School\Ph.D\03 - Articole\Articol 5
O4 - GS\Desktop [ManUtd]: cheltuili 2016.lnk . (.ManUtd - .) E:\cheltuili 2016.xlsx
O4 - GS\Desktop [ManUtd]: Football Manager 2015.lnk . (...) C:\Program Files (x86)\Football Manager 15\Football Manager 2015
O4 - GS\Desktop [ManUtd]: Forex.lnk . (...) E:\Forex\Forex.txt
O4 - GS\Desktop [ManUtd]: Plan.lnk . (...) E:\Forex\Plan.xlsx
O4 - GS\Desktop [ManUtd]: أساسيات القيادة ـ جون سي ماكسويل - Shortcut.lnk . (...) E:\Books\Leadership\أساسيات القيادة ـ جون سي ماكسويل.pdf
O4 - GS\Quicklaunch [ManUtd]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\Quicklaunch [ManUtd]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\Quicklaunch [ManUtd]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [ManUtd]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\sendTo [ManUtd]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [ManUtd]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl®
O4 - GS\sendTo [ManUtd]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe --sendto =>.TeamViewer®
O4 - GS\TaskBar [ManUtd]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - GS\TaskBar [ManUtd]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\TaskBar [ManUtd]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\TaskBar [ManUtd]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\Programs [ManUtd]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [ManUtd]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: AutoCorect.lnk . (.Softset - .) C:\Program Files (x86)\AutoCorect\AutoCorect.exe
O4 - GS\CommonDesktop [Public]: ESBUnitConv.lnk . (.ESB Consultancy - ESB Unit Conversion Utility.) C:\Program Files (x86)\ESBUnitConv\ESBUnitConv.exe {00949C5D046C3A1D1BD3925A95A8DAB272}
O4 - GS\CommonDesktop [Public]: Free TS Converter.lnk . (.4Videosoft - Free TS Converter.) C:\Program Files (x86)\free-videoconverter\Free TS Converter\Free TS Converter.exe =>.LongEasy Co., Ltd®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Medieval II Total War.lnk . (...) C:\Program Files (x86)\Medieval II Total War\Launcher.exe
O4 - GS\CommonDesktop [Public]: PDF Password Remover.lnk . (.Password Unlocker, Inc. - Password Unlocker.) C:\Program Files (x86)\PDF Password Remover\PdfPasswordRemover.exe =>.Password Unlocker, Inc.
O4 - GS\CommonDesktop [Public]: TeamViewer 10.lnk . (.TeamViewer GmbH - TeamViewer 10.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer®
O4 - GS\CommonDesktop [Public]: XM MT4.lnk . (.MetaQuotes Software Corp. - MetaTrader.) C:\Program Files (x86)\XM MT4\terminal.exe =>.MetaQuotes Software Corp.®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Windows Command Processor.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Private Character Editor.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Windows Calculator.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Display Switch.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Math Input Panel Accessory.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Windows Mobility Center.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Windows Sound Recorder.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Sticky Notes.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Windows host process (Rundll32).) C:\Windows\system32\rundll32.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Microsoft® Disk Defragmenter.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Disk Space Cleanup Manager for Windows.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Resource and Performance Monitor.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - System Information.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Microsoft® Windows System Restore.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Windows Easy Transfer Post Migration Applic.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Windows Easy Transfer Application.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{C53F2321-A87D-401F-9CE3-8BFE0F0FE291}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Extra protocols (25) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: grooveLocalGWS [64Bits] - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll =>.Microsoft Corporation®
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (108) - 25s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: 4U M2TS Converter (version 2.0.9) - (.4U Computing, Inc..) [HKLM][64Bits] -- 4U M2TS Converter_is1
O42 - Logiciel: Ace Stream Media 3.1.2 - (.Ace Stream Media.) [HKCU][64Bits] -- AceStream =>.Ace Stream Media
O42 - Logiciel: Adobe Flash Player 22 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.17) MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824191728} =>.Adobe Systems Incorporated
O42 - Logiciel: Atheros Bluetooth Suite (64) - (.Atheros.) [HKLM][64Bits] -- {230D1595-57DA-4933-8C4E-375797EBB7E1} =>.Atheros
O42 - Logiciel: AutoCorect 4.1.5 - (.Cosmin Ciupercă & Dan Morlova.) [HKLM][64Bits] -- AutoCorect stil contemporan_is1
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast =>.AVAST Software a.s.®
O42 - Logiciel: Banished v1.0.0 64-bit - (.Shining Rock Software LLC.) [HKLM][64Bits] -- {72C32B02-0B78-45F8-8528-2C93F62A7B47} =>.Shining Rock Software LLC
O42 - Logiciel: Broadcom Card Reader Driver Installer - (.Broadcom Corporation.) [HKLM][64Bits] -- {4710662C-8204-4334-A977-B1AC9E547819} =>.Broadcom Corporation
O42 - Logiciel: Broadcom NetLink Controller - (.Broadcom Corporation.) [HKLM][64Bits] -- {C91DCB72-F5BB-410D-A91A-314F5D1B4284} =>.Broadcom Corporation
O42 - Logiciel: BS.Player FREE - (.AB Team, d.o.o..) [HKLM][64Bits] -- BSPlayerf
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd®
O42 - Logiciel: Dolby Home Theater v4 - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B26438B4-BF51-49C3-9567-7F14A5E40CB9} =>.Dolby Laboratories Inc
O42 - Logiciel: ESBUnitConv - (.ESB Consultancy.) [HKLM][64Bits] -- ESBUnitConv4_is1
O42 - Logiciel: Football Manager 2015 version 15.3.2 - (.SEGA.) [HKLM][64Bits] -- {BD2F10CE-5561-4A0A-BD82-EB56E87D4FFB}_is1 =>.SEGA
O42 - Logiciel: Free TS Converter 1.0.28 - (.free-videoconverter.) [HKLM][64Bits] -- {D19D3F81-C2A7-4225-A97E-DB61D80535BA}_is1 =>.LongEasy Co., Ltd®
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Hearts of Iron IV - (...) [HKLM][64Bits] -- Hearts of Iron IV_is1
O42 - Logiciel: High-Definition Video Playback - (.Nero AG.) [HKLM][64Bits] -- {58CB9A9A-1EFB-4EA8-B50C-3097E754AC21} =>.Nero AG
O42 - Logiciel: HP Deskjet 3510 series Basic Device Software - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {0AB0989D-2EBF-4772-830A-B370E0D7ED71} =>.Hewlett-Packard Co.
O42 - Logiciel: HP Deskjet 3510 series Help - (.Hewlett Packard.) [HKLM][64Bits] -- {97C1C98D-6AE5-4C71-9B00-EBBD9E014450} =>.Hewlett Packard
O42 - Logiciel: HP Deskjet 3510 series Product Improvement Study - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {2CFC157D-6224-4072-9732-54DD8C07F334} =>.Hewlett-Packard Co.
