~ ZHPDiag v2015.10.2.147 By Nicolas Coolman (2015/10/02) ~ Run by Clevia Rosset (Administrator) (2015/10/09 23:50:44) ~ Web: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: No network file ~ Mode: Scan ~ Report: C:\Users\Clevia Rosset\Desktop\ZHPDiag.txt ~ Report: C:\Users\Clevia Rosset\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 7 Professional, 64-bit Service Pack 1 (Build 7601) ---\\ Internet Browsers (3) - 0s GCIE: Google Chrome v45.0.2454.101 MFIE: Mozilla Firefox 40.0.3 (x86 pt-BR) v40.0.3 MSIE: Internet Explorer v11.0.9600.18015 ---\\ Windows Product Information (4) - 3s ~ Windows Server License Manager Script : OK System - VBScript Engine not found Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System protection software (4) - 2s Malwarebytes Anti-Malware versão 2.1.8.1057 Microsoft Security Client PT-BR Language Pack v2.1.1116.0 Microsoft Security Essentials v4.8.204.0 Windows Defender W7 (Deactivate) ---\\ Surveillance software (2) - 2s Adobe Flash Player 18 NPAPI Adobe Acrobat Reader DC - Português ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4053.896 MB (56% free) ~ System Restore: Activé (Enable) ~ System drive C: has 359 GB free of 464 GB ---\\ Connection to the system mode (3) - 0s ~ Computer Name: CLEVIAROSSET ~ User Name: Clevia Rosset ~ Logged in as Administrator ---\\ Enumeration of the disk units (1) - 0s ~ Drive C: has 359 GB free of 464 GB (System) ---\\ State of the Windows Security Center (13) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Search Generic System Files (25) - 2s [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2871808] © [MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] © [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024] © [MD5.A55305B1CACD38EAC176CC532B2053AC] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [2427392] © [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [455168] © [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [232448] © [MD5.492D07D79E7024CA310867B526D9636D] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\Windows\System32\dnsapi.dll [357888] © [MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - (.Microsoft Corporation - DNS Client API DLL.) () -- C:\Windows\Syswow64\dnsapi.dll [270336] © [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] © [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] © [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] © [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] © [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] © [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] © [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] © [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] © [MD5.DB8E6BA1D110A4E40D48612E9009E366] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] © [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] © [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] © [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280] © [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] © [MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888] © [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] © [MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] © [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] © ---\\ Process running (35) - 3s [MD5.78CC42364F47A889CBC4E66E8BA4DB9D] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe [587576] [PID.816] [MD5.E845055AEFA59D7F14D653A145A8D4CB] - (.UPEK Inc. - Fingerprint Server Process for Vista.) -- C:\Program Files\Protector Suite\upeksvr.exe [86792] [PID.1596] [MD5.8BA6E93A182126781952A7895EC1E4B2] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [952096] [PID.2044] © [MD5.3CAA23E97462F57B0CF876F8E9B16DFF] - (.MRC-Holland / Berg IT Solutions (BITS) - CoffalyserServerEngine.) -- C:\Program Files (x86)\MRC-Holland\Coffalyser.Net\CoffalyserServer.exe [102912] [PID.1196] [MD5.AD1CF8471B06BADB93D87CC4D63B8483] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2108] © [MD5.5B4E5D841B029EDF5FFB71E50C2D2C02] - (.Digital Delivery Networks, Inc. - Oasis2Service.) -- C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe [61440] [PID.2324] [MD5.63694C307273062A2167AE4CE80730EF] - (.Sony Corporation - Device Information Provider.) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [398176] [PID.2452] © [MD5.A6BAEA839CC888D4961AB5FE16BB8C4A] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [838928] [PID.2472] © [MD5.65CC4779A29C3E82B987BD4961790DFF] - (.Sony Corporation - VAIO Media plus Digital Media Server.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [423280] [PID.2760] © [MD5.F47D75CEE1844EEF4A9EA6EE768828FB] - (.Sony Corporation - VAIO Media plus Device Searcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [67952] [PID.2792] © [MD5.A60605FC66552B421EE1F3D4EBB9A4E0] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe [217968] [PID.2880] © [MD5.07F47A1DF726537313C1023515175532] - (.Sony Corporation - VCM Intelligent Analyzing Manager.) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [655088] [PID.2940] © [MD5.C3E69DB0A4E59564230E053232F39AC7] - (.Sony Corporation - VAIO Media plus Content Importer.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [108400] [PID.3060] © [MD5.BDFCB7E8C108D042B213957D2B044E7E] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [1429776] [PID.2164] © [MD5.1D702FFC1B8CDCF76FBCA7740CE510D8] - (.Sony Corporation - VAIO Event Service (Service Sub Module).) -- C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe [120176] [PID.3416] © [MD5.5449FC97476F52E027409E703791E6A9] - (.Sony Corporation - VAIO Entertainment Common Service.) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [304496] [PID.2236] © [MD5.6888526AEB8DDABDE6F778FD40FC0693] - (.Sony Corporation - VAIO Content Folder Watcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [864000] [PID.4588] © [MD5.78CC42364F47A889CBC4E66E8BA4DB9D] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files (x86)\GbPlugin\gbpsv.exe [587576] [PID.5116] [MD5.389F88F9822ED5B566371EA1E9200549] - (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [482160] [PID.5184] © [MD5.671951DA6AD104A0F7692F355289A5A1] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2057000] [PID.5304] © [MD5.607AA4260DB60270916B871BA99FF8E0] - (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe [81264] [PID.5344] © [MD5.B7504FB135642170D85D277F99A60262] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [1128224] [PID.5360] © [MD5.71CA831294E8235E18B6258F6179A0E6] - (.UPEK Inc. - Fingerprint Tray Application.) -- C:\Program Files\Protector Suite\psqltray.exe [453896] [PID.5468] [MD5.D469BE2723F79CF4B384680B1FDC577D] - (.Sony Corporation - SPM Module.) -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe [575856] [PID.5484] © [MD5.CCA9023E3DDBE290D4381344115D99B7] - (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [673136] [PID.5868] © [MD5.48B9248CED8A5DE4EB0917CB676CB8D5] - (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032] [PID.5876] © [MD5.B9C250E93CE43E262E43DFFE3A9B7FFE] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [121128] [PID.5980] © [MD5.046C4928FB5D09D3BB3967B79845427E] - (.Copyright © 2004 - 2009 - CCP.