~ ZHPDiag v2015.8.23.124 By Nicolas Coolman (2015/08/23) ~ Run by Pat (Administrator) (2015/11/14 15:51:19) ~ Web: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: Version OK ~ Mode: Scan ~ Report: C:\Users\Pat\Desktop\ZHPDiag.txt ~ Report: C:\Users\Pat\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 7 Home Premium, 64-bit (Build 7600) ---\\ Internet Browsers (2) - 0s MFIE: Mozilla Firefox 42.0 (x86 fr) v42.0 MSIE: Internet Explorer v8.0.7600.16385 ---\\ Windows Product Information (4) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK (Auto) Windows Activation Technologies : OK ---\\ System protection software (3) - 2s Avast Free Antivirus v10.3.2225 Malwarebytes Anti-Malware version 2.2.0.1024 Windows Defender W7 (Deactivate) ---\\ System protection software (Superfluous) (1) - 2s Spybot - Search & Destroy v2.2.25 ---\\ System optimization software (1) - 2s CCleaner v5.05 ---\\ Surveillance software (2) - 2s Adobe Flash Player 19 NPAPI Adobe Reader XI ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 26 Stepping 5, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 9427.956 MB (64% free) ~ System Restore: Activé (Enable) ~ System drive C: has 243 GB free of 943 GB ---\\ Connection to the system mode (3) - 0s ~ Computer Name: PAT-PC ~ User Name: Pat ~ Logged in as Administrator ---\\ Enumeration of the disk units (3) - 0s ~ Drive C: has 243 GB free of 943 GB (System) ~ Drive G: has 244 GB free of 1157 GB ~ Drive J: has 2 GB free of 3 GB ---\\ State of the Windows Security Center (10) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Search Generic System Files (22) - 0s [MD5.6D4F9E4B640B413C6F73414327484C80] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2868736] [MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Windows host process (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) () -- C:\Windows\System32\Wininit.exe [129024] [MD5.B1037F0131C9A010D611F6914E03CD92] - (.Microsoft Corporation - Internet Extensions for Win32.) () -- C:\Windows\System32\wininet.dll [1193472] [MD5.132328DF455B0028F13BF0ABEE51A63A] - (.Microsoft Corporation - Windows Logon Application.) () -- C:\Windows\System32\Winlogon.exe [389120] [MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Software Licensing Library.) () -- C:\Windows\System32\sppcomapi.dll [231936] [MD5.B9384E03479D2506BC924C16A3DB87BC] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [500224] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] [MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] [MD5.3F1DC527070ACB87E40AFE46EF6DA749] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] [MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] [MD5.CFDCD8CA87C2A657DEBC150AC35B5E08] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [157184] [MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [259072] [MD5.356698A13C4630D5B31C37378D469196] - (.Microsoft Corporation - NT File System Driver.) () -- C:\Windows\System32\drivers\ntfs.sys [1659984] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) () -- C:\Windows\System32\drivers\Parport.sys [97280] [MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [130048] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] [MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [99840] [MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - (.Microsoft Corporation - Volume Shadow Copy Driver.) () -- C:\Windows\System32\drivers\volsnap.sys [294992] ---\\ Process running (42) - 2s [MD5.41A0813F22D3330C0CA71CE5BBD42B12] - (.AMD - AMD External Events Service Module.) -- C:\Windows\system32\atiesrxx.exe [202752] [PID.392] [MD5.0840ABBBDF438691EE65A20040635CBE] - (.Stardock Corporation - Dock Login Service.) -- C:\Program Files\Dell\DellDock\DockLogin.exe [155648] [PID.1140] [MD5.4956380A54B1C9E6BFDF3D80DACB9698] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600] [PID.1260] [MD5.C68960B91F93850AECC34D93EB2B2B56] - (.AMD - AMD External Events Client Module.) -- C:\Windows\system32\atieclxx.exe [448000] [PID.1384] [MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1624] [MD5.ACC9C8C560C567FAD6F79C977AB2EA09] - (.B.H.A Corporation - B's Recorder GOLD Service Library.) -- C:\WINDOWS\SysWOW64\bgsvcgen.exe [145504] [PID.1652] [MD5.05F99DFF3A8D705F9AA6B87224F7BEB1] - (...) -- C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [218112] [PID.1692] [MD5.AB176B9E59C0435499D83047D84EDD59] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784] [PID.1796] [MD5.40C126CB15FAB7D6C66490DCA9C1AED2] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416] [PID.1956] [MD5.98EF79CC2B07398AC525F9EA1AE0366F] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880] [PID.1168] [MD5.BABBBDEF9DBB5E012EE5210FCB47C33B] - (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [9832760] [PID.2616] [MD5.D358E077A0A05D9B12DA22D137EE8464] - (.Microsoft Corp. - Microsoft SeaPort Search Enhancement Broker.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [226656] [PID.2936] [MD5.74EC60E20516AAA573BE74F31175270F] - (.SoftThinks SAS - SoftThinks Agent Service.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE [1692480] [PID.3036] [MD5.9C6CADA6CBA8A88AB2C7C9C4EDFA5304] - (.WDC - WD Drive Manager Service.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [288256] [PID.2448] [MD5.14BF6B3AB327D519ED007CDDC56F6900] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272] [PID.2712] [MD5.EBDD3032297EF6832A1D6D3AA6DC3537] - (.SoftThinks - Dell - Dell DataSafe Local Backup.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe [4259648] [PID.2952] [MD5.CD4F7B90CB09831BCDEDE0A206CCDB35] - (.