~ ZHPDiag v2015.8.20.122 By Nicolas Coolman (2015/08/20) ~ Run by moose (Administrator) (2015/08/20 17:58:16) ~ Web: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: Version OK ~ Mode: Scan ~ Report: C:\Users\moose\Desktop\ZHPDiag.txt ~ Report: C:\Users\moose\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601) ---\\ Internet Browsers (3) - 0s GCIE: Google Chrome v44.0.2403.155 MFIE: Mozilla Firefox 39.0.3 (x86 en-US) v39.0.3 MSIE: Internet Explorer v9.0.8112.16421 ---\\ Windows Product Information (5) - 4s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Key Management Service client information : KO Windows Automatic Updates : OK (Auto) Windows Activation Technologies : OK ---\\ System protection software (3) - 3s Check Point Deployment Shell v8.00.0000 Kaspersky Anti-Virus 2013 v13.0.1.4190 Windows Defender W7 (Activate) ---\\ System optimization software (1) - 3s CCleaner v5.07 ---\\ Surveillance software (2) - 3s Adobe Flash Player 10 ActiveX Adobe Reader XI ---\\ Sharing software PeerToPeer (2) - 4s Pando Media Booster v2.6.0.7 µTorrent v3.3.0.29625 ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 7972.824 MB (23% free) ~ System Restore: Activé (Enable) ~ System drive C: has 4 GB free of 223 GB ---\\ Connection to the system mode (3) - 0s ~ Computer Name: MOOSE-THINK ~ User Name: moose ~ Logged in as Administrator ---\\ Enumeration of the disk units (4) - 0s ~ Drive C: has 4 GB free of 223 GB (System) ~ Drive D: has GB free of 0 GB ~ Drive G: has 10 GB free of 61 GB ~ Drive Q: has 6 GB free of 17 GB ---\\ State of the Windows Security Center (14) - 0s [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Search Generic System Files (22) - 1s [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808] [MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024] [MD5.115705BBED3CACDCEEFDA25E516A92A1] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [1392128] [MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [455168] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [232448] [MD5.79059559E89D06E8B80CE2944BE20228] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ---\\ Process running (83) - 3s [MD5.3F9866B4AD7EF4666006BF9C799F39E4] - (.AuthenTec, Inc - TrueSuite Service.) -- C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe [2139944] [PID.672] [MD5.5A1E3B4BA187327DF5FF122F96FA753A] - (.Lenovo. - Lenovo Power Management Service.) -- C:\Windows\system32\ibmpmsvc.exe [68440] [PID.1060] [MD5.C355E18A892271574976DFEC962A66C5] - (.Lenovo - ThinkVantage Access Connections Profile Man.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe [133360] [PID.1352] [MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1372] [MD5.650D03E40F93FAE323CB841F80368E5C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [60744] [PID.2080] [MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.2196] [MD5.EB0F8E672B34A162E9901262A903A75A] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384728] [PID.2232] [MD5.BE8262465886573E161666CC0955AE01] - (.BlueStack Systems, Inc. - BlueStacks Updater Service.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [777944] [PID.2284] [MD5.26A80D7ACA49E03A403806418B5FED46] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [957216] [PID.2380] [MD5.6B3087E2BBC73F902C03EFBF696A7A0C] - (.Check Point Software Technologies - .) -- C:\Program Files (x86)\CheckPoint\SSL Network Extender\slimsvc.exe [366712] [PID.2488] [MD5.F160B26B26BA4AFE8CECC12ED5AC231E] - (.Conexant Systems Inc. - Conexant Audio Message Service.) -- C:\Windows\system32\CxAudMsg64.exe [198784] [PID.2540] [MD5.375640F39F2D613B6FDCF8C2F956205A] - (.Apache Software Foundation - Apache HTTP Server.) -- c:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe [24636] [PID.2584] [MD5.B443D3D1B6F21C2B424E49491B65C488] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [163608] [PID.2696] [MD5.C59715BFC9DB2A17ABE92577DFF6A2B8] - (.Phase Five Systems - Jump Desktop Service.) -- C:\Program Files (x86)\Jump Desktop\JumpService.exe [7680] [PID.2752] [MD5.4A0235E9822B220339E34D8C122BB6D1] - (.Lenovo Group Limited - Camera Mute Control Service for ThinkPad.) -- C:\Program Files\Lenovo\Communications Utility\CamMute.exe [58224] [PID.2812] [MD5.93921A19D885755B9751C3744DBCB8FD] - (.Lenovo Group Limited - Microphone volume control service.) -- C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [61296] [PID.2852] [MD5.79F99A4D59825839B7E563B4BCF52C5E] - (.Lenovo Group Limited - ThinkVantage Virtual Camera Controller.) -- C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [179568] [PID.2876] [MD5.F7DE50781DC4D162C1005EB30D98F931] - (.Lenovo Group Limited - Auto Scroll Start Service.) -- C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [133992] [PID.3012] [MD5.375640F39F2D613B6FDCF8C2F956205A] - (.Apache Software Foundation - Apache HTTP Server.) -- C:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe [24636] [PID.1140] [MD5.648625BA9C540F26EFA7E27A9312D73B] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\Windows\SysWOW64\NLSSRV32.EXE [70152] [PID.4336] [MD5.0540796C11792D4368C2210992ED714A] - (.Conexant Systems, Inc. - SmartAudio Service Application.) -- C:\Windows\SysWOW64\SASrv.exe [446592] [PID.4420] [MD5.667EF334C512416712F14118E3382919] - (.Lenovo Group Limited - On screen display Fn+Fx handler.) -- C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe [126512] [PID.4620] [MD5.BE788A747457E6916586C410EC0111E7] - (.Ulead Systems, Inc. - ULCDRSvr.) -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [61440] [PID.4684] [MD5.FEDE77E3F60D381F1601ABF3F9C2B8AC] - (.Lenovo Group Limited - NumLock indicator for ThinkPad.) -- C:\Program Files\Lenovo\HOTKEY\tpnumlk.exe [144432] [PID.4708] [MD5.295010C3EDECCAF760853544D0C92C03] - (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\SysWOW64\vmnat.exe [437976] [PID.4772] [MD5.2BACD71123F42CEA603F4E205E1AE337] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096] [PID.4824] [MD5.59997CDE434376E03384C2659728DA17] - (.Lenovo - ThinkVantage Access Connections Main Servic.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe [276720] [PID.4900] [MD5.2A46FFE841EC43001D5A293A54DB34DE] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223104] [PID.4968] [MD5.BC381F006A302D01D20B0B5768AE3A94] - (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) -- C:\Program Files\Lenovo\HOTKEY\micmute.exe [110128] [PID.4864] [MD5.78705F920CA665F55EAD64715A0817A2] - (.Lenovo Group Limited - Lenovo Auto Scroll Utility.) -- C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe [109632] [PID.5240] [MD5.3B4250CB21F95FFA64162389106F39BA] - (.Lenovo Group Limited - ThinkPad Message Client Loader.) -- C:\Program Files\Lenovo\HOTKEY\tphkload.exe [124400] [PID.5788] [MD5.1AA9C2331234786211A261C8FC69EB25] - (.VMware, Inc. - VMware Authorization Service.) -- C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe [86744] [PID.5960] [MD5.B1792BAC62AB3262C26204C500140F1A] - (.Lenovo Group Limited - NumLock on screen display for ThinkPad.) -- C:\Program Files\Lenovo\HOTKEY\tpnumlkd.exe [237616] [PID.6052] [MD5.A2DA476DECC5DC9C23955330649A90D6] - (.Lenovo Group Limited - ThinkPad Message Receiver for changing F1-F.) -- C:\Program Files\Lenovo\HOTKEY\mkrmsg.exe [70704] [PID.5728] [MD5.A999C2F729F0C80F92E3DEA9C46C3650] - (.Lenovo Group Limited - On screen display drawer.) -- C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe [567856] [PID.5740] [MD5.E9535458589FF8643109D9201E0FAB32] - (.Lenovo Group Limited - ThinkPad Message Receiver for Shortcut Hot.) -- C:\Program Files\Lenovo\HOTKEY\shtctky.exe [123376] [PID.5572] [MD5.7EEBDDF76D013181E21592D2FFD66A98] - (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\SysWOW64\vmnetdhcp.exe [359128] [PID.5108] [MD5.41FAE6618768DC93D98DDAF3F8282D3E] - (.VMware, Inc. - VMware USB Arbitration Service.) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [906432] [PID.2712] [MD5.D14B3B8E28F8D210598C7F416FBE8210] - (.Lenovo - ThinkVantage Access Connections Service GUI.) -- C:\Program Files (x86)\Lenovo\Access Connections\SvcGuiHlpr.exe [616688] [PID.6768] [MD5.3BE3B4153A5E37739D8731DE55649A0F] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [398656] [PID.1752] [MD5.6B23053FF8D50E6B222076B8404E0501] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [440128] [PID.1216] [MD5.F404A27DD1223345B0DB0A9A381AAC22] - (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [564352] [PID.5708] [MD5.42361B4BD80768E82B80285851037665] - (.Copyright (C) 2010 - FMAPP Application.) -- C:\Program Files\CONEXANT\ForteConfig\fmapp.exe [49056] [PID.4836] [MD5.D1D974B76EB4ACE2978837CFED7833E6] - (.Lenovo. - ThinkVantage Active Protection System.) -- C:\Windows\System32\TpShocks.exe [228744] [PID.2964] [MD5.98D545CE59F64C2C4D005A4A61BB0835] - (.Lenovo Group Limited - Communications Utility launcher.) -- C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe [290160] [PID.5888] [MD5.4AD32D1373448FE5C9D573B6D0CE904D] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2881336] [PID.6940] [MD5.72C3147427605C9A08521204E6C26202] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe [2991856] [PID.7060] [MD5.35D303B68370462AEDD4C1871073AD1D] - (.http://tortoisesvn.net - TortoiseSVN status cache.) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe [335600] [PID.1640] [MD5.837CFE3679904A8A5DD592ACD6C50B8F] - (.Synaptics Incorporated - TouchPad Driver Helper Application.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [156984] [PID.7248] [MD5.71207B783B99403275FE1E9E01297339] - (.Logitech, Inc. - Logitech KHAL Main Process.) -- C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe [232688] [PID.7808] [MD5.0EF0822810009D58118CCDFD098FA9F4] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480] [PID.8472] [MD5.E1EAA6D07F53BC7EBE4E43F8288FA34C] - (.Lenovo - Lenovo Solution Center Notifications.) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1360672] [PID.9176] [MD5.0D6A5008D22A4C59003B5E045685B546] - (.AuthenTec, Inc. - TrueAPI Server.) -- C:\Program Files\Common Files\AuthenTec\TrueService.exe [401704] [PID.8656] [MD5.0D6A5008D22A4C59003B5E045685B546] - (.AuthenTec, Inc. - TrueAPI Server.) -- C:\Program Files\Common Files\AuthenTec\TrueService.exe [401704] [PID.9256] [MD5.21A2AF869AD972456EF2BADC2B9734D3] - (.Lenovo - Message Center Plus Scheduler.) -- C:\Program Files (x86)\Lenovo\message center plus\mcplaunch.exe [65336] [PID.9628] [MD5.7FAE5B6CDB18B0B2E81F32869F595022] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [643880] [PID.9812] [MD5.4D66A97F71D94DDA8A53A2D37CD469F5] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [123192] [PID.10040] [MD5.9BE23DF9B1FC56F58DD0F28CC187E713] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.8680] [MD5.F036CFB275D0C55F4E45FBBF5F98B3C8] - (.Protexis Inc. - PsiService PsiService.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [193824] [PID.2576] [MD5.30FF46EABCA1BB18E4F357492A8F7FC9] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.6324] [MD5.1CA070F6D26FB7191D9308367F955512] - (...) -- C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe [705760] [PID.11312] =>PUP.Optional.CrossRider [MD5.C75FBC6E329DCD512BCDAE40AF8CDBA3] - (...) -- C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe [1190624] [PID.7684] =>PUP.Optional.CrossRider [MD5.EA5B870671079786F335AC7C10846C4F] - (.Adobe Systems Incorporated - AAM Updates Notifier Application.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe [295584] [PID.21488] [MD5.F83D92EA69649B1986FEC6DA99AD025D] - (.Lenovo - Access Connections Deskband Helper Module.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcDeskBandHlpr.exe [850160] [PID.33640] [MD5.15D2DB9BFA8E833ED31FAB2BB088FDDA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356128] [PID.33296] [MD5.15D2DB9BFA8E833ED31FAB2BB088FDDA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe [356128] [PID.30348] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.23724] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.34496] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.34284] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.33148] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.7044] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.34624] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.33488] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.33184] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.35788] [MD5.345886D0A81F2318E6FB4362E480BF97] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.37108] [MD5.345886D0A81F2318E6FB4362E480BF97] - (.Adobe Systems Incorporated - Adobe Reader.) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe [1541352] [PID.37688] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.41024] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.41356] [MD5.F7CEB1E5F0000FDEEE04B046BBDE1D4E] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.40440] [MD5.8F9D6A8DEEAEF5CDAF54A6EF9661EF47] - (.AuthenTec Inc. - TouchControl.) -- C:\Program Files\Lenovo Fingerprint Reader\TouchControl.exe [2905384] [PID.45416] [MD5.F820401D0D2754C3A78C707927058A41] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [813896] [PID.48144] [MD5.63E20985B61368A6172D93D0245DC9F8] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\moose\Downloads\ZHPDiag3.exe [1895424] [PID.48740] ---\\ Google Chrome, Start,Search,Extensions (19) - 0s G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com/ G2 - GCE: Preference [User Data\Default] [bhmmomiinigofkjcapegjjndpbikblnp] WOT: Web of Trust Website Reputation Ratings G2 - GCE: Preference [User Data\Default] [bkkbcggnhapdmkeljlodobbkopceiche] Poper Blocker G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__ G2 - GCE: Preference [User Data\Default] [ckibcdccnfeookdmbahgiakhnjcddpki] __MSG_name__ G2 - GCE: Preference [User Data\Default] [coonecdghnepgiblpccbbihiahajndda] Tab Manager G2 - GCE: Preference [User Data\Default] [dchlnpcodkpfdpacogkljefecpegganj] __MSG_ExtensionName__ G2 - GCE: Preference [User Data\Default] [dllkocilcinkggkchnjgegijklcililc] Google News G2 - GCE: Preference [User Data\Default] [edacconmaakjimmfgnblocblbcdcpbko] Session Buddy G2 - GCE: Preference [User Data\Default] [eiimnmioipafcokbfikbljfdeojpcgbh] Block site G2 - GCE: Preference [User Data\Default] [fdpohaocaechififmbbbbbknoalclacl] Full Page Screen Capture G2 - GCE: Preference [User Data\Default] [gcbommkclmclpchllfjekcdonpmejbdp] __MSG_about_ext_name__ G2 - GCE: Preference [User Data\Default] [iicapmagmhahddefgokbabbgieiogjop] Facebook Unseen G2 - GCE: Preference [User Data\Default] [jmolcgpienlcieaajfkkdamlngancncm] IDM Integration G2 - GCE: Preference [User Data\Default] [khgabmflimjjbclkmljlpmgaleanedem] SparkChess 8 G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [obciceimmggglbmelaidpjlmodcebijb] __MSG_manifest_name__ G2 - GCE: Preference [User Data\Default] [pfcgjlglddicjopgimohdcbmabacamll] Antidote ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (44) - 5s M0 - MFSP: prefs.js [moose - x5l3ec3k.default] http://ca.search.yahoo.com/?fr=hp-ddc-bd&type=bl-bfr-sw-rhb-34__alt__ddc_dsssyc_bd_com P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.FRA P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\QuickTimePlugin.class P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\firebug@software.joehewitt.com.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\jid1-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\langpack-fr@firefox.mozilla.org.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\save-as-pdf-ff@pdfcrowd.com.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\translator@zoli.bod.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\unplug@compunach.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\unseen@tangrs.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\vdpure@link64.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{4de8639f-553b-4afc-98c4-3089e56100ba}.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{85E85FF9-E50C-42DE-8A3D-61485FD6C8DB}.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\search-simple.xml =>PUP.Optional.SearchSimple P2 - EXT FILE: (...) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazondotcom.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\twitter.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} P2 - EXT: (.Druide informatique inc. - Module d'Antidote.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\antidote7_win_firefox_103@druide.com P2 - EXT: (.Microsoft Corporation - Bing Search Engine.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\bingsearch.full@microsoft.com P2 - EXT: (.Olivier R. - Dictionnaires français.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\fr-dicollecte@dictionaries.addons.mozilla.org P2 - EXT: (.Liono - DebrideurStreaming - Add-On.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\jid0-6gzTcCreJnRqoIj7t8ltxj2HuKc@jetpack P2 - EXT: (.Nuclear Coffee Software - VideoGet FireFox extension.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{85E85FF9-E50C-42DE-8A3D-61485FD6C8DB} P2 - EXT: (.V@no - Cookies Manager+.) -- C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d} P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited.) -- C:\Users\moose\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google.) -- C:\Users\moose\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll P2 - FPN: [HKCU] [@talk.google.com/O1DPlugin] - (.Google.) -- C:\Users\moose\AppData\Roaming\Mozilla\plugins\npo1d.dll P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS.) -- C:\Users\moose\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google.) -- C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKLM] [@pandonetworks.com/PandoWebPlugin] - (.Pando Networks.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll ---\\ Internet Explorer Extensions, Start, Search (13) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:8080 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (1) ---\\ Browser Helper Object (BHO) (2) - 1s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll O2 - BHO: Freecorder extension x64 [64Bits] - {B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} . (...) -- C:\Program Files\Freecorder extension x64\ScriptHost.dll (.not file.) =>PUP.Optional.FreecorderExtension ---\\ Auto loading programs from Registry and folders (46) - 1s O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe O4 - HKLM\..\Run: [ForteConfig] . (.Copyright (C) 2010 - FMAPP Application.) -- C:\Program Files\CONEXANT\ForteConfig\fmapp.exe O4 - HKLM\..\Run: [TpShocks] . (.Lenovo. - ThinkVantage Active Protection System.) -- C:\Windows\System32\TpShocks.exe O4 - HKLM\..\Run: [LENOVO.TPKNRRES] . (.Lenovo Group Limited - Communications Utility launcher.) -- C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [AcWin7Hlpr] . (.Lenovo - Access Connections Toolbar Enabler Module.) -- C:\Program Files (x86)\Lenovo\Access Connections\AcTBenabler.exe O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe O4 - HKLM\..\Run: [Firebird] (Orphean) O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe O4 - HKLM\..\Run: [SmartAudio] . (.Conexant Systems, Inc. - SmartAudio CPL (32bit).) -- C:\Program Files\CONEXANT\SAII\SACpl.exe O4 - HKLM\..\Run: [InstallerLauncher] C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe (.not file.) O4 - HKLM\..\Run: [AgentAntidote32] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 8\Programmes32\AgentAntidote.exe O4 - HKLM\..