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\CCP.exe [22504] [PID.4488] [MD5.B7F182F0972EA735207AE66C775E77F1] - (.Copyright © 2006 - ThirdPartyAppMgr.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\ThirdPartyAppMgr.exe [23552] [PID.3812] [MD5.20E915CF7C6F5E74E1FB4C8078D7CB83] - (.Copyright © 2006 - PowerManager.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\PowerManager.exe [40952] [PID.2248] [MD5.F120F63F99343B7D55C0E04285858295] - (.Microsoft - .) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\SmartWi.exe [184816] [PID.1812] © [MD5.AD88AF249ABDC546151F9BFC4093FA9B] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.4756] © [MD5.C967BDA9397E004842498A25583983A2] - (.Sony Corporation - VAIO Personalization Manager Morphological.) -- C:\Program Files\Sony\VAIO Personalization Manager\VpmIfPav.exe [87408] [PID.6044] © [MD5.F2C82BA7E80C6054D5D20F3FBD4CFD34] - (...) -- C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe [77664] [PID.5196] [MD5.DD7DAC8A6913EB893372091E96871F95] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Clevia Rosset\AppData\Roaming\ZHP\ZHPDiag3.exe [1940992] [PID.6656] © ---\\ Google Chrome, Start,Search,Extensions (18) - 1s G0 - GCSP: Preferences [User Data\Default][HomePage] http://b.scorecardresearch.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://imguol.com.br G0 - GCSP: Preferences [User Data\Default][HomePage] http://imguol.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://metrics.uol.com.br G0 - GCSP: Preferences [User Data\Default][HomePage] http://stc.uol.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://uol.com.br G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.uol.com.br G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com.br G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (8) - 2s P2 - EXT FILE: (...) -- C:\Users\Clevia Rosset\AppData\Roaming\Mozilla\Firefox\Profiles\bm4okjd5.default\searchplugins\script-srchttpqueryjs.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} © P2 - FPN: [HKCU] [gastecnologia.com.br/sf/gas64] - (...) -- C:\Users\Clevia Rosset\AppData\Local\GAS Tecnologia\GBBD\npsf_gas_64.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll © P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.45.2] - (.Oracle Corp..) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll © P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll © P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll © P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3538.0513] - (.Microsoft.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll © ---\\ Internet Explorer Extensions, Start, Search (17) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2 ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) © F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) © F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) © ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object (BHO) (2) - 0s O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean) O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphean) ---\\ Internet Explorer Toolbars (1) - 0s O3 - Toolbar: 0xE3EFEB7F196B494398D2FFB09D4B49CA013A050000 - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.) ---\\ Auto loading programs from Registry and folders (15) - 1s O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe © O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [PSQLLauncher] . (.UPEK Inc. - Fingerprint Launcher.) -- C:\Program Files\Protector Suite\launcher.exe O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe © O4 - HKCU\..\Run: [Elbserver] . (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe © O4 - HKLM\..\Wow6432Node\Run: [SmartWiHelper] . (.Sony Electronics Corporation - SmartWi Helper.) -- C:\Program Files (x86)\Sony\SmartWi Connection Utility\SmartWiHelper.exe O4 - HKLM\..\Wow6432Node\Run: [ISBMgr.exe] . (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe © O4 - HKLM\..\Wow6432Node\Run: [PMBVolumeWatcher] . (.Sony Corporation - Media Check Tool.) -- C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe © O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe © O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe © O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe © O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe © O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe © O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe © O4 - HKUS\S-1-5-21-3249590153-425188373-1766074318-1005\..\Run: [Elbserver] . (.Sony Corporation - .) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe © ---\\ Lop.com/Domain Hijackers (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 ---\\ Extra protocols (22) - 0s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll © O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll © O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll © O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll © O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL © ---\\ Non Microsoft non disabled Windows Services (21) - 1s O23 - Service: Apple Mobile Device (Apple Mobile Device) . (...) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (.not file.) O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe © O23 - Service: Coffalyser.Net Server (Coffalyser.Net Server) . (.MRC-Holland / Berg IT Solutions (BITS) - CoffalyserServerEngine.) - C:\Program Files (x86)\MRC-Holland\Coffalyser.Net\CoffalyserServer.exe O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe © O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files (x86)\GbPlugin\gbpsv.exe O23 - Service: Serviço do Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe © O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe © O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe © O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe © O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 197.9.) - C:\Windows\system32\nvvsvc.exe © O23 - Service: (Oasis2Service) . (.Digital Delivery Networks, Inc. - Oasis2Service.) - C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe O23 - Service: PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe © O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe © O23 - Service: VAIO Media plus Content Importer (SOHCImp) . (.Sony Corporation - VAIO Media plus Content Importer.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe © O23 - Service: VAIO Media plus Digital Media Server (SOHDms) . (.Sony Corporation - VAIO Media plus Digital Media Server.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe © O23 - Service: VAIO Media plus Device Searcher (SOHDs) . (.Sony Corporation - VAIO Media plus Device Searcher.