© 2007-2011 SoftThinks SAS - ST Service Scheduling.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE [2751808] [PID.3060] [MD5.09890A2F032B138A74B5DF2C1233FB1D] - (.SoftThinks - Dell - DataSafe Update Launcher.) -- C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe [460096] [PID.2824] [MD5.A72BB48D9014A7D7C05F02F595F52D60] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe [245576] [PID.3296] [MD5.E337785DA1958E9AB02DDB2369EF46E8] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe [307016] [PID.3496] [MD5.1DB925810BA7020112D734248A01028D] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240] [PID.3528] [MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3152] [MD5.9A8568C7642B79F43DCEB0BDF9F49050] - (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe [542136] [PID.2676] [MD5.6FACA9C62024E14251C7ED33A8E8B660] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2571704] [PID.3616] [MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe [354840] [PID.3700] [MD5.820EBE67AB99F033FDE25B2692157991] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416] [PID.3960] [MD5.DF338D2035B2F16530EFE85BC1704C54] - (.Western Digital Technologies, Inc. - WD Drive Manager Status.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [6185472] [PID.4268] [MD5.6CF3079C23A9A96F7C1DC33EE982FBA6] - (.Stardock Corporation - Dell Dock.) -- C:\Program Files\Dell\DellDock\DellDock.exe [1316192] [PID.4320] [MD5.C81F59B7D524FB462F73B27757084618] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe [8204056] [PID.3248] [MD5.C07A6F058A7DB354EBEE77DF9537127A] - (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520] [PID.2540] [MD5.E7704CBF568815C1CAA6E513387BD3F2] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [65536] [PID.4200] [MD5.74EF310FAC89341CE2897B7F2C4A7B0F] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [65536] [PID.5104] [MD5.CCC3FE1DDCCF99633539B3D7681EF7D7] - (.Avast Software - AvastVirtualBox Interface.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768] [PID.5760] [MD5.60E6FC4E478A1D65069A1C331603101C] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [6111312] [PID.5024] [MD5.AF49D1C79EA49A7833017F290EE63B82] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784] [PID.5368] [MD5.F84EF3D83D4692177A0EE5FF51AAE7B7] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\SysWOW64\jureg.exe [55072] [PID.5520] [MD5.6740F3F722B70ABAE95753311E600D9E] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3499920] [PID.1572] [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] [PID.6180] [MD5.DD1EEE63D06553668029B0D5D52B56D2] - (.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe [193808] [PID.3580] [MD5.4B0583A0A6A22D9F453BFFD467E68190] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392872] [PID.4500] [MD5.B39CAB9DF6B7BCDE9B27D566BAF78D3C] - (.Mozilla Corporation - Thunderbird.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [491688] [PID.7680] [MD5.84867350CFF4C8551E5F5A3D355D8CB3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Pat\Desktop\ZHPDiag3.exe [1901056] [PID.3276] ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (10) - 1s P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\vdpure@link64.xpi P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi P2 - EXT FILE: (...) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\searchplugins\yahoo-avast.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} P2 - EXT: (. - Flash Video Downloader - YouTube HD Download [4K].) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll P2 - FPN: [HKLM] [Adobe Acrobat] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc..) -- C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll ---\\ Internet Explorer Extensions, Start, Search (18) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (4) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object (BHO) (4) - 0s O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll ---\\ Auto loading programs from Registry and folders (25) - 0s O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe O4 - HKCU\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe O4 - HKCU\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Wow6432Node\Run: [PDVDDXSrv] . (.CyberLink Corp. - CyberLink PowerDVD Resident Program.) -- C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateReg] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\WINDOWS\System32\jureg.exe O4 - HKUS\.DEFAULT\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Gestionnaire Antidote.exe] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [Spybot-S&D Cleaning] . (.Safer-Networking Ltd. - Search results cleaner.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe O4 - HKUS\S-1-5-21-3733882801-942775963-1926891385-1000\..\Run: [SpybotPostWindows10UpgradeReInstall] . (.Safer-Networking Ltd. - Makes sure Spybot 2 is there on Windows 10..) -- C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe ---\\ Lop.com/Domain Hijackers (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 206.248.154.170 206.248.154.22 ---\\ Extra protocols (23) - 0s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\WINDOWS\System32\inetcomm.dll O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\System32\itss.dll O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\System32\MSVidCtl.dll O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\System32\mshtml.dll O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\System32\urlmon.dll O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL ---\\ Non Microsoft non disabled Windows Services (18) - 1s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) . (.B.H.A Corporation - B's Recorder GOLD Service Library.) - C:\WINDOWS\SysWOW64\bgsvcgen.exe O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O23 - Service: DirMngr (DirMngr) . (...) - C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe O23 - Service: Dock Login Service (DockLoginService) . (.Stardock Corporation - Dock Login Service.) - C:\Program Files\Dell\DellDock\DockLogin.