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations =>.Visan Industries®
O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E35601C0-BA8E-4F32-919A-C7EF4CA81F67} =>.Hewlett-Packard Company
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} =>.Intel Corporation
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34} =>.Intel Corporation
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes
O42 - Logiciel: Mathcad 14 - (.PTC.) [HKLM][64Bits] -- {E666A69B-A76D-43D5-AF28-4B2150A6EDE2} =>.PTC
O42 - Logiciel: Mathcad 14 Help - (.Mathsoft.) [HKLM][64Bits] -- {205ACCD7-5342-4694-91F3-3A99E4FD5AA6}
O42 - Logiciel: Mathcad 14 Resource Center - (.Mathsoft.) [HKLM][64Bits] -- {EBD38AE9-D52D-448D-9DB4-4D5F66E1DAFC}
O42 - Logiciel: Medieval II Total War - (.SEGA.) [HKLM][64Bits] -- {C0698BDA-0D29-40EE-8570-A31106DF9AB1} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Americas - (.SEGA.) [HKLM][64Bits] -- {75983B66-804C-40D1-BA13-64DAF652A6F1} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Britannia - (.SEGA.) [HKLM][64Bits] -- {CEDDEE73-3D36-41C2-AA40-29355D9FBD63} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Crusades - (.SEGA.) [HKLM][64Bits] -- {02A10468-2F1C-447C-AD8E-4DEDDEA25AE2} =>.Macrovision Corporation®
O42 - Logiciel: Medieval II Total War : Kingdoms : Teutonic - (.SEGA.) [HKLM][64Bits] -- {7AEE1963-7001-4C37-BC20-2FAEB74AA41C} =>.Macrovision Corporation®
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Text-to-Speech Engine 4.0 (English) - (...) [HKLM][64Bits] -- MSTTS
O42 - Logiciel: Mozilla Firefox 45.0.1 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 45.0.1 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} =>.Microsoft
O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC} =>.Microsoft Corporation
O42 - Logiciel: Nero 10 Menu TemplatePack Basic - (.Nero AG.) [HKLM][64Bits] -- {63AA3EAB-23BB-48B2-9AD0-44F878075604} =>.Nero AG
O42 - Logiciel: Nero 10 Movie ThemePack Basic - (.Nero AG.) [HKLM][64Bits] -- {F5CB822F-B365-43D1-BCC0-4FDA1A2017A7} =>.Nero AG
O42 - Logiciel: Nero BackItUp 10 - (.Nero AG.) [HKLM][64Bits] -- {68AB6930-5BFF-4FF6-923B-516A91984FE6} =>.Nero AG
O42 - Logiciel: Nero BackItUp 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {08C8666B-C502-4AB3-B4CB-D74AC42D14FE} =>.Nero AG
O42 - Logiciel: Nero Burning ROM 10 - (.Nero AG.) [HKLM][64Bits] -- {7A5D731D-B4B3-490E-B339-75685712BAAB} =>.Nero AG
O42 - Logiciel: Nero BurningROM 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {9B6B24BE-80E7-46C4-9FA5-B167D5E0F345} =>.Nero AG
O42 - Logiciel: Nero BurnRights 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {555868C6-49FB-484F-BB43-8980651A1B00} =>.Nero AG
O42 - Logiciel: Nero Control Center 10 - (.Nero AG.) [HKLM][64Bits] -- {6DFB899F-17A2-48F0-A533-ED8D6866CF38} =>.Nero AG
O42 - Logiciel: Nero ControlCenter 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {523B2B1B-D8DB-4B41-90FF-C4D799E2758A} =>.Nero AG
O42 - Logiciel: Nero Core Components 10 - (.Nero AG.) [HKLM][64Bits] -- {2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F} =>.Nero AG
O42 - Logiciel: Nero CoverDesigner 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C3273C55-E1E4-41FF-8D69-0158090DB8D8} =>.Nero AG
O42 - Logiciel: Nero DiscSpeed 10 - (.Nero AG.) [HKLM][64Bits] -- {34490F4E-48D0-492E-8249-B48BECF0537C} =>.Nero AG
O42 - Logiciel: Nero DiscSpeed 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C18A0418-442A-4186-AF98-D08F5054A2FC} =>.Nero AG
O42 - Logiciel: Nero Dolby Files 10 - (.Nero AG.) [HKLM][64Bits] -- {C3580AC4-C827-4332-B935-9A282ED5BB97} =>.Nero AG
O42 - Logiciel: Nero Express 10 - (.Nero AG.) [HKLM][64Bits] -- {70550193-1C22-445C-8FA4-564E155DB1A7} =>.Nero AG
O42 - Logiciel: Nero Express 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {33643918-7957-4839-92C7-EA96CB621A98} =>.Nero AG
O42 - Logiciel: Nero InfoTool 10 - (.Nero AG.) [HKLM][64Bits] -- {F412B4AF-388C-4FF5-9B2F-33DB1C536953} =>.Nero AG
O42 - Logiciel: Nero InfoTool 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {66049135-9659-4AAD-9169-9CCA269EBB3E} =>.Nero AG
O42 - Logiciel: Nero Kwik Media - (.Nero AG.) [HKLM][64Bits] -- {1F7D9F37-C39C-486C-BDF8-8F440FFB3352} =>.Nero AG
O42 - Logiciel: Nero Multimedia Suite 10 Platinum HD - (.Nero AG.) [HKLM][64Bits] -- {277C1559-4CF7-44FF-8D07-98AA9C13AABD} =>.Nero AG
O42 - Logiciel: Nero Recode 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF} =>.Nero AG
O42 - Logiciel: Nero RescueAgent 10 - (.Nero AG.) [HKLM][64Bits] -- {E337E787-CF61-4B7B-B84F-509202A54023} =>.Nero AG
O42 - Logiciel: Nero RescueAgent 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {92E25238-61A3-4ACD-A407-3C480EEF47A7} =>.Nero AG
O42 - Logiciel: Nero SoundTrax 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {16987E99-C95C-4513-9239-7B44A0A71DB5} =>.Nero AG
O42 - Logiciel: Nero StartSmart 10 - (.Nero AG.) [HKLM][64Bits] -- {F61D489E-6C44-49AC-AD02-7DA8ACA73A65} =>.Nero AG
O42 - Logiciel: Nero StartSmart 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F6117F9C-ADB5-4590-9BE4-12C7BEC28702} =>.Nero AG
O42 - Logiciel: Nero Vision 10 - (.Nero AG.) [HKLM][64Bits] -- {9A4297F3-2A51-4ED9-92CA-4BCB8380947E} =>.Nero AG
O42 - Logiciel: Nero Vision 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {329411A0-19F3-4740-874F-17400B126F27} =>.Nero AG
O42 - Logiciel: Nero WaveEditor 10 Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {7A295D8F-484B-4FFB-89AB-C1FD497591FE} =>.Nero AG
O42 - Logiciel: NeroKwikMedia Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {02FCAA8F-59D3-4198-822E-135C61EE4F0B} =>.Nero AG
O42 - Logiciel: NVIDIA Control Panel 327.02 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Graphics Driver 327.02 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Optimus 1.14.17 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {64467D47-FFE4-4FBC-ABBA-A0DB829A17EB} =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA PhysX System Software 9.12.0613 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update 1.14.17 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Components - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update =>.NVIDIA Corporation
O42 - Logiciel: Opera Stable 40.0.2308.62 - (.Opera Software.) [HKLM][64Bits] -- Opera 40.0.2308.62 =>.Opera Software ASA®
O42 - Logiciel: PDF Password Remover - (.PDF Password Remover, Inc..) [HKLM][64Bits] -- {7F4CFF03-15E4-45BD-BFA3-5323A8EAE2F1}_is1
O42 - Logiciel: Pro Evolution Soccer 2015 - (...) [HKLM][64Bits] -- UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1
O42 - Logiciel: Pro Evolution Soccer 2016 - (...) [HKLM][64Bits] -- UHJvRXZvbHV0aW9uU29jY2VyMjAxNg==_is1
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} =>.Qualcomm Atheros
O42 - Logiciel: RAR Password Unlocker - (.RAR Password Unlocker, Inc..) [HKLM][64Bits] -- {69B77D45-F5AD-4AB9-933D-352703324469}_is1 =>.RAR Password Unlocker, Inc.