\Run: [AgentAntidote64] . (.Druide informatique inc. - AgentAntidote.) -- C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe O4 - HKLM\..\Run: [combofix] C:\ComboFix\CF27191.3XE /c C:\ComboFix\Combobatch.bat (.not file.) O4 - HKLM\..\RunOnce: [combofix] C:\ComboFix\CF27191.3XE /c C:\ComboFixCombobatch.bat (.not file.) O4 - HKCU\..\Run: [AdobeBridge] (Orphean) O4 - HKCU\..\Run: [JumiController] (Orphean) O4 - HKCU\..\Run: [MP3 Skype Recorder] . (.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - HKCU\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\moose\AppData\Local\FluxSoftware\Flux\flux.exe O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\moose\AppData\Local\Microsoft\BingSvc\BingSvc.exe O4 - HKLM\..\Wow6432Node\Run: [Nwpi] (Orphean) O4 - HKLM\..\Wow6432Node\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [DivXMediaServer] . (.DivX, LLC - DivX Media Server Launcher.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (.not file.) O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet] C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe (.not file.) O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Application Agent] C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (.not file.) O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (.not file.) O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe (.not file.) O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Application Agent] C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (.not file.) O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [AdobeBridge] (Orphean) O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [JumiController] (Orphean) O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [MP3 Skype Recorder] . (.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\Program Files (x86)\MP3 Skype Recorder\MP3 Skype Recorder.exe O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\moose\AppData\Local\FluxSoftware\Flux\flux.exe O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe O4 - HKUS\S-1-5-21-560263400-1849093960-2493678622-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\moose\AppData\Local\Microsoft\BingSvc\BingSvc.exe ---\\ Lop.com/Domain Hijackers (6) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 172.20.10.1 ---\\ AppInit_DLLs Registry value Autorun (1) - 0s O20 - AppInit_DLLs: . (.Jaksta Technologies Pty Ltd - Jaksta audio capture.) - C:\Program Files\Common Files\Jaksta Technologies\Audio Capture\jaudcap64.dll ---\\ Non Microsoft non disabled Windows Services (40) - 2s O23 - Service: (AcPrfMgrSvc) . (.Lenovo - ThinkVantage Access Connections Profile Man.) - C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe O23 - Service: (AcSvc) . (.Lenovo - ThinkVantage Access Connections Main Servic.) - C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc. - BlueStacks Service.) - C:\Program Files (x86)\BlueStacks\HD-Service.exe O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe O23 - Service: Check Point SSL Network Extender (cpextender) . (.Check Point Software Technologies - .) - C:\Program Files (x86)\CheckPoint\SSL Network Extender\slimsvc.exe O23 - Service: @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc. - Conexant Audio Message Service.) - C:\Windows\system32\CxAudMsg64.exe O23 - Service: doliwampapache (doliwampapache) . (.Apache Software Foundation - Apache HTTP Server.) - c:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe O23 - Service: doliwampmysqld (doliwampmysqld) . (...) - c:\dolibarr\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe O23 - Service: TrueSuiteService (FPLService) . (.AuthenTec, Inc - TrueSuite Service.) - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: HyperW7 Service (HyperW7Svc) . (.Lenovo Group Limited - RapidBoot Shield Service.) - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe O23 - Service: Lenovo PM Service (IBMPMSVC) . (.Lenovo. - Lenovo Power Management Service.) - C:\Windows\system32\ibmpmsvc.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: Jump Desktop Service (JumpDesktop) . (.Phase Five Systems - Jump Desktop Service.) - C:\Program Files (x86)\Jump Desktop\JumpService.exe O23 - Service: Lenovo Camera Mute (LENOVO.CAMMUTE) . (.Lenovo Group Limited - Camera Mute Control Service for ThinkPad.) - C:\Program Files\Lenovo\Communications Utility\CamMute.exe O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe O23 - Service: Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) . (.Lenovo Group Limited - Microphone volume control service.) - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe O23 - Service: ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) . (.Lenovo Group Limited - ThinkVantage Virtual Camera Controller.) - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe O23 - Service: Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) . (.Lenovo Group Limited - Auto Scroll Start Service.) - C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\SysWOW64\NLSSRV32.EXE O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.) O23 - Service: Service Mgr ResultsHub (Service Mgr ResultsHub) . (...) - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub* O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited - ThinkPad Message Client Loader.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe O23 - Service: On Screen Display (TPHKSVC) . (.Lenovo Group Limited - On screen display Fn+Fx handler.) - C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc. - ULCDRSvr.) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: Update Mgr ResultsHub (Update Mgr ResultsHub) . (...) - C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub* O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe O23 - Service: VMware DHCP Service (VMnetDHCP) . (...) - C:\Windows\System32\vmnetdhcp.exe (.not file.) O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe O23 - Service: VMware NAT Service (VMware NAT Service) . (...) - C:\Windows\System32\vmnat.exe (.not file.) ---\\ Task Planned Automatically (52) - 6s [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] [MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] [MD5.1315C5C5C54CE2AA37A155F97027DB59] [APT] [AdobeAAMUpdater-1.0-moose-THINK-moose] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392] [MD5.6313BA5D7F348576758CE789AF7E548A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6405912] [MD5.00000000000000000000000000000000] [APT] [DiskUpdate] (...) -- C:\SWTOOLS\OSFIXES\DISKUPDT\DiskUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core] (...) -- C:\Users\moose\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA] (...) -- C:\Users\moose\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core] (.Google Inc..) -- C:\Users\moose\AppData\Local\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA] (.Google Inc..) -- C:\Users\moose\AppData\Local\Google\Update\GoogleUpdate.exe [116648] [MD5.C7AAC31A910E4BBFDF94D3786ED13E71] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224] [MD5.C7AAC31A910E4BBFDF94D3786ED13E71] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224] [MD5.A2908AB124DF92C98605E3021F942435] [APT] [PMTask] (.Lenovo Group Limited.) -- C:\Program Files (x86)\ThinkPad\Utilities\PWMIDTSV.EXE [3561536] [MD5.00000000000000000000000000000000] [APT] [{40700CFF-660B-4FFF-BBEA-524F811881B9}] (...) -- C:\Program Files (x86)\Counter-Strike Source\hl2.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{7F31FE32-F9FC-408F-A037-A30F7A3E3197}] (...) -- C:\Program Files (x86)\Counter-Strike Source\hl2.exe (.not file.) [0] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] [MD5.46837220233C6C852C95D7471381C0E0] [APT] [Lenovo\LSC\LSCHardwareScan] (...) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148768] [MD5.46837220233C6C852C95D7471381C0E0] [APT] [Lenovo\LSC\LSCHardwareScanPostpone] (...) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148768] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core.job [906] O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA.job [928] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] =>.Google Inc. O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] =>.Google Inc. O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core.job [1026] =>.Google Inc. O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA.job [1078] =>.Google Inc. O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job [828] =>.Intel Corporation O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job [830] =>.Intel Corporation O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] =>.Adobe Systems Incorporated O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated O39 - APT: AdobeAAMUpdater-1.0-moose-THINK-moose - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-moose-THINK-moose [3508] =>.Adobe Systems Incorporated O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Browser Manager [3434] O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2772] =>.Piriform Ltd O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Cuire le msemen [3454] O39 - APT: DiskUpdate - (...) -- C:\Windows\System32\Tasks\DiskUpdate [2836] O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core [3536] O39 - APT: FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA [3904] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3812] =>.Google Inc. O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064] =>.Google Inc. O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000Core [3656] =>.Google Inc. O39 - APT: GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-560263400-1849093960-2493678622-1000UA [4052] =>.Google Inc. O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d [3492] =>.Intel Corporation O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [3188] =>.Intel Corporation O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for moose-THINK-moose moose-THINK [4982] O39 - APT: PMTask - (.Lenovo Group Limited.) -- C:\Windows\System32\Tasks\PMTask [2958] =>.Lenovo Group Limited O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{1B3F5F6D-EDAC-4583-81FF-F3686EA10AB4} [3208] O39 - APT: {40700CFF-660B-4FFF-BBEA-524F811881B9} - (...) -- C:\Windows\System32\Tasks\{40700CFF-660B-4FFF-BBEA-524F811881B9} [2976] O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{5265436A-1034-4339-965B-1458A7E96BB0} [3134] O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{7B41C9C4-0507-499A-B6C8-EDFDB36ECE06} [3202] O39 - APT: {7F31FE32-F9FC-408F-A037-A30F7A3E3197} - (...) -- C:\Windows\System32\Tasks\{7F31FE32-F9FC-408F-A037-A30F7A3E3197} [2976] O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{C6217C08-286C-4C60-8C4D-2DCB115005B6} [3356] O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{CC9907ED-01F1-4CE3-9015-5B19EF089A94} [3108] ---\\ Software installed (327) - 19s O42 - Logiciel: Windows Driver Package - Intel (iaStor) hdc (11/29/2011 11.0.0.1032) - (.Intel.) [HKLM][64Bits] -- 64A62163FE43328D13305746CB8BCC93F2DF6545 O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA O42 - Logiciel: CPUID HWMonitor 1.27 - (...) [HKLM][64Bits] -- CPUID HWMonitor_is1 O42 - Logiciel: Firebird 2.5.2.26540 (x64) - (.Firebird Project.) [HKLM][64Bits] -- FBDBServer_2_5_x64_is1 O42 - Logiciel: Windows Driver Package - Lenovo 1.65.05.21 (01/11/2012 1.65.05.21) - (.Lenovo.) [HKLM][64Bits] -- FD2ED46D31CE7DF190049D079E92DE03D347A634 O42 - Logiciel: GIMP 2.8.4 - (.The GIMP Team.) [HKLM][64Bits] -- GIMP-2_is1 O42 - Logiciel: Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2546951 O42 - Logiciel: Service Pack 1 for SQL Server 2012 (KB2674319) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2674319 O42 - Logiciel: GDR 3128 for SQL Server 2012 (KB2793634) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2793634 O42 - Logiciel: Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB968369 O42 - Logiciel: Lenovo Auto Scroll Utility - (...) [HKLM][64Bits] -- LenovoAutoScrollUtility O42 - Logiciel: Modèle objet Microsoft Team Foundation Server 2010 - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Team Foundation Server 2010 Object Model - FRA O42 - Logiciel: On Screen Display - (...) [HKLM][64Bits] -- OnScreenDisplay O42 - Logiciel: Lenovo Power Management Driver - (...) [HKLM][64Bits] -- Power Management Driver O42 - Logiciel: Process Hacker 2.32 (r5524) - (.wj32.) [HKLM][64Bits] -- Process_Hacker2_is1 O42 - Logiciel: ScanMaster-ELM 2.1.104.771 - (.WGSoft.de.) [HKLM][64Bits] -- ScanMaster-ELM_is1 O42 - Logiciel: Logitech SetPoint 6.52 - (.Logitech.) [HKLM][64Bits] -- sp6 O42 - Logiciel: ThinkPad UltraNav Driver - (...) [HKLM][64Bits] -- SynTPDeinstKey O42 - Logiciel: TeamSpeak 3 Client - (.TeamSpeak Systems GmbH.) [HKLM][64Bits] -- TeamSpeak 3 Client O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker O42 - Logiciel: WinHTTrack Website Copier 3.48-3 (x64) - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1 O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {033DFDB6-AAFA-4AF0-B5CA-93276FA910EF} O42 - Logiciel: Lenovo Patch Utility 64 bit - (.Lenovo Group Limited.) [HKLM][64Bits] -- {0369F866-2CE0-4EB9-B426-88FA122C6E82} O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34} O42 - Logiciel: Web Deployment Tool - (.Microsoft Corporation.) [HKLM][64Bits] -- {0F37D969-1260-419E-B308-EF7D29ABDE20} O42 - Logiciel: Visual Studio 2012 Prerequisites - ENU Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {13417784-A359-3CDD-8DE1-B7108707D647} O42 - Logiciel: Microsoft Sync Framework Runtime v1.0 SP1 (x64) fr - (.Microsoft Corporation.) [HKLM][64Bits] -- {13BC74A0-C04A-4D91-8D5A-911DF4A7D6EE} O42 - Logiciel: SQL Server 2012 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D411379-9CE0-4B13-A19B-72D3222DD620} O42 - Logiciel: SQL Server 2012 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {202AAF1F-69AA-442A-B59F-6B54B1AD07C6} O42 - Logiciel: SQL Server 2012 Master Data Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {20642C29-DF87-44A7-BD0C-66903C9FC6AE} O42 - Logiciel: MaxiVista Demo Server v4.0.12 - (.Bartels Media GmbH.) [HKLM][64Bits] -- {211654D1-F7F8-4FF6-B008-354354354365}_is1 O42 - Logiciel: SQL Server 2012 Integration Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {22BCA430-2A68-4678-9824-184F3839948F} O42 - Logiciel: Oracle VM VirtualBox 4.2.18 - (.Oracle Corporation.) [HKLM][64Bits] -- {230C9C86-26A9-437F-8152-34D5F4C3F680} O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} O42 - Logiciel: SQL Server 2012 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {26773F6F-E7B5-4F58-9347-0347C998BA7D} O42 - Logiciel: SQL Server 2012 Management Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {26BFF1F1-5C03-4C55-9C7C-FD65889AFA70} O42 - Logiciel: Windows Software Development Kit for Windows Store Apps DirectX x64 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {27EF252D-800C-ED42-9904-459FE0046225} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {2ABBBD91-91E5-4AD7-929A-FE15D1DC0576} O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF} O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {3652FFB5-6F97-4113-9420-1A09A13FDDC8} O42 - Logiciel: Microsoft Web Deploy 3.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3674F088-9B90-473A-AAC3-20A00D8D810C} O42 - Logiciel: SQL Server 2012 Integration Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {36BF5D42-BF68-4E0C-A165-A4C6E9841F4A} O42 - Logiciel: Message Center Plus - (.Lenovo Group Limited.) [HKLM][64Bits] -- {3849486C-FF09-4F5D-B491-3E179D58EE15} O42 - Logiciel: SQL Server 2012 Data quality client - (.Microsoft Corporation.) [HKLM][64Bits] -- {3C50A8F3-6BB8-44E8-9B8B-D3696561DF2E} O42 - Logiciel: Microsoft VSS Writer for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3E0DD83F-BE4C-4478-86A0-AD0D79D1353E} O42 - Logiciel: Windows App Certification Kit Native Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {3FA063D7-EDC1-AFA8-54AF-0563C7DEE070} O42 - Logiciel: SQL Server 2012 Data quality service - (.Microsoft Corporation.) [HKLM][64Bits] -- {41203545-7D2E-48AE-81E9-E407BD87B703} O42 - Logiciel: ThinkVantage Active Protection System - (.Lenovo.) [HKLM][64Bits] -- {46A84694-59EC-48F0-964C-7E76E9F8A2ED} O42 - Logiciel: Lenovo Solution Center - (.Lenovo Group Limited.) [HKLM][64Bits] -- {4C2B6F96-3AED-4E3F-8DCE-917863D1E6B1} O42 - Logiciel: SQL Server 2012 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {54FF8FAB-DE27-4187-82F1-EBAE6AEE869A} O42 - Logiciel: MySQL Connector C++ 1.1.3 - (.Oracle and/or its affiliates.) [HKLM][64Bits] -- {5C7A1ED6-DC5F-4017-B363-3E80644B4BD0} O42 - Logiciel: RapidBoot Shield - (.Lenovo.) [HKLM][64Bits] -- {5E2652DF-743F-482B-A593-C95F431A5769} O42 - Logiciel: Windows Software Development Kit DirectX x64 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {5FB4C443-6BD6-1514-2717-3827D65AE6FB} O42 - Logiciel: Visual Studio 2012 Prerequisites - (.Microsoft Corporation.) [HKLM][64Bits] -- {61862D7C-CDBC-48D5-8AE1-3B8BD1E23BC5} O42 - Logiciel: SQL Server 2012 BI Development Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {656E214E-B73F-458C-AD64-ED316F008207} O42 - Logiciel: SQL Server 2012 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {6603C2CE-3C54-4F1D-92F9-8390CD4CCCA8} O42 - Logiciel: Visual Studio 2010 Prerequisites - English - (.Microsoft Corporation.) [HKLM][64Bits] -- {662014D2-0450-37ED-ABAE-157C88127BEB} O42 - Logiciel: SQL Server 2012 Client Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {6B3840D6-4B8F-4E74-9202-9CE36DA94E99} O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} O42 - Logiciel: SQL Server 2012 Documentation Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {7272DF1C-2F88-43AC-A481-84DD67DF9746} O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {74E7AE48-2396-4779-9642-B4B015A806EC} O42 - Logiciel: SQL Server 2012 Client Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {7842C220-6E9A-4D5A-AE70-0E138271F883} O42 - Logiciel: IIS 8.0 Express - (.Microsoft Corporation.) [HKLM][64Bits] -- {7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7} O42 - Logiciel: Fingerprint Reader - (.AuthenTec, Inc..) [HKLM][64Bits] -- {7DD99174-299B-4450-A179-7F27F4C2D042} O42 - Logiciel: SQL Server 2012 Data quality client - (.Microsoft Corporation.) [HKLM][64Bits] -- {80162C08-0FA6-4656-9685-AD88C6527F0B} O42 - Logiciel: MySQL Server 5.5 - (.Oracle Corporation.) [HKLM][64Bits] -- {83E02112-D21A-4BC1-B9AB-54A54F8BD093} O42 - Logiciel: ThinkVantage Communications Utility - (.Lenovo.) [HKLM][64Bits] -- {88C6A6D9-324C-46E8-BA87-563D14021442}_is1 O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: SQL Server 2012 RS_SharePoint_SharedService - (.Microsoft Corporation.) [HKLM][64Bits] -- {91C4DE4A-CE48-4F8B-9D73-D2BFB619FB88} O42 - Logiciel: SQL Server 2012 Analysis Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {9674CB74-4808-4B59-B79D-9AB501F23279} O42 - Logiciel: Microsoft Sync Framework Services v1.0 SP1 (x64) fr - (.Microsoft Corporation.) [HKLM][64Bits] -- {9869DEA6-6162-4609-9301-6B3E95853016} O42 - Logiciel: IIS Express Application Compatibility Database for x64 - (...) [HKLM][64Bits] -- {9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {A1439D4F-FD46-47F2-A1D3-FEE097C29A09} O42 - Logiciel: SQL Server 2012 Management Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {A7037EB2-F953-4B12-B843-195F4D988DA1} O42 - Logiciel: SQL Server 2012 