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service: SessionLauncher (SessionLauncher) . (...) - c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe (.not file.) O23 - Service: SoftThinks Agent Service (SftService) . (.SoftThinks SAS - SoftThinks Agent Service.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE O23 - Service: WDDMService (WDDMService) . (.WDC - WD Drive Manager Service.) - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe O23 - Service: Power Control [2014/12/19 14:10:20] ({1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7}) . (.CyberLink Corp. - .) - C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl ---\\ BootExecute (BEX) (1) - 0s O34 - HKLM BootExecute: (sdnclean64.exe) ---\\ Task Planned Automatically (23) - 3s [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] [MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] [MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] [MD5.1F014EA12ECB13C909DA9395E9CD3D18] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6278424] [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] [MD5.00000000000000000000000000000000] [APT] [JavaUpdatePat] (...) -- C:\WINDOWS\SysWOW64\jusched.exe (.not file.) [0] [MD5.AD51825B096DECB35C4013D1F5CA3572] [APT] [{D7C07EFB-684F-80BF-6EC5-D4261F413EF4}] (...) -- C:\Users\Pat\AppData\Roaming\PrSxITcg\lMIVfkul\nfWGhjxJ\vquMpDSws.exe [262144] [MD5.0074AFB0570FC1A6AC9771D0133DF44A] [APT] [Safer-Networking\Spybot - Search and Destroy\Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3907304] [MD5.DF474E01CFC5F28CA952B0DBD6B132A9] [APT] [Safer-Networking\Spybot - Search and Destroy\Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [3633312] [MD5.CDEB46FE688F062D3033209B29755203] [APT] [Safer-Networking\Spybot - Search and Destroy\Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [3885120] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1064] =>.Google Inc. O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1068] =>.Google Inc. O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [3886] =>.Adobe Systems Incorporated O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update [4182] =>.AVAST Software O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2768] =>.Piriform Ltd O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3812] =>.Google Inc. O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [4064] =>.Google Inc. O39 - APT: JavaUpdatePat - (...) -- C:\Windows\System32\Tasks\JavaUpdatePat [3362] O39 - APT: {D7C07EFB-684F-80BF-6EC5-D4261F413EF4} - (...) -- C:\Windows\System32\Tasks\{D7C07EFB-684F-80BF-6EC5-D4261F413EF4} [3094] O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{E002E674-615E-4AE2-90DF-1B9F385D13EC} [3024] ---\\ Software installed (110) - 7s O42 - Logiciel: Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/0 - (.GoPro.) [HKLM][64Bits] -- 0B624A43DD66DBF5CF3EDFA9741A364E688062A4 O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: Le Grand Robert & Collins - (.Le Robert.) [HKLM][64Bits] -- GRCDVD O42 - Logiciel: Le Petit Robert 2010 - (.Le Robert.) [HKLM][64Bits] -- PR1CD2010 O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: EMCGadgets64 - (.Sonic.) [HKLM][64Bits] -- {02AD9D20-03D2-4DE0-8793-E8253026AD86} O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF} O42 - Logiciel: WD SmartWare Drive Manager - (.Western Digital.) [HKLM][64Bits] -- {5E2D7D76-30DE-4DDE-B416-9B0B925EBFEC} O42 - Logiciel: Roxio File Backup - (.Roxio.) [HKLM][64Bits] -- {60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB} O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM][64Bits] -- {8EBA8727-ADC2-477B-9D9A-1A1836BE4E05} O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E} O42 - Logiciel: VD64Inst - (.Roxio, Inc..) [HKLM][64Bits] -- {DB9C43F7-0B0F-4E43-9E6B-F945C71C469E} O42 - Logiciel: Dell Dock - (.Dell.) [HKLM][64Bits] -- {E60B7350-EA5F-41E0-9D6F-E508781E36D2} O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast O42 - Logiciel: Avidemux 2.6 - 64bits - (...) [HKLM][64Bits] -- Avidemux 2.6 - 64bits (64-bit) O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 O42 - Logiciel: CloudMe - (.CloudMe AB.) [HKLM][64Bits] -- CloudMeSync O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM][64Bits] -- DVD Shrink_is1 O42 - Logiciel: eSupport UndeletePlus 3.0.6.604 - (.Copyright © 2011 eSupport.com • All Rights Reserved.) [HKLM][64Bits] -- eSupport UndeletePlus_is1 O42 - Logiciel: FileZilla Client 3.8.0 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client O42 - Logiciel: GoPro Studio 2.5.4 - (.GoPro, Inc..) [HKLM][64Bits] -- GoPro Studio O42 - Logiciel: Gpg4win (2.2.1) - (.The Gpg4win Project.) [HKLM][64Bits] -- GPG4Win O42 - Logiciel: IVONA 2 - (.IVONA Software Sp. z o.o..) [HKLM][64Bits] -- IVONA 2 O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1 O42 - Logiciel: LMMS 1.1.0 - (.LMMS Developers.) [HKLM][64Bits] -- LMMS O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: MediaCoder 0.8.28.5588 - (.Mediatronic.) [HKLM][64Bits] -- MediaCoder O42 - Logiciel: Mozilla Firefox 42.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 fr) O42 - Logiciel: Mozilla Thunderbird 38.3.