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: SafeZone Stable 1.48.2066.101 - (.Avast Software.) [HKLM][64Bits] -- SafeZone 1.48.2066.101 =>.AVAST Software s.r.o.®
O42 - Logiciel: Skype™ 7.28 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: SopCast 4.0.0 - (.www.sopcast.com.) [HKLM][64Bits] -- SopCast =>.www.sopcast.com
O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer®
O42 - Logiciel: The Sims 4 - (...) [HKLM][64Bits] -- The Sims 4_is1
O42 - Logiciel: Tropico 5 - Espionage - (...) [HKLM][64Bits] -- Tropico 5 - Espionage_is1
O42 - Logiciel: Uplay - (.Ubisoft.) [HKLM][64Bits] -- Uplay =>.Ubisoft Massive®
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber =>.Viber Media S.a.r.l®
O42 - Logiciel: WinRAR 5.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: XM MT4 - (.MetaQuotes Software Corp..) [HKLM][64Bits] -- XM MT4 =>.MetaQuotes Software Corp.®
O42 - Logiciel: Yahoo! Software Update - (...) [HKLM][64Bits] -- Yahoo! Software Update
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 =>.Nicolas Coolman
---\\ HKCU & HKLM Software Keys (118) - 25s
HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies =>.AGEIA Technologies
HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc.
HKLM\SOFTWARE\Wow6432Node\AS_Mubashir
HKLM\SOFTWARE\Wow6432Node\ATHEROS =>.Atheros
HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\Wow6432Node\Danger Close Games =>.Danger Close Games
HKLM\SOFTWARE\Wow6432Node\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\Google =>.Google
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard =>.Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield
HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware =>.Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Mathsoft
HKLM\SOFTWARE\Wow6432Node\Maxis
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nalpeiron =>.Nalpeiron
HKLM\SOFTWARE\Wow6432Node\Nero
HKLM\SOFTWARE\Wow6432Node\Nitro =>.Nitro
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Opera Software =>.Opera Software
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\Panda Security =>.Panda Security
HKLM\SOFTWARE\Wow6432Node\Panda Software
HKLM\SOFTWARE\Wow6432Node\Qualcomm Atheros WiFi Driver Installation
HKLM\SOFTWARE\Wow6432Node\Realtek =>.Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RocketLife =>.RocketLife
HKLM\SOFTWARE\Wow6432Node\SEGA =>.SEGA
HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype
HKLM\SOFTWARE\Wow6432Node\SopCast
HKLM\SOFTWARE\Wow6432Node\SOSVirus =>.SosVirus
HKLM\SOFTWARE\Wow6432Node\Sysinternals =>.Sysinternals
HKLM\SOFTWARE\Wow6432Node\TeamViewer =>.TeamViewer
HKLM\SOFTWARE\Wow6432Node\Ubisoft =>.Ubisoft
HKLM\SOFTWARE\Wow6432Node\Visan
HKLM\SOFTWARE\Wow6432Node\Voice
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\Webteh
HKLM\SOFTWARE\Wow6432Node\Wondershare =>.Wondershare
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\4Videosoft Studio =>.4Videosoft Studio
HKCU\SOFTWARE\AceStream
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Atheros =>.Atheros
HKCU\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\BitTorrent =>.BitTorrent
HKCU\SOFTWARE\BST
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Colossal Order
HKCU\SOFTWARE\Cygnus Solutions =>.Cygnus Solutions
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\Dolby =>.Dolby
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\epsxe
HKCU\SOFTWARE\free-videoconverter
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Haemimont Games =>.Haemimont Games
HKCU\SOFTWARE\Hewlett-Packard =>.Hewlett-Packard
HKCU\SOFTWARE\HP =>.HP
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Ligos
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Mathsoft
HKCU\SOFTWARE\MetaQuotes Software =>.MetaQuotes Software
HKCU\SOFTWARE\MOHWSplash
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Nero
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\Nitro =>.Nitro
HKCU\SOFTWARE\Nitro PDF =>.Nitro PDF
HKCU\SOFTWARE\NVIDIA Corporation =>.NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software =>.Opera Software
HKCU\SOFTWARE\Piriform =>.Piriform
HKCU\SOFTWARE\PlagiarismCheckerX
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\Search Options
HKCU\SOFTWARE\Shining Rock Software LLC =>.Shining Rock Software LLC
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SOG
HKCU\SOFTWARE\Sysinternals =>.Sysinternals
HKCU\SOFTWARE\TeamViewer =>.TeamViewer
HKCU\SOFTWARE\The Creative Assembly =>.The Creative Assembly
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Typhoon Software
HKCU\SOFTWARE\Ugzmedia
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wondershare =>.Wondershare
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Xilisoft =>.Xilisoft
HKCU\SOFTWARE\Yahoo =>.Yahoo!