Documentation Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3192F55-2CE8-4C8E-9E40-D3B4998276B2} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BDD99690-3541-4619-9D2A-3CDDB3E15F9E} O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {BED1EA3D-592D-4305-9D1F-20F03726EFC1} O42 - Logiciel: Yodot Recovery Software - (.Yodot Software.) [HKLM][64Bits] -- {C129A19E-4C6E-47BF-9F35-B4A3C6F4E394}_is1 O42 - Logiciel: SQL Server 2012 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {C22864D5-FB3F-4609-BF0C-ADBCC70742C4} O42 - Logiciel: Visual Studio 2010 Prerequisites - English - (.Microsoft Corporation.) [HKLM][64Bits] -- {C3175CF2-1DDD-3740-9AF7-0226CA07C6A0} O42 - Logiciel: SQL Server 2012 Master Data Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {C9B827F2-6304-41AD-B7A7-54865A3952A1} O42 - Logiciel: SQL Server 2012 Data quality service - (.Microsoft Corporation.) [HKLM][64Bits] -- {CB1265BA-F77A-4546-A26F-7C2C4C507878} O42 - Logiciel: SQL Server 2012 Documentation Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {CECA0188-BD7A-43EF-B1F7-DDF719099C46} O42 - Logiciel: SQL Server 2012 Distributed Replay - (.Microsoft Corporation.) [HKLM][64Bits] -- {D05595D6-8288-4DF8-A911-FD8D76268815} O42 - Logiciel: TortoiseSVN 1.8.2.24708 (64 bit) - (.TortoiseSVN.) [HKLM][64Bits] -- {D0DC3918-460D-4229-811E-41F22D0CD7E9} O42 - Logiciel: SQL Server 2012 SQL Data Quality Common - (.Microsoft Corporation.) [HKLM][64Bits] -- {D307B5CF-D1F0-48A4-8DA3-54765F535208} O42 - Logiciel: MySQL Connector/ODBC 5.2 64bit (community edition) - (.Oracle Corporation.) [HKLM][64Bits] -- {D8053A16-A50E-401C-B162-18119EB7CC33} O42 - Logiciel: Microsoft Team Foundation Server 2010 Object Model - FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- {DBEB7F64-74E1-382A-AA95-070DEF0905B3} O42 - Logiciel: SQL Server 2012 Reporting Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {DCCB1789-1DA0-4E3A-A52F-7815B602CC98} O42 - Logiciel: VMware Player - (.VMware, Inc..) [HKLM][64Bits] -- {E452E727-86B8-4233-8CC3-41FD817AFAFF} O42 - Logiciel: SQL Server 2012 BI Development Studio - (.Microsoft Corporation.) [HKLM][64Bits] -- {EE1B54D1-BFBC-4C19-8D66-E0AF3E967896} O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054} O42 - Logiciel: SQL Server 2012 Full text search - (.Microsoft Corporation.) [HKLM][64Bits] -- {F02F102E-85FC-405B-A6DF-73B0BF644AF0} O42 - Logiciel: Microsoft System CLR Types for SQL Server 2012 (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F1949145-EB64-4DE7-9D81-E6D27937146C} O42 - Logiciel: SQL Server 2012 Analysis Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FB1349FD-D102-4722-9F0A-2543670FF7FB} O42 - Logiciel: SQL Server 2012 Reporting Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FCD81E1A-6ED6-4F19-A572-82FFE102654E} O42 - Logiciel: IIS Express Application Compatibility Database for x86 - (...) [HKLM][64Bits] -- {fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI O42 - Logiciel: Any Video Converter 5.8.3 - (.Any-Video-Converter.com.) [HKLM][64Bits] -- Any Video Converter_is1 O42 - Logiciel: Ardаmаx Keylogger 4.0.5 - (...) [HKLM][64Bits] -- Ardаmаx Keylogger 4.0.5 O42 - Logiciel: Audacity 2.0.6 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 O42 - Logiciel: Balabolka - (.Ilya Morozov.) [HKLM][64Bits] -- Balabolka O42 - Logiciel: Balsamiq Mockups For Desktop - (.Balsamiq SRL.) [HKLM][64Bits] -- BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1 O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player O42 - Logiciel: Burn4Free DVD Burning 5.8.0.0 - (.Ikysasoft s.r.l. uninominale.) [HKLM][64Bits] -- Burn4Free DVD Burning_is1 O42 - Logiciel: CamStudio 2.0 Fr - (...) [HKLM][64Bits] -- CamStudio 2.0 Fr_is1 O42 - Logiciel: Cisco Packet Tracer 5.3.3 - (.Cisco Systems, Inc..) [HKLM][64Bits] -- Cisco Packet Tracer 5.3.3_is1 O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite O42 - Logiciel: DivX Setup - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup O42 - Logiciel: DoliWamp-3.6.2 - (.NLTechno.) [HKLM][64Bits] -- doliwamp_is1 O42 - Logiciel: RapidBoot HDD Accelerator - (.Lenovo.) [HKLM][64Bits] -- Fastboot O42 - Logiciel: FileZilla Client 3.7.3 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client O42 - Logiciel: FileZilla Server - (.FileZilla Project.) [HKLM][64Bits] -- FileZilla Server O42 - Logiciel: Freecorder 8 Applications (8.0.1.0) - (.Applian Technologies.) [HKLM][64Bits] -- Freecorder 8 Applications O42 - Logiciel: Freecorder extension - (.Applian Technologies Inc..) [HKLM][64Bits] -- Freecorder extension O42 - Logiciel: Freecorder extension for Chrome - (.Applian Technologies, Inc..) [HKLM][64Bits] -- Freecorder extension for Chrome O42 - Logiciel: Freecorder extension for Firefox - (.Applian Technologies, Inc..) [HKLM][64Bits] -- Freecorder extension for Firefox O42 - Logiciel: Freecorder extension x64 - (.Applian Technologies Inc..) [HKLM][64Bits] -- Freecorder extension x64 O42 - Logiciel: GanttProject - (...) [HKLM][64Bits] -- GanttProject O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: IHMC CmapTools v5.06 - (.Institute for Human & Machine Cognition.) [HKLM][64Bits] -- IHMC CmapTools v5.06 O42 - Logiciel: Corel DVD MovieFactory Lenovo Edition - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{50F68032-B5B7-4513-9116-C978DBD8F27A} O42 - Logiciel: Corel Burn.Now Lenovo Edition - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{A3BE3F1E-2472-4211-8735-E8239BE49D9F} O42 - Logiciel: Direct DiscRecorder - (.Corel Corporation.) [HKLM][64Bits] -- InstallShield_{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81} O42 - Logiciel: Kaspersky Anti-Virus 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6} O42 - Logiciel: Intel AppUp(SM) center - (.Intel.) [HKLM][64Bits] -- Intel AppUp(SM) center 33057 O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1 O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- League of Legends 3.0.1 O42 - Logiciel: Mozilla Firefox 39.0.3 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0.3 (x86 en-US) O42 - Logiciel: Mozilla Thunderbird 31.7.0 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 31.7.0 (x86 en-US) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: mp3splt-gtk - (...) [HKLM][64Bits] -- mp3splt-gtk O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ O42 - Logiciel: Microsoft Visio Premium 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.VISIO O42 - Logiciel: Microsoft Project Professionnel 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office15.PRJPROR O42 - Logiciel: Microsoft Visio Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office15.VISPRO O42 - Logiciel: PIXELRULER - (.Mioplanet.) [HKLM][64Bits] -- PIXELRULER O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO O42 - Logiciel: Resource Hacker Version 3.6.0 - (...) [HKLM][64Bits] -- ResourceHacker_is1 O42 - Logiciel: Results Hub - (.Results Hub.) [HKLM][64Bits] -- Results Hub O42 - Logiciel: SecureCam 0.9 - (...) [HKLM][64Bits] -- SecureCam_is1 O42 - Logiciel: PcToPc_Chat - (...) [HKLM][64Bits] -- ST6UNST #1 O42 - Logiciel: SumatraPDF - (.Krzysztof Kowalczyk.) [HKLM][64Bits] -- SumatraPDF O42 - Logiciel: Unlocker 1.9.1 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent O42 - Logiciel: Nuclear Coffee - VideoGet - (.Nuclear Coffee.) [HKLM][64Bits] -- VideoGet_is1 O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: VMware Player - (.VMware, Inc.) [HKLM][64Bits] -- VMware_Player O42 - Logiciel: WampServer 2.2 - (.Hervé Leclerc (HeL).) [HKLM][64Bits] -- WampServer 2_is1 O42 - Logiciel: Webcam Zone Trigger - (.Omega Unfold inc.) [HKLM][64Bits] -- Webcam Zone Trigger O42 - Logiciel: Windows Grep 2.3 - (...) [HKLM][64Bits] -- Windows Grep_is1 O42 - Logiciel: WindowSpace - (.NTWind Software.) [HKLM][64Bits] -- WindowSpace O42 - Logiciel: WinHTTrack Website Copier 3.48-21 - (.HTTrack.) [HKLM][64Bits] -- WinHTTrack Website Copier_is1 O42 - Logiciel: Zip Password Tool v. 2.3 - (.FDRLab Data Recovery Centre.) [HKLM][64Bits] -- Zip Password Tool_is1 O42 - Logiciel: Microsoft NuGet - Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {00EC8ABC-3C5A-40F8-A8CB-E7DCD5ABFA05} O42 - Logiciel: Windows App Certification Kit x64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {02213A81-CB13-7262-5ABE-1FFA2C75559F} O42 - Logiciel: Antidote 8 - (.Druide informatique inc..) [HKLM][64Bits] -- {09AAAB09-6DBA-4DD9-9865-54597D3FBCA8} O42 - Logiciel: Entity Framework Designer for Visual Studio 2012 - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {0A1A1D48-DB23-443A-BC7B-49255D138020} O42 - Logiciel: Balsamiq Mockups For Desktop - (.Balsamiq SRL.) [HKLM][64Bits] -- {0A2B82D6-1A9B-48F9-6865-5E0477A94D1A} O42 - Logiciel: WCF Data Services 5.0 (for OData v3) Primary Components - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BCC836F-0B28-4090-B58A-64883BAA3B2F} O42 - Logiciel: MySQL for Visual Studio 1.0.2 - (.Oracle.) [HKLM][64Bits] -- {0D406BCC-D62A-46FB-9AB7-A7BF10FB8B31} O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {112C23F2-C036-4D40-BED4-0CB47BF5555C} O42 - Logiciel: Lenovo User Guide - (.Lenovo Group Limited.) [HKLM][64Bits] -- {13F59938-C595-479C-B479-F171AB9AF64F} O42 - Logiciel: Tools for .Net 3.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1690CE56-2231-4E59-9006-A0876D949EA8} O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} O42 - Logiciel: Microsoft Silverlight 4 SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {189AEA94-DAFB-487A-8CEE-F9D3DDE0A748} O42 - Logiciel: Dotfuscator Software Services - Community Edition - (.PreEmptive Solutions.) [HKLM][64Bits] -- {1AA5BD63-6614-44B2-88A7-605191EDB835} O42 - Logiciel: Microsoft Report Viewer Add-On for Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1DB43E5A-2F24-4F51-92B0-A2C0EBF5C742} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7} O42 - Logiciel: Windows Software Development Kit DirectX x86 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {23176E97-26CB-C72A-19EB-BFB21AC1D15A} O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} O42 - Logiciel: Skype™ 7.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} O42 - Logiciel: Lenovo System Update - (.Lenovo.) [HKLM][64Bits] -- {25C64847-B900-48AD-A164-1B4F9B774650} O42 - Logiciel: Java 7 Update 55 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF} O42 - Logiciel: PreEmptive Analytics Visual Studio Components - (.PreEmptive Solutions.) [HKLM][64Bits] -- {2C76E3DA-BA76-4FAD-B1B1-72B46D639028} O42 - Logiciel: Lenovo Welcome - (.Lenovo Group Limited.) [HKLM][64Bits] -- {2DC26D10-CC6A-494F-BEA3-B5BC21126D5E} O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2280741 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2284668 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2295689 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2420513 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2452649 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2455033 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB2485545 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB982517 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB982721 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233) - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}.KB983233 O42 - Logiciel: Microsoft Sync Framework SDK v1.0 SP1 fr - (.Microsoft Corporation.) [HKLM][64Bits] -- {32071917-189D-4C08-8F7F-F27520EE6680} O42 - Logiciel: Java SE Development Kit 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0170510} O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {34927EBC-98D4-4D53-98BE-510DF5999F50} O42 - Logiciel: Dotfuscator and Analytics Community Edition - (.PreEmptive Solutions.) [HKLM][64Bits] -- {372D17F6-A54E-4A01-B264-1314890FFE61} O42 - Logiciel: MySQL Connector Net 6.8.3 - (.Oracle.) [HKLM][64Bits] -- {38157422-F952-42F7-88AA-CC16A63CD109} O42 - Logiciel: WCF RIA Services V1.0 SP2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3A523AF9-D32F-4C85-8388-0335731F3405} O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E} O42 - Logiciel: MySQL Examples and Samples 5.5 - (.Oracle Corporation.) [HKLM][64Bits] -- {3D6A37F0-B9BA-48CD-8B19-9D0CD9A1C268} O42 - Logiciel: eReg - (.Logitech, Inc..) [HKLM][64Bits] -- {3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C} O42 - Logiciel: Microsoft Silverlight 3 SDK - Français - (.Microsoft Corporation.) [HKLM][64Bits] -- {3FF37A38-3781-493E-8EBF-BB143C843796} O42 - Logiciel: Windows Software Development Kit for Windows Store Apps DirectX x86 Remote - (.Microsoft Corporation.) [HKLM][64Bits] -- {42F61556-29ED-8122-F39E-6F04EA5FF279} O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E} O42 - Logiciel: SQL Server Browser for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {4B9E6EB0-0EED-4E74-9479-F982C3254F71} O42 - Logiciel: MySQL Connector J - (.Oracle Corporation.) [HKLM][64Bits] -- {4C5FFB59-6222-45CA-9257-EFB93D5E1756} O42 - Logiciel: Create Recovery Media - (.Lenovo Group Limited.) [HKLM][64Bits] -- {50DC5136-21E8-48BC-97E5-1AD055F6B0B6} O42 - Logiciel: Data Lifeguard Diagnostic for Windows 1.24 - (.Western Digital Corporation.) [HKLM][64Bits] -- {519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1 O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {51C7AD07-C3F6-4635-8E8A-231306D810FE} O42 - Logiciel: Blend for Visual Studio 2012 ENU resources - (.Microsoft Corporation.) [HKLM][64Bits] -- {532DBCC8-9468-435C-AEF6-30B7F50735A2} O42 - Logiciel: Kaspersky Anti-Virus 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- {560985FB-4B76-4121-9189-7A2CDC7886D6} O42 - Logiciel: Blend for Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {57F20F04-014D-453F-B6A3-AE9485C4DFAB} O42 - Logiciel: RealSpeak Solo pour la voix francaise Virginie - (.ScanSoft.) [HKLM][64Bits] -- {58B0F3ED-6FAE-486C-9AB9-1C06514097B4} O42 - Logiciel: Lenovo Solutions for Small Business Customizations - (.Lenovo Group Limited.) [HKLM][64Bits] -- {5B5DEF99-85E9-423D-A1A3-B83202697B09} O42 - Logiciel: Corel WinDVD - (.Corel Inc..) [HKLM][64Bits] -- {5C1F18D2-F6B7-4242-B803-B5A78648185D} O42 - Logiciel: Secure Download Manager - (.Kivuto Solutions Inc..) [HKLM][64Bits] -- {60232A95-0B96-4BBB-9798-85A6AB6F8210} O42 - Logiciel: Windows Software Development Kit - (.Microsoft Corporation.) [HKLM][64Bits] -- {60D5EF2A-4E0C-2C30-38F6-59C26E134F4A} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: MySQL Workbench 6.0 CE - (.Oracle Corporation.) [HKLM][64Bits] -- {654A0779-F661-4D7C-B0EB-0DDF3CEDE963} O42 - Logiciel: Check Point Deployment Shell - (.Check Point.) [HKLM][64Bits] -- {67032d10-1968-4866-883b-feda77e4d74b} O42 - Logiciel: Lenovo Registration - (.Lenovo Inc..) [HKLM][64Bits] -- {6707C034-ED6B-4B6A-B21F-969B3606FBDE} O42 - Logiciel: MySQL Utilities - (.Oracle.) [HKLM][64Bits] -- {6A494EFD-CFC6-4534-9E14-26D3F7D888DE} O42 - Logiciel: MySQL Installer - (.Oracle Corporation.) [HKLM][64Bits] -- {6BAE8549-2823-4919-B73A-19886411140F} O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} O42 - Logiciel: Lenovo Patch Utility - (.Lenovo Group Limited.) [HKLM][64Bits] -- {6E6E7725-C7BC-4C39-8B3F-14B67331A120} O42 - Logiciel: Microsoft LightSwitch for Visual Studio 2012 Core - (.Microsoft Corporation.) [HKLM][64Bits] -- {7437A4B9-314F-3B8F-827B-22909146E471} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} O42 - Logiciel: League of Legends - (.Riot Games.) [HKLM][64Bits] -- {79BF4901-1EC4-4726-B3C2-A7859706C6E7} O42 - Logiciel: Check Point SSL Network Extender Service - (.CheckPoint.) [HKLM][64Bits] -- {7df0a49a-a935-46b6-b12e-0c3a92bff1fc} O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2280741) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2280741 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2284668) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2284668 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2295689) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2295689 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2420513) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2420513 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2452649) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2452649 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2455033) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2455033 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB2485545) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB2485545 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982517) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB982517 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB982721) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB982721 O42 - Logiciel: Hotfix for Visual C++ Standard 2010 Beta 1 - ENU (KB983233) - (.Microsoft Corporation.) [HKLM][64Bits] -- {81455DEB-FC7E-3EE5-85CA-2EBDD9FD61EB}.KB983233 O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {83CAF0DE-8D3B-4C37-A631-2B8F16EC3031} O42 - Logiciel: Nalpeiron License Management - (.Nalpeiron.) [HKLM][64Bits] -- {86148F87-2666-42F9-A712-1306176C525C} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: MySQL For Excel 1.1.1 - (.Oracle.) [HKLM][64Bits] -- {88C06BF4-9A84-42FE-A0B2-CB3A49DDBBF0} O42 - Logiciel: Visual Studio Extensions for Windows Library for JavaScript - (.Microsoft Corporation.) [HKLM][64Bits] -- {89B4532E-19CE-4FA9-9692-10BFD5A38532} O42 - Logiciel: MySQL Documents 5.5 - (.Oracle Corporation.) [HKLM][64Bits] -- {8AD8784C-F05C-43DD-BDB8-C53D0BAED345} O42 - Logiciel: Stronghold Crusader Extreme - (.Firefly Studios.) [HKLM][64Bits] -- {8C3727F2-8E37-49E4-820C-03B1677F53B6} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: ThinkVantage Access Connections - (.Lenovo.) [HKLM][64Bits] -- {8E537894-A559-4D60-B3CB-F4485E3D24E3} O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Visio Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0051-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Visio MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0054-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Project MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00B4-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-0000-0000000FF1CE} O42 - Logiciel: AbelCam - (.Seiz System Engineering.) [HKLM][64Bits] -- {90758578-DD0A-4FC6-B1DF-0DF0A2961D03} O42 - Logiciel: Microsoft Project Professional 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {91150000-003B-0000-0000-0000000FF1CE} O42 - Logiciel: Prerequisites for SSDT - (.Microsoft Corporation.) [HKLM][64Bits] -- {9169C939-ED01-446A-BD0C-29873BAF4E48} O42 - Logiciel: Assistant de téléchargement - (.Druide informatique inc..) [HKLM][64Bits] -- {92154A3C-9BB7-49D7-A571-4EB6373FA5AD} O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F} O42 - Logiciel: Pando Media Booster - (.Pando Networks Inc..) [HKLM][64Bits] -- {980A182F-E0A2-4A40-94C1-AE0C1235902E} O42 - Logiciel: FFmpeg (Windows) for Audacity version 2.2.2 - (...) [HKLM][64Bits] -- {9C7E31E3-017F-434C-AC40-24431A354A1E}_is1 O42 - Logiciel: Microsoft Report Viewer 2012 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {9CCE40CE-A9E6-4916-8729-B008558EEF3F} O42 - Logiciel: Js Debug 1.0 - (.ayound.) [HKLM][64Bits] -- {9F76BE1B-53D6-4274-AF3C-38B333B9B05F}_is1 O42 - Logiciel: Intel(R) Manageability Engine Firmware Recovery Agent - (.Intel Corporation.) [HKLM][64Bits] -- {A6C48A9F-694A-4234-B3AA-62590B668927} O42 - Logiciel: Integrated Camera Driver Installer Package Ver.1.2.1.18 - (.RICOH.) [HKLM][64Bits] -- {A78800AF-1779-4AE8-8EBE-16E1BE727C71} O42 - Logiciel: MSI to redistribute MS VS2005 