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 38.3.0 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: PFPortChecker 1.0.39 - (.Portforward.com.) [HKLM][64Bits] -- PFPortChecker O42 - Logiciel: PuTTY version 0.63 - (.Simon Tatham.) [HKLM][64Bits] -- PuTTY_is1 O42 - Logiciel: QuickTime Alternative 1.81 - (...) [HKLM][64Bits] -- QuicktimeAlt_is1 O42 - Logiciel: SolveigMM AVI Trimmer - (.Solveig Multimedia.) [HKLM][64Bits] -- SolveigMM AVI Trimmer 2.0.1210.11 O42 - Logiciel: Total Video2Dvd 3.30 - (.EffectMatrix, Inc..) [HKLM][64Bits] -- Total Video2Dvd 3.30_is1 O42 - Logiciel: TrueCrypt - (.TrueCrypt Foundation.) [HKLM][64Bits] -- TrueCrypt O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM][64Bits] -- Winamp O42 - Logiciel: WinSCP 5.5.4 - (.Martin Prikryl.) [HKLM][64Bits] -- winscp3_is1 O42 - Logiciel: Xming 6.9.0.31 - (.Colin Harrison.) [HKLM][64Bits] -- Xming_is1 O42 - Logiciel: HD Writer 2.6E pour HDC - (.Matsushita Electric Industrial Co., Ltd..) [HKLM][64Bits] -- {0443A856-B498-4FF9-8C15-4B7057242783} O42 - Logiciel: ATI Catalyst Control Center - (...) [HKLM][64Bits] -- {055EE59D-217B-43A7-ABFF-507B966405D8} O42 - Logiciel: Roxio Central Data - (.Roxio.) [HKLM][64Bits] -- {08E81ABD-79F7-49C2-881F-FD6CB0975693} O42 - Logiciel: DirectXInstallService - (.Roxio.) [HKLM][64Bits] -- {098122AB-C605-4853-B441-C0A4EB359B75} O42 - Logiciel: Dell DataSafe Local Backup - (.Dell.) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04} O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {15BC8CD0-A65B-47D0-A2DD-90A824590FA8} O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A} O42 - Logiciel: Roxio Central Tools - (.Roxio.) [HKLM][64Bits] -- {1F54DAFA-9261-4A62-B59D-6C9F26B48FE4} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: Java(TM) 6 Update 14 - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216014F0} O42 - Logiciel: Java 7 Update 65 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF} O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0} O42 - Logiciel: Roxio Update Manager - (.Roxio.) [HKLM][64Bits] -- {30465B6C-B53F-49A1-9EBA-A3F187AD502E} O42 - Logiciel: Google Earth Plug-in - (.Google.) [HKLM][64Bits] -- {4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E} O42 - Logiciel: SpPhones - (.Microsoft.) [HKLM][64Bits] -- {4DFF1415-4C29-44A8-BFD4-2BCE249C4991} O42 - Logiciel: Roxio Easy CD and DVD Burning - (.Roxio.) [HKLM][64Bits] -- {537BF16E-7412-448C-95D8-846E85A1D817} O42 - Logiciel: Sp5 - (.Microsoft.) [HKLM][64Bits] -- {560F47F7-EB23-44B1-AAFC-667F1CD8FE5C} O42 - Logiciel: Roxio BackOnTrack - (.Roxio.) [HKLM][64Bits] -- {5A06423A-210C-49FB-950E-CB0EB8C5CEC7} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Roxio Easy CD and DVD Burning - (.Roxio.) [HKLM][64Bits] -- {612B5D2E-8084-4102-91DE-24281E4EFB2C} O42 - Logiciel: Hercules DJ USB Audio Drivers - (.Hercules.) [HKLM][64Bits] -- {65F11FC9-B1D7-445F-916D-A40764E1D8CE} O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM][64Bits] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} O42 - Logiciel: PowerDVD DX - (.CyberLink Corp..) [HKLM][64Bits] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} O42 - Logiciel: SpCommon - (.Microsoft.) [HKLM][64Bits] -- {6C3959C6-943E-44B3-BAAD-570B04B134E5} O42 - Logiciel: QuarkXPress - (.Quark Inc..) [HKLM][64Bits] -- {706EA4A8-97B5-4C29-A0F3-0B38C666F0C4} O42 - Logiciel: MSXML 4.0 SP2 Parser and SDK - (.Microsoft Corporation.) [HKLM][64Bits] -- {716E0306-8318-4364-8B8F-0CC4E9376BAC} O42 - Logiciel: Roxio Central Audio - (.Roxio.) [HKLM][64Bits] -- {73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83} O42 - Logiciel: Dell Getting Started Guide - (.Dell Inc..) [HKLM][64Bits] -- {7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045} O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {817750FA-EC6A-485D-9901-0683AE6FFDF1} O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM][64Bits] -- {8D337F77-BE7F-41A2-A7CB-D5A63FD7049B} O42 - Logiciel: OpenOffice 4.0.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C9CEB9D-53FD-49A7-85D2-FE674F72F24E} O42 - Logiciel: VideoCam Suite 2.0 - (.Panasonic Corporation.) [HKLM][64Bits] -- {9EDF1A5D-D8E0-413E-9782-75DD4A8C831B} O42 - Logiciel: Antidote RX v7 - (.Druide informatique inc..) [HKLM][64Bits] -- {A474EA56-5DBD-4181-8230-806A4762EA7F} O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {A69D7B32-2BE9-42BF-B576-69B5E0FF7394} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Dell DataSafe Local Backup - Support Software - (.Dell.) [HKLM][64Bits] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49} O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-000000000006} O42 - Logiciel: Adobe Reader XI (11.0.13) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} O42 - Logiciel: Winrar Activator version 1.2 - (.Rarlab.) [HKLM][64Bits] -- {AE0B3F2A-EB65-4D01-A3E1-6D879C6AAF2A}_is1 O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 O42 - Logiciel: Roxio Central Copy - (.Roxio.) [HKLM][64Bits] -- {B6A26DE5-F2B5-4D58-9570-4FC760E00FCD} O42 - Logiciel: UBitMenu FR - (.UBit Schweiz AG.) [HKLM][64Bits] -- {BBFAA659-FC2D-46cc-A8C0-BE0D03560F17}_is1 O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} O42 - Logiciel: VirtualDJ PRO Full - (.Atomix Productions.) [HKLM][64Bits] -- {C515E2A3-4878-4C85-A519-52630C7AB08B} O42 - Logiciel: VSO ConvertXToDVD - (.VSO Software.) [HKLM][64Bits] -- {CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1 O42 - Logiciel: Microsoft Primary Interoperability Assemblies 2005 - (.Microsoft Corporation.) [HKLM][64Bits] -- {D24DB8B9-BB6C-4334-9619-BA1C650E13D3} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5} O42 - Logiciel: Dell Support Center (Support Software) - (.Dell.) [HKLM][64Bits] -- {E3BFEE55-39E2-4BE0-B966-89FE583822C1} O42 - Logiciel: Sp5TTInt - (.Microsoft.) [HKLM][64Bits] -- {E415C943-37E5-473F-8BAE-043C56734124} O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM][64Bits] -- {EC877639-07AB-495C-BFD1-D63AF9140810} O42 - Logiciel: Roxio Central Core - (.Roxio.) [HKLM][64Bits] -- {ED439A64-F018-4DD4-8BA5-328D85AB09AB} O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Sp5Intl - (.Microsoft.) [HKLM][64Bits] -- {FD4B33E1-24AE-4535-AA7B-162B30FB57CD} O42 - Logiciel: EMC 10 Content - (.Roxo, Inc..) [HKLM][64Bits] -- {FDB46DE7-9045-47BB-970A-3E4ED5369E03} O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A} O42 - Logiciel: MyHarmony - (.Logitech.) [HKCU][64Bits] -- 036a0e4fc6a247ec O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent ---\\ HKCU & HKLM Software Keys (150) - 7s HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\America Online HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\ASIO HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\ATI Technologies HKLM\SOFTWARE\Wow6432Node\AVAST Software HKLM\SOFTWARE\Wow6432Node\Avidemux 2.6 - 64bits (64-bit) HKLM\SOFTWARE\Wow6432Node\B.H.A HKLM\SOFTWARE\Wow6432Node\CDDB HKLM\SOFTWARE\Wow6432Node\CloudMe HKLM\SOFTWARE\Wow6432Node\CyberLink HKLM\SOFTWARE\Wow6432Node\Debug HKLM\SOFTWARE\Wow6432Node\Dell HKLM\SOFTWARE\Wow6432Node\Disc Soft HKLM\SOFTWARE\Wow6432Node\Druide informatique inc. HKLM\SOFTWARE\Wow6432Node\DVDVideoSoft HKLM\SOFTWARE\Wow6432Node\FileZilla 3 HKLM\SOFTWARE\Wow6432Node\FileZilla Client HKLM\SOFTWARE\Wow6432Node\FLEXlm License Manager HKLM\SOFTWARE\Wow6432Node\Gabest HKLM\SOFTWARE\Wow6432Node\GNU HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\GoPro HKLM\SOFTWARE\Wow6432Node\Hercules HKLM\SOFTWARE\Wow6432Node\illiminable HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\iTinySoft HKLM\SOFTWARE\Wow6432Node\IVONA HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Lame For Audacity HKLM\SOFTWARE\Wow6432Node\Licenses HKLM\SOFTWARE\Wow6432Node\LMMS Developers HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Macrovision HKLM\SOFTWARE\Wow6432Node\Martin Prikryl HKLM\SOFTWARE\Wow6432Node\Matsushita Electric Industrial Co., Ltd. HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON HKLM\SOFTWARE\Wow6432Node\McAfee.com HKLM\SOFTWARE\Wow6432Node\McAfeeInstaller HKLM\SOFTWARE\Wow6432Node\MediaCoder HKLM\SOFTWARE\Wow6432Node\MicroQuill HKLM\SOFTWARE\Wow6432Node\MicroVision HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\NEC HKLM\SOFTWARE\Wow6432Node\Novell HKLM\SOFTWARE\Wow6432Node\Nullsoft HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\OldTimer Tools HKLM\SOFTWARE\Wow6432Node\OpenOffice HKLM\SOFTWARE\Wow6432Node\Panasonic HKLM\SOFTWARE\Wow6432Node\PC-Doctor HKLM\SOFTWARE\Wow6432Node\QTAlternative HKLM\SOFTWARE\Wow6432Node\Quark HKLM\SOFTWARE\Wow6432Node\Roxio HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited HKLM\SOFTWARE\Wow6432Node\SoftThinks HKLM\SOFTWARE\Wow6432Node\SoftVTU HKLM\SOFTWARE\Wow6432Node\Solveig Multimedia HKLM\SOFTWARE\Wow6432Node\Sonic HKLM\SOFTWARE\Wow6432Node\SupportSoft HKLM\SOFTWARE\Wow6432Node\VideoLAN HKLM\SOFTWARE\Wow6432Node\VirtualDJ HKLM\SOFTWARE\Wow6432Node\VSO HKLM\SOFTWARE\Wow6432Node\Western Digital HKLM\SOFTWARE\Wow6432Node\WIBU-SYSTEMS HKLM\SOFTWARE\Wow6432Node\Windows HKLM\SOFTWARE\Wow6432Node\Wondershare HKLM\SOFTWARE\Wow6432Node\Wow6432Node HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AoAAudioExtractor HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\ATI HKCU\SOFTWARE\Audacity HKCU\SOFTWARE\AVAST Software HKCU\SOFTWARE\Badguys HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Bureau van Dijk HKCU\SOFTWARE\CDDB HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\CineForm HKCU\SOFTWARE\CloudMe HKCU\SOFTWARE\CoreAAC HKCU\SOFTWARE\Cyberlink HKCU\SOFTWARE\Dell HKCU\SOFTWARE\Digital Photo Software HKCU\SOFTWARE\Disc Soft HKCU\SOFTWARE\DivXNetworks HKCU\SOFTWARE\Druide informatique inc. HKCU\SOFTWARE\DVD Shrink HKCU\SOFTWARE\DVDShrink HKCU\SOFTWARE\DVDVideoSoft HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport HKCU\SOFTWARE\FLEXlm License Manager HKCU\SOFTWARE\FreeVideoConverter.biz HKCU\SOFTWARE\GetData HKCU\SOFTWARE\Google HKCU\SOFTWARE\GoPro HKCU\SOFTWARE\Guillemot Corporation HKCU\SOFTWARE\Hercules Technologies HKCU\SOFTWARE\IM HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\MainConcept (Adobe2) HKCU\SOFTWARE\MainConcept (Mei) HKCU\SOFTWARE\MakeMKV HKCU\SOFTWARE\Martin Prikryl HKCU\SOFTWARE\McAfee HKCU\SOFTWARE\MicroVision HKCU\SOFTWARE\Mindscape HKCU\SOFTWARE\Modern UI IvonaSAPI HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\NEC HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\OpenOffice HKCU\SOFTWARE\PACE Anti-Piracy HKCU\SOFTWARE\Panasonic HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\Quark HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\Roxio HKCU\SOFTWARE\Safer Networking Limited HKCU\SOFTWARE\SDL HKCU\SOFTWARE\SimonTatham HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic HKCU\SOFTWARE\Solveig Multimedia HKCU\SOFTWARE\Sonic HKCU\SOFTWARE\SourceForge HKCU\SOFTWARE\SWiSHzone.com HKCU\SOFTWARE\TeleCharger HKCU\SOFTWARE\Trados HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\VirtualDJ HKCU\SOFTWARE\VirtualDub.org HKCU\SOFTWARE\VSO HKCU\SOFTWARE\Winamp HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\Zyrax Software HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Contents of the Common Files folders (279) - 8s O43 - CFD: 2015/11/14 