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Yahoo
---\\ Contents of the Common Files folders (272) - 58s
O43 - CFD: 14/03/2016 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software s.r.o.®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Broadcom =>.Broadcom
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd®
O43 - CFD: 04/03/2016 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\DVD Maker =>.Aone Software
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files\Football Manager 2015 =>.Valve Corp.®
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files\HP =>.Hewlett Packard®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Intel =>.Intel® Upgrade Service®
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 04/03/2016 - [0] D -- C:\Program Files\Nitro =>.Nitro
O43 - CFD: 17/12/2014 - [] D -- C:\Program Files\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files\WinRAR =>.win.rar GmbH®
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Atheros =>.Atheros
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\AutoCorect
O43 - CFD: 29/03/2016 - [] D -- C:\Program Files (x86)\Banished
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Bluetooth Suite =>.ASUSTeK
O43 - CFD: 09/12/2014 - [] D -- C:\Program Files (x86)\BSPlayer
O43 - CFD: 23/09/2016 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 23/03/2015 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd®
O43 - CFD: 16/04/2016 - [] D -- C:\Program Files (x86)\ESBUnitConv {00949C5D046C3A1D1BD3925A95A8DAB272}
O43 - CFD: 10/10/2015 - [] D -- C:\Program Files (x86)\FMRTE 15
O43 - CFD: 10/10/2015 - [] D -- C:\Program Files (x86)\Football Manager 15
O43 - CFD: 19/07/2016 - [] D -- C:\Program Files (x86)\free-videoconverter =>.LongEasy Co., Ltd®
O43 - CFD: 04/08/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Grand Ages Medieval {009EE70750185A0129CA287E2947079A6A}
O43 - CFD: 16/08/2016 - [0] D -- C:\Program Files (x86)\GUMC7C6.tmp
O43 - CFD: 01/10/2016 - [] D -- C:\Program Files (x86)\Hearts of Iron IV
O43 - CFD: 29/09/2016 - [] D -- C:\Program Files (x86)\Hearts.of.Iron.IV.v1.2.0
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company®
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files (x86)\Hp =>.Hewlett-Packard Company®
O43 - CFD: 03/01/2015 - [] D -- C:\Program Files (x86)\HP Photo Creations =>.Visan Industries®
O43 - CFD: 01/08/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 23/03/2015 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Program Files (x86)\M2TS Converter
O43 - CFD: 02/04/2016 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 16/01/2015 - [] D -- C:\Program Files (x86)\Mathcad
O43 - CFD: 01/08/2016 - [] D -- C:\Program Files (x86)\Medieval II Total War
O43 - CFD: 17/01/2015 - [0] D -- C:\Program Files (x86)\Microsoft =>.Microsoft
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Microsoft Works =>.Microsoft Corporation
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 05/10/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 16/01/2015 - [0] D -- C:\Program Files (x86)\MSXML 4.0 =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\Program Files (x86)\Nero =>.Nero AG®
O43 - CFD: 04/03/2016 - [0] D -- C:\Program Files (x86)\Nitro =>.Nitro
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 26/09/2016 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA®
O43 - CFD: 14/03/2015 - [] D -- C:\Program Files (x86)\Panda Security =>.Panda Security
O43 - CFD: 20/04/2015 - [] D -- C:\Program Files (x86)\PDF Password Remover
O43 - CFD: 22/08/2015 - [] D -- C:\Program Files (x86)\Pro Evolution Soccer 2015
O43 - CFD: 04/10/2016 - [] D -- C:\Program Files (x86)\Pro Evolution Soccer 2016
O43 - CFD: 17/07/2015 - [] D -- C:\Program Files (x86)\RAR Password Unlocker
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 23/03/2015 - [] D -- C:\Program Files (x86)\SEGA =>.SEGA
O43 - CFD: 30/08/2016 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 08/09/2015 - [] D -- C:\Program Files (x86)\SopCast =>.SopCast.com
O43 - CFD: 10/12/2014 - [] D -- C:\Program Files (x86)\Steam =>.SteamApps
O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\TeamViewer =>.TeamViewer®
O43 - CFD: 08/12/2014 - [0] HD -- C:\Program Files (x86)\Temp =>.Microsoft Corporation
O43 - CFD: 13/02/2016 - [] D -- C:\Program Files (x86)\The Sims 4
O43 - CFD: 23/05/2015 - [] D -- C:\Program Files (x86)\Ubisoft =>.Ubisoft Massive®
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation®
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 30/11/2015 - [] D -- C:\Program Files (x86)\XM MT4 =>.MetaQuotes Software Corp.®
O43 - CFD: 12/01/2016 - [] HD -- C:\Program Files (x86)\Zero G Registry =>.Flexera
O43 - CFD: 16/03/2015 - [] D -- C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 03/04/2016 - [] D -- C:\Program Files (x86)\ZHPFix =>.Nicolas Coolman
O43 - CFD: 22/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4U M2TS Converter
O43 - CFD: 09/12/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 23/03/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 05/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoCorect
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software =>.AVAST Software
O43 - CFD: 08/12/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
O43 - CFD: 23/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby =>.Dolby
O43 - CFD: 16/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESBUnitConv
O43 - CFD: 10/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FM15
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\free-videoconverter
O43 - CFD: 21/01/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 11/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP =>.Hewlett-Packard
O43 - CFD: 08/12/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel =>.Intel Corporation
O43 - CFD: 03/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kalypso Media Digital =>.Kalypso Media Digital
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 02/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware =>.Malwarebytes
O43 - CFD: 16/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mathcad
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero =>.Ahead Software
O43 - CFD: 20/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Remover
O43 - CFD: 17/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Unlocker
O43 - CFD: 06/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA =>.SEGA
O43 - CFD: 26/03/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype
O43 - CFD: 04/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast =>.SopCast.com
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 30/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XM MT4
O43 - CFD: 03/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 13/06/2015 - [] D -- C:\ProgramData\.mono
O43 - CFD: 11/12/2014 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Atheros =>.Atheros
O43 - CFD: 14/03/2016 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software
O43 - CFD: 03/10/2015 - [] D -- C:\ProgramData\Caphyon =>.Caphyon
O43 - CFD: 27/12/2014 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 04/05/2016 - [] D -- C:\ProgramData\DesktopTrader
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation
O43 - CFD: 19/07/2016 - [] D -- C:\ProgramData\free-videoconverter
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\HP =>.Hewlett-Packard
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\HP Photo Creations =>.HP Photo Creations
O43 - CFD: 17/07/2015 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\Intel =>.Intel Corporation
O43 - CFD: 18/09/2016 - [] D -- C:\ProgramData\KONAMI =>.Konami
O43 - CFD: 09/12/2014 - [] D -- C:\ProgramData\Malwarebytes =>.Malwarebytes
O43 - CFD: 22/12/2014 - [] D -- C:\ProgramData\MetaQuotes
O43 - CFD: 20/04/2015 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft
O43 - CFD: 15/03/2015 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\ProgramData\Nero =>.Ahead Software
O43 - CFD: 12/03/2015 - [] D -- C:\ProgramData\Nitro =>.Nitro
O43 - CFD: 17/12/2014 - [] D -- C:\ProgramData\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\ProgramData\NVIDIA Corporation =>.NVIDIA Corporation
O43 - CFD: 23/05/2015 - [] D -- C:\ProgramData\Orbit =>.Orbit
O43 - CFD: 15/07/2015 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc.