CRT libraries - (.The Firebird Project.) [HKLM][64Bits] -- {A8D93648-9F7F-407D-915C-62044644C3DA} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Crystal Reports for Visual Studio - (.SAP.) [HKLM][64Bits] -- {AC41D924-8C68-4BD5-A7A1-0AE4176C31A6} O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM][64Bits] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D} O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {B40D9A2E-C9CA-4402-A0B7-09E33C03B9C5} O42 - Logiciel: LocalESPCui for en-us - (.Microsoft.) [HKLM][64Bits] -- {B5DA9D49-9BD8-0F2F-52FC-C7E66BC8D944} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {B7B3E9B3-FB14-4927-894B-E9124509AF5A} O42 - Logiciel: Microsoft Web Developer Tools - Visual Studio 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B96FCD4F-6EDD-4258-8A6D-0FCEA8445E3E} O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack Language Pack - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {BAD0254F-9BDB-3D14-A5AC-9C0EF51F3D09} O42 - Logiciel: LocalESPC - (.Microsoft Corporation.) [HKLM][64Bits] -- {BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6} O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C} O42 - Logiciel: Microsoft Portable Library Multi-Targeting Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {C4CAD994-6EA2-3121-8352-DA593150B322} O42 - Logiciel: Windows Runtime Intellisense Content - en-us - (.Microsoft Corporation.) [HKLM][64Bits] -- {C81452EB-CBCF-B8EB-3124-48C5B3D506B0} O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM][64Bits] -- {CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6} O42 - Logiciel: MP3 Skype Recorder - (.Alexander Nikiforov.) [HKLM][64Bits] -- {CB606F47-7D0E-40DF-95BB-0E5413A1295F} O42 - Logiciel: Microsoft WebMatrix 3 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D093B71B-8575-4656-9CE0-0E6C006F8818} O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} O42 - Logiciel: Windows Software Development Kit for Windows Store Apps - (.Microsoft Corporation.) [HKLM][64Bits] -- {D11F66FF-82B3-DDB8-1146-525370552BE1} O42 - Logiciel: Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA - (.Microsoft Corporation.) [HKLM][64Bits] -- {D60023FA-3DF1-4537-93DD-13024CC4E366} O42 - Logiciel: Sandcastle Help File Builder - (.EWSoftware.) [HKLM][64Bits] -- {D7A69447-7186-4507-BC03-C4E7CEEB4FD9} O42 - Logiciel: MySQL Notifier 1.1.4 - (.Oracle.) [HKLM][64Bits] -- {D7C3E617-EB02-47B3-8D0E-BF3E00D873D5} O42 - Logiciel: Power Manager - (...) [HKLM][64Bits] -- {DAC01CEE-5BAE-42D5-81FC-B687E84E8405} O42 - Logiciel: Metric Collection SDK - (.Lenovo Group Limited.) [HKLM][64Bits] -- {DDAA788F-52E6-44EA-ADB8-92837B11BF26} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: 4Videosoft iPhone Transfer Platinum 6.0.12 - (...) [HKLM][64Bits] -- {E16D939E-1E8B-44ca-A57A-9A8768BFAA0E}_is1 O42 - Logiciel: Microsoft Silverlight 5 SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {E1FBB3D4-ADB0-4949-B101-855DA061C735} O42 - Logiciel: Microsoft System CLR Types for SQL Server 2012 - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB} O42 - Logiciel: Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {E4ADE757-7FE9-322D-9CAE-C77D77A2D2BF} O42 - Logiciel: Microsoft Web Deploy dbSqlPackage Provider - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {E4C33F5B-1B2F-466E-957E-B274F08151A0} O42 - Logiciel: Jump Desktop - (.Phase Five Systems.) [HKLM][64Bits] -- {E75634FB-B0FD-4759-AFC3-E494FC83F2DA} O42 - Logiciel: VIP Access - (.VeriSign.) [HKLM][64Bits] -- {E8D46836-CD55-453C-A107-A59EC51CB8DC} O42 - Logiciel: MSI to redistribute MS VS2005 CRT libraries - (.The Firebird Project.) [HKLM][64Bits] -- {EBFC96E5-4409-426E-88B7-650ADB342E78} O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {ED5776D5-59B4-46B7-AF81-5F2D94D7C640} O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} O42 - Logiciel: YAPA - (.Lukasz Banasiak.) [HKLM][64Bits] -- {FA9C131C-3B81-4003-AED6-845C097A2F84} O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} O42 - Logiciel: Lenovo Warranty Information - (.Lenovo.) [HKLM][64Bits] -- {FD4EC278-C1B1-4496-99ED-C0BE1B0AA521} O42 - Logiciel: OneKey Recovery Pro - (.Lenovo Group Limited.) [HKLM][64Bits] -- {FF162784-CFFE-4193-AE24-7FC476812ABE} O42 - Logiciel: Dofus - (.Ankama.) [HKCU][64Bits] -- 2744A393-554C-4E35-A24F-DEF0392B4484-2 O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent O42 - Logiciel: CodeBlocks - (.The Code::Blocks Team.) [HKCU][64Bits] -- CodeBlocks O42 - Logiciel: f.lux - (...) [HKCU][64Bits] -- Flux O42 - Logiciel: GameRanger - (.GameRanger Technologies.) [HKCU][64Bits] -- GameRanger O42 - Logiciel: Kodi - (.XBMC-Foundation.) [HKCU][64Bits] -- Kodi O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber ---\\ HKCU & HKLM Software Keys (270) - 19s HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\ADSoft HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\Alexander Avdonin HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\Applian Technologies HKLM\SOFTWARE\Wow6432Node\ARK_NET HKLM\SOFTWARE\Wow6432Node\AuthenTec HKLM\SOFTWARE\Wow6432Node\Belarc HKLM\SOFTWARE\Wow6432Node\BlueStacks HKLM\SOFTWARE\Wow6432Node\Brother HKLM\SOFTWARE\Wow6432Node\Bunndle HKLM\SOFTWARE\Wow6432Node\Caphyon HKLM\SOFTWARE\Wow6432Node\CheckPoint HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit HKLM\SOFTWARE\Wow6432Node\Conexant HKLM\SOFTWARE\Wow6432Node\Corel HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions HKLM\SOFTWARE\Wow6432Node\Digital River HKLM\SOFTWARE\Wow6432Node\Disc Soft HKLM\SOFTWARE\Wow6432Node\DivX HKLM\SOFTWARE\Wow6432Node\DivXNetworks HKLM\SOFTWARE\Wow6432Node\Dofus2 HKLM\SOFTWARE\Wow6432Node\Druide informatique inc. HKLM\SOFTWARE\Wow6432Node\DRWDemo1 HKLM\SOFTWARE\Wow6432Node\Earth Resource Mapping HKLM\SOFTWARE\Wow6432Node\EASEUS HKLM\SOFTWARE\Wow6432Node\Electronic Arts HKLM\SOFTWARE\Wow6432Node\ERDAS HKLM\SOFTWARE\Wow6432Node\eSellerate HKLM\SOFTWARE\Wow6432Node\ESET HKLM\SOFTWARE\Wow6432Node\FFmpeg for Audacity HKLM\SOFTWARE\Wow6432Node\FileZilla 3 HKLM\SOFTWARE\Wow6432Node\FileZilla Client HKLM\SOFTWARE\Wow6432Node\FileZilla Server HKLM\SOFTWARE\Wow6432Node\Firefly Studios HKLM\SOFTWARE\Wow6432Node\Freecorder HKLM\SOFTWARE\Wow6432Node\GanttProject HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\IBM HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Internet Download Manager HKLM\SOFTWARE\Wow6432Node\InterVideo HKLM\SOFTWARE\Wow6432Node\Jaksta Technologies HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\JumpDesktop HKLM\SOFTWARE\Wow6432Node\KasperskyLab HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\Lake HKLM\SOFTWARE\Wow6432Node\Lame For Audacity HKLM\SOFTWARE\Wow6432Node\Lenovo HKLM\SOFTWARE\Wow6432Node\Licenses HKLM\SOFTWARE\Wow6432Node\Logitech HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Macrovision HKLM\SOFTWARE\Wow6432Node\Macserlen HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\McAfee.com HKLM\SOFTWARE\Wow6432Node\mcafeeupdater HKLM\SOFTWARE\Wow6432Node\Mio HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\mp3splt-gtk HKLM\SOFTWARE\Wow6432Node\MySQL AB HKLM\SOFTWARE\Wow6432Node\Nalpeiron HKLM\SOFTWARE\Wow6432Node\NLTechno HKLM\SOFTWARE\Wow6432Node\Norton HKLM\SOFTWARE\Wow6432Node\Notepad++ HKLM\SOFTWARE\Wow6432Node\Novell HKLM\SOFTWARE\Wow6432Node\Nuclear Coffee HKLM\SOFTWARE\Wow6432Node\NuGet HKLM\SOFTWARE\Wow6432Node\Nwpi HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Overwolf HKLM\SOFTWARE\Wow6432Node\Pando Networks HKLM\SOFTWARE\Wow6432Node\PowerISO HKLM\SOFTWARE\Wow6432Node\PreEmptive Solutions HKLM\SOFTWARE\Wow6432Node\Realtek HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Red Gate HKLM\SOFTWARE\Wow6432Node\ResultsHub HKLM\SOFTWARE\Wow6432Node\RICOH HKLM\SOFTWARE\Wow6432Node\Riot Games HKLM\SOFTWARE\Wow6432Node\S3R521 HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited HKLM\SOFTWARE\Wow6432Node\ScanSoft HKLM\SOFTWARE\Wow6432Node\Seagate Software HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Splashtop Inc. HKLM\SOFTWARE\Wow6432Node\StarUML HKLM\SOFTWARE\Wow6432Node\Swearware HKLM\SOFTWARE\Wow6432Node\Symantec HKLM\SOFTWARE\Wow6432Node\Telerik HKLM\SOFTWARE\Wow6432Node\ThinkVantage HKLM\SOFTWARE\Wow6432Node\ThinPrint HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch HKLM\SOFTWARE\Wow6432Node\TortoiseOverlays HKLM\SOFTWARE\Wow6432Node\TortoiseSVN HKLM\SOFTWARE\Wow6432Node\TrendMicro HKLM\SOFTWARE\Wow6432Node\Ulead Systems HKLM\SOFTWARE\Wow6432Node\Valve HKLM\SOFTWARE\Wow6432Node\VideoLAN HKLM\SOFTWARE\Wow6432Node\Visicom Media HKLM\SOFTWARE\Wow6432Node\VMware, Inc. HKLM\SOFTWARE\Wow6432Node\Westwood HKLM\SOFTWARE\Wow6432Node\WinHTTrack Website Copier HKLM\SOFTWARE\Wow6432Node\Wow6432Node HKLM\SOFTWARE\Wow6432Node\wvc HKLM\SOFTWARE\Wow6432Node\Yodot Software HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\4shared HKCU\SOFTWARE\4Videosoft Studio HKCU\SOFTWARE\7-Zip HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\Alexander Avdonin HKCU\SOFTWARE\Andrew Zhezherun HKCU\SOFTWARE\Ankama HKCU\SOFTWARE\Anvsoft HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\ASProtect HKCU\SOFTWARE\Audacity HKCU\SOFTWARE\AuthenTec HKCU\SOFTWARE\Balabolka HKCU\SOFTWARE\Belarc HKCU\SOFTWARE\Binary Noise HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Brother HKCU\SOFTWARE\BugSplat HKCU\SOFTWARE\Burn4Free HKCU\SOFTWARE\Caphyon HKCU\SOFTWARE\CheckPoint HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\Cisco HKCU\SOFTWARE\CodeBlocks HKCU\SOFTWARE\codesnippets HKCU\SOFTWARE\com.electricplum.ems2012 HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit HKCU\SOFTWARE\Conexant HKCU\SOFTWARE\Corel HKCU\SOFTWARE\Cygnus Solutions HKCU\SOFTWARE\Disc Soft HKCU\SOFTWARE\DivX HKCU\SOFTWARE\DivXNetworks HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\DriverTuner =>PUP.Optional.DriverTuner HKCU\SOFTWARE\DriverTuner_Init =>PUP.Optional.DriverTuner HKCU\SOFTWARE\Dropbox HKCU\SOFTWARE\Druide informatique inc. HKCU\SOFTWARE\e-academy Inc. HKCU\SOFTWARE\Earth Resource Mapping HKCU\SOFTWARE\EaseUS HKCU\SOFTWARE\Electronic Arts HKCU\SOFTWARE\EpmNewsInfo HKCU\SOFTWARE\ERDAS HKCU\SOFTWARE\Evernote HKCU\SOFTWARE\FANiSO HKCU\SOFTWARE\FileOpen HKCU\SOFTWARE\FileZilla Server HKCU\SOFTWARE\Firetrust HKCU\SOFTWARE\Flux HKCU\SOFTWARE\Freecorder HKCU\SOFTWARE\FreeMeter HKCU\SOFTWARE\GameRanger HKCU\SOFTWARE\Google HKCU\SOFTWARE\IBM HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\Intel HKCU\SOFTWARE\InterVideo HKCU\SOFTWARE\ispy HKCU\SOFTWARE\Jaksta Technologies HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\JetBrains HKCU\SOFTWARE\JumiTech HKCU\SOFTWARE\KasperskyLab HKCU\SOFTWARE\Kivuto Solutions Inc. HKCU\SOFTWARE\Kodi HKCU\SOFTWARE\Lake HKCU\SOFTWARE\Leadertech HKCU\SOFTWARE\Lenovo HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Local AppWizard-Generated Applications HKCU\SOFTWARE\LogiShrd HKCU\SOFTWARE\Logitech HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\Malwarebytes' Anti-Malware HKCU\SOFTWARE\MapInfo HKCU\SOFTWARE\MaxiVista HKCU\SOFTWARE\McAfee HKCU\SOFTWARE\MediaLooks HKCU\SOFTWARE\Michael Herf HKCU\SOFTWARE\Mio HKCU\SOFTWARE\mioreader HKCU\SOFTWARE\MotionDSP HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\MySQL HKCU\SOFTWARE\MySQL AB HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\Nitro PDF HKCU\SOFTWARE\None provided HKCU\SOFTWARE\Norton HKCU\SOFTWARE\Novell HKCU\SOFTWARE\Nuclear Coffee HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Omega Unfold HKCU\SOFTWARE\Oracle HKCU\SOFTWARE\Pando Networks HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\PowerISO HKCU\SOFTWARE\pth264 HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\Red Gate HKCU\SOFTWARE\Red Gate Software Ltd. HKCU\SOFTWARE\Safer Networking Limited HKCU\SOFTWARE\Sakari Indie HKCU\SOFTWARE\SecuROM HKCU\SOFTWARE\SILVERRUN HKCU\SOFTWARE\SimonTatham HKCU\SOFTWARE\Skype HKCU\SOFTWARE\SkypeRS HKCU\SOFTWARE\StarUML HKCU\SOFTWARE\Symantec HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\Systems Internals HKCU\SOFTWARE\TeleCharger HKCU\SOFTWARE\Telerik HKCU\SOFTWARE\Tenebril HKCU\SOFTWARE\Thingummy Software HKCU\SOFTWARE\TimingEditor HKCU\SOFTWARE\Torch =>PUP.Optional.Torch HKCU\SOFTWARE\TortoiseMerge HKCU\SOFTWARE\TortoiseSVN HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Ulead Systems HKCU\SOFTWARE\Unity HKCU\SOFTWARE\Unity Technologies HKCU\SOFTWARE\Valve HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\Veoh HKCU\SOFTWARE\Viber HKCU\SOFTWARE\VMware, Inc. HKCU\SOFTWARE\Webcam Simulator HKCU\SOFTWARE\Wget HKCU\SOFTWARE\WGSoft HKCU\SOFTWARE\Widcomm HKCU\SOFTWARE\Windows Grep HKCU\SOFTWARE\Windows Live Writer HKCU\SOFTWARE\WinHTTrack Website Copier HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Winternals HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\wvc HKCU\SOFTWARE\yarpen.cz HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\CheckPoint HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit HKCU\SOFTWARE\AppDataLow\Software\JavaSoft HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar HKCU\SOFTWARE\AppDataLow\Software\ThinPrint HKCU\SOFTWARE\AppDataLow\Software\Unity ---\\ Contents of the Common Files folders (585) - 16s O43 - CFD: 2013/07/29 21:17:17 - [] D -- C:\Program Files (x86)\4Videosoft Studio O43 - CFD: 2013/03/10 21:41:06 - [] D -- C:\Program Files (x86)\7-Zip O43 - CFD: 2014/11/03 14:16:30 - [] D -- C:\Program Files (x86)\AbelCam O43 - CFD: 2013/07/05 15:39:02 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2015/08/18 14:58:28 - [] D -- C:\Program Files (x86)\Anvsoft O43 - CFD: 2013/03/10 21:41:07 - [] D -- C:\Program Files (x86)\Apple Software Update O43 - CFD: 2013/07/18 15:52:06 - [] D -- C:\Program Files (x86)\Applian Technologies O43 - CFD: 2013/03/16 17:24:31 - [] D -- C:\Program Files (x86)\Application Verifier O43 - CFD: 2015/01/23 22:55:45 - [] D -- C:\Program Files (x86)\Audacity O43 - CFD: 2015/05/01 02:38:51 - [] D -- C:\Program Files (x86)\Balabolka O43 - CFD: 2014/01/15 17:53:17 - [] D -- C:\Program Files (x86)\Balsamiq Mockups O43 - CFD: 2014/03/01 00:07:24 - [0] D -- C:\Program Files (x86)\Belarc O43 - CFD: 2014/09/21 17:19:11 - [] D -- C:\Program Files (x86)\BlueStacks O43 - CFD: 2014/01/24 13:13:45 - [] D -- C:\Program Files (x86)\Bonjour O43 - CFD: 2014/04/21 17:34:36 - [] D -- C:\Program Files (x86)\Burn4Free O43 - CFD: 2013/03/10 21:41:07 - [] D -- C:\Program Files (x86)\CamStudio O43 - CFD: 2014/03/03 13:22:18 - [] D -- C:\Program Files (x86)\CheckPoint O43 - CFD: 2013/03/10 21:41:07 - [] D -- C:\Program Files (x86)\Cisco Packet Tracer 5.3.3 O43 - CFD: 2013/09/24 01:06:22 - [] D -- C:\Program Files (x86)\CodeBlocks O43 - CFD: 2015/08/20 01:58:02 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2015/05/16 20:04:17 - [0] D -- C:\Program Files (x86)\Conduit O43 - CFD: 2012/10/13 23:03:57 - [] D -- C:\Program Files (x86)\Corel O43 - CFD: 2013/03/18 12:43:26 - [] D -- C:\Program Files (x86)\Counter-Strike 1.6 O43 - CFD: 2012/12/27 14:49:10 - [] D -- C:\Program Files (x86)\Counter-Strike Source O43 - CFD: 2013/07/22 18:58:45 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite O43 - CFD: 2014/12/26 03:57:10 - [] D -- C:\Program Files (x86)\DivX O43 - CFD: 2013/03/10 21:41:28 - [] D -- C:\Program Files (x86)\Dolby Advanced Audio v2 O43 - CFD: 2015/03/12 14:39:02 - [] D -- C:\Program Files (x86)\Druide O43 - CFD: 2013/07/22 19:05:51 - [0] D -- C:\Program Files (x86)\dumps O43 - CFD: 2013/02/22 21:46:06 - [] D -- C:\Program Files (x86)\EA Games O43 - CFD: 2013/11/01 23:27:57 - [] D -- C:\Program Files (x86)\EA SPORTS O43 - CFD: 2014/01/01 16:21:19 - [] D -- C:\Program Files (x86)\EaseUS O43 - CFD: 2013/11/18 14:58:03 - [0] D -- C:\Program Files (x86)\Electric Plum O43 - CFD: 2014/04/30 09:42:54 - [] D -- C:\Program Files (x86)\EWSoftware O43 - CFD: 2014/06/24 09:31:30 - [] D -- C:\Program Files (x86)\FDRLab O43 - CFD: 2015/01/23 22:58:14 - [] D -- C:\Program Files (x86)\FFmpeg for Audacity O43 - CFD: 2013/10/05 13:10:29 - [] D -- C:\Program Files (x86)\FileZilla FTP Client O43 - CFD: 2013/10/02 20:23:07 - [] D -- C:\Program Files (x86)\FileZilla Server O43 - CFD: 2013/05/09 19:54:08 - [] D -- C:\Program Files (x86)\Firefly Studios O43 - CFD: 2013/04/12 10:00:02 - [] D -- C:\Program Files (x86)\Firetrust O43 - CFD: 2014/05/23 17:37:26 - [] D -- C:\Program Files (x86)\Freecorder extension =>PUP.Optional.FreecorderExtension O43 - CFD: 2014/08/03 21:29:06 - [] D -- C:\Program Files (x86)\GanttProject-2.6 O43 - CFD: 2013/12/12 11:16:33 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2013/03/10 21:41:29 - [] D -- C:\Program Files (x86)\HTML Help Workshop O43 - CFD: 2014/11/24 21:07:55 - [] D -- C:\Program Files (x86)\IHMC CmapTools O43 - CFD: 2013/03/16 17:19:15 - [] D -- C:\Program Files (x86)\IIS O43 - CFD: 2013/03/16 17:20:16 - [] D -- C:\Program Files (x86)\IIS Express O43 - CFD: 2014/01/21 02:29:39 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2013/03/10 21:41:31 - [] D -- C:\Program Files (x86)\Integrated Camera Driver O43 - CFD: 2013/04/26 21:52:05 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 2014/05/23 17:37:25 - [] D -- C:\Program Files (x86)\Internet Download Manager O43 - CFD: 2014/06/12 11:27:58 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2014/11/14 13:37:59 - [] D -- C:\Program Files (x86)\iTunes O43 - CFD: 2014/05/19 15:28:27 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2013/09/16 14:06:57 - [] D -- C:\Program Files (x86)\JS Debug O43 - CFD: 2013/07/27 01:50:21 - [] D -- C:\Program Files (x86)\Jumi O43 - CFD: 2014/03/22 22:36:00 - [] D -- C:\Program Files (x86)\Jump Desktop O43 - CFD: 2015/08/19 23:57:59 - [] D -- C:\Program Files (x86)\Kaspersky Lab O43 - CFD: 2015/07/22 12:30:46 - [] D -- C:\Program Files (x86)\Kodi O43 - CFD: 2014/10/28 19:10:44 - [] D -- C:\Program Files (x86)\Lame For Audacity O43 - CFD: 2015/07/17 13:40:49 - [] D -- C:\Program Files (x86)\Lenovo O43 - CFD: 2013/03/10 21:41:37 - [] D -- C:\Program Files (x86)\Lenovo Registration O43 - CFD: 2013/10/09 21:09:18 - [] D -- C:\Program Files (x86)\MapInfo O43 - CFD: 2012/12/07 08:36:25 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services O43 - CFD: 2013/03/16 17:21:44 - [] D -- C:\Program Files (x86)\Microsoft ASP.NET O43 - CFD: 2014/01/30 01:41:41 - [] D -- C:\Program Files (x86)\Microsoft F# O43 - CFD: 2013/03/16 17:12:38 - [] D -- C:\Program Files (x86)\Microsoft Help Viewer O43 - CFD: 2014/02/02 10:14:58 - [] D -- C:\Program Files (x86)\Microsoft Office O43 - CFD: 2013/03/16 17:27:28 - [] D -- C:\Program Files (x86)\Microsoft SDKs O43 - CFD: 2014/03/12 11:19:45 - [] D -- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 2014/02/02 11:14:21 - [] D -- C:\Program Files (x86)\Microsoft SQL Server O43 - CFD: 2013/03/16 17:25:24 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 2012/12/07 08:39:23 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework O43 - CFD: 2012/12/04 08:44:21 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services O43 - CFD: 2014/02/02 09:26:33 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 10.0 O43 - CFD: 2013/03/16 17:30:44 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 11.0 O43 - CFD: 2012/12/07 08:37:18 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 2012/12/04 08:22:18 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0 O43 - CFD: 2013/03/16 17:19:25 - [] D -- C:\Program Files (x86)\Microsoft WCF Data Services O43 - CFD: 2013/03/16 17:20:54 - [] D -- C:\Program