15:29:01 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2010/03/23 06:23:23 - [] D -- C:\Program Files (x86)\ATI Technologies O43 - CFD: 2013/12/03 14:59:53 - [] D -- C:\Program Files (x86)\Audacity O43 - CFD: 2015/03/15 02:00:55 - [] D -- C:\Program Files (x86)\CineForm O43 - CFD: 2010/03/23 06:25:24 - [] D -- C:\Program Files (x86)\Citrix O43 - CFD: 2015/02/19 12:01:23 - [] D -- C:\Program Files (x86)\CloudMe O43 - CFD: 2013/11/29 20:27:43 - [] D -- C:\Program Files (x86)\CodeMeter O43 - CFD: 2015/06/11 12:38:07 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2010/03/23 06:29:05 - [] D -- C:\Program Files (x86)\CyberLink O43 - CFD: 2013/12/01 15:30:42 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite O43 - CFD: 2010/03/23 06:41:38 - [] D -- C:\Program Files (x86)\Dell O43 - CFD: 2015/11/14 13:07:33 - [] D -- C:\Program Files (x86)\Dell DataSafe Local Backup O43 - CFD: 2010/03/23 06:28:46 - [] D -- C:\Program Files (x86)\Dell Support Center O43 - CFD: 2013/11/30 15:05:27 - [] D -- C:\Program Files (x86)\Druide O43 - CFD: 2014/05/02 13:30:16 - [] D -- C:\Program Files (x86)\DVD Shrink O43 - CFD: 2014/04/12 23:52:26 - [] D -- C:\Program Files (x86)\DVDVideoSoft O43 - CFD: 2013/12/01 14:03:56 - [] D -- C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport O43 - CFD: 2014/05/02 13:38:33 - [] D -- C:\Program Files (x86)\FileZilla FTP Client O43 - CFD: 2014/04/12 23:39:05 - [] D -- C:\Program Files (x86)\FreeVideoConverter.biz O43 - CFD: 2014/02/17 12:55:02 - [] D -- C:\Program Files (x86)\GNU O43 - CFD: 2014/04/21 23:44:34 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2015/03/15 02:00:54 - [] D -- C:\Program Files (x86)\GoPro O43 - CFD: 2015/01/17 16:11:46 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2010/03/23 06:21:24 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 2010/03/23 09:07:30 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2015/04/21 08:12:46 - [] D -- C:\Program Files (x86)\IVONA O43 - CFD: 2014/09/21 13:37:05 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2013/12/07 16:01:57 - [] D -- C:\Program Files (x86)\Lame For Audacity O43 - CFD: 2013/12/01 15:37:34 - [] D -- C:\Program Files (x86)\MagicISO O43 - CFD: 2015/11/14 03:15:49 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 2014/03/03 17:20:15 - [] D -- C:\Program Files (x86)\Media Player Classic O43 - CFD: 2014/03/18 15:15:13 - [] D -- C:\Program Files (x86)\MediaCoder O43 - CFD: 2010/03/23 06:32:04 - [] D -- C:\Program Files (x86)\Microsoft O43 - CFD: 2015/06/11 12:35:04 - [] D -- C:\Program Files (x86)\Microsoft Access Runtime O43 - CFD: 2014/01/10 02:30:25 - [] D -- C:\Program Files (x86)\Microsoft Office O43 - CFD: 2010/03/23 06:33:11 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 2010/03/23 06:33:58 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework O43 - CFD: 2014/01/10 02:30:21 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 2014/01/10 02:28:30 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 2010/03/23 06:24:59 - [] D -- C:\Program Files (x86)\Microsoft Works O43 - CFD: 2014/01/10 02:30:05 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/11/06 19:27:07 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2015/11/06 19:27:07 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2015/10/02 08:21:21 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird O43 - CFD: 2014/11/25 16:28:28 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2014/09/21 13:37:28 - [0] D -- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 2014/11/21 15:56:56 - [] D -- C:\Program Files (x86)\My Company Name O43 - CFD: 2013/11/29 18:19:25 - [] D -- C:\Program Files (x86)\OpenOffice 4 O43 - CFD: 2014/02/10 20:14:17 - [] D -- C:\Program Files (x86)\Panasonic O43 - CFD: 2013/12/28 17:47:10 - [] D -- C:\Program Files (x86)\PFPortChecker O43 - CFD: 2015/01/17 17:19:49 - [] D -- C:\Program Files (x86)\PuTTY O43 - CFD: 2013/12/01 13:53:08 - [] D -- C:\Program Files (x86)\Quark O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\Program Files (x86)\QuickTime Alternative O43 - CFD: 2009/07/14 00:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2010/03/23 06:37:03 - [] D -- C:\Program Files (x86)\Roxio O43 - CFD: 2014/11/25 16:33:59 - [] D -- C:\Program Files (x86)\SDL O43 - CFD: 2014/03/17 19:57:22 - [] D -- C:\Program Files (x86)\Solveig Multimedia O43 - CFD: 2015/11/13 12:03:11 - [] D -- C:\Program Files (x86)\Spybot - Search & Destroy 2 O43 - CFD: 2013/12/24 16:13:00 - [] D -- C:\Program Files (x86)\Total Video2Dvd O43 - CFD: 2009/07/13 23:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 2013/11/29 18:58:49 - [] D -- C:\Program Files (x86)\VideoLAN O43 - CFD: 2015/01/17 16:14:26 - [] D -- C:\Program Files (x86)\VirtualDJ O43 - CFD: 2014/12/19 17:34:58 - [] D -- C:\Program Files (x86)\VSO O43 - CFD: 2013/11/29 19:04:01 - [] D -- C:\Program Files (x86)\Winamp O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2010/03/23 06:34:11 - [] D -- C:\Program Files (x86)\Windows Live O43 - CFD: 2010/03/23 06:31:47 - [] D -- C:\Program Files (x86)\Windows Live SkyDrive O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2010/03/23 09:07:30 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2009/07/14 00:32:38 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2009/07/14 00:32:40 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2009/07/14 00:37:47 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2013/12/01 13:13:15 - [] D -- C:\Program Files (x86)\Winrar O43 - CFD: 2015/01/17 17:44:35 - [] D -- C:\Program Files (x86)\WinSCP O43 - CFD: 2015/01/17 17:19:33 - [] D -- C:\Program Files (x86)\Xming O43 - CFD: 2010/03/23 08:16:10 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2009/07/13 23:57:13 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2013/11/30 15:04:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antidote O43 - CFD: 2015/03/13 13:09:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avidemux (64bits) O43 - CFD: 2010/03/23 06:23:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center O43 - CFD: 2015/01/02 16:49:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 2015/03/13 20:11:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CloudMe O43 - CFD: 2013/12/01 15:30:58 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite O43 - CFD: 2010/03/23 06:41:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 2010/03/23 06:27:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe O43 - CFD: 2010/03/23 06:28:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center O43 - CFD: 2014/05/02 13:30:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVD Shrink O43 - CFD: 2014/04/12 23:52:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft O43 - CFD: 2013/12/01 14:03:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com =>PUP.Optional.eSupport O43 - CFD: 2014/05/02 13:38:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client O43 - CFD: 2010/03/23 08:16:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/03/15 02:01:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro O43 - CFD: 2014/02/17 12:55:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gpg4win O43 - CFD: 2015/01/17 13:42:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake O43 - CFD: 2015/01/17 16:11:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hercules O43 - CFD: 2010/03/23 06:21:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager O43 - CFD: 2015/04/22 22:39:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVONA O43 - CFD: 2013/11/29 18:45:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2013/11/29 18:16:32 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Le Grand Robert & Collins O43 - CFD: 2013/11/29 18:37:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Le Petit Robert 2010 O43 - CFD: 2015/01/17 15:59:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LMMS 1.1.0 O43 - CFD: 2009/07/13 23:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/11/14 03:15:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 2014/01/10 03:21:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 2010/03/23 06:25:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works O43 - CFD: 2013/11/29 18:19:36 - [] SD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.0.1 O43 - CFD: 2014/02/10 20:14:21 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panasonic O43 - CFD: 2015/01/17 17:19:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PuTTY O43 - CFD: 2013/12/01 13:53:20 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuarkXPress 8 O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime Alternative O43 - CFD: 2014/02/10 20:10:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva O43 - CFD: 2010/03/23 06:37:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Easy CD & DVD Burning O43 - CFD: 2014/03/17 19:57:24 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Solveig Multimedia O43 - CFD: 2013/11/29 18:04:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 O43 - CFD: 2015/05/10 10:21:49 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2009/07/14 02:44:38 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2013/12/24 16:11:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video2Dvd O43 - CFD: 2013/12/01 13:58:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt O43 - CFD: 2013/11/29 18:58:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 2014/12/19 17:35:03 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO O43 - CFD: 2013/11/29 19:47:26 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD SmartWare O43 - CFD: 2013/11/29 19:03:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp O43 - CFD: 2010/03/23 06:34:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live O43 - CFD: 2013/12/01 13:12:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2015/01/17 17:19:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xming O43 - CFD: 2015/11/14 15:31:15 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2014/03/03 17:20:19 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\ProgramData\ATI O43 - CFD: 2013/11/29 15:27:13 - [] D -- C:\ProgramData\AVAST Software O43 - CFD: 2013/11/29 15:12:14 - [] HD -- C:\ProgramData\CanonBJ O43 - CFD: 2014/12/19 19:01:28 - [] D -- C:\ProgramData\CyberLink O43 - CFD: 2013/12/01 15:32:11 - [] D -- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 2010/03/23 06:37:18 - [] D -- C:\ProgramData\Dell O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/01/17 15:47:06 - [] D -- C:\ProgramData\DVD Shrink O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 2014/09/21 13:39:10 - [] D -- C:\ProgramData\FLEXnet O43 - CFD: 2014/02/17 12:55:04 - [] D -- C:\ProgramData\GNU O43 - CFD: 2014/03/03 17:09:49 - [] D -- C:\ProgramData\InstallShield O43 - CFD: 2013/11/29 18:37:44 - [] D -- C:\ProgramData\Le Robert O43 - CFD: 2013/11/29 19:23:59 - [] D -- C:\ProgramData\Macrovision O43 - CFD: 2015/11/14 03:15:47 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 2013/11/29 18:45:19 - [] D -- C:\ProgramData\McAfee O43 - CFD: 2015/11/14 15:49:24 - [] D -- C:\ProgramData\Microsoft O43 - CFD: 2014/01/10 03:21:40 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2013/11/29 17:30:26 