O43 - CFD: 13/02/2016 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 03/04/2016 - [] D -- C:\ProgramData\RogueKiller =>.Adlice Software
O43 - CFD: 23/09/2016 - [] D -- C:\ProgramData\Skype =>.Skype
O43 - CFD: 12/01/2016 - [] D -- C:\ProgramData\Sports Interactive =>.Sports Interactive
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 22/02/2015 - [] D -- C:\ProgramData\Steam =>.SteamApps
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 03/01/2015 - [] D -- C:\ProgramData\Visan =>.Visan Industries
O43 - CFD: 28/04/2016 - [] D -- C:\ProgramData\X360CE =>.Microsoft Corporation
O43 - CFD: 06/09/2016 - [] D -- C:\ProgramData\Yahoo! =>.Yahoo!
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Atheros =>.Atheros
O43 - CFD: 04/12/2015 - [] D -- C:\Program Files (x86)\Common Files\AV =>.Avast
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 16/01/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation =>.Intel Corporation
O43 - CFD: 15/07/2015 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation
O43 - CFD: 13/03/2015 - [] D -- C:\Program Files (x86)\Common Files\Nero =>.Ahead Software
O43 - CFD: 08/12/2014 - [] D -- C:\Program Files (x86)\Common Files\postureAgent =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 23/09/2016 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 05/03/2015 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 11/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Windows Live =>.Microsoft Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Wondershare =>.Wondershare
O43 - CFD: 02/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\.ACEStream
O43 - CFD: 13/06/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\.mono
O43 - CFD: 06/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ACEStream
O43 - CFD: 02/02/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 04/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\AS
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Atheros =>.Atheros
O43 - CFD: 05/03/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\AutoCorect Contemporan
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\AVAST Software =>.AVAST Software
O43 - CFD: 26/07/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\BSplayer
O43 - CFD: 09/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\BSplayer Pro
O43 - CFD: 23/09/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\DAEMON Tools Lite =>.DAEMON Tools
O43 - CFD: 01/08/2015 - [0] D -- C:\Users\ManUtd\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 28/02/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Downloaded Installations =>.Microsoft Corporation
O43 - CFD: 16/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ESBUnitConv
O43 - CFD: 10/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\FMRTE15
O43 - CFD: 18/01/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\HpUpdate =>.Hewlett-Packard
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Identities =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\InstallShield =>.InstallShield
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Intel Corporation =>.Intel Corporation
O43 - CFD: 26/09/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Kalypso Media =>.Kalypso Media
O43 - CFD: 20/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 16/01/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Mathsoft
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\ManUtd\AppData\Roaming\Media Center Programs =>.Microsoft Corporation
O43 - CFD: 17/04/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\MetaQuotes
O43 - CFD: 10/07/2016 - [] SD -- C:\Users\ManUtd\AppData\Roaming\Microsoft =>.Microsoft
O43 - CFD: 23/03/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 25/06/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Nero =>.Ahead Software
O43 - CFD: 03/09/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Nitro =>.Nitro
O43 - CFD: 25/11/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Nitro PDF =>.Nitro PDF
O43 - CFD: 03/07/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\NVIDIA =>.NVIDIA Corporation
O43 - CFD: 30/01/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Opera Software =>.Opera Software
O43 - CFD: 03/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Plagiarism Checker X, LLC
O43 - CFD: 23/09/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Skype =>.Skype
O43 - CFD: 12/01/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Sports Interactive =>.Sports Interactive
O43 - CFD: 13/06/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Steam =>.SteamApps
O43 - CFD: 02/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\TeamViewer =>.TeamViewer
O43 - CFD: 11/04/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\The Creative Assembly =>.The Creative Assembly
O43 - CFD: 21/06/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Tropico 5
O43 - CFD: 04/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\uTorrent =>.uTorrent
O43 - CFD: 30/09/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ViberPC =>.Viber
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 23/07/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Xilisoft =>.Xilisoft
O43 - CFD: 06/10/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Yahoo! =>.Yahoo!
O43 - CFD: 05/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 05/08/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Adobe =>.Adobe
O43 - CFD: 08/12/2014 - [0] SHD -- C:\Users\ManUtd\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 19/09/2016 - [] D -- C:\Users\ManUtd\AppData\Local\ApplicationHistory =>.Microsoft Corporation
O43 - CFD: 13/06/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Colossal Order =>.Colossal Order Ltd
O43 - CFD: 31/08/2016 - [0] D -- C:\Users\ManUtd\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 23/02/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Diagnostics =>.Microsoft Corporation
O43 - CFD: 22/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\fontconfig =>.Portable Apps
O43 - CFD: 19/07/2016 - [] D -- C:\Users\ManUtd\AppData\Local\free-videoconverter
O43 - CFD: 22/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\gegl-0.2
O43 - CFD: 17/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Google =>.Google
O43 - CFD: 22/09/2015 - [] D -- C:\Users\ManUtd\AppData\Local\gtk-2.0
O43 - CFD: 08/12/2014 - [0] SHD -- C:\Users\ManUtd\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 03/01/2015 - [] D -- C:\Users\ManUtd\AppData\Local\HP =>.Hewlett-Packard
O43 - CFD: 13/10/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Ibcpsoft
O43 - CFD: 16/01/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Mathsoft
O43 - CFD: 05/03/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 25/06/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Microsoft Games =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [0] D -- C:\Users\ManUtd\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 23/03/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Nero =>.Ahead Software
O43 - CFD: 22/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Nero_AG =>.Ahead
O43 - CFD: 30/01/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Opera Software =>.Opera Software
O43 - CFD: 09/12/2014 - [] D -- C:\Users\ManUtd\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 23/05/2015 - [] D -- C:\Users\ManUtd\AppData\Local\PunkBuster =>.PunkBuster Games
O43 - CFD: 13/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\SKIDROW =>.SKIDROW
O43 - CFD: 26/03/2016 - [0] D -- C:\Users\ManUtd\AppData\Local\Skype =>.Skype
O43 - CFD: 10/12/2014 - [] D -- C:\Users\ManUtd\AppData\Local\Sports Interactive =>.Sports Interactive
O43 - CFD: 05/10/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 08/12/2014 - [0] SHD -- C:\Users\ManUtd\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 23/05/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Ubisoft Game Launcher =>.Ubisoft
O43 - CFD: 13/10/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Ugzmedia
O43 - CFD: 30/09/2016 - [] D -- C:\Users\ManUtd\AppData\Local\Viber =>.Viber
O43 - CFD: 14/11/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Viber Media S.à r.l
O43 - CFD: 23/03/2015 - [] D -- C:\Users\ManUtd\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 31/08/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Windows Live =>.Microsoft Corporation
O43 - CFD: 22/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Wondershare =>.Wondershare
O43 - CFD: 23/07/2015 - [] D -- C:\Users\ManUtd\AppData\Local\Xilisoft =>.Xilisoft
O43 - CFD: 09/12/2014 - [0] D -- C:\Users\ManUtd\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 06/04/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media =>.Ace Stream Media
O43 - CFD: 08/12/2014 - [] RD -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 03/08/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplicații Chrome
O43 - CFD: 01/10/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 29/03/2016 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Shining Rock Software LLC =>.Shining Rock Software LLC
O43 - CFD: 23/05/2015 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft
O43 - CFD: 08/12/2014 - [] D -- C:\Users\ManUtd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 14/07/2009 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft
O43 - CFD: 14/07/2009 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation
O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.®
---\\ ShareTools MSconfig StartupReg (11) - 1s
O53 - SMSR:HKLM\...\startupreg\AceStream [Key] . (.Innovative Digital Technologies - Ace Stream.) -- C:\Users\ManUtd\AppData\Roaming\ACEStream\engine\ace_engine.exe =>.Innovative Digital Technologies
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\AthBtTray [Key] . (.Atheros Commnucations - Bluetooth Tray.) -- C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe =>.Atheros Commnucations
O53 - SMSR:HKLM\...\startupreg\AtherosBtStack [Key] . (.Atheros Commnucations - Bluetooth Tray.) -- C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe =>.Atheros Commnucations
O53 - SMSR:HKLM\...\startupreg\Dolby Home Theater v4 [Key] . (.Dolby Laboratories Inc. - Dolby Profile Selector.) -- C:\Dolby PCEE4\pcee4.exe =>.Dolby Laboratories Inc.