Files (x86)\Microsoft Web Tools O43 - CFD: 2014/01/28 08:08:58 - [] D -- C:\Program Files (x86)\Microsoft WebMatrix O43 - CFD: 2012/12/04 08:49:31 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2013/10/04 14:29:40 - [] D -- C:\Program Files (x86)\Mioplanet O43 - CFD: 2015/08/20 01:08:54 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2015/08/20 01:08:54 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2015/05/20 21:09:17 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird O43 - CFD: 2014/04/21 17:34:36 - [] D -- C:\Program Files (x86)\MP3 Skype Recorder O43 - CFD: 2014/11/08 21:44:56 - [] D -- C:\Program Files (x86)\mp3splt-gtk O43 - CFD: 2014/02/02 10:05:59 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2012/11/13 23:05:28 - [0] D -- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 2014/05/02 00:41:13 - [] D -- C:\Program Files (x86)\MySQL O43 - CFD: 2013/10/09 20:58:39 - [] D -- C:\Program Files (x86)\Northwood O43 - CFD: 2013/10/10 03:57:56 - [] D -- C:\Program Files (x86)\Notepad++ O43 - CFD: 2012/12/31 20:12:07 - [] D -- C:\Program Files (x86)\Nuclear Coffee O43 - CFD: 2013/03/16 17:19:31 - [] D -- C:\Program Files (x86)\NuGet O43 - CFD: 2013/11/30 17:18:21 - [] D -- C:\Program Files (x86)\Pando Networks O43 - CFD: 2013/08/10 12:02:48 - [] D -- C:\Program Files (x86)\PcToPcChat O43 - CFD: 2013/03/10 21:42:16 - [] D -- C:\Program Files (x86)\PowerISO O43 - CFD: 2014/11/14 13:40:04 - [] D -- C:\Program Files (x86)\QuickTime O43 - CFD: 2012/10/13 23:13:00 - [] D -- C:\Program Files (x86)\Realtek O43 - CFD: 2009/07/14 01:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2013/03/10 21:42:18 - [] D -- C:\Program Files (x86)\Resource Hacker O43 - CFD: 2015/08/20 01:08:55 - [] D -- C:\Program Files (x86)\Results Hub O43 - CFD: 2015/05/01 02:44:29 - [] D -- C:\Program Files (x86)\ScanSoft O43 - CFD: 2014/11/03 11:41:32 - [] D -- C:\Program Files (x86)\SecureCam O43 - CFD: 2013/07/22 20:38:52 - [] D -- C:\Program Files (x86)\Sid Meier's Civilization V O43 - CFD: 2015/05/22 11:24:23 - [] RD -- C:\Program Files (x86)\Skype O43 - CFD: 2013/05/14 00:14:45 - [] D -- C:\Program Files (x86)\Splashtop O43 - CFD: 2015/04/13 10:05:22 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy O43 - CFD: 2014/05/23 18:39:07 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2 O43 - CFD: 2015/04/16 04:16:33 - [] D -- C:\Program Files (x86)\SumatraPDF O43 - CFD: 2012/10/13 23:10:03 - [] D -- C:\Program Files (x86)\Symantec O43 - CFD: 2013/03/10 21:42:18 - [] D -- C:\Program Files (x86)\SymSilent O43 - CFD: 2013/02/27 21:52:33 - [] D -- C:\Program Files (x86)\Telerik O43 - CFD: 2012/10/13 22:53:29 - [] D -- C:\Program Files (x86)\ThinkPad O43 - CFD: 2009/07/14 00:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 2013/06/12 10:03:01 - [] D -- C:\Program Files (x86)\Unity O43 - CFD: 2013/07/25 04:29:41 - [] D -- C:\Program Files (x86)\Unlocker O43 - CFD: 2013/09/12 19:28:03 - [] D -- C:\Program Files (x86)\uTorrent O43 - CFD: 2013/01/02 12:11:15 - [] D -- C:\Program Files (x86)\Veoh Networks O43 - CFD: 2012/12/31 17:56:36 - [] D -- C:\Program Files (x86)\VideoLAN O43 - CFD: 2015/04/04 15:13:48 - [] D -- C:\Program Files (x86)\VMware O43 - CFD: 2014/01/26 23:00:23 - [] D -- C:\Program Files (x86)\Webcam Video Capture 7.0 O43 - CFD: 2014/11/03 11:44:07 - [] D -- C:\Program Files (x86)\Webcam Zone Trigger O43 - CFD: 2014/01/01 15:48:23 - [] D -- C:\Program Files (x86)\Western Digital Corporation O43 - CFD: 2013/12/06 05:57:48 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2014/04/01 08:20:06 - [] D -- C:\Program Files (x86)\Windows Grep O43 - CFD: 2013/03/16 17:17:01 - [] D -- C:\Program Files (x86)\Windows Kits O43 - CFD: 2013/07/03 21:10:50 - [] D -- C:\Program Files (x86)\Windows Live O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2013/12/11 18:29:10 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2009/07/14 01:32:38 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2013/03/10 21:46:33 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2015/05/03 14:46:31 - [] D -- C:\Program Files (x86)\WinHTTrack O43 - CFD: 2013/07/12 22:40:02 - [] D -- C:\Program Files (x86)\WinRAR O43 - CFD: 2015/01/12 16:25:21 - [] D -- C:\Program Files (x86)\YAPA O43 - CFD: 2014/04/21 17:34:36 - [] D -- C:\Program Files (x86)\Your Uninstaller! 7 O43 - CFD: 2014/11/24 21:07:55 - [] HD -- C:\Program Files (x86)\Zero G Registry O43 - CFD: 2013/07/29 21:17:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4Videosoft O43 - CFD: 2013/03/10 21:42:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip O43 - CFD: 2014/11/03 14:16:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AbelCam O43 - CFD: 2014/06/26 06:42:05 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2014/01/28 16:59:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/03/12 14:40:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote O43 - CFD: 2015/08/18 14:59:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvsoft O43 - CFD: 2013/12/16 01:43:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ardаmаx Keylogger 4.0.5 O43 - CFD: 2014/09/21 17:19:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks O43 - CFD: 2013/07/04 22:53:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Burn4Free O43 - CFD: 2013/03/10 21:42:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CamStudio O43 - CFD: 2015/04/11 19:44:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer O43 - CFD: 2013/09/24 01:05:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeBlocks O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel DVD MovieFactory Lenovo Edition O43 - CFD: 2015/04/17 16:53:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID O43 - CFD: 2013/07/22 18:59:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite O43 - CFD: 2014/12/26 03:56:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX O43 - CFD: 2015/03/03 20:30:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dofus2 O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby O43 - CFD: 2015/03/24 14:55:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolibarr O43 - CFD: 2013/10/05 13:10:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client O43 - CFD: 2013/10/02 20:23:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla Server O43 - CFD: 2013/06/24 23:09:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firebird 2.5 (x64) O43 - CFD: 2013/05/09 19:55:24 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2014/08/03 21:29:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GanttProject O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2013/12/12 11:16:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth O43 - CFD: 2014/11/24 21:07:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IHMC CmapTools O43 - CFD: 2013/03/10 21:42:51 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(SM) center O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 2014/11/14 13:38:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes O43 - CFD: 2014/05/19 15:28:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2013/12/03 00:17:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit O43 - CFD: 2013/09/15 02:44:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Js Debug O43 - CFD: 2013/07/27 00:28:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jump Desktop O43 - CFD: 2015/08/20 00:15:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013 O43 - CFD: 2015/02/24 02:06:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends O43 - CFD: 2013/03/10 21:42:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo O43 - CFD: 2015/07/17 13:40:52 - [] HD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo ThinkVantage Tools O43 - CFD: 2013/03/26 18:19:36 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech O43 - CFD: 2015/01/12 16:25:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lukasz Banasiak O43 - CFD: 2013/03/10 21:46:34 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/07/10 01:58:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MaxiVista Demo Server O43 - CFD: 2014/01/08 00:48:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 2014/08/01 21:48:39 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 O43 - CFD: 2014/03/12 10:54:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK - Français O43 - CFD: 2013/03/16 17:26:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 4 SDK O43 - CFD: 2013/03/16 17:26:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK O43 - CFD: 2014/01/28 12:03:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 O43 - CFD: 2014/01/28 09:12:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 R2 O43 - CFD: 2014/02/02 10:18:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2012 O43 - CFD: 2012/12/04 08:44:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Sync Framework O43 - CFD: 2014/02/03 10:09:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 O43 - CFD: 2013/05/21 08:45:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012 O43 - CFD: 2014/01/28 08:08:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft WebMatrix O43 - CFD: 2013/10/04 14:29:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mioplanet O43 - CFD: 2014/11/08 21:44:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mp3splt-gtk O43 - CFD: 2014/05/02 00:41:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ O43 - CFD: 2013/11/26 14:22:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox O43 - CFD: 2015/07/06 16:12:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Password Vault O43 - CFD: 2013/08/10 12:02:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PcToPc_Chat O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO O43 - CFD: 2013/11/18 14:07:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Process Hacker 2 O43 - CFD: 2014/11/14 13:39:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Hacker O43 - CFD: 2014/04/30 09:43:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandcastle Help File Builder O43 - CFD: 2014/07/17 22:04:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ScanMaster-ELM O43 - CFD: 2014/11/03 11:41:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecureCam O43 - CFD: 2013/12/08 03:14:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint O43 - CFD: 2014/09/17 16:19:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 2014/05/23 17:37:28 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2011/12/08 16:02:50 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/02/21 22:12:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client O43 - CFD: 2015/01/12 17:16:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tomighty O43 - CFD: 2013/10/28 12:39:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TortoiseSVN O43 - CFD: 2014/04/10 17:50:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unity O43 - CFD: 2013/03/10 21:42:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoGet O43 - CFD: 2014/02/25 01:21:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 2015/04/04 15:14:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware O43 - CFD: 2013/08/27 09:01:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer O43 - CFD: 2014/01/01 15:48:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation O43 - CFD: 2013/11/17 21:10:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Grep O43 - CFD: 2013/03/16 17:24:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits O43 - CFD: 2013/12/15 21:22:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WindowSpace O43 - CFD: 2015/05/03 14:46:31 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinHTTrack O43 - CFD: 2014/01/01 16:16:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yodot Hard Drive Recovery O43 - CFD: 2014/04/21 17:34:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7 O43 - CFD: 2014/06/24 09:31:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zip Password Tool O43 - CFD: 2014/11/14 13:37:13 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 O43 - CFD: 2015/08/20 17:39:05 - [] D -- C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656 O43 - CFD: 2013/07/29 21:17:17 - [] D -- C:\ProgramData\4Videosoft Studio O43 - CFD: 2013/07/06 11:05:33 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2013/06/25 17:26:43 - [] D -- C:\ProgramData\Allmyapps =>PUP.Optional.Generic O43 - CFD: 2014/04/21 16:44:28 - [] D -- C:\ProgramData\Alwil Software O43 - CFD: 2014/01/24 13:11:49 - [] D -- C:\ProgramData\Apple O43 - CFD: 2012/12/14 14:25:02 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2014/06/28 10:14:55 - [] D -- C:\ProgramData\bdch O43 - CFD: 2014/05/24 08:24:30 - [] D -- C:\ProgramData\BDLogging O43 - CFD: 2014/09/21 17:19:11 - [] D -- C:\ProgramData\BlueStacks O43 - CFD: 2015/04/11 20:10:55 - [] D -- C:\ProgramData\BlueStacksSetup O43 - CFD: 2013/05/06 00:51:58 - [] D -- C:\ProgramData\Brother O43 - CFD: 2014/11/03 14:16:41 - [] D -- C:\ProgramData\Caphyon O43 - CFD: 2013/01/09 03:14:23 - [] D -- C:\ProgramData\Conexant O43 - CFD: 2012/10/13 22:56:16 - [] D -- C:\ProgramData\Corel O43 - CFD: 2013/07/22 19:00:25 - [] D -- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2014/12/26 03:57:10 - [] D -- C:\ProgramData\DivX O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2014/05/17 13:42:23 - [] D -- C:\ProgramData\Downloaded Installations O43 - CFD: 2014/11/14 13:38:01 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 2012/10/22 15:44:50 - [] D -- C:\ProgramData\FileOpen O43 - CFD: 2013/10/09 20:40:45 - [] D -- C:\ProgramData\FLEXnet O43 - CFD: 2012/10/13 23:03:21 - [] D -- C:\ProgramData\Google O43 - CFD: 2013/01/30 16:12:33 - [0] D -- C:\ProgramData\IDM O43 - CFD: 2013/03/10 21:42:45 - [] D -- C:\ProgramData\Intel O43 - CFD: 2012/10/13 22:59:40 - [] D -- C:\ProgramData\InterVideo O43 - CFD: 2015/08/20 09:01:05 - [] D -- C:\ProgramData\Kaspersky Lab O43 - CFD: 2015/07/17 13:41:20 - [] D -- C:\ProgramData\Lenovo O43 - CFD: 2013/03/26 18:19:36 - [] D -- C:\ProgramData\Logishrd O43 - CFD: 2013/03/26 18:19:13 - [] D -- C:\ProgramData\Logitech O43 - CFD: 2013/01/07 23:49:17 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 2013/04/19 13:37:29 - [] D -- C:\ProgramData\McAfee O43 - CFD: 2015/04/11 19:43:23 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/06/02 19:25:03 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2014/01/08 01:15:50 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS O43 - CFD: 2013/03/16 17:50:26 - [] D -- C:\ProgramData\Microsoft Visual Studio O43 - CFD: 2012/10/22 15:40:03 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2013/10/25 02:33:33 - [] D -- C:\ProgramData\MySQL O43 - CFD: 2012/10/13 23:08:20 - [] D -- C:\ProgramData\Nitro PDF O43 - CFD: 2014/02/21 02:06:27 - [] D -- C:\ProgramData\Norton O43 - CFD: 2013/11/16 02:43:44 - [] D -- C:\ProgramData\NortonInstaller O43 - CFD: 2014/02/26 21:28:24 - [0] D -- C:\ProgramData\Oracle O43 - CFD: 2015/07/22 11:26:26 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2015/03/19 11:13:47 - [] D -- C:\ProgramData\PMB Files O43 - CFD: 2012/12/04 08:42:45 - [] D -- C:\ProgramData\PreEmptive Solutions O43 - CFD: 2013/07/05 15:33:18 - [] D -- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 2014/08/01 21:48:16 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 2014/11/03 14:16:19 - [0] D -- C:\ProgramData\regid.2012-03.ch.seiz O43 - CFD: 2015/02/24 02:10:54 - [] D -- C:\ProgramData\Riot Games O43 - CFD: 2015/08/20 01:30:20 - [] D -- C:\ProgramData\RogueKiller O43 - CFD: 2013/12/12 23:57:13 - [] D -- C:\ProgramData\rvlkl =>PUP.Optional.RelevantKnowledge O43 - CFD: 2014/11/03 14:16:19 - [] D -- C:\ProgramData\Seiz System Engineering O43 - CFD: 2015/06/05 13:03:27 - [] D -- C:\ProgramData\Skype O43 - CFD: 2015/04/13 10:05:21 - [] D -- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2012/11/16 23:39:51 - [] D -- C:\ProgramData\Sun O43 - CFD: 2013/01/14 01:39:06 - [] D -- C:\ProgramData\Telerik O43 - CFD: 2014/04/27 14:14:14 - [0] AD -- C:\ProgramData\Temp O43 - CFD: 2009/07/14 01:08:56 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2013/12/16 09:04:52 - [] SHD -- C:\ProgramData\TNBFKU O43 - CFD: 2015/04/13 01:15:51 - [] D -- C:\ProgramData\UCA O43 - CFD: 2013/03/10 21:42:58 - [] D -- C:\ProgramData\Ulead Systems O43 - CFD: 2013/06/12 10:52:52 - [0] D -- C:\ProgramData\Unity O43 - CFD: 2015/08/20 01:11:13 - [] D -- C:\ProgramData\VMware O43 - CFD: 2014/01/28 13:27:35 - [] D -- C:\ProgramData\VS O43 - CFD: 2013/03/16 17:24:26 - [] D -- C:\ProgramData\Windows App Certification Kit O43 - CFD: 2015/08/20 17:46:01 - [] D -- C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656 O43 - CFD: 2013/07/05 15:31:20 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2015/05/07 13:48:31 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 2014/11/14 13:37:21 - [] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 2014/05/17 13:44:46 - [] D -- C:\Program Files (x86)\Common Files\AuthenTec O43 - CFD: 2014/05/23 18:22:15 - [] D -- C:\Program Files (x86)\Common Files\Bitdefender O43 - CFD: 2014/05/14 23:02:21 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 2014/12/26 03:56:42 - [] D -- C:\Program Files (x86)\Common Files\DivX Shared O43 - CFD: 2015/05/01 02:43:33 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2012/10/13 22:45:35 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 2013/07/18 15:52:08 - [] D -- C:\Program Files (x86)\Common Files\Jaksta Technologies O43 - CFD: 2014/02/26 20:10:19 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2014/06/19 20:27:53 - [] D -- C:\Program Files (x86)\Common Files\Lenovo O43 - CFD: 2013/01/05 03:42:14 - [] D -- C:\Program Files (x86)\Common Files\LogiShrd O43 - CFD: 2013/10/09 19:28:17 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared O43 - CFD: 2014/02/02 02:56:49 - [] D -- C:\Program Files (x86)\Common Files\Merge Modules O43 - CFD: 2013/03/16 17:23:34 - [] D -- C:\Program Files (x86)\Common Files\Microsoft O43 - CFD: 2014/05/06 14:57:19 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 2012/10/13 22:43:05 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 2012/10/13 22:56:22 - [] D -- C:\Program Files (x86)\Common Files\Protexis O43 - CFD: 2013/03/10 21:47:19 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2014/09/17 16:19:45 - [] D -- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 2009/07/13 23:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 2013/07/22 19:03:54 - [] D -- C:\Program Files (x86)\Common Files\Steam O43 - CFD: 2014/03/23 16:17:49 - [0] D -- C:\Program Files (x86)\Common Files\Symantec Shared O43 - CFD: 2014/05/06 14:51:59 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2013/10/28 12:39:03 - [] D -- C:\Program Files (x86)\Common Files\TortoiseOverlays O43 - CFD: 2012/10/13 22:58:36 - [] D -- C:\Program Files (x86)\Common Files\Ulead Systems O43 - CFD: 2015/04/04 15:13:48 - [] D -- C:\Program Files (x86)\Common Files\VMware O43 - CFD: 2014/01/26 23:00:23 - [] D -- C:\Program Files (x86)\Common Files\Webcam Simulator O43 - CFD: 2012/10/13 23:06:22 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 2013/07/06 12:46:16 - [] D -- C:\Users\moose\AppData\Roaming\Adobe O43 - CFD: 2012/12/26 21:29:16 - [] D -- C:\Users\moose\AppData\Roaming\AnkamaCertificates O43 - CFD: 2015/08/20 09:43:47 - [] D -- C:\Users\moose\AppData\Roaming\Anvsoft O43 - CFD: 2013/06/12 10:52:54 - [] D -- C:\Users\moose\AppData\Roaming\Apple Computer O43 - CFD: 2015/08/19 16:39:25 - [] D -- C:\Users\moose\AppData\Roaming\Audacity O43 - CFD: 2013/12/01 15:03:13 - [] D -- C:\Users\moose\AppData\Roaming\Balabolka O43 - CFD: 2015/08/13 03:31:12 - [] D -- C:\Users\moose\AppData\Roaming\BalsamiqMockupsForDesktop O43 - CFD: 2014/01/13 09:18:22 - [] D -- C:\Users\moose\AppData\Roaming\BalsamiqMockupsForDesktop.EDE15CF69E11F7F7D45B5430C7D37CC6C3545E3C.1 O43 - CFD: 2015/08/20 01:20:30 - [] D -- C:\Users\moose\AppData\Roaming\BitTorrent O43 - CFD: 2013/05/30 22:27:45 - [] RD -- C:\Users\moose\AppData\Roaming\Brother O43 - CFD: 2015/03/10 08:12:48 - [] D -- C:\Users\moose\AppData\Roaming\CmapTools O43 - CFD: 2014/04/18 00:54:44 - [] D -- C:\Users\moose\AppData\Roaming\CodeBlocks O43 - CFD: 2015/01/19 19:10:31 - [] D -- C:\Users\moose\AppData\Roaming\com.PomodoroApp.PomodoroApp O43 - CFD: 2013/06/29 16:25:31 - [] D -- C:\Users\moose\AppData\Roaming\Corel O43 - CFD: 2013/11/18 15:02:43 - [] D -- C:\Users\moose\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 2014/01/26 23:00:38 - [] D -- C:\Users\moose\AppData\Roaming\DivX O43 - CFD: 2014/11/10 11:30:42 - [] D -- C:\Users\moose\AppData\Roaming\DMCache O43 - CFD: 2015/07/06 20:44:44 - [] D -- C:\Users\moose\AppData\Roaming\Dofus O43 - CFD: 2015/03/03 20:34:22 - [] D -- C:\Users\moose\AppData\Roaming\Dofus-2 O43 - CFD: 2015/03/03 20:34:56 - [] D -- C:\Users\moose\AppData\Roaming\Dofus-3 O43 - CFD: 2015/03/07 14:48:33 - [] D -- C:\Users\moose\AppData\Roaming\Dofus-4 O43 - CFD: 2013/01/16 00:33:33 - [] D -- C:\Users\moose\AppData\Roaming\Dofus2 O43 - CFD: 2012/12/26 22:08:50 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting O43 - CFD: 2012/12/26 21:28:31 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting-2 O43 - CFD: 2012/12/27 14:04:07 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting-3 O43 - CFD: 2012/12/28 04:30:18 - [] D -- C:\Users\moose\AppData\Roaming\DofusTesting-4 O43 - CFD: 2014/03/27 00:24:36 - [] D -- C:\Users\moose\AppData\Roaming\Dropbox O43 - CFD: 2014/04/03 15:52:16 - [] D -- C:\Users\moose\AppData\Roaming\Druide O43 - CFD: 2013/06/01 23:29:14 - [] D -- C:\Users\moose\AppData\Roaming\dvdcss O43 - CFD: 2012/11/30 09:14:45 - [] D -- C:\Users\moose\AppData\Roaming\e-academy Inc O43 - CFD: 2012/10/22 15:44:50 - [] D -- C:\Users\moose\AppData\Roaming\FileOpen O43 - CFD: 2013/10/05 13:10:54 - [] D -- C:\Users\moose\AppData\Roaming\FileZilla O43 - CFD: 2013/04/17 12:07:33 - [0] D -- C:\Users\moose\AppData\Roaming\Firetrust O43 - CFD: 2013/07/18 17:05:36 - [] D -- C:\Users\moose\AppData\Roaming\Freecorder 8 Audio O43 - CFD: 2015/04/05 23:51:21 - [] D -- C:\Users\moose\AppData\Roaming\GameRanger O43 - CFD: 2012/11/20 09:18:10 - [] D -- C:\Users\moose\AppData\Roaming\Google O43 - CFD: 2013/03/10 21:43:17 - [] D -- C:\Users\moose\AppData\Roaming\Groovedown_Uninstall O43 - CFD: 2014/11/08 21:47:05 - [] D -- C:\Users\moose\AppData\Roaming\gtk-2.0 O43 - CFD: 2012/10/20 06:41:09 - [] D -- C:\Users\moose\AppData\Roaming\Identities O43 - CFD: 2015/04/11 20:10:55 - [] D -- C:\Users\moose\AppData\Roaming\IDM O43 - CFD: 2012/12/30 03:04:46 - [] D -- C:\Users\moose\AppData\Roaming\InstallShield O43 - CFD: 2014/01/26 23:24:23 - [] D -- C:\Users\moose\AppData\Roaming\iSpy O43 - CFD: 2013/02/15 12:18:11 - [] D -- C:\Users\moose\AppData\Roaming\JetBrains O43 - CFD: 2013/01/18 10:23:40 - [] D -- C:\Users\moose\AppData\Roaming\JustCode O43 - CFD: 2013/01/14 02:37:21 - [] D -- C:\Users\moose\AppData\Roaming\JustDecompile O43 - CFD: 2015/07/22 12:30:43 - [] D -- C:\Users\moose\AppData\Roaming\Kodi O43 - CFD: 2012/10/20 06:41:50 - [] D -- C:\Users\moose\AppData\Roaming\Leadertech O43 - CFD: 2014/06/19 20:27:53 - [] D -- C:\Users\moose\AppData\Roaming\Lenovo O43 - CFD: 2013/07/29 21:18:22 - [] D -- C:\Users\moose\AppData\Roaming\libimobiledevice O43 - CFD: 2013/07/29 21:18:16 - [] D -- C:\Users\moose\AppData\Roaming\log O43 - CFD: 2013/01/05 03:39:18 - [] D -- C:\Users\moose\AppData\Roaming\Logishrd O43 - CFD: 2013/01/05 03:42:41 - [] D -- C:\Users\moose\AppData\Roaming\Logitech O43 - CFD: 2013/11/30 22:33:53 - [] D -- C:\Users\moose\AppData\Roaming\LolClient O43 - CFD: 2015/04/12 01:25:12 - [] D -- C:\Users\moose\AppData\Roaming\LSC O43 - CFD: 2012/10/13 22:54:29 - [] D -- C:\Users\moose\AppData\Roaming\Macromedia O43 - CFD: 2013/01/07 23:49:28 - [] D -- C:\Users\moose\AppData\Roaming\Malwarebytes O43 - CFD: 2013/10/09 19:28:38 - [] D -- C:\Users\moose\AppData\Roaming\MapInfo O43 - CFD: 2011/12/08 16:02:50 - [0] D -- C:\Users\moose\AppData\Roaming\Media Center Programs O43 - CFD: 2015/08/11 14:34:32 - [] SD -- C:\Users\moose\AppData\Roaming\Microsoft O43 - CFD: 2014/01/28 08:09:01 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft Corporation O43 - CFD: 2013/01/14 01:27:31 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft FxCop O43 - CFD: 2013/10/04 14:29:43 - [] D -- C:\Users\moose\AppData\Roaming\mioObjects O43 - CFD: 2013/06/03 01:09:51 - [] D -- C:\Users\moose\AppData\Roaming\mIRC O43 - CFD: 2013/01/28 23:37:59 - [] D -- C:\Users\moose\AppData\Roaming\MotionDSP O43 - CFD: 2015/04/21 17:52:00 - [] D -- C:\Users\moose\AppData\Roaming\Mozilla O43 - CFD: 2013/09/11 12:01:21 - [] D -- C:\Users\moose\AppData\Roaming\MP3SkypeRecorder O43 - CFD: 2013/11/12 14:18:25 - [] D -- C:\Users\moose\AppData\Roaming\MySQL O43 - CFD: 2013/02/27 17:38:22 - [] D -- C:\Users\moose\AppData\Roaming\Nitro PDF O43 - CFD: 2013/08/10 12:03:31 - [] D -- C:\Users\moose\AppData\Roaming\Notepad++ O43 - CFD: 2012/12/31 20:12:14 - [] D -- C:\Users\moose\AppData\Roaming\Nuclear Coffee O43 - CFD: 2014/01/28 17:31:39 - [] D -- C:\Users\moose\AppData\Roaming\NuGet O43 - CFD: 2015/08/18 14:58:28 - [] D -- C:\Users\moose\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy O43 - CFD: 2013/10/27 15:01:42 - [] D -- C:\Users\moose\AppData\Roaming\Oracle O43 - CFD: 2013/04/17 12:34:04 - [] D -- C:\Users\moose\AppData\Roaming\Paltalk O43 - CFD: 2013/07/06 00:02:26 - [] D -- C:\Users\moose\AppData\Roaming\PDAppFlex O43 - CFD: 2013/08/01 19:33:53 - [] D -- C:\Users\moose\AppData\Roaming\Phase Five Systems O43 - CFD: 2015/01/12 17:27:23 - [] D -- C:\Users\moose\AppData\Roaming\pomodairo O43 - CFD: 2015/01/12 17:27:23 - [] D -- C:\Users\moose\AppData\Roaming\pomodairo.1041936B6D0707C313E2E169D771193A7DFBADCC.1 O43 - CFD: 2012/12/06 23:27:58 - [] D -- C:\Users\moose\AppData\Roaming\PowerISO O43 - CFD: 2013/11/18 14:09:52 - [] D -- C:\Users\moose\AppData\Roaming\Process Hacker 2 O43 - CFD: 2012/10/21 11:24:48 - [] D -- C:\Users\moose\AppData\Roaming\PwrMgr O43 - CFD: 2014/05/23 18:42:09 - [0] D -- C:\Users\moose\AppData\Roaming\QuickScan O43 - CFD: 2012/12/31 15:34:35 - [] D -- C:\Users\moose\AppData\Roaming\Razer O43 - CFD: 2015/03/03 00:18:48 - [] D -- C:\Users\moose\AppData\Roaming\Reg O43 - CFD: 2012/12/26 21:28:36 - [] D -- C:\Users\moose\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1 O43 - CFD: 2015/02/24 02:05:15 - [] D -- C:\Users\moose\AppData\Roaming\Riot Games O43 - CFD: 2014/07/17 22:06:54 - [] D -- C:\Users\moose\AppData\Roaming\ScanMaster-ELM O43 - CFD: 2013/02/22 20:54:10 - [] RHD -- C:\Users\moose\AppData\Roaming\SecuROM O43 - CFD: 2014/11/03 14:14:13 - [] D -- C:\Users\moose\AppData\Roaming\Seiz System Engineering O43 - CFD: 2015/08/20 01:13:48 - [] D -- C:\Users\moose\AppData\Roaming\Skype O43 - CFD: 2013/07/06 12:46:15 - [] D -- C:\Users\moose\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 O43 - CFD: 2013/10/24 15:29:25 - [] D -- C:\Users\moose\AppData\Roaming\stickies O43 - CFD: 2013/10/28 12:43:34 - [] D -- C:\Users\moose\AppData\Roaming\Subversion O43 - CFD: 2015/04/16 04:17:05 - [] D -- C:\Users\moose\AppData\Roaming\SumatraPDF O43 - CFD: 2013/01/14 02:35:21 - [] D -- C:\Users\moose\AppData\Roaming\Telerik O43 - CFD: 2013/01/11 13:47:13 - [] D -- C:\Users\moose\AppData\Roaming\Tenebril O43 - CFD: 2013/11/11 15:05:52 - [] D -- C:\Users\moose\AppData\Roaming\Thinstall O43 - CFD: 2014/02/21 23:06:33 - [] D -- C:\Users\moose\AppData\Roaming\Thunderbird O43 - CFD: 2015/01/12 16:20:11 - [] D -- C:\Users\moose\AppData\Roaming\TideSDK O43 - CFD: 2013/11/04 13:17:20 - [] D -- C:\Users\moose\AppData\Roaming\TortoiseSVN O43 - CFD: 2015/04/21 23:47:01 - [] D -- C:\Users\moose\AppData\Roaming\TS3Client O43 - CFD: 2012/11/30 10:44:22 - [] D -- C:\Users\moose\AppData\Roaming\Ulead Systems O43 - CFD: 2013/08/06 12:55:45 - [] D -- C:\Users\moose\AppData\Roaming\Unity O43 - CFD: 2014/04/21 17:27:27 - [] D -- C:\Users\moose\AppData\Roaming\URSoft O43 - CFD: 2015/04/11 20:10:55 - [] D -- C:\Users\moose\AppData\Roaming\uTorrent O43 - CFD: 2015/07/18 02:04:52 - [] D -- C:\Users\moose\AppData\Roaming\ViberPC O43 - CFD: 2014/05/07 22:53:46 - [] D -- C:\Users\moose\AppData\Roaming\VisualStudioSpellChecker O43 - CFD: 2015/08/20 11:37:41 - [] D -- C:\Users\moose\AppData\Roaming\vlc O43 - CFD: 2015/04/04 15:59:52 - [] D -- C:\Users\moose\AppData\Roaming\VMware O43 - CFD: 2014/01/27 00:52:48 - [] D -- C:\Users\moose\AppData\Roaming\Webcam Simulator O43 - CFD: 2014/11/03 19:34:48 - [] D -- C:\Users\moose\AppData\Roaming\WebcamZoneTrigger O43 - CFD: 2013/07/03 21:07:37 - [0] D -- C:\Users\moose\AppData\Roaming\Windows Live Writer O43 - CFD: 2012/12/04 08:13:36 - [] D -- C:\Users\moose\AppData\Roaming\WinRAR O43 - CFD: 2015/08/20 17:58:44 - [] D -- C:\Users\moose\AppData\Roaming\ZHP O43 - CFD: 2013/07/29 21:17:39 - [] D -- C:\Users\moose\AppData\Local\4Videosoft Studio O43 - CFD: 2012/10/20 06:38:25 - [] D -- C:\Users\moose\AppData\Local\Absolute_Software O43 - CFD: 2015/08/20 02:02:41 - [] D -- C:\Users\moose\AppData\Local\Adobe O43 - CFD: 2013/09/11 12:01:21 - [] D -- C:\Users\moose\AppData\Local\Alexander_Nikiforov O43 - CFD: 2015/03/02 23:31:09 - [] D -- C:\Users\moose\AppData\Local\Ankama O43 - CFD: 2012/12/14 14:24:04 - [] D -- C:\Users\moose\AppData\Local\Apple O43 - CFD: 2014/04/27 09:59:23 - [] D -- C:\Users\moose\AppData\Local\Apple Computer O43 - CFD: 2012/10/20 06:37:50 - [0] SHD -- C:\Users\moose\AppData\Local\Application Data O43 - CFD: 2015/01/26 05:37:39 - [] D -- C:\Users\moose\AppData\Local\Apps O43 - CFD: 2015/08/20 02:02:42 - [] D -- C:\Users\moose\AppData\Local\assembly O43 - CFD: 2012/10/20 06:50:04 - [] D -- C:\Users\moose\AppData\Local\AuthenTec O43 - CFD: 2014/09/21 17:18:38 - [] D -- C:\Users\moose\AppData\Local\Bluestacks O43 - CFD: 2012/10/20 06:41:59 - [] D -- C:\Users\moose\AppData\Local\Broadcom O43 - CFD: 2013/10/28 22:47:35 - [] D -- C:\Users\moose\AppData\Local\com.electricplum.ems O43 - CFD: 2013/01/09 03:14:22 - [] D -- C:\Users\moose\AppData\Local\Conexant O43 - CFD: 2015/08/04 21:20:10 - [0] D -- C:\Users\moose\AppData\Local\CrashDumps O43 - CFD: 2013/06/25 17:26:35 - [] D -- C:\Users\moose\AppData\Local\CrashRpt =>.Legitimate.CrashReports O43 - CFD: 2014/03/18 14:49:56 - [] D -- C:\Users\moose\AppData\Local\DDMSettings O43 - CFD: 2013/01/14 01:24:28 - [] D -- C:\Users\moose\AppData\Local\DevExtras O43 - CFD: 2015/08/20 09:02:24 - [] D -- C:\Users\moose\AppData\Local\Diagnostics O43 - CFD: 2015/01/12 16:25:10 - [] D -- C:\Users\moose\AppData\Local\Downloaded Installations O43 - CFD: 2013/12/28 21:10:48 - [0] D -- C:\Users\moose\AppData\Local\DriverTuner =>PUP.Optional.DriverTuner O43 - CFD: 2012/11/30 09:14:45 - [] D -- C:\Users\moose\AppData\Local\e-academy Inc O43 - CFD: 2014/05/12 23:18:08 - [] D -- C:\Users\moose\AppData\Local\Eclipse O43 - CFD: 2015/01/18 02:00:34 - [0] D -- C:\Users\moose\AppData\Local\ElevatedDiagnostics O43 - CFD: 2014/05/02 00:53:51 - [] D -- C:\Users\moose\AppData\Local\Eric_Woodruff O43 - CFD: 2013/01/08 01:21:04 - [] D -- C:\Users\moose\AppData\Local\ESET O43 - CFD: 2012/12/31 21:51:30 - [] D -- C:\Users\moose\AppData\Local\Evernote O43 - CFD: 2015/01/12 16:17:15 - [] D -- C:\Users\moose\AppData\Local\EvernoteNW O43 - CFD: 2014/05/14 18:40:34 - [] D -- C:\Users\moose\AppData\Local\EWSoftware O43 - CFD: 2012/12/25 17:47:50 - [] D -- C:\Users\moose\AppData\Local\FANiSO O43 - CFD: 2014/01/30 10:52:41 - [] D -- C:\Users\moose\AppData\Local\FluxSoftware O43 - CFD: 2013/03/15 18:40:42 - [] D -- C:\Users\moose\AppData\Local\fontconfig O43 - CFD: 2013/03/15 18:40:41 - [] D -- C:\Users\moose\AppData\Local\gegl-0.2 O43 - CFD: 2013/02/07 16:30:23 - [] D -- C:\Users\moose\AppData\Local\Google O43 - CFD: 2012/10/20 06:37:50 - [0] SHD -- C:\Users\moose\AppData\Local\History O43 - CFD: 2013/01/14 01:15:53 - [] D -- C:\Users\moose\AppData\Local\IsolatedStorage O43 - CFD: 2013/07/18 17:05:34 - [] D -- C:\Users\moose\AppData\Local\Jaksta_Technologies_Pty_L O43 - CFD: 2013/02/15 12:18:14 - [] D -- C:\Users\moose\AppData\Local\JetBrains O43 - CFD: 2013/08/06 21:33:00 - [] D -- C:\Users\moose\AppData\Local\Jump Desktop O43 - CFD: 2013/02/12 23:51:10 - [] D -- C:\Users\moose\AppData\Local\JustCode O43 - CFD: 2014/04/17 14:17:26 - [] D -- C:\Users\moose\AppData\Local\Lenovo O43 - CFD: 2013/03/16 09:23:22 - [] D -- C:\Users\moose\AppData\Local\Logishrd O43 - CFD: 2014/06/17 22:48:23 - [0] D -- C:\Users\moose\AppData\Local\LSC O43 - CFD: 2012/10/22 15:56:34 - [] D -- C:\Users\moose\AppData\Local\Macromedia O43 - CFD: 2013/10/09 19:28:38 - [] D -- C:\Users\moose\AppData\Local\MapInfo O43 - CFD: 2015/06/05 13:03:40 - [] D -- C:\Users\moose\AppData\Local\Microsoft O43 - CFD: 2013/04/08 17:31:31 - [] D -- C:\Users\moose\AppData\Local\Microsoft Games O43 - CFD: 2015/05/31 22:58:29 - [] D -- C:\Users\moose\AppData\Local\Microsoft Help O43 - CFD: 2014/01/24 10:53:58 - [] D -- C:\Users\moose\AppData\Local\Microsoft_Corporation O43 - CFD: 2013/01/28 23:38:09 - [] D -- C:\Users\moose\AppData\Local\MotionDSP O43 - CFD: 2013/09/30 23:48:52 - [] D -- C:\Users\moose\AppData\Local\Mozilla O43 - CFD: 2013/07/22 19:22:43 - [] D -- C:\Users\moose\AppData\Local\My Games O43 - CFD: 2013/12/05 15:07:35 - [] D -- C:\Users\moose\AppData\Local\NPE O43 - CFD: 2015/07/06 21:15:32 - [] D -- C:\Users\moose\AppData\Local\PMB Files O43 - CFD: 2013/01/25 17:12:33 - [] D -- C:\Users\moose\AppData\Local\PokeTALK O43 - CFD: 2013/01/07 23:49:03 - [] D -- C:\Users\moose\AppData\Local\Programs O43 - CFD: 2013/02/27 21:36:10 - [] D -- C:\Users\moose\AppData\Local\Red Gate O43 - CFD: 2013/02/15 12:18:13 - [0] D -- C:\Users\moose\AppData\Local\RefSrcSymbols O43 - CFD: 2013/07/22 20:31:45 - [] D -- C:\Users\moose\AppData\Local\SKIDROW O43 - CFD: 2014/02/26 20:41:31 - [] D -- C:\Users\moose\AppData\Local\Skype O43 - CFD: 2013/09/09 00:44:25 - [] D -- C:\Users\moose\AppData\Local\Steppschuh O43 - CFD: 2013/02/15 12:18:13 - [0] D -- C:\Users\moose\AppData\Local\SymbolSourceSymbols O43 - CFD: 2013/01/14 02:35:24 - [] D -- C:\Users\moose\AppData\Local\Telerik O43 - CFD: 2013/01/14 01:33:23 - [] D -- C:\Users\moose\AppData\Local\Telerik_Corp O43 - CFD: 2015/08/20 17:58:50 - [] D -- C:\Users\moose\AppData\Local\Temp O43 - CFD: 2012/10/20 06:37:50 - [0] SHD -- C:\Users\moose\AppData\Local\Temporary Internet Files O43 - CFD: 2013/11/11 15:05:52 - [] D -- C:\Users\moose\AppData\Local\Thinstall O43 - CFD: 2015/01/14 19:48:50 - [] D -- C:\Users\moose\AppData\Local\Thunderbird O43 - CFD: 2013/01/17 03:19:25 - [] D -- C:\Users\moose\AppData\Local\Torch =>PUP.Optional.Torch O43 - CFD: 2015/08/20 01:11:41 - [0] D -- C:\Users\moose\AppData\Local\TSVNCache O43 - CFD: 2014/10/13 00:03:10 - [] D -- C:\Users\moose\AppData\Local\Tvsukernel O43 - CFD: 2013/06/12 10:52:52 - [] D -- C:\Users\moose\AppData\Local\Unity O43 - CFD: 2012/10/20 06:44:28 - [0] D -- C:\Users\moose\AppData\Local\VeriSign O43 - CFD: 2015/06/14 18:04:52 - [] D -- C:\Users\moose\AppData\Local\Viber O43 - CFD: 2015/08/20 10:58:48 - [] D -- C:\Users\moose\AppData\Local\VirtualStore O43 - CFD: 2015/04/04 19:11:22 - [] D -- C:\Users\moose\AppData\Local\VMware O43 - CFD: 2014/04/30 09:44:23 - [] D -- C:\Users\moose\AppData\Local\VSIXInstaller O43 - CFD: 2015/02/17 13:25:22 - [] D -- C:\Users\moose\AppData\Local\Windows Live O43 - CFD: 2013/07/03 21:07:58 - [] D -- C:\Users\moose\AppData\Local\Windows Live Writer O43 - CFD: 2014/04/30 20:23:14 - [0] D -- C:\Users\moose\AppData\Local\{07AD36AA-33B9-4410-9801-088846A09764} O43 - CFD: 2012/12/02 18:22:15 - [0] D -- C:\Users\moose\AppData\Local\{083E2073-2B2A-4D62-BEE3-F483E07A04CB} O43 - CFD: 2014/02/25 01:23:41 - [0] D -- C:\Users\moose\AppData\Local\{10F6BFF0-315A-43E0-A79E-BACDD0286A3F} O43 - CFD: 2013/04/25 10:54:38 - [0] D -- C:\Users\moose\AppData\Local\{2AA5C430-EA86-4C3A-8B26-A7071AA8CE69} O43 - CFD: 2012/12/03 20:34:01 - [0] D -- C:\Users\moose\AppData\Local\{370DA531-4790-406F-B495-0D4AD3C44C7F} O43 - CFD: 2014/03/16 08:43:59 - [0] D -- C:\Users\moose\AppData\Local\{3D267CDF-2920-4FDB-BF24-EF109E9639F2} O43 - CFD: 2013/11/04 02:00:20 - [0] D -- C:\Users\moose\AppData\Local\{4050A24D-8D0D-494A-B19C-BC2CF8AA04F6} O43 - CFD: 2014/11/03 14:09:45 - [0] D -- C:\Users\moose\AppData\Local\{426767E2-4AD2-4932-BC42-3FA99EE52D10} O43 - CFD: 2013/03/02 14:41:36 - [0] D -- C:\Users\moose\AppData\Local\{4D4D3D52-AD33-400C-9B23-00A617C74422} O43 - CFD: 2013/03/10 18:51:11 - [0] D -- C:\Users\moose\AppData\Local\{50E7C0B0-6E53-4C64-9C99-9472DFF60515} O43 - CFD: 2012/12/02 02:22:41 - [0] D -- C:\Users\moose\AppData\Local\{633CA90D-731C-4CEB-ADB3-2275411784D6} O43 - CFD: 2014/04/30 20:22:17 - [0] D -- C:\Users\moose\AppData\Local\{6498C920-95ED-4681-B9A2-B118BFF1EAE3} O43 - CFD: 2014/02/25 01:25:47 - [0] D -- C:\Users\moose\AppData\Local\{64E68350-2079-44F7-9ED0-855C9BAF0A0F} O43 - CFD: 2012/12/04 09:14:37 - [0] D -- C:\Users\moose\AppData\Local\{74AD60DB-BA3F-4775-9871-5B3955460455} O43 - CFD: 2013/08/24 09:56:54 - [0] D -- C:\Users\moose\AppData\Local\{759B96D9-97EF-4AF8-86EC-733CE0EAA4EE} O43 - CFD: 2013/02/15 18:21:53 - [0] D -- C:\Users\moose\AppData\Local\{79626CA0-935B-403F-B6D3-04E6271A4B44} O43 - CFD: 2013/04/06 09:47:58 - [0] D -- C:\Users\moose\AppData\Local\{83005A62-D314-405A-ADC6-8119F70DCDB5} O43 - CFD: 2012/12/28 05:14:11 - [0] D -- C:\Users\moose\AppData\Local\{8BDF03F2-4AEB-403D-A82E-AF2EB017A45E} O43 - CFD: 2014/04/30 21:37:17 - [0] D -- C:\Users\moose\AppData\Local\{8C4A118C-D66B-48EF-9B4E-A12A87C4CF98} O43 - CFD: 2014/04/27 20:43:07 - [0] D -- C:\Users\moose\AppData\Local\{9AAB9CC1-70AF-4540-8AEC-ADD8BDED43D6} O43 - CFD: 2012/12/12 00:49:21 - [0] D -- C:\Users\moose\AppData\Local\{B0D76891-77EB-4A9A-8BA5-674C7FABF9F0} O43 - CFD: 2014/01/26 23:04:03 - [0] D -- C:\Users\moose\AppData\Local\{B159759C-380E-4754-8C43-098B86E089E1} O43 - CFD: 2014/05/25 12:45:15 - [0] D -- C:\Users\moose\AppData\Local\{B3D3BCB7-F913-47BA-AAD0-18044AD06826} O43 - CFD: 2012/12/05 08:42:08 - [0] D -- C:\Users\moose\AppData\Local\{B7807E9B-A4DC-4EC5-8007-20B50AA8ABA4} O43 - CFD: 2012/12/02 02:21:52 - [0] D -- C:\Users\moose\AppData\Local\{B807442B-88AA-4A70-AE4F-6D22D41D1359} O43 - CFD: 2014/03/27 19:49:25 - [0] D -- C:\Users\moose\AppData\Local\{C6AECF16-CE51-4CC9-8EA7-0C2B04DF105D} O43 - CFD: 2013/07/03 21:06:38 - [0] D -- C:\Users\moose\AppData\Local\{CBF6FD8D-9789-462D-B490-24F3D2E66EB0} O43 - CFD: 2013/04/15 21:23:23 - [0] D -- C:\Users\moose\AppData\Local\{CE99BE09-7AD3-49FD-A300-0C0960DD3396} O43 - CFD: 2014/01/27 23:39:08 - [0] D -- C:\Users\moose\AppData\Local\{D2D86B9C-36D1-4512-B713-F2890F117C27} O43 - CFD: 2012/12/28 20:12:02 - [0] D -- C:\Users\moose\AppData\Local\{D3A3474E-76C0-4A25-8E47-44835105093B} O43 - CFD: 2012/12/30 19:50:24 - [0] D -- C:\Users\moose\AppData\Local\{D5A225C1-EB2A-42DC-9776-A163237C5BEC} O43 - CFD: 2013/04/27 08:35:45 - [0] D -- C:\Users\moose\AppData\Local\{D61D05B9-E0AB-49A7-AFCF-4F66E10A08C0} O43 - CFD: 