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe © O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe © O23 - Service: VAIO Event Service (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe © O23 - Service: VAIO Power Management (VAIO Power Management) . (.Sony Corporation - SPM Module.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe © O23 - Service: VAIO Content Folder Watcher (VCFw) . (.Sony Corporation - VAIO Content Folder Watcher.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe © O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) . (.Sony Corporation - VCM Intelligent Analyzing Manager.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe © ---\\ Task Planned Automatically (14) - 4s [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] © [MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] © [MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] © [MD5.C6FF00DA1605982E616C03BE809FFE2D] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] © [MD5.00000000000000000000000000000000] [APT] [VAIO Health Report] (...) -- C:\Program Files (x86)\Sony\VAIO Health Report\VAIOHealthReport.exe (.not file.) [0] [MD5.7752388B20964D5346139A44AAB6B8EF] [APT] [{6068F834-CBDB-4135-B2EE-7FF0F148F609}] (...) -- C:\Windows\UbiSoft\InstalTT.exe [809984] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] © O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [894] © O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [898] © O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] © O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] © O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3642] © O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3894] © O39 - APT: VAIO Health Report - (...) -- C:\Windows\System32\Tasks\VAIO Health Report [3800] ---\\ Software installed (88) - 6s O42 - Logiciel: Service Pack 1 for SQL Server 2008 R2 (KB2528583) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2528583 © O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client © O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel © O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers © O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM][64Bits] -- ProInst O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey © O42 - Logiciel: Protector Suite 2009 - (.UPEK Inc..) [HKLM][64Bits] -- {0F841121-4DB6-4B31-839F-7F5AB3BB3423} O42 - Logiciel: IBM SPSS Statistics 22 - (.IBM Corp.) [HKLM][64Bits] -- {104875A1-D083-4A34-BC4F-3F635B7F8EF7} O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM][64Bits] -- {115B60D5-BBDB-490E-AF2E-064D37A3CE01} © O42 - Logiciel: PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- {133D3F07-D558-46CE-80E8-F4D75DBBAD63} © O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM][64Bits] -- {202B76AB-1B21-434E-A289-788D767D3A7C} © O42 - Logiciel: SQL Server 2008 R2 SP1 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {234F6B0D-10AE-4BB7-B2F3-E48D4861952D} © O42 - Logiciel: Java 8 Update 51 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418051F0} © O42 - Logiciel: Microsoft Antimalware Service PT-BR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {3099E885-DE8A-4099-ABE2-561DC8589DFA} © O42 - Logiciel: SQL Server 2008 R2 SP1 Common Files - (.Microsoft Corporation.) [HKLM][64Bits] -- {36F70DEE-1EBF-4707-AFA2-E035EEAEBAA1} © O42 - Logiciel: Intel(R) PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {4327107B-E95E-415C-9194-458FCED6BF12} © O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5} © O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM][64Bits] -- {5AFD1F5C-8FDA-413C-AF38-F1E7BD10D72F} © O42 - Logiciel: VGClientX64 - (.Sony Corporation.) [HKLM][64Bits] -- {99E6C2F3-59B2-4308-B1CD-4928B55B7E30} © O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {A2122A9C-A699-4365-ADF8-68FEAC125D61} © O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM][64Bits] -- {A3D964A6-411A-4817-9D58-5CB8808F494E} © O42 - Logiciel: NVIDIA HD Audio Driver 1.3.18.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver © O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BDD99690-3541-4619-9D2A-3CDDB3E15F9E} © O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Shared - (.Microsoft Corporation.) [HKLM][64Bits] -- {C942A025-A840-4BF2-8987-849C0DD44574} © O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6} © O42 - Logiciel: Microsoft Security Client PT-BR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07} © O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {F31183CF-E10F-4DE1-BB59-6C0FF38E481E} © O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FA7394B8-CE65-4F9E-AC99-F372AD365424} © O42 - Logiciel: SQL Server 2008 R2 SP1 Database Engine Services - (.Microsoft Corporation.) [HKLM][64Bits] -- {FBD367D1-642F-47CF-B79B-9BE48FB34007} © O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX © O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI © O42 - Logiciel: Adobe Shockwave Player 12.1 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player © O42 - Logiciel: Application Manager for VAIO - (...) [HKLM][64Bits] -- Application Manager for VAIO O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite © O42 - Logiciel: Phantasmat Premium Edition - (...) [HKLM][64Bits] -- fbd5021f83a3ec82f7bb1642fb633c28 O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM][64Bits] -- GOM Player O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome © O42 - Logiciel: VAIO - PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{270380EB-8812-42E1-8289-53700DB840D2} © O42 - Logiciel: VAIO - PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM][64Bits] -- InstallShield_{FF1FC66F-536F-46BD-98E3-D8DA127A810E} © O42 - Logiciel: Malwarebytes Anti-Malware versão 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 © O42 - Logiciel: Mozilla Firefox 40.0.3 (x86 pt-BR) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.3 (x86 pt-BR) © O42 - Logiciel: Need for Speed Underground 2 - (...) [HKLM][64Bits] -- Need for Speed Underground 2 O42 - Logiciel: Phantasmat Collectors Edition 1.00 - (...) [HKLM][64Bits] -- Phantasmat Collectors Edition 1.00 O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 9 © O42 - Logiciel: WinRAR 4.20 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver © O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} © O42 - Logiciel: IBM SPSS Statistics 19 - (.SPSS Inc., an IBM Company.) [HKLM][64Bits] -- {06C43FAA-7226-41EF-A05E-9AE0AA849FFE} O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} © O42 - Logiciel: OOBE - (.Sony Corporation.) [HKLM][64Bits] -- {1B500D37-E7CF-480B-8054-8A563594EC4E} © O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E} © O42 - Logiciel: PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- {270380EB-8812-42E1-8289-53700DB840D2} © O42 - Logiciel: VAIO Survey - (.Sony Corporation.) [HKLM][64Bits] -- {34B37A74-125E-4406-87BA-E4BD3D097AE5} © O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2721691) - (.Microsoft