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\HP Software Update [Key] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard
O53 - SMSR:HKLM\...\startupreg\IAStorIcon [Key] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\IgfxTray [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe =>.Intel Corporation
O53 - SMSR:HKLM\...\startupreg\Wondershare Helper Compact.exe [Key] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe =>.Wondershare
---\\ System Drivers List (72) - 8s
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [37656] =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2016/05/21 13:40:18 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\drivers\aswKbd.sys [37144] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [107792] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [103064] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [74544] =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2016/05/21 13:40:19 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1070904] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:52 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [465792] =>.AVAST Software a.s.®
O58 - SDL:2016/05/21 13:40:53 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [166432] =>.AVAST Software a.s.®
O58 - SDL:2016/08/05 12:39:14 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswvmm.sys [292704] =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2012/02/15 02:41:34 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrx.sys [3538432] =>.Atheros Communications, Inc.
O58 - SDL:2009/06/10 23:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2011/11/04 11:21:36 A . (.Broadcom Corporation - Broadcom xD Picture Card Bus Driver.) -- C:\Windows\System32\drivers\b57xdbd.sys [68648] =>.Broadcom Corporation®
O58 - SDL:2011/11/04 11:21:38 A . (.Broadcom Corporation - Broadcom xD Picture Card Miniport Driver.) -- C:\Windows\System32\drivers\b57xdmp.sys [19496] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 04:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2011/09/02 15:36:58 A . (.Broadcom Corporation - Broadcom Memory Stick Driver.) -- C:\Windows\System32\drivers\bScsiMSa.sys [51752] =>.Broadcom Corporation®
O58 - SDL:2012/05/03 23:59:06 A . (.Broadcom Corporation - Broadcom SD 3.0 Driver.) -- C:\Windows\System32\drivers\bScsiSDa.sys [81928] =>.Broadcom Corporation®
O58 - SDL:2012/02/20 13:33:56 A . (.Atheros - Atheros BUS driver.) -- C:\Windows\System32\drivers\btath_bus.sys [30368] =>.Atheros
O58 - SDL:2009/06/10 23:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 04:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2015/03/23 21:49:12 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [254528] =>.DT Soft Ltd®
O58 - SDL:2009/07/14 04:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 23:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/06/10 23:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2012/07/17 19:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] =>.Intel Corporation®
O58 - SDL:2009/07/14 04:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888] =>.Microsoft Windows®
O58 - SDL:2012/02/01 17:16:40 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [568600] =>.Intel Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688] =>.Microsoft Windows®
O58 - SDL:2012/02/28 11:55:26 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [14741632] =>.Intel Corporation
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2011/12/06 14:23:10 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [331264] =>.Intel(R) Corporation
O58 - SDL:2012/01/19 01:30:42 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60a.sys [435240] =>.Broadcom Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:08:54 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [27008] =>.Malwarebytes Corporation®
O58 - SDL:2016/03/10 14:08:58 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [140672] =>.Malwarebytes Corporation®
O58 - SDL:2016/10/04 22:43:34 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:09:06 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [64896] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2016/05/21 13:39:59 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [161760] =>.AVAST Software a.s.®
O58 - SDL:2013/09/05 03:36:46 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11273504] =>.NVIDIA Corporation®
O58 - SDL:2013/09/05 03:37:00 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvpciflt.sys [30496] =>.NVIDIA Corporation®
O58 - SDL:2009/07/14 04:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488] =>.Microsoft Windows®
O58 - SDL:2013/04/29 09:17:34 A . (.Panda Security, S.L. - Panda Kernel Memory Access Driver (x86).) -- C:\Windows\System32\drivers\PSKMAD.sys [47632] =>.Panda Security S.L®
O58 - SDL:2009/07/14 04:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2012/01/03 13:55:54 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [4730344] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 23:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 04:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2016/04/03 11:44:22 A . (.Authors - .) -- C:\Windows\System32\drivers\TrueSight.sys [24688] =>.Adlice®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
---\\ Last modified or created user files (167) - 52s
O61 - LFC: 2016/09/19 20:25:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000007240000DDA2D4E9.bin [816]
O61 - LFC: 2016/09/19 20:26:17 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000000A140000D3F5D0E8.bin [924]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000000F0400000682802A.bin [704]
O61 - LFC: 2016/09/19 20:26:13 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000000F240000DD655F08.bin [1124]
O61 - LFC: 2016/09/19 20:26:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000001E240000C113F8A0.bin [760]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000001ED30000ABDA584B.bin [280]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000001F400000709B68CD.bin [328]
O61 - LFC: 2016/09/19 20:26:19 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002154000058343115.bin [1304]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002411000074A335D2.bin [1112]
O61 - LFC: 2016/09/19 20:24:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000024110000AC036C11.bin [796]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002860000092F2AFE2.bin [280]
O61 - LFC: 2016/09/19 20:25:29 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002E240000460BE823.bin [816]
O61 - LFC: 2016/09/19 20:25:38 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002E24000062BE8A88.bin [816]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000002ED3000018CFEE93.bin [280]
O61 - LFC: 2016/09/19 20:25:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000382400006A82EB9A.bin [816]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000003F40000055CA37D8.bin [272]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000464400000BA5D6F0.bin [1132]
O61 - LFC: 2016/09/19 20:25:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000049340000FA5CA46F.bin [1520]
O61 - LFC: 2016/09/19 20:26:18 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004B140000D7915D02.bin [924]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004B2400001EF97283.bin [816]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004DD300000E93FF45.bin [280]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000004FD3000022A72D81.bin [280]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000050010000872B25A2.bin [356]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000510100000887C260.bin [356]
O61 - LFC: 2016/09/19 20:25:33 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000582400009E1B2010.bin [1052]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000005D4000008FB94F90.bin [360]
O61 - LFC: 2016/09/19 20:25:35 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000005F540000FBDDE390.bin [2468]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000060600000CDC6B697.bin [384]
O61 - LFC: 2016/09/19 20:26:19 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006254000054FEE3A5.bin [1304]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006DD30000705D55F2.bin [280]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006ED30000B6994C48.bin [280]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000006F24000095AAE41E.bin [840]