2012/12/03 07:25:59 - [0] D -- C:\Users\moose\AppData\Local\{D81C7A46-01C1-41E5-8FC5-A18724D7313D} O43 - CFD: 2013/04/30 17:14:12 - [] D -- C:\Users\moose\AppData\Local\{E0EE56A0-0D7C-4595-B400-919A3BA48EC1} O43 - CFD: 2013/01/11 11:35:12 - [0] D -- C:\Users\moose\AppData\Local\{E5283C7B-FCA3-4A58-B3CD-FF4498B00096} O43 - CFD: 2012/12/09 12:25:22 - [0] D -- C:\Users\moose\AppData\Local\{FFC47968-B73C-4E2E-818E-78FFFDAA614E} O43 - CFD: 2015/01/12 16:28:17 - [] D -- C:\Users\moose\AppData\Local\Łukasz_Banasiak O43 - CFD: 2013/03/10 21:43:21 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2014/05/15 06:08:55 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2013/09/29 01:33:48 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Allmyapps O43 - CFD: 2014/04/03 15:50:06 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote O43 - CFD: 2013/12/01 15:03:13 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Balabolka O43 - CFD: 2013/09/24 01:06:22 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks O43 - CFD: 2014/01/29 17:52:28 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux O43 - CFD: 2014/04/13 21:03:42 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/04/12 21:51:51 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2013/03/10 21:43:21 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 2013/07/27 01:50:22 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jumi O43 - CFD: 2015/07/22 11:25:18 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi O43 - CFD: 2013/03/10 21:43:21 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2014/11/08 21:44:54 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\mp3splt-gtk O43 - CFD: 2013/10/25 02:28:11 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MySQL O43 - CFD: 2012/12/12 01:58:02 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ O43 - CFD: 2013/08/10 12:02:28 - [0] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PcToPc_Chat O43 - CFD: 2015/07/29 12:16:33 - [] RD -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2013/05/10 09:55:29 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker O43 - CFD: 2014/11/03 11:44:07 - [] D -- C:\Users\moose\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webcam Zone Trigger ---\\ System Drivers List (118) - 9s O58 - SDL:2012/03/28 16:16:48 A . (.Ricoh co.,Ltd. - Ricoh USB Camera driver.) -- C:\Windows\System32\drivers\5U877.sys [216704] O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] O58 - SDL:2009/07/13 21:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] O58 - SDL:2011/12/08 16:24:30 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] O58 - SDL:2009/07/13 21:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] O58 - SDL:2011/12/08 16:24:30 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] O58 - SDL:2011/12/29 01:48:24 A . (.Lenovo. - ThinkVantage Active Protection System HID D.) -- C:\Windows\System32\drivers\ApsHM64.sys [25416] O58 - SDL:2012/07/23 12:11:44 A . (.Lenovo. - Shockproof Disk Driver.) -- C:\Windows\System32\drivers\ApsX64.sys [148328] O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] O58 - SDL:2009/07/13 21:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] O58 - SDL:2009/06/10 16:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] O58 - SDL:2012/03/31 23:52:24 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [163368] O58 - SDL:2012/10/13 22:45:57 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [4747840] O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] O58 - SDL:2009/06/10 16:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] O58 - SDL:2009/07/13 21:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] O58 - SDL:2009/06/10 16:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] O58 - SDL:2012/03/31 23:52:26 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [594472] O58 - SDL:2012/03/31 23:52:30 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [184872] O58 - SDL:2012/03/05 08:29:42 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [210984] O58 - SDL:2011/09/16 21:38:52 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [39976] O58 - SDL:2012/03/05 08:29:40 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21544] O58 - SDL:2009/06/10 16:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] O58 - SDL:2012/03/08 02:59:08 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\Windows\System32\drivers\CHDRT64.sys [1602688] O58 - SDL:2009/07/13 21:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] O58 - SDL:2010/03/23 17:37:34 A . (.Razer (Asia-Pacific) Pte Ltd - Razer DeathAdder USB Optical Mouse Driver.) -- C:\Windows\System32\drivers\danew.sys [12032] O58 - SDL:2013/07/22 18:58:45 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283064] O58 - SDL:2009/07/13 21:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] O58 - SDL:2009/06/10 16:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] O58 - SDL:2012/01/17 02:55:19 A . (.Windows (R) Win 7 DDK provider - WINNT/2K/XP/2003 Driver.) -- C:\Windows\System32\drivers\Fastboot.sys [70416] O58 - SDL:2012/08/21 13:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240] O58 - SDL:2014/02/27 18:40:32 A . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\drivers\hcmon.sys [54464] O58 - SDL:2009/06/10 16:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] O58 - SDL:2012/07/17 18:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] O58 - SDL:2010/09/29 21:45:22 A . (.Windows (R) Win 7 DDK provider - Filter Driver for HID-KMDF Interface.) -- C:\Windows\System32\drivers\hidkmdf.sys [6656] O58 - SDL:2010/11/20 23:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] O58 - SDL:2011/12/23 08:37:12 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [568600] O58 - SDL:2011/12/08 16:24:30 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] O58 - SDL:2014/02/27 02:52:12 A . (.Lenovo. - Lenovo Power Management Driver.) -- C:\Windows\System32\drivers\ibmpmdrv.sys [57144] O58 - SDL:2012/11/21 20:43:14 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [165112] O58 - SDL:2012/06/25 02:19:38 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [14760096] O58 - SDL:2009/07/13 21:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] O58 - SDL:2012/06/20 22:46:46 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [331264] O58 - SDL:2012/04/13 12:06:42 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [19224] O58 - SDL:2012/04/13 12:06:42 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [356632] O58 - SDL:2012/04/13 12:06:42 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [789272] O58 - SDL:2010/06/03 11:07:18 A . (.Windows (R) Codename Longhorn DDK provider - Jumi Virtual Hid Device.) -- C:\Windows\System32\drivers\jumi.sys [15160] O58 - SDL:2015/08/20 00:44:16 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\Windows\System32\drivers\kl1.sys [458336] O58 - SDL:2015/08/20 00:44:16 A . (.Kaspersky Lab ZAO - Filter Core [fre_wlh_x64].) -- C:\Windows\System32\drivers\klflt.sys [91008] O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) -- C:\Windows\System32\drivers\klif.sys [628320] O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\Windows\System32\drivers\klim6.sys [29792] O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_wlh_x6.) -- C:\Windows\System32\drivers\klkbdflt.sys [29280] O58 - SDL:2015/08/20 00:44:17 A . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_wlh_x64].) -- C:\Windows\System32\drivers\klmouflt.sys [29280] O58 - SDL:2015/08/20 00:44:18 A . (.Kaspersky Lab ZAO - Network filtering component.) -- C:\Windows\System32\drivers\kltdi.sys [54368] O58 - SDL:2015/08/20 00:44:18 A . (.Kaspersky Lab ZAO - KNEPS Power [fre_wnet_amd64].) -- C:\Windows\System32\drivers\kneps.sys [177864] O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech Equad USB Driver..) -- C:\Windows\System32\drivers\LEqdUsb.sys [79240] O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\System32\drivers\LHidEqd.sys [15752] O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech HID Filter Driver..) -- C:\Windows\System32\drivers\LHidFilt.Sys [77192] O58 - SDL:2013/01/03 04:17:38 A . (.Logitech, Inc. - Logitech Mouse Filter Driver..) -- C:\Windows\System32\drivers\LMouFilt.Sys [61832] O58 - SDL:2013/06/23 14:43:53 A . (.Logitech, Inc. - Logitech Non-Plug and Play Driver..) -- C:\Windows\System32\drivers\LNonPnP.sys [18960] O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] O58 - SDL:2008/07/26 16:22:22 A . (.Logitech Inc. - Audio filter for Express Plus.) -- C:\Windows\System32\drivers\lv302a64.sys [15768] O58 - SDL:2008/07/26 16:22:34 A . (.Logitech Inc. - Logitech QuickCam Driver.) -- C:\Windows\System32\drivers\LV302V64.SYS [2624408] O58 - SDL:2008/07/26 16:25:48 A . (.Logitech Inc. - Logitech Kernel Audio Improvement Filter Dr.) -- C:\Windows\System32\drivers\lvrs64.sys [790424] O58 - SDL:2008/07/26 16:26:34 A . (.Logitech Inc. - USB Statistic Driver.) -- C:\Windows\System32\drivers\LVUSBS64.sys [50072] O58 - SDL:2013/12/06 09:37:50 A . (.Visicom Media Inc. - ManyCam Virtual Microphone.) -- C:\Windows\System32\drivers\mcaudrv_x64.sys [35232] O58 - SDL:2013/11/26 21:54:02 A . (.Visicom Media Inc. - ManyCam Virtual Webcam Driver.) -- C:\Windows\System32\drivers\mcvidrv.sys [42016] O58 - SDL:2012/10/10 23:08:38 A . (.ManyCam LLC - ManyCam Virtual Webcam.) -- C:\Windows\System32\drivers\mcvidrv_x64.sys [44928] O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] O58 - SDL:2009/07/13 21:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] O58 - SDL:2011/04/07 11:33:40 A . (.MaxiVista - MaxiVista demo video driver.) -- C:\Windows\System32\drivers\mvCmdemo.SYS [15568] O58 - SDL:2011/04/07 11:33:42 A . (.MaxiVista - MaxiVista demo video driver.) -- C:\Windows\System32\drivers\mvvideodemo.sys [14544] O58 - SDL:2013/07/25 17:53:46 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\Windows\System32\drivers\netaapl64.sys [23040] O58 - SDL:2009/07/13 21:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] O58 - SDL:2011/12/08 16:24:30 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] O58 - SDL:2011/12/08 16:24:30 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] O58 - SDL:2011/12/26 05:10:44 A . (.Lenovo Information Product(ShenZhen China) Inc. - SMBIOS Driver.) -- C:\Windows\System32\drivers\psadd.sys [40248] O58 - SDL:2009/07/13 21:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] O58 - SDL:2009/07/13 21:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] O58 - SDL:2009/02/12 16:11:26 A . (.EldoS Corporation - RawDisk Driver. Allows write access to file.) -- C:\Windows\System32\drivers\rsdrvx64.sys [26024] O58 - SDL:2011/08/23 08:57:24 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [565352] O58 - SDL:2011/10/26 22:27:52 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsP2Stor.sys [259688] O58 - SDL:2012/08/24 03:56:56 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\Windows\System32\drivers\scdemu.sys [126944] O58 - SDL:2009/06/10 16:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] O58 - SDL:2009/07/13 21:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] O58 - SDL:2009/07/13 21:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] O58 - SDL:2012/06/19 15:32:20 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [27448] O58 - SDL:2009/07/13 21:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] O58 - SDL:2012/06/19 15:32:20 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [431928] O58 - SDL:2012/09/24 07:36:00 A . (.Lenovo Group Limited - Power Manager.) -- C:\Windows\System32\drivers\TPPWR64V.SYS [20328] O58 - SDL:2015/08/20 01:30:24 A . (...) -- C:\Windows\System32\drivers\TrueSight.sys [35064] O58 - SDL:2011/05/29 06:48:04 A . (.Lenovo Information Product(ShenZhen China) Inc. - SMBUS Driver.) -- C:\Windows\System32\drivers\tvti2c.sys [40248] O58 - SDL:2011/12/07 21:59:52 A . (.ThinkVantage Communications Utility - ThinkVantage Virtual Camera.) -- C:\Windows\System32\drivers\tvtvcamd.sys [27432] O58 - SDL:2014/07/28 14:52:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784] O58 - SDL:2013/09/06 15:27:12 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [238352] O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\System32\drivers\VBoxNetAdp.sys [131856] O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox Bridged Networking Driver.) -- C:\Windows\System32\drivers\VBoxNetFlt.sys [146704] O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox USB Driver.) -- C:\Windows\System32\drivers\VBoxUSB.sys [106256] O58 - SDL:2013/09/06 15:25:40 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [119056] O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] O58 - SDL:2010/10/01 01:16:34 A . (.Windows (R) Win 7 DDK provider - HID mini driver for USB Fx2 Device.) -- C:\Windows\System32\drivers\VKbms.sys [13312] O58 - SDL:2013/10/08 18:21:06 A . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\drivers\vmci.sys [85584] O58 - SDL:2014/10/29 15:00:50 A . (.VMware, Inc. - VMware keyboard filter driver (64-bit).) -- C:\Windows\System32\drivers\VMkbd.sys [33496] O58 - SDL:2014/10/29 15:00:52 A . (.VMware, Inc. - VMware virtual network driver (64-bit).) -- C:\Windows\System32\drivers\vmnet.sys [24656] O58 - SDL:2014/10/29 15:00:52 A . (.VMware, Inc. - VMware virtual network adapter driver (64-b.) -- C:\Windows\System32\drivers\vmnetadapter.sys [20560] O58 - SDL:2014/10/29 15:00:52 A . (.VMware, Inc. - VMware bridge driver (64-bit).) -- C:\Windows\System32\drivers\vmnetbridge.sys [46160] O58 - SDL:2014/10/29 15:01:14 A . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\drivers\vmnetuserif.sys [31448] O58 - SDL:2014/10/29 15:01:42 A . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\drivers\vmx86.sys [64728] O58 - SDL:2013/08/07 16:12:18 A . (.Check Point Software Technologies - .) -- C:\Windows\System32\drivers\vna.sys [161256] O58 - SDL:2009/07/13 21:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] O58 - SDL:2013/10/08 18:21:10 A . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\drivers\vsock.sys [73296] ---\\ Last modified or created user files (13) - 25s O61 - LFC: 2015/08/18 14:55:46 A . (.Any-Video-Converter.com.) -- C:\Users\moose\Downloads\any-video-converter-free_5-8-3_fr_28662.exe [37939336] O61 - LFC: 2015/08/20 00:48:10 A . (..) -- C:\Users\moose\Downloads\RogueKiller.exe [18758216] O61 - LFC: 2015/08/13 01:08:36 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\À replacer\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\obj\Debug\GenerateurFichierE1.dll [62464] O61 - LFC: 2015/08/13 01:08:36 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\À replacer\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\bin\GenerateurFichierE1.dll [62464] O61 - LFC: 2015/08/13 01:10:20 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\RAM\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\obj\Debug\GenerateurFichierE1.dll [62464] O61 - LFC: 2015/08/13 01:10:20 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\RAM\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\bin\GenerateurFichierE1.dll [62464] O61 - LFC: 2015/08/13 01:12:03 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\obj\Debug\GenerateurFichierE1.dll [62464] O61 - LFC: 2015/08/13 01:12:03 A . (.Agence du Revenu du Québec.) -- C:\Users\moose\Desktop\GenerateurFichierE1\GenerateurFichierE1\GenerateurFichierE1\bin\GenerateurFichierE1.dll [62464] O61 - LFC: 2015/08/18 14:58:32 A . (..) -- C:\Users\moose\AppData\Roaming\OpenCandy\9E170E5B60C341C78C80889E21F2EC18\setup.exe [298976] =>PUP.Optional.OpenCandy O61 - LFC: 2015/08/13 17:57:35 A . (..) -- C:\Users\moose\AppData\Roaming\Microsoft\SQL Server Management Studio\11.0\SqlStudio.bin [46575] O61 - LFC: 2015/08/14 01:40:24 A . (..) -- C:\Users\moose\AppData\Local\Microsoft\Outlook\EasCache\4DE722D344A74729B701981BA6B5DA9B.bin [77476] O61 - LFC: 2015/08/20 09:03:13 A . (..) -- C:\Users\moose\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849] O61 - LFC: 2015/08/20 09:51:35 A . (..) -- C:\Users\moose\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [138827] ---\\ File Associations Shell Spawning (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Start Menu Internet (12) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe ---\\ Search Browser Infection (19) - 9s O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?octid=CT3282812&ctid=CT3282812&CUI=UN58966383363014324&UM=2[...] =>PUP.Optional.Conduit O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.ConduitSearchEngineList", "Somoto V.1 Customized Web Search"); =>PUP.Optional.Conduit O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.ConduitSearchUrlList", "http://search.conduit.com/ResultsExt.aspx?octid=CT3282812&ctid=CT3282812&SearchSource=[...] =>PUP.Optional.Conduit O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://ca.search.yahoo.com/search?fr=mcafee&p="); =>PUP.Optional.SmartBar O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("Smartbar.keywordURLSelectedCTID", "CT3282812"); =>PUP.Optional.SmartBar O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("browser.search.defaultthis.engineName", "Somoto V.1 Customized Web Search"); =>PUP.Optional.MegaSearch O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3282812&CUI=UN58966383363014324&UM=2&Sear[...] =>PUP.Optional.Conduit O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.current_url", "https://www.google.com/"); =>PUP.Optional.FreecorderExtension O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.id", "04aa35f0-079b-81fb-365c-5d916375594d"); =>PUP.Optional.FreecorderExtension O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.menu", "http://freecorder.com/fc8/ui/menu/freecorder8.php"); =>PUP.Optional.FreecorderExtension O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.menuitems", "[{\"name\":\"Freecorder Menu Header\",\"img\":\"http://freecorder.com[...] =>PUP.Optional.ClientConnect O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("extensions.freecorder@freecorder.com.pc_id", "TR005056c000012800226670"); =>PUP.Optional.FreecorderExtension O69 - SBI: prefs.js [moose - x5l3ec3k.default] user_pref("smartbar.machineId", "/RCPKTQWWIVHPXDOI0LOH+JA+2KYSELSIP8ACMUDYCLQIGOXSA0RFTYOL3RWDYNBMDMVNAHDNT0CYNWQNUDVWG"); =>PUP.Optional.SmartBar O69 - SBI: SearchScopes [HKCU] OldSearch - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {077AF985-4068-4B0E-8343-E43FD95E3118} - (Somoto V.1 Customized Web Search) - http://search.conduit.com/ =>PUP.Optional.Conduit O69 - SBI: SearchScopes [HKCU] {33E49509-8B4C-42E4-AAC5-72E4E2F7FE58} [DefaultScope] - (Yahoo Search!) - http://ca.search.yahoo.com/ O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKCU] {9D07F888-A21E-4584-A985-FDDE05275C7C} - (u-Search) - http://u-search.net/ =>PUP.Optional.uSearch O69 - SBI: SearchScopes [HKCU] {DBCA6D6F-612A-4007-9CDA-613F77778944} - (Yahoo Search!) - http://search.yahoo.com/ ---\\ Search Svchost Services (32) - 1s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [236032] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [679424] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [680960] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2477536] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\system32\qmgr.dll [849920] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] ---\\ Firewall Active Exception List (43) - 4s O87 - FAEL: "TCP Query User{A4F83DD6-1474-4C95-A2B9-148FBFC07721}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.) O87 - FAEL: "UDP Query User{7785C83C-0E03-444B-8016-FDEF81E3FC76}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.) O87 - FAEL: "TCP Query User{69D6EAAA-2594-41D5-9DB7-2C895D2609CD}C:\program files (x86)\jumi\jumi.exe" [In-None-P6-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe O87 - FAEL: "UDP Query User{309716A8-4394-47B5-AE6D-61C70DB3B030}C:\program files (x86)\jumi\jumi.exe" [In-None-P17-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe O87 - FAEL: "TCP Query User{E12F7E5D-7A33-48ED-89E3-4D09F950E89A}C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe" [In-None-P6-TRUE] .