Corporation.) [HKLM][64Bits] -- {355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36} © O42 - Logiciel: HiJackThis - (.Trend Micro.) [HKLM][64Bits] -- {45A66726-69BC-466B-A7A4-12FCBA4883D7} © O42 - Logiciel: VAIO Sample Contents - (.Sony Corporation.) [HKLM][64Bits] -- {547C9EB4-4CA6-402F-9D1B-8BD30DC71E44} © O42 - Logiciel: VAIO Data Restore Tool - (.Sony Corporation.) [HKLM][64Bits] -- {57B955CE-B5D3-495D-AF1B-FAEE0540BFEF} © O42 - Logiciel: VAIO Transfer Support - (.Sony Corporation.) [HKLM][64Bits] -- {5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF} © O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} © O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} © O42 - Logiciel: Bing Rewards Client Installer - (.Microsoft Corporation.) [HKLM][64Bits] -- {61EDBE71-5D3E-4AB7-AD95-E53FEAF68C17} © O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} © O42 - Logiciel: Remote Keyboard with PlayStation 3 - (.Sony Corporation.) [HKLM][64Bits] -- {65B138AE-F636-4D4C-BA5D-A06E21E47C53} © O42 - Logiciel: VAIO Media plus Opening Movie - (.Sony Corporation.) [HKLM][64Bits] -- {6BF03C88-C06A-48DC-B9A1-FE72B24E5FA9} © O42 - Logiciel: VAIO Control Center - (.Sony Corporation.) [HKLM][64Bits] -- {72042FA6-5609-489F-A8EA-3C2DD650F667} © O42 - Logiciel: MEGA5 - (.Arizona State University.) [HKLM][64Bits] -- {82808A16-D448-4FBF-9AE9-75AF3FC240DC}_is1 O42 - Logiciel: PMB VAIO Edition Plug-in - (.Sony Corporation.) [HKLM][64Bits] -- {8356CB97-A48F-44CB-837A-A12838DC4669} © O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44} © O42 - Logiciel: VGClientX86 - (.Sony Corporation.) [HKLM][64Bits] -- {8B583EF5-FA7B-4AE2-9008-51B7FD505886} © O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM][64Bits] -- {8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD} © O42 - Logiciel: SmartWi Connection Utility - (.Sony Corporation.) [HKLM][64Bits] -- {9B5F85CA-90D4-4AFC-BB37-32477FD0D2B9} © O42 - Logiciel: VAIO Gate - (.Sony Corporation.) [HKLM][64Bits] -- {A7C30414-2382-4086-B0D6-01A88ABA21C3} © O42 - Logiciel: Google Update Helper - (.DealPly Technologies Ltd.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Optional.Dealply O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} © O42 - Logiciel: Adobe Acrobat Reader DC - Português - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1046-7B44-AC0F074E4100} © O42 - Logiciel: PMB - (.Sony Corporation.) [HKLM][64Bits] -- {B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C} © O42 - Logiciel: VAIO Gate Default - (.Sony Corporation.) [HKLM][64Bits] -- {B7546697-2A80-4256-A24B-1C33163F535B} © O42 - Logiciel: VAIO Manual - (.Sony Corporation.) [HKLM][64Bits] -- {C6E893E7-E5EA-4CD5-917C-5443E753FCBD} © O42 - Logiciel: Coffalyser.Net - (.MRC-Holland.) [HKLM][64Bits] -- {C7F9CB04-5CB4-45BE-88F6-7D22BC9109D7} O42 - Logiciel: VU5x86 - (.Sony Corporation .) [HKLM][64Bits] -- {D2D23D08-D10E-43D6-883C-78E0B2AC9CC6} © O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM][64Bits] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E} © O42 - Logiciel: VAIO - Media Gallery - (.Sony Corporation.) [HKLM][64Bits] -- {DD88F979-FA58-41AC-980C-A6E1A82B61D9} © O42 - Logiciel: ArcSoft WebCam Companion 3 - (.ArcSoft.) [HKLM][64Bits] -- {DE8AAC73-6D8D-483E-96EA-CAEDDADB9079} © O42 - Logiciel: Oasis2Service - (.DDNi.) [HKLM][64Bits] -- {E50FC5DB-7CBD-407D-A46E-0C13E45BC386} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} © O42 - Logiciel: Evernote - (.Evernote Corp..) [HKLM][64Bits] -- {F761359C-9CED-45AE-9A51-9D6605CD55C4} © O42 - Logiciel: CodonCode Aligner - (.CodonCode Corporation.) [HKLM][64Bits] -- {FB25C46D-C1CF-49F4-96F6-3CAAFAD49EF3} O42 - Logiciel: PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM][64Bits] -- {FF1FC66F-536F-46BD-98E3-D8DA127A810E} © O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent ---\\ HKCU & HKLM Software Keys (109) - 6s HKLM\SOFTWARE\Wow6432Node\360Safe HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdsFix HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\AppDataLow HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\ArcSoft HKLM\SOFTWARE\Wow6432Node\Auslogics HKLM\SOFTWARE\Wow6432Node\AutoHelpDesk HKLM\SOFTWARE\Wow6432Node\baidu HKLM\SOFTWARE\Wow6432Node\Baidu Security HKLM\SOFTWARE\Wow6432Node\Bunndle HKLM\SOFTWARE\Wow6432Node\Caphyon HKLM\SOFTWARE\Wow6432Node\CLSYSTEM HKLM\SOFTWARE\Wow6432Node\DDNi HKLM\SOFTWARE\Wow6432Node\DT Soft HKLM\SOFTWARE\Wow6432Node\EA Games HKLM\SOFTWARE\Wow6432Node\Electronic Arts HKLM\SOFTWARE\Wow6432Node\GameInstaller HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\GRETECH HKLM\SOFTWARE\Wow6432Node\IBM HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\IObit HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\LiveUpdate360 HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\McAfee.com HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\Ntpad HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\PDFCreator HKLM\SOFTWARE\Wow6432Node\Rainbow Technologies HKLM\SOFTWARE\Wow6432Node\Realtek HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Search Vortex HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Sony Corporation HKLM\SOFTWARE\Wow6432Node\Space Sciences Laboratory, U.C. Berkeley HKLM\SOFTWARE\Wow6432Node\Symantec HKLM\SOFTWARE\Wow6432Node\Sysinternals HKLM\SOFTWARE\Wow6432Node\TeamViewer HKLM\SOFTWARE\Wow6432Node\TomTom HKLM\SOFTWARE\Wow6432Node\Windows HKLM\SOFTWARE\Wow6432Node\WinRAR HKLM\SOFTWARE\Wow6432Node\Wise Solutions HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AdsFix HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\ArcSoft HKCU\SOFTWARE\AutoHelpDesk HKCU\SOFTWARE\Baidu Security HKCU\SOFTWARE\Baixaki HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\CDDB HKCU\SOFTWARE\CoreAAC HKCU\SOFTWARE\Cygnus Solutions HKCU\SOFTWARE\DT Soft HKCU\SOFTWARE\Evernote HKCU\SOFTWARE\GbAs HKCU\SOFTWARE\GbPlugin HKCU\SOFTWARE\Google HKCU\SOFTWARE\GRETECH HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Macrovision HKCU\SOFTWARE\Malwarebytes' Anti-Malware HKCU\SOFTWARE\MCAFEE HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\MRC-Holland HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\NVIDIA Corporation HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\PDFCreator HKCU\SOFTWARE\PopCap HKCU\SOFTWARE\Protector Suite QL HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Sony Corporation HKCU\SOFTWARE\SUPERAntiSpyware.com HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\TeamViewer HKCU\SOFTWARE\Test3D HKCU\SOFTWARE\TomTom HKCU\SOFTWARE\Trend Micro HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Widcomm HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\Adobe HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Contents of the Common Files folders (231) - 10s O43 - CFD: 2015/07/20 21:20:52 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2011/05/26 00:55:29 - [] D -- C:\Program Files (x86)\ArcSoft O43 - CFD: 2011/10/08 13:45:40 - [] D -- C:\Program Files (x86)\BOINC O43 - CFD: 2011/11/02 11:46:10 - [] D -- C:\Program Files (x86)\Cisco O43 - CFD: 2012/08/16 21:24:24 - [] D -- C:\Program Files (x86)\CodonCode Aligner O43 - CFD: 2015/10/08 12:27:10 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2011/05/26 00:26:13 - [] D -- C:\Program Files (x86)\Corel O43 - CFD: 2012/09/10 21:34:06 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite O43 - CFD: 2013/07/16 21:56:24 - [] D -- C:\Program Files (x86)\DDNi O43 - CFD: 2015/04/24 16:05:12 - [] HD -- C:\Program Files (x86)\Diebold O43 - CFD: 2012/09/10 21:35:49 - [] D -- C:\Program Files (x86)\EA GAMES O43 - CFD: 2011/05/26 00:28:41 - [] D -- C:\Program Files (x86)\Evernote O43 - CFD: 2011/12/10 17:28:02 - [] D -- C:\Program Files (x86)\Games O43 - CFD: 2015/10/09 23:44:24 - [] AD -- C:\Program Files (x86)\GbPlugin O43 - CFD: 2015/07/23 20:02:07 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2012/04/18 22:27:19 - [] D -- C:\Program Files (x86)\GRETECH O43 - CFD: 2012/01/12 21:31:58 - [] D -- C:\Program Files (x86)\IBM O43 - CFD: 2015/04/30 16:01:06 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2015/10/08 12:31:22 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 2015/09/09 21:34:13 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2015/10/08 12:27:30 - [] D -- C:\Program Files (x86)\IObit O43 - CFD: 2015/07/17 02:14:35 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2015/07/23 21:47:59 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 2012/08/16 21:25:56 - [] D -- C:\Program Files (x86)\MEGA5 O43 - CFD: 2012/06/23 14:17:31 - [0] D -- C:\Program Files (x86)\Microsoft O43 - CFD: 2015/05/12 21:29:05 - [] D -- C:\Program Files (x86)\Microsoft Application Virtualization Client O43 - CFD: 2013/09/21 23:46:49 - [] D -- C:\Program Files (x86)\Microsoft Office O43 - CFD: 2015/05/12 21:26:16 - [] D -- C:\Program Files (x86)\Microsoft Security Client O43 - CFD: 2015/02/02 21:06:39 - [] D -- C:\Program Files (x86)\Microsoft SQL Server O43 - CFD: 2014/09/27 15:33:19 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 2011/05/25 23:46:47 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services O43 - CFD: 2011/11/02 12:31:03 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 2011/11/02 12:29:38 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 2013/01/09 00:32:51 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0 O43 - CFD: 2011/11/02 15:50:58 - [] D -- C:\Program Files (x86)\Microsoft Works O43 - CFD: 2015/02/02 21:09:00 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/10/08 12:18:31 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2013/01/08 23:59:46 - [] D -- C:\Program Files (x86)\MRC-Holland O43 - CFD: 2011/11/02 12:31:08 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2013/11/04 22:24:47 - [] D -- C:\Program Files (x86)\MSECache O43 - CFD: 2011/05/26 00:34:35 - [] D -- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 2015/01/24 17:19:20 - [] D -- C:\Program Files (x86)\PDFCreator O43 - CFD: 2013/10/25 21:25:24 - [] D -- C:\Program Files (x86)\PSafe O43 - CFD: 2011/12/09 18:57:18 - [] D -- C:\Program Files (x86)\RealArcade O43 - CFD: 2011/05/25 23:48:30 - [] D -- C:\Program Files (x86)\Realtek O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2015/01/30 22:29:36 - [] D -- C:\Program Files (x86)\Sony O43 - CFD: 2014/09/06 00:16:42 - [] D -- C:\Program Files (x86)\TeamViewer O43 - CFD: 2011/05/25 23:48:48 - [0] HD -- C:\Program Files (x86)\Temp O43 - CFD: 2015/10/08 17:56:54 - [] D -- C:\Program Files (x86)\Trend Micro O43 - CFD: 2009/07/14 01:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 2014/12/18 18:12:32 - [] D -- C:\Program Files (x86)\uTorrent O43 - CFD: 2014/12/18 15:58:53 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2014/09/27 15:34:33 - [] D -- C:\Program Files (x86)\Windows Live O43 - CFD: 2014/12/17 19:53:30 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/06/12 19:53:42 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2009/07/14 02:32:38 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2014/12/17 19:53:29 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2014/12/17 19:53:29 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2014/12/17 19:53:30 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2011/05/26 00:39:07 - [] D -- C:\Program Files (x86)\Windows Virtual PC O43 - CFD: 2013/07/28 23:43:14 - [] D -- C:\Program Files (x86)\WinRAR O43 - CFD: 2014/12/18 17:49:28 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2014/12/17 20:03:56 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2011/05/26 00:55:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft WebCam Companion 3 O43 - CFD: 2012/08/16 21:24:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodonCode Aligner O43 - CFD: 2014/01/13 21:57:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Coffalyser.Net O43 - CFD: 2012/09/10 21:34:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite O43 - CFD: 2011/05/26 00:28:42 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote for VAIO O43 - CFD: 2011/01/10 04:15:12 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2012/04/18 22:27:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player O43 - CFD: 2015/07/23 20:02:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2013/11/12 22:11:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IBM SPSS Statistics O43 - CFD: 2011/11/02 11:46:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless O43 - CFD: 2014/07/20 23:18:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2009/07/14 01:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/07/23 21:47:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 2012/08/16 21:25:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGA5 O43 - CFD: 2011/11/22 11:00:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 2012/01/03 19:20:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English) O43 - CFD: 2013/01/09 00:31:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 O43 - CFD: 2015/02/02 21:09:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 R2 O43 - CFD: 2014/04/25 21:54:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator O43 - CFD: 2014/10/09 21:39:03 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Tools O43 - CFD: 2011/05/26 00:34:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB O43 - CFD: 2011/05/26 00:44:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protector Suite O43 - CFD: 2011/05/26 00:12:43 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartWi Connection Utility O43 - CFD: 2015/10/05 22:27:54 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2009/07/14 04:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2012/02/19 15:19:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubi Soft Games O43 - CFD: 2011/05/25 23:43:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC O43 - CFD: 2013/07/28 16:20:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2012/04/22 