O61 - LFC: 2016/09/19 20:25:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000007464000080B648C7.bin [2468]
O61 - LFC: 2016/09/19 20:24:29 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000079400000CA0B1406.bin [312]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000007A140000B687A06C.bin [596]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000007F0400002676D5A9.bin [784]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000081110000373DB327.bin [356]
O61 - LFC: 2016/09/19 20:25:27 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000085440000C8BCE38E.bin [1132]
O61 - LFC: 2016/09/19 20:25:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000085640000E6F9A53C.bin [2468]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000089500000A96A6A4B.bin [436]
O61 - LFC: 2016/09/19 20:23:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000008C4000002C473430.bin [368]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000008CD30000A3D373EE.bin [280]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000008ED300004CC3D1F9.bin [280]
O61 - LFC: 2016/09/19 20:25:33 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000094640000663480C1.bin [2468]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000097440000543D5AB2.bin [1340]
O61 - LFC: 2016/09/19 20:26:15 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\0100000098140000520637C4.bin [924]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\010000009A040000CF88DA08.bin [700]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000A3D30000722437DE.bin [584]
O61 - LFC: 2016/09/19 20:24:55 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000A8700000C2111E51.bin [804]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000AD400000E38A1B4A.bin [368]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000ADD3000018A96334.bin [280]
O61 - LFC: 2016/09/19 20:26:21 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000B0140000222FE5D5.bin [784]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000C3B3000045060A82.bin [332]
O61 - LFC: 2016/09/19 20:24:57 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000C6400000D085A913.bin [252]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000CEB3000058C7EFDB.bin [424]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000CF0400007DB28469.bin [424]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000CFC300002C800A4B.bin [324]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000D64400005BFCDE8C.bin [1340]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000D660000041DCB923.bin [280]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000DDC300000A66C90D.bin [324]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000DF400000D4F69538.bin [172]
O61 - LFC: 2016/09/19 20:26:46 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000E0340000BCB5E8A2.bin [872]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000E2140000260F5919.bin [564]
O61 - LFC: 2016/09/19 20:26:14 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000EB2400002841B622.bin [1124]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000ECC30000C05EB5F9.bin [536]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000F201000077415785.bin [796]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000F2010000C690CDF3.bin [1112]
O61 - LFC: 2016/09/19 20:26:11 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\vs_3_0\01000000FD2400008AC120FE.bin [1124]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000001500000C415A6F8.bin [316]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000001500000ECADA865.bin [316]
O61 - LFC: 2016/09/19 20:26:15 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000016F000009C8D79C.bin [4412]
O61 - LFC: 2016/09/19 20:24:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000008710000CE9045E1.bin [1268]
O61 - LFC: 2016/09/19 20:24:44 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000008710000FF6EAE3E.bin [1964]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000000E3D0000E89108B7.bin [952]
O61 - LFC: 2016/09/19 20:26:13 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000012A010008BFC6EAC.bin [11940]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000182E00004F94170A.bin [216]
O61 - LFC: 2016/09/19 20:24:44 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000001871000024431860.bin [1964]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000018710000B008413C.bin [1268]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000190E00006A94F238.bin [252]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000001B0E0000C380505B.bin [1640]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000001B7000005D0BB43B.bin [504]
O61 - LFC: 2016/09/19 20:26:14 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000023A010007935B2E7.bin [6916]
O61 - LFC: 2016/09/19 20:26:18 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000025801000B0E64EDF.bin [5068]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000275100007F530223.bin [300]
O61 - LFC: 2016/09/19 20:24:29 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000029400000FDB0BC0F.bin [220]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000002B7000004C441D20.bin [504]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000034A01000FFE898D6.bin [5580]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000003A0E0000557F03A3.bin [1488]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000451D00002977424C.bin [248]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000492F0000B9BA26BF.bin [2404]
O61 - LFC: 2016/09/19 20:26:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000004A400000D370F92B.bin [124]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000531D0000008FB184.bin [248]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000540D000059D38802.bin [512]
O61 - LFC: 2016/09/19 20:26:15 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000055FE000077AFAF01.bin [2004]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000005C500000801A81A4.bin [340]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000005C50000089AADCF5.bin [336]
O61 - LFC: 2016/09/19 20:26:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000005C8F00001212D1DF.bin [8120]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000062600000D70DEB17.bin [364]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000657100003335A98B.bin [484]
O61 - LFC: 2016/09/19 20:24:51 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000667000002860021C.bin [520]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000676100006141ECB5.bin [300]
O61 - LFC: 2016/09/19 20:24:44 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000067610000D032B30A.bin [300]
O61 - LFC: 2016/09/19 20:26:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000006B5F00005C6E2429.bin [6784]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000007260000020BAD4CC.bin [364]
O61 - LFC: 2016/09/19 20:26:17 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000728010003647D128.bin [10840]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000007571000065103A68.bin [484]
O61 - LFC: 2016/09/19 20:26:46 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000075AF000053FBB611.bin [8852]
O61 - LFC: 2016/09/19 20:23:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000007D400000448A7EC3.bin [220]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000008150000022EA1424.bin [336]
O61 - LFC: 2016/09/19 20:24:55 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000084400000187ACF90.bin [156]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000872E0000B128CF8E.bin [540]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000008F600000C9EA1093.bin [408]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000935D0000192CD1A9.bin [788]
O61 - LFC: 2016/09/19 20:24:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000009961000035ACCA84.bin [1060]
O61 - LFC: 2016/09/19 20:24:43 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\0000000099610000E95F0CC1.bin [1756]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000009B51000065526092.bin [1756]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\000000009B510000B2FB316A.bin [1060]