(...) -- C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe (.not file.) O87 - FAEL: "UDP Query User{3547578E-FCF6-4349-A43D-93F796ECA251}C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe" [In-None-P17-TRUE] .(...) -- C:\users\moose\appdata\roaming\dropbox\bin\dropbox.exe (.not file.) O87 - FAEL: "TCP Query User{31085D1A-95DF-4689-B344-EDC20AC7374C}C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe O87 - FAEL: "UDP Query User{97DE534C-FFD9-4F74-B8A5-770CB6BF2B3A}C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\cisco packet tracer 5.3.3\bin\packettracer5.exe O87 - FAEL: "TCP Query User{599C2465-F5ED-4860-A378-19B866AE03DE}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.) O87 - FAEL: "UDP Query User{6465B916-AB47-4497-B2D2-23A2F35891FF}C:\program files\java\jdk1.7.0_25\bin\eclipse.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jdk1.7.0_25\bin\eclipse.exe (.not file.) O87 - FAEL: "TCP Query User{4D8897FD-2B04-4119-AAB3-932825CC5239}C:\program files (x86)\jumi\jumi.exe" [In-None-P6-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe O87 - FAEL: "UDP Query User{959E0D9A-08AC-4F63-A5D0-63C17C465121}C:\program files (x86)\jumi\jumi.exe" [In-None-P17-TRUE] .(.Jumi Technologies - Jumi Controller.) -- C:\program files (x86)\jumi\jumi.exe O87 - FAEL: "TCP Query User{7235EDF6-1CA9-4A6E-81C3-11F5DDF5FE84}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P6-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe O87 - FAEL: "UDP Query User{615501F0-8921-4F02-BC3A-9DACA907B1C8}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P17-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe O87 - FAEL: "{73123B63-A676-4DD0-B97A-6679D90A38FD}" [In-None-P6-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe O87 - FAEL: "{196CBB23-2585-47C6-A2E1-40A2C5FA8E26}" [In-None-P17-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe O87 - FAEL: "{19794A08-9C1E-41E7-88A9-7B38FAA27AC9}" [In-None-P6-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe O87 - FAEL: "{5BB453C5-F92A-46E8-9C5D-CF3AD28540DC}" [In-None-P17-TRUE] .(.Google - Hangouts Plugin.) -- C:\Users\moose\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe O87 - FAEL: "{B9A97045-B686-4403-9789-65F4CECC74C7}" [In-None-P6-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{1CA8FD0F-2C83-477E-BF5A-263CCB27567E}" [In-None-P17-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{5266E201-F1BE-4ABE-8B8C-C716B14620A9}" [In-None-P6-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{9E35A2A6-10CE-4274-86F8-FA9F68D80F7D}" [In-None-P17-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{CF4DEBBD-690A-41D7-8E88-4D97ED92D95C}" [In-None-P17-TRUE] .(.Copyright (C) 2007-2011, Pando Networks Inc. - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe O87 - FAEL: "{B42AD378-59BE-4AB6-998F-2A72A80A1D38}" [In-None-P6-TRUE] .(.Phase Five Systems - Jump Desktop Viewer.) -- C:\Program Files (x86)\Jump Desktop\JumpWinClient.exe O87 - FAEL: "{567D86C7-B076-48D4-8BF5-C01AEE949378}" [In-None-P17-TRUE] .(.Phase Five Systems - Jump Desktop Viewer.) -- C:\Program Files (x86)\Jump Desktop\JumpWinClient.exe O87 - FAEL: "{29A5E165-EAEB-4421-BCC8-E678D23E07D5}" [In-None-P6-TRUE] .(.Phase Five Systems - Jump Desktop.) -- C:\Program Files (x86)\Jump Desktop\JumpDesktop.exe O87 - FAEL: "{D2C4A005-935B-4760-AA67-5F407AF04981}" [In-None-P17-TRUE] .(.Phase Five Systems - Jump Desktop.) -- C:\Program Files (x86)\Jump Desktop\JumpDesktop.exe O87 - FAEL: "{E6E0AA46-C940-48AE-9E7F-1A21006B84B1}" [In-None-P6-TRUE] .(.Phase Five Systems - Jump Desktop Service.) -- C:\Program Files (x86)\Jump Desktop\JumpService.exe O87 - FAEL: "{818F746D-7B9F-41E8-9F9C-E5242282671D}" [In-None-P17-TRUE] .(.Phase Five Systems - Jump Desktop Service.) -- C:\Program Files (x86)\Jump Desktop\JumpService.exe O87 - FAEL: "TCP Query User{99E9B592-7AB3-4618-B559-1C083CCAA1FA}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P6-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe O87 - FAEL: "UDP Query User{302902CF-024B-426E-842A-01EB18D7D4A2}C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe" [In-None-P17-TRUE] .(.Alexander Nikiforov - MP3 Skype Recorder.) -- C:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe O87 - FAEL: "{4FD6D01D-7DD2-4CA5-91F1-793A26511688}" [In-None-P17-TRUE] .(...) -- C:\Users\moose\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe (.not file.) O87 - FAEL: "{05B9E4E5-5C04-4993-8507-C3C32E47CEA9}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\moose\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{5A4C1D14-EFA7-484A-9607-3B1F2B88105C}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\moose\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{B645986B-020A-4702-B00F-93B198BC1061}" [In-None-P6-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\moose\AppData\Roaming\BitTorrent\BitTorrent.exe O87 - FAEL: "{43CD0C40-7121-4E68-B757-0CD6650396E0}" [In-None-P17-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\moose\AppData\Roaming\BitTorrent\BitTorrent.exe O87 - FAEL: "{6E9697C7-747A-4089-B270-7F8003AA18BE}" [In-None-P17-TRUE] .(.Seiz System Engineering - AbelCam®.) -- C:\Program Files (x86)\AbelCam\AbelCam.exe O87 - FAEL: "TCP Query User{65C92275-2A2C-4B3A-B21F-D14B5ADEFF1F}C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe O87 - FAEL: "UDP Query User{24E57D9E-9C12-4F9B-B91E-4111C092D1C0}C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\firefly studios\stronghold crusader\stronghold crusader.exe O87 - FAEL: "TCP Query User{9344CED7-AA7A-40E8-A71B-B302F583E81E}C:\program files\maxivista demo server\maxivistademo.exe" [In-None-P6-TRUE] .(.Bartels Media - MaxiVista.) -- C:\program files\maxivista demo server\maxivistademo.exe O87 - FAEL: "UDP Query User{DCB52B4E-038B-4773-B54E-B5A5164B597F}C:\program files\maxivista demo server\maxivistademo.exe" [In-None-P17-TRUE] .(.Bartels Media - MaxiVista.) -- C:\program files\maxivista demo server\maxivistademo.exe O87 - FAEL: "{47FED3CF-970E-401F-968B-118FA3792934}" [Out-None-P6-TRUE] .(.Copyright © 2015 - UNCServer.) -- C:\Program Files (x86)\Lenovo\System Update\uncserver.exe O87 - FAEL: "{E452289A-F7ED-4EBD-AC52-07C67C780FEA}" [Out-None-P17-TRUE] .(.Copyright © 2015 - UNCServer.) -- C:\Program Files (x86)\Lenovo\System Update\uncserver.exe ---\\ Services not Microsoft (SR=Run, SS=Stop) (62) - 19s SR - Auto [2015/06/08 12:07:48] [ 133360] (AcPrfMgrSvc) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe SR - Auto [2015/06/08 12:08:00] [ 276720] (AcSvc) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe SR - Auto [2015/07/07 20:12:28] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SS - Demand [2015/08/12 23:53:23] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SR - Auto [2014/10/07 16:09:50] [ 60744] Apple Mobile Device (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - Auto [2015/08/20 00:32:47] [ 356128] Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe SR - Auto [2011/08/31 00:05:32] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SS - Auto [2014/09/16 12:14:42] [ 409304] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe SR - Auto [2014/09/16 12:15:08] [ 384728] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe SR - Auto [2014/09/16 12:16:42] [ 777944] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe SR - Auto [2012/04/01 15:21:52] [ 957216] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe SR - Auto [2013/08/07 16:12:18] [ 366712] Check Point SSL Network Extender (cpextender) . (.Check Point Software Technologies.) - C:\Program Files (x86)\CheckPoint\SSL Network Extender\slimsvc.exe SS - Demand [2012/06/25 02:19:50] [ 276288] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe SR - Auto [2010/12/17 04:46:34] [ 198784] @C:\Windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc..) - C:\Windows\system32\CxAudMsg64.exe SR - Auto [2008/12/10 00:10:14] [ 24636] doliwampapache (doliwampapache) . (.Apache Software Foundation.) - c:\dolibarr\bin\apache\apache2.2.11\bin\httpd.exe SS - Auto [2007/07/06 12:14:02] [ 5730304] doliwampmysqld (doliwampmysqld) . (...) - c:\dolibarr\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe SS - Disabled [2012/01/17 02:29:24] [ 169776] FastbootService (FastbootService) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe SS - Demand [2012/02/26 10:42:28] [ 632320] FileZilla Server FTP server (FileZilla Server) . (.FileZilla Project.) - C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe SS - Disabled [2013/10/09 21:10:54] [ 1074480] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Flexera Software LLC.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SR - Auto [2013/08/07 03:04:06] [ 2139944] TrueSuiteService (FPLService) . (.AuthenTec, Inc.) - C:\Program Files\Lenovo Fingerprint Reader\TrueSuiteService.exe SS - Auto [2014/10/21 23:02:50] [ 107912] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - Demand [2014/10/21 23:02:50] [ 107912] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - Demand [2012/10/22 15:44:04] [ 194032] Google Software Updater (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SS - Auto [2012/05/29 18:27:14] [ 144992] HyperW7 Service (HyperW7Svc) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe SR - Auto [2014/02/27 02:52:12] [ 68440] Lenovo PM Service (IBMPMSVC) . (.Lenovo..) - C:\Windows\system32\ibmpmsvc.exe SS - Demand [2004/10/22 03:24:18] [ 73728] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe SS - Disabled [2012/02/03 01:29:52] [ 628448] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe SS - Disabled [2012/03/06 18:49:08] [ 128280] Intel(R) ME Service (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe SR - Demand [2014/10/15 06:42:08] [ 643880] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - Auto [2012/03/06 18:49:04] [ 163608] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe SR - Auto [2013/05/07 12:23:54] [ 7680] Jump Desktop Service (JumpDesktop) . (.Phase Five Systems.) - C:\Program Files (x86)\Jump Desktop\JumpService.exe SS - Demand [2013/02/08 14:30:42] [ 359664] Logitech Bluetooth Service (LBTServ) . (.Logitech, Inc..) - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe SR - Auto [2012/06/01 23:48:38] [ 58224] Lenovo Camera Mute (LENOVO.CAMMUTE) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\Communications Utility\CamMute.exe SR - Auto [2014/04/07 13:54:02] [ 110128] Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\micmute.exe SR - Auto [2012/06/01 23:48:58] [ 61296] Lenovo Keyboard Noise Reduction (LENOVO.TPKNRSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe SR - Auto [2012/06/01 23:49:06] [ 179568] ThinkVantage Virtual Camera Controller (LENOVO.TVTVCAM) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe SR - Auto [2011/07/12 03:54:00] [ 133992] Lenovo Auto Scroll (Lenovo.VIRTSCRLSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe SR - Auto [2012/03/06 18:49:16] [ 277784] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SS - Demand [2014/10/16 17:13:48] [ 272776] LSCWinService (LSCWinService) . (.Copyright © 2013.) - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe SS - Demand [2015/08/07 21:30:39] [ 148136] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SR - Auto [2012/11/08 18:08:50] [ 70152] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\NLSSRV32.EXE SS - Disabled [2012/09/24 07:36:00] [ 1666112] Power Manager DBC Service (Power Manager DBC Service) . (.Lenovo.) - C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe SR - Auto [2010/03/11 17:06:06] [ 193824] Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc..) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe SS - Demand [2012/09/24 07:36:00] [ 1665088] Cisco EnergyWise Enabler (PwmEWSvc) . (.Lenovo Group Limited.) - C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.exe SR - Auto [2015/08/19 21:25:34] [ 1190624] Service Mgr ResultsHub (Service Mgr ResultsHub) . (...) - C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub SS - Auto [2015/02/18 19:11:32] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - Demand [2015/07/01 13:53:34] [ 22008] System Update (SUService) . (.Copyright © 2014.) - C:\Program Files (x86)\Lenovo\System Update\SUService.exe SS - Demand [2010/02/19 13:37:14] [ 517096] Adobe SwitchBoard (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe SS - Disabled [2010/08/31 17:56:16] [ 1028096] ThinkVantage Registry Monitor Service (ThinkVantage Registry Monitor Service) . (.Lenovo Group Limited.) - C:\Program Files (x86)\Common Files\Lenovo\tvt_reg_monitor_svc.exe SS - Demand [2011/12/29 01:48:24] [ 49480] ThinkPad HDD APS Logging Service (TPHDEXLGSVC) . (.Lenovo..) - C:\Windows\System32\TPHDEXLG64.exe SR - Auto [2014/06/10 11:15:44] [ 124400] Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\tphkload.exe SR - Auto [2014/04/01 15:45:20] [ 126512] On Screen Display (TPHKSVC) . (.Lenovo Group Limited.) - C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe SR - Demand [2013/07/22 02:13:30] [ 401704] TrueAPI Service component (TrueService) . (.AuthenTec, Inc..) - C:\Program Files\Common Files\AuthenTec\TrueService.exe SS - Disabled [2012/02/06 23:11:42] [ 1492280] TVT Backup Service (TVT Backup Service) . (.Lenovo Group Limited.) - C:\Program Files (x86)\Lenovo\Rescue and Recovery\rrservice.exe SR - Auto [2008/01/10 15:13:50] [ 61440] Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc..) - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe SR - Auto [2012/03/06 18:49:18] [ 363800] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe SR - Auto [2015/08/19 21:20:32] [ 705760] Update Mgr ResultsHub (Update Mgr ResultsHub) . (...) - C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub SS - Disabled [2012/04/19 03:15:38] [ 84080] VIPAppService (VIPAppService) . (.Symantec Corporation.) - C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe SR - Auto [2014/10/29 14:07:32] [ 86744] VMware Authorization Service (VMAuthdService) . (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe SR - Auto [2014/02/27 18:40:46] [ 906432] VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe SS - Disabled [2012/05/13 19:39:06] [ 22016] wampapache (wampapache) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe SS - Disabled [2012/04/19 15:45:02] [ 9693696] wampmysqld (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe ---\\ Search Tracing Registry Key (2) - 3s HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASAPI32 =>PUP.Optional.FLVPlayer HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASMANCS =>PUP.Optional.FLVPlayer ---\\ Additional Scan (O88) (37) - 0s C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.CrossRider C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.CrossRider C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\search-simple.xml =>PUP.Optional.SearchSimple C:\Users\moose\AppData\Roaming\Mozilla\Firefox\Profiles\x5l3ec3k.default\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo.xml =>PUP.Optional.BDYahoo HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B15BBE59-42F5-4206-B3F0-BE98F5DC4B93} =>PUP.Optional.FreecorderExtension HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr ResultsHub =>PUP.Optional.ResultsHub* C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub* HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr ResultsHub =>PUP.Optional.ResultsHub* C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub* HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension =>PUP.Optional.FreecorderExtension HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension for Chrome =>PUP.Optional.FreecorderExtension HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension for Firefox =>PUP.Optional.FreecorderExtension HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freecorder extension x64 =>PUP.Optional.FreecorderExtension HKLM\SOFTWARE\Wow6432Node\Conduit =>PUP.Optional.Conduit HKLM\SOFTWARE\Wow6432Node\Torch =>PUP.Optional.Torch HKCU\SOFTWARE\Conduit =>PUP.Optional.Conduit HKCU\SOFTWARE\DriverTuner =>PUP.Optional.DriverTuner HKCU\SOFTWARE\DriverTuner_Init =>PUP.Optional.DriverTuner HKCU\SOFTWARE\Torch =>PUP.Optional.Torch HKCU\SOFTWARE\AppDataLow\Software\ConduitSearchScopes =>PUP.Optional.Conduit HKCU\SOFTWARE\AppDataLow\Software\SmartBar =>PUP.Optional.SmartBar C:\Program Files (x86)\Freecorder extension =>PUP.Optional.FreecorderExtension C:\ProgramData\Allmyapps =>PUP.Optional.Generic C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS C:\ProgramData\rvlkl =>PUP.Optional.RelevantKnowledge C:\Users\moose\AppData\Roaming\OpenCandy =>PUP.Optional.OpenCandy C:\Users\moose\AppData\Local\CrashRpt =>.Legitimate.CrashReports C:\Users\moose\AppData\Local\DriverTuner =>PUP.Optional.DriverTuner C:\Users\moose\AppData\Local\Torch =>PUP.Optional.Torch C:\Users\moose\AppData\Roaming\OpenCandy\9E170E5B60C341C78C80889E21F2EC18\setup.exe =>PUP.Optional.OpenCandy HKLM\SYSTEM\CurrentControlSet\Services\Service Mgr ResultsHub =>PUP.Optional.ResultsHub C:\ProgramData\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\plugincontainer.exe =>PUP.Optional.ResultsHub HKLM\SYSTEM\CurrentControlSet\Services\Update Mgr ResultsHub =>PUP.Optional.ResultsHub C:\Program Files (x86)\Common Files\3929cb63-cbbd-4b9c-8b92-a50fbd04e656\updater.exe =>PUP.Optional.ResultsHub HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASAPI32 =>PUP.Optional.FLVPlayer HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\flvplayer_RASMANCS =>PUP.Optional.FLVPlayer ---\\ Summary of the elements found (19) - 0s http://www.nicolascoolman.fr/pup-crossrider/ =>PUP.Optional.CrossRider http://www.nicolascoolman.fr/blog =>PUP.Optional.SearchSimple http://www.nicolascoolman.fr/blog =>PUP.Optional.BDYahoo http://www.nicolascoolman.fr/pup-freecorderextension/ =>PUP.Optional.FreecorderExtension http://www.nicolascoolman.fr/blog =>PUP.Optional.ResultsHub* http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit http://www.nicolascoolman.fr/blog =>PUP.Optional.Torch http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverTuner http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar http://www.nicolascoolman.fr/blog =>PUP.Optional.Generic http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS http://www.nicolascoolman.fr/adware-relevantknowledge/ =>PUP.Optional.RelevantKnowledge http://www.nicolascoolman.fr/adware-opencandy/ =>PUP.Optional.OpenCandy http://www.nicolascoolman.fr/blog =>.Legitimate.CrashReports http://www.nicolascoolman.fr/adware-megasearch/ =>PUP.Optional.MegaSearch http://www.nicolascoolman.fr/blog =>PUP.Optional.ClientConnect http://www.nicolascoolman.fr/blog =>PUP.Optional.uSearch http://www.nicolascoolman.fr/blog =>PUP.Optional.ResultsHub http://www.nicolascoolman.fr/blog =>PUP.Optional.FLVPlayer ~ End of the scan, 122008 items in 196 seconds (1967)(0)()