13:30:30 - [] D -- C:\ProgramData\1912 Titanic Mystery O43 - CFD: 2014/10/18 19:13:41 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 O43 - CFD: 2015/07/20 21:20:15 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2015/10/06 21:53:46 - [] D -- C:\ProgramData\Apple O43 - CFD: 2013/10/19 22:56:52 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Application Data O43 - CFD: 2011/11/23 21:42:31 - [] HD -- C:\ProgramData\ArcSoft O43 - CFD: 2011/10/08 13:45:35 - [] D -- C:\ProgramData\BOINC O43 - CFD: 2012/09/10 21:35:29 - [] D -- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 2011/12/01 13:24:15 - [] D -- C:\ProgramData\DDNi O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Desktop O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/10/06 21:57:52 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 O43 - CFD: 2011/05/26 00:28:22 - [] D -- C:\ProgramData\Evernote O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 2015/09/02 20:51:59 - [] D -- C:\ProgramData\GAS Tecnologia O43 - CFD: 2015/10/04 17:16:47 - [] D -- C:\ProgramData\GbPlugin O43 - CFD: 2014/04/25 21:42:58 - [] D -- C:\ProgramData\Hewlett-Packard O43 - CFD: 2015/10/06 22:40:13 - [] D -- C:\ProgramData\HitmanPro O43 - CFD: 2011/11/02 11:47:18 - [] D -- C:\ProgramData\Intel O43 - CFD: 2015/01/24 17:06:51 - [] D -- C:\ProgramData\IObit O43 - CFD: 2013/06/13 10:28:24 - [] D -- C:\ProgramData\iolo O43 - CFD: 2013/07/28 16:22:14 - [] D -- C:\ProgramData\IsolatedStorage O43 - CFD: 2014/07/20 22:42:49 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 2013/06/13 00:30:55 - [] D -- C:\ProgramData\McAfee O43 - CFD: 2015/02/02 20:49:43 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/09/09 01:05:30 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2012/06/15 00:40:52 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2011/11/02 11:37:26 - [] D -- C:\ProgramData\Norton O43 - CFD: 2011/05/26 01:08:48 - [] D -- C:\ProgramData\NortonInstaller O43 - CFD: 2011/01/10 17:29:10 - [] D -- C:\ProgramData\NVIDIA O43 - CFD: 2015/04/22 16:38:34 - [] D -- C:\ProgramData\Oracle O43 - CFD: 2014/02/17 22:45:39 - [] D -- C:\ProgramData\PopCap Games O43 - CFD: 2013/10/25 21:12:09 - [] D -- C:\ProgramData\PSafe O43 - CFD: 2011/11/02 11:47:19 - [] D -- C:\ProgramData\Roaming O43 - CFD: 2013/11/12 22:12:40 - [] D -- C:\ProgramData\SafeNet Sentinel O43 - CFD: 2015/10/05 22:28:44 - [] D -- C:\ProgramData\Skype O43 - CFD: 2015/01/30 20:30:21 - [] D -- C:\ProgramData\Sony Corporation O43 - CFD: 2012/01/12 21:33:15 - [] D -- C:\ProgramData\SPSS O43 - CFD: 2009/07/14 02:08:56 - [] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2011/05/26 00:03:01 - [] D -- C:\ProgramData\Sun O43 - CFD: 2009/07/14 02:08:56 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2012/09/20 11:10:23 - [] D -- C:\ProgramData\TomTom O43 - CFD: 2015/10/06 23:06:36 - [] D -- C:\ProgramData\Ultra Adware Killer O43 - CFD: 2012/01/03 19:19:05 - [] D -- C:\ProgramData\VirtualizedApplications O43 - CFD: 2015/07/20 21:20:54 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2011/05/26 00:28:47 - [] D -- C:\Program Files (x86)\Common Files\ArcSoft O43 - CFD: 2014/05/17 02:39:18 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 2012/01/12 21:32:18 - [] D -- C:\Program Files (x86)\Common Files\IBM O43 - CFD: 2011/05/26 00:28:45 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2011/10/08 13:46:46 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 2015/10/08 12:27:10 - [] D -- C:\Program Files (x86)\Common Files\IObit O43 - CFD: 2015/04/22 16:36:52 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2014/09/27 15:30:37 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 2011/05/25 23:53:59 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2011/05/26 00:31:54 - [] D -- C:\Program Files (x86)\Common Files\Sony Shared O43 - CFD: 2011/05/26 00:44:09 - [] D -- C:\Program Files (x86)\Common Files\SPBA O43 - CFD: 2009/07/14 00:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 2014/12/17 19:53:28 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2011/05/26 00:58:36 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 2013/10/17 23:31:15 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\360Safe O43 - CFD: 2011/11/02 11:24:43 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Adobe O43 - CFD: 2012/02/19 12:20:57 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\AnvSoft O43 - CFD: 2015/10/06 22:01:51 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Apple Computer O43 - CFD: 2015/04/30 16:00:24 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\ArcSoft O43 - CFD: 2012/08/17 00:13:06 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\CodonCode Aligner O43 - CFD: 2012/09/10 21:35:30 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 2015/09/04 15:30:52 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Enlis O43 - CFD: 2012/04/18 22:28:04 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\GRETECH O43 - CFD: 2011/10/08 13:45:46 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Identities O43 - CFD: 2011/10/08 15:31:59 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Intel O43 - CFD: 2011/10/08 13:46:46 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Intel Corporation O43 - CFD: 2015/10/08 12:06:17 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\IObit O43 - CFD: 2013/07/28 16:22:14 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\IsolatedStorage O43 - CFD: 2011/10/09 13:20:51 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Macromedia O43 - CFD: 2009/07/14 04:44:38 - [0] D -- C:\Users\Clevia Rosset\AppData\Roaming\Media Center Programs O43 - CFD: 2015/10/08 17:56:57 - [] SD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft O43 - CFD: 2012/06/15 00:41:11 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Mozilla O43 - CFD: 2012/03/22 23:04:36 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\NVIDIA O43 - CFD: 2014/08/17 14:41:15 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Oracle O43 - CFD: 2013/11/04 22:28:09 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Phantasmat_bf_ce1 O43 - CFD: 2013/11/04 22:28:10 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Phantasmat_zylom_ce O43 - CFD: 2015/10/08 17:20:34 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\ProductData O43 - CFD: 2011/10/08 13:46:24 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Protector Suite O43 - CFD: 2013/10/17 00:00:47 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\PSafe O43 - CFD: 2012/09/20 22:28:19 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Skype O43 - CFD: 2013/10/05 16:26:25 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\SoftGrid Client O43 - CFD: 2012/03/23 19:56:03 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Sony Corporation O43 - CFD: 2013/11/12 22:24:17 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\SPSSInc O43 - CFD: 2012/04/22 13:32:02 