O61 - LFC: 2016/09/19 20:25:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000A02F0000A5836BDA.bin [156]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000A13D00004B85354D.bin [596]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000AE40000042716C21.bin [288]
O61 - LFC: 2016/09/19 20:25:35 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000B080100050A62F7A.bin [5620]
O61 - LFC: 2016/09/19 20:24:45 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000B650000042AEDB86.bin [328]
O61 - LFC: 2016/09/19 20:26:19 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000B900100080AF28B2.bin [10112]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000BA0E000057203B08.bin [840]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000BE40000002C218CE.bin [288]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C01F0000CF7FB2DB.bin [448]
O61 - LFC: 2016/09/19 20:24:48 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C460000002A95BAD.bin [376]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C46100009D2A9895.bin [300]
O61 - LFC: 2016/09/19 20:25:28 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C62E00007FA166D8.bin [216]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C75100001E333DC3.bin [300]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C9400000B53D758B.bin [248]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C95100003C9BB2AB.bin [300]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C9510000B4758740.bin [248]
O61 - LFC: 2016/09/19 20:23:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000C9510000C6697259.bin [300]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D0700000D8BD41C7.bin [600]
O61 - LFC: 2016/09/19 20:25:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D58010008961215D.bin [6260]
O61 - LFC: 2016/09/19 20:25:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D78010002BD52F68.bin [9208]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D7801000CA023F6D.bin [9208]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D82E0000423DF7FA.bin [540]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D8500000C0D5C4CD.bin [328]
O61 - LFC: 2016/09/19 20:26:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000D90E0000848C3A0C.bin [716]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000DB0E0000E25DC301.bin [2072]
O61 - LFC: 2016/09/19 20:25:07 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E2500000F44A0AAC.bin [300]
O61 - LFC: 2016/09/19 20:26:18 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E3801000BCB67306.bin [10668]
O61 - LFC: 2016/09/19 20:25:36 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E3BD0000C0197A1E.bin [832]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E40D0000D8949E96.bin [592]
O61 - LFC: 2016/09/19 20:25:46 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000E6801000EB143385.bin [6616]
O61 - LFC: 2016/09/19 20:24:57 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000EC30000027E77B4D.bin [124]
O61 - LFC: 2016/09/19 20:25:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000EE1F0000A78A7852.bin [176]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F15000007118ACAA.bin [300]
O61 - LFC: 2016/09/19 20:26:21 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F2A01000FB1B6101.bin [11212]
O61 - LFC: 2016/09/19 20:25:37 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F48010009A0D3AFB.bin [6168]
O61 - LFC: 2016/09/19 20:26:22 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F4AE00007DB41F34.bin [2064]
O61 - LFC: 2016/09/19 20:25:34 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F58010006E432D5E.bin [6344]
O61 - LFC: 2016/09/19 20:25:04 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F66100007EBBB97A.bin [248]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F6610000A016F2A3.bin [248]
O61 - LFC: 2016/09/19 20:26:31 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F70D00002882ECDF.bin [892]
O61 - LFC: 2016/09/19 20:23:30 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F85100002E0BCDF8.bin [248]
O61 - LFC: 2016/09/19 20:25:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F8BF0000B8ABDC4F.bin [2080]
O61 - LFC: 2016/09/19 20:26:40 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F90E0000F49264B4.bin [420]
O61 - LFC: 2016/09/19 20:23:32 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000F940000027957D83.bin [248]
O61 - LFC: 2016/09/19 20:26:20 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000FA00100084E7A528.bin [7596]
O61 - LFC: 2016/09/19 20:26:42 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000FA0E00003B8E9D3C.bin [1948]
O61 - LFC: 2016/09/19 20:25:41 A . (..) -- C:\Users\ManUtd\Documents\Paradox Interactive\Hearts of Iron IV\shadercache\dx9\ps_3_0\00000000FD1F00008CF08A9D.bin [156]
O61 - LFC: 2016/09/30 22:58:20 A . (..) -- C:\Users\ManUtd\AppData\Roaming\ViberPC\6.3.0.1532\ViberUpdater.cmd [1732]
O61 - LFC: 2016/09/30 22:58:20 A . (..) -- C:\Users\ManUtd\AppData\Roaming\ViberPC\6.3.0.1532\6.3.0.1532\ViberUpdater.cmd [1732]
O61 - LFC: 2016/10/03 20:11:58 A . (..) -- C:\Users\ManUtd\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [118065]
---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (20) - 1s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (2) - 7s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
---\\ Search Svchost Services (33) - 1s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [235520] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [776192] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [845824] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [676864] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [343552] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316416] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [706560] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2428952] =>.Microsoft Windows Component Publisher®
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [848384] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [369664] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [565760] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [104960] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1104384] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation
---\\ Firewall Active Exception List (10) - 5s
O87 - FAEL: "TCP Query User{2EA5FBB6-16C0-481E-A0AB-C18A4A6C2F0B}C:\program files (x86)\fifa 13\game\fifa13.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\fifa 13\game\fifa13.exe (.not file.)
O87 - FAEL: "UDP Query User{B90AE177-8938-4237-A6A4-028045EBA0D3}C:\program files (x86)\fifa 13\game\fifa13.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\fifa 13\game\fifa13.exe (.not file.)
O87 - FAEL: "TCP Query User{819C5812-0D8D-4C23-84E6-8E981AB485EF}C:\users\manutd\appdata\roaming\as\rtmpgw.exe" [In-None-P6-TRUE] .(...) -- C:\users\manutd\appdata\roaming\as\rtmpgw.exe
O87 - FAEL: "UDP Query User{85EC6EED-8189-4FAA-8B41-2AEDA25A0EF7}C:\users\manutd\appdata\roaming\as\rtmpgw.exe" [In-None-P17-TRUE] .(...) -- C:\users\manutd\appdata\roaming\as\rtmpgw.exe
O87 - FAEL: "{9E2F520F-45D1-416F-A5A3-BB5564FDC86A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O87 - FAEL: "{DDD78048-B0F7-4306-AF56-A3802A18DC86}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O87 - FAEL: "{D4CE955B-7503-45B8-83B5-9288EC478B97}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YServer.exe (.not file.)
O87 - FAEL: "{7E887E9D-3AD1-4ECE-A63B-2DB9B845F6A4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YServer.exe (.not file.)
O87 - FAEL: "{0056A742-C2C6-44D4-8794-096033B53F1D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YPager.exe (.not file.)
O87 - FAEL: "{2F6FF90B-24D3-412E-A58A-0ABFE8EEC356}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Yahoo!\Messenger\YPager.exe (.not file.)
---\\ Windows Installer Scan (1) - 5s
[MD5.] [WIS][2015/08/26 14:31:21] (.APN, LLC - Ask.com ® - Install Builder.) -- C:\Windows\Installer\24acf91.msi [0] =>PUP.Optional.Bandoo
---\\ Additional Scan (O88) (1) - 0s
C:\Windows\Installer\24acf91.msi =>PUP.Optional.Bandoo
---\\ Summary of the elements found (1) - 0s
https://www.nicolascoolman.com/fr/adware-bandoo/ =>PUP.Optional.Bandoo
~ End of the scan, 63237 items in 00h07mn49s (1273)