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\TitanicMystery O43 - CFD: 2012/09/20 11:09:46 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\TomTom O43 - CFD: 2015/04/30 15:48:14 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\uTorrent O43 - CFD: 2012/01/12 21:29:14 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\WinRAR O43 - CFD: 2015/10/09 23:50:57 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\ZHP O43 - CFD: 2015/10/08 12:28:32 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Adobe O43 - CFD: 2014/09/23 00:24:42 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Apple O43 - CFD: 2014/09/23 00:26:53 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Apple Computer O43 - CFD: 2014/09/23 00:24:32 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Apple Inc O43 - CFD: 2011/10/08 13:44:28 - [] SHD -- C:\Users\Clevia Rosset\AppData\Local\Application Data O43 - CFD: 2011/10/09 13:40:28 - [] D -- C:\Users\Clevia Rosset\AppData\Local\ArcSoft O43 - CFD: 2011/10/08 13:47:02 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Broadcom O43 - CFD: 2015/07/23 01:21:46 - [] D -- C:\Users\Clevia Rosset\AppData\Local\CEF O43 - CFD: 2013/07/24 23:04:37 - [0] D -- C:\Users\Clevia Rosset\AppData\Local\Diagnostics O43 - CFD: 2013/03/26 21:34:37 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Downloaded Installations O43 - CFD: 2015/10/06 21:50:14 - [] D -- C:\Users\Clevia Rosset\AppData\Local\ElevatedDiagnostics O43 - CFD: 2015/09/04 15:30:52 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Enlis O43 - CFD: 2011/11/09 09:31:50 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Evernote O43 - CFD: 2014/09/27 16:55:01 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Facebook O43 - CFD: 2014/07/17 23:59:27 - [] D -- C:\Users\Clevia Rosset\AppData\Local\GAS Tecnologia O43 - CFD: 2015/09/10 23:42:04 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Google O43 - CFD: 2015/06/04 19:28:35 - [] D -- C:\Users\Clevia Rosset\AppData\Local\GWX O43 - CFD: 2011/10/08 13:44:28 - [] SHD -- C:\Users\Clevia Rosset\AppData\Local\History O43 - CFD: 2013/11/12 22:23:47 - [] D -- C:\Users\Clevia Rosset\AppData\Local\IBM O43 - CFD: 2013/11/12 22:23:41 - [] D -- C:\Users\Clevia Rosset\AppData\Local\javasharedresources O43 - CFD: 2012/06/21 18:40:37 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Macromedia O43 - CFD: 2014/12/18 15:01:54 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Microsoft O43 - CFD: 2013/06/12 22:05:00 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Microsoft Games O43 - CFD: 2012/09/02 23:41:23 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Microsoft Help O43 - CFD: 2013/10/02 21:49:22 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Mozilla O43 - CFD: 2013/01/09 11:25:40 - [] D -- C:\Users\Clevia Rosset\AppData\Local\MRC-Holland___Berg_IT_Sol O43 - CFD: 2013/01/07 20:10:00 - [] D -- C:\Users\Clevia Rosset\AppData\Local\NFS Underground 2 O43 - CFD: 2011/11/09 10:41:21 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Programs O43 - CFD: 2013/10/20 00:47:04 - [] D -- C:\Users\Clevia Rosset\AppData\Local\PSafe O43 - CFD: 2011/11/02 12:01:48 - [] D -- C:\Users\Clevia Rosset\AppData\Local\SoftGrid Client O43 - CFD: 2014/05/20 20:43:59 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Sony Corporation O43 - CFD: 2015/10/09 23:50:41 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Temp O43 - CFD: 2011/10/08 13:44:28 - [] SHD -- C:\Users\Clevia Rosset\AppData\Local\Temporary Internet Files O43 - CFD: 2012/09/20 11:09:46 - [] D -- C:\Users\Clevia Rosset\AppData\Local\TomTom O43 - CFD: 2012/02/19 12:21:03 - [] D -- C:\Users\Clevia Rosset\AppData\Local\VirtualStore O43 - CFD: 2012/08/18 15:25:44 - [] D -- C:\Users\Clevia Rosset\AppData\Local\Windows Live O43 - CFD: 2009/07/14 01:54:32 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/08/14 22:28:07 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2012/09/10 21:40:51 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/10/08 17:56:57 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis O43 - CFD: 2015/08/19 23:20:35 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IGV O43 - CFD: 2009/07/14 01:49:38 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/08/14 22:28:07 - [] RD -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2013/07/28 16:20:38 - [] D -- C:\Users\Clevia Rosset\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ ShellIconOverlayIdentifiers (SIOI) (2) - 0s O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll © O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll © ---\\ ShareTools MSconfig StartupReg (4) - 1s O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe © O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe © O53 - SMSR:HKLM\...\startupreg\SHTtray.exe [Key] . (.Sony Corporation - SHTtray.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe © O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe © ---\\ System Drivers List (79) - 3s O58 - SDL:2013/10/11 21:04:16 RA . (.360.cn - 360HipsOEM.) -- C:\Windows\System32\drivers\360FltOEM.sys [289952] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] © O58 - SDL:2009/07/13 22:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] © O58 - SDL:2011/03/11 03:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] © O58 - SDL:2009/07/13 22:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] © O58 - SDL:2011/03/11 03:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] © O58 - SDL:2009/07/13 22:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] © O58 - SDL:2008/04/25 10:06:42 A . (.ArcSoft, Inc. - For X64.) -- C:\Windows\System32\drivers\ArcSoftKsUFilter.sys [19968] © O58 - SDL:2008/10/28 11:27:52 A . (.ArcSoft, Inc. - ArcSoft Virtual Audio Device.) -- C:\Windows\System32\drivers\ArcVad.sys [27136] © O58 - SDL:2009/06/10 17:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] © O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] © O58 - SDL:2009/06/10 17:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] © O58 - SDL:2009/07/13 22:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] © O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] © O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] © O58 - SDL:2009/06/10 17:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] © O58 - SDL:2010/06/18 17:09:06 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [342056] © O58 - SDL:2010/06/18 17:09:08 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [102952] © O58 - SDL:2010/06/18 17:09:08 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [135720] © O58 - SDL:2010/06/18 17:08:29 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [39464] © O58 - SDL:2010/06/18 17:09:10 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21544] © O58 - SDL:2009/06/10 17:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] © O58 - SDL:2011/08/17 08:58:16 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\ccdcmbx64.sys [19968] © O58 - SDL:2009/07/13 22:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] © O58 - SDL:2012/09/10 21:34:06 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283200] © O58 - SDL:2009/07/13 22:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] © O58 - SDL:2009/06/10 17:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] © O58 - SDL:2015/10/09 23:44:24 A . (.GAS Tecnologia - GAS Tecnologia - FAC.) -- C:\Windows\System32\drivers\gbpddfac64.sys [28888] O58 - SDL:2009/06/10 17:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] © O58 - SDL:2009/09/17 16:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] © O58 - SDL:2010/11/20 10:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] © O58 - SDL:2010/03/04 00:51:40 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [540696] © O58 - SDL:2011/03/11 03:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] © O58 - SDL:2010/06/22 17:14:35 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [10342240] © O58 - SDL:2009/07/13 22:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] © O58 - SDL:2010/06/25 18:03:46 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys [158976] © O58 - SDL:2010/06/19 00:36:04 A . (.Siliten - Flex Define Keyboard Driver.) -- C:\Windows\System32\drivers\InputFilter_FlexDef2b.sys [17920] © O58 - SDL:2010/06/22 17:15:43 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [271872] © O58 - SDL:2011/11/14 23:12:10 A . (.Atheros Communications, Inc. - Atheros Ar81xx series PCI-E Gigabit Etherne.) -- C:\Windows\System32\drivers\L1C62x64.sys [111216] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] © O58 - SDL:2015/06/18 08:41:40 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] © O58 - SDL:2015/06/18 08:41:44 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] © O58 - SDL:2015/10/06 20:36:12 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [113880] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] © O58 - SDL:2009/07/13 22:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] © O58 - SDL:2015/06/18 08:41:56 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] © O58 - SDL:2010/05/31 16:05:06 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETw5s64.sys [7689216] © O58 - SDL:2010/07/14 03:42:58 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwNs64.sys [7821312] © O58 - SDL:2009/07/13 22:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] © O58 - SDL:2009/07/24 07:55:10 A . (.Primax Ltd - Primax USB Optical Mouse Driver.) -- C:\Windows\System32\drivers\NMgamingms.sys [11264] O58 - SDL:2011/08/17 09:04:34 A . (.Nokia - Nokia USB Phone Bus Driver.) -- C:\Windows\System32\drivers\nmwcdnsux64.sys [171008] © O58 - SDL:2013/02/18 09:22:16 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [189288] © O58 - SDL:2010/06/22 17:09:10 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [13893224] © O58 - SDL:2011/03/11 03:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] © O58 - SDL:2011/03/11 03:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] © O58 - SDL:2009/07/13 22:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] © O58 - SDL:2009/07/13 22:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] © O58 - SDL:2007/04/17 15:51:50 A . (.InterVideo - regi driver.) -- C:\Windows\System32\drivers\regi.sys [14112] © O58 - SDL:2010/06/22 17:02:45 A . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\drivers\rimssne64.sys [94208] © O58 - SDL:2010/06/22 17:04:27 A . (.REDC - RICOH PCIe SD/MMC Driver.) -- C:\Windows\System32\drivers\risdsne64.sys [78848] © O58 - SDL:2010/05/27 17:17:23 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2307616] © O58 - SDL:2009/06/10 17:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] © O58 - SDL:2014/12/21 15:14:34 A . (...) -- C:\Windows\System32\drivers\semav6thermal64ro.sys [13792] O58 - SDL:2009/07/13 21:00:40 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208] © O58 - SDL:2010/04/26 17:20:29 A . (.Sony Corporation - Sony Firmware Extension Parser driver.) -- C:\Windows\System32\drivers\SFEP.sys [12032] © O58 - SDL:2009/07/13 22:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] © O58 - SDL:2009/07/13 22:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] © O58 - SDL:2009/07/13 22:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] © O58 - SDL:2011/08/24 11:56:28 A . (.Windows (R) Win 7 DDK provider - Spyware Terminator 2012 driver.) -- C:\Windows\System32\drivers\stflt.sys [51496] © O58 - SDL:2010/05/28 17:23:54 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [316464] © O58 - SDL:2014/08/15 23:35:00 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784] © O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] © O58 - SDL:2009/07/13 22:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] © ---\\ Last modified or created user files (13) - 140s O61 - LFC: 2015/10/06 21:07:05 A . (..) -- C:\Users\Clevia Rosset\Downloads\adwcleaner_5.010.exe [1681920] O61 - LFC: 2015/10/07 17:29:38 A . (.SosVirus.) -- C:\Users\Clevia Rosset\Desktop\AdsFix.exe [2718208] O61 - LFC: 2015/10/09 23:26:20 A . (..) -- C:\Users\Clevia Rosset\Desktop\ComIntRepair.exe [1586165] O61 - LFC: 2015/10/06 23:55:50 A . (..) -- C:\Users\Clevia Rosset\Desktop\cureit (1).exe [163273160] O61 - LFC: 2015/10/07 17:05:28 A . (..) -- C:\Users\Clevia Rosset\Desktop\zoek.exe [1309184] O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\Application Data\IObit\IObit Uninstaller\Install_PintoStartMenutemp.exe [588576] O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\Application Data\IObit\IObit Uninstaller\PPUninstallertemp.exe [933664] O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\Application Data\IObit\IObit Uninstaller\UninstallDisplaytemp.exe [776992] O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\AppData\Roaming\IObit\IObit Uninstaller\Install_PintoStartMenutemp.exe [588576] O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\AppData\Roaming\IObit\IObit Uninstaller\PPUninstallertemp.exe [933664] O61 - LFC: 2015/10/08 12:06:06 A . (..) -- C:\Users\Clevia Rosset\AppData\Roaming\IObit\IObit Uninstaller\UninstallDisplaytemp.exe [776992] O61 - LFC: 2015/10/09 23:48:59 A . (..) -- C:\Users\Clevia Rosset\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082] O61 - LFC: 2015/10/05 23:30:46 A . (..) -- C:\Users\Clevia Rosset\AppData\Local\Google\Chrome\User Data\nacl_validation_cache.bin [164] ---\\ File Associations Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe © O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe © O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe © O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe © O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe © O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Start Menu Internet (12) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe © ---\\ Search Browser Infection (4) - 6s O69 - SBI: prefs.js [Clevia Rosset - bm4okjd5.default] user_pref("browser.search.searchengine.alias", "