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2014/07/21 09:33:59 - [0] D -- C:\ProgramData\Oracle O43 - CFD: 2014/11/21 16:27:03 - [] D -- C:\ProgramData\PACE Anti-Piracy O43 - CFD: 2015/03/15 01:21:49 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2014/02/10 20:43:55 - [] D -- C:\ProgramData\Panasonic O43 - CFD: 2014/09/21 13:36:44 - [] D -- C:\ProgramData\Passolo 2009 O43 - CFD: 2010/03/23 06:28:51 - [0] D -- C:\ProgramData\PCDr O43 - CFD: 2013/12/01 13:53:08 - [] D -- C:\ProgramData\Quark O43 - CFD: 2014/12/08 17:25:37 - [] D -- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 2014/05/18 00:46:57 - [] D -- C:\ProgramData\Roxio O43 - CFD: 2014/11/25 16:29:24 - [] D -- C:\ProgramData\SDL O43 - CFD: 2013/11/29 15:16:58 - [] D -- C:\ProgramData\Sonic O43 - CFD: 2013/12/04 01:37:29 - [] D -- C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2013/11/29 18:45:45 - [] D -- C:\ProgramData\Sun O43 - CFD: 2010/03/23 06:28:53 - [] D -- C:\ProgramData\SupportSoft O43 - CFD: 2014/04/12 23:19:51 - [0] AD -- C:\ProgramData\TEMP O43 - CFD: 2009/07/14 00:08:56 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2010/03/23 06:37:12 - [] D -- C:\ProgramData\Uninstall O43 - CFD: 2015/01/02 22:32:55 - [] D -- C:\ProgramData\VSO O43 - CFD: 2014/12/19 18:15:33 - [] D -- C:\ProgramData\vsosdk O43 - CFD: 2014/10/09 01:08:35 - [] D -- C:\ProgramData\Western Digital O43 - CFD: 2014/09/12 20:18:23 - [] D -- C:\ProgramData\Windows Genuine Advantage O43 - CFD: 2015/11/14 15:31:20 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2014/12/02 02:24:49 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 2014/01/10 02:30:21 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 2013/11/29 19:26:40 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2014/07/21 09:33:54 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2013/12/01 15:34:56 - [] D -- C:\Program Files (x86)\Common Files\Macrovision Shared O43 - CFD: 2015/06/11 12:35:07 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 2014/12/02 02:26:53 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 2010/03/23 06:36:11 - [] D -- C:\Program Files (x86)\Common Files\Roxio Shared O43 - CFD: 2009/07/13 22:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2014/03/17 19:57:23 - [] D -- C:\Program Files (x86)\Common Files\Solveig Multimedia O43 - CFD: 2010/03/23 06:37:00 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared O43 - CFD: 2009/07/13 22:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 2010/03/23 06:28:42 - [] D -- C:\Program Files (x86)\Common Files\supportsoft O43 - CFD: 2010/03/23 06:35:52 - [] D -- C:\Program Files (x86)\Common Files\SureThing Shared O43 - CFD: 2014/01/10 02:28:17 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2010/03/23 06:29:28 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 2013/12/24 16:21:07 - [] D -- C:\Program Files (x86)\Common Files\Wondershare O43 - CFD: 2015/04/16 02:22:31 - [] D -- C:\Users\Pat\AppData\Roaming\Adobe O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\Users\Pat\AppData\Roaming\ATI O43 - CFD: 2015/04/15 19:31:18 - [] D -- C:\Users\Pat\AppData\Roaming\Audacity O43 - CFD: 2013/11/29 17:33:59 - [] D -- C:\Users\Pat\AppData\Roaming\AVAST Software O43 - CFD: 2015/10/20 15:21:20 - [] D -- C:\Users\Pat\AppData\Roaming\avidemux O43 - CFD: 2014/01/25 18:25:28 - [] D -- C:\Users\Pat\AppData\Roaming\BitTorrent O43 - CFD: 2014/03/03 17:02:55 - [] D -- C:\Users\Pat\AppData\Roaming\convertaudiofree O43 - CFD: 2014/06/18 17:42:42 - [] D -- C:\Users\Pat\AppData\Roaming\CyberLink O43 - CFD: 2014/11/21 15:41:54 - [] D -- C:\Users\Pat\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 2013/11/29 15:18:04 - [] D -- C:\Users\Pat\AppData\Roaming\Dell O43 - CFD: 2013/11/30 15:07:46 - [] D -- C:\Users\Pat\AppData\Roaming\Druide O43 - CFD: 2015/01/17 13:42:46 - [] D -- C:\Users\Pat\AppData\Roaming\dvdcss O43 - CFD: 2014/04/12 23:52:23 - [] D -- C:\Users\Pat\AppData\Roaming\DVDVideoSoft O43 - CFD: 2015/06/04 11:07:19 - [] D -- C:\Users\Pat\AppData\Roaming\FileZilla O43 - CFD: 2015/10/16 18:30:42 - [] D -- C:\Users\Pat\AppData\Roaming\gnupg O43 - CFD: 2015/03/18 20:16:40 - [] D -- C:\Users\Pat\AppData\Roaming\GoPro O43 - CFD: 2013/12/24 12:47:39 - [] D -- C:\Users\Pat\AppData\Roaming\InstallShield O43 - CFD: 2015/04/21 08:24:35 - [] D -- C:\Users\Pat\AppData\Roaming\IVONA 2 Voice O43 - CFD: 2015/03/12 20:11:01 - [0] D -- C:\Users\Pat\AppData\Roaming\Logitech O43 - CFD: 2013/11/29 19:04:23 - [] D -- C:\Users\Pat\AppData\Roaming\Macromedia O43 - CFD: 2009/07/14 02:44:38 - [0] D -- C:\Users\Pat\AppData\Roaming\Media Center Programs O43 - CFD: 2014/03/18 15:15:07 - [] D -- C:\Users\Pat\AppData\Roaming\Mediatronic O43 - CFD: 2015/08/28 14:54:55 - [] SD -- C:\Users\Pat\AppData\Roaming\Microsoft O43 - CFD: 2013/11/29 17:30:39 - [] D -- C:\Users\Pat\AppData\Roaming\Mozilla O43 - CFD: 2014/03/03 17:20:58 - [] D -- C:\Users\Pat\AppData\Roaming\MPEG Streamclip O43 - CFD: 2013/11/29 18:20:30 - [] D -- C:\Users\Pat\AppData\Roaming\OpenOffice O43 - CFD: 2014/11/21 16:27:03 - [] D -- C:\Users\Pat\AppData\Roaming\PACE Anti-Piracy O43 - CFD: 2014/02/10 20:44:28 - [] D -- C:\Users\Pat\AppData\Roaming\Panasonic O43 - CFD: 2014/09/21 13:36:44 - [0] D -- C:\Users\Pat\AppData\Roaming\Passolo 2009 O43 - CFD: 2015/11/10 21:08:52 - [] HD -- C:\Users\Pat\AppData\Roaming\PrSxITcg O43 - CFD: 2013/12/01 13:55:30 - [] D -- C:\Users\Pat\AppData\Roaming\Quark O43 - CFD: 2014/02/18 23:50:24 - [] D -- C:\Users\Pat\AppData\Roaming\Roxio O43 - CFD: 2014/09/21 13:48:59 - [] D -- C:\Users\Pat\AppData\Roaming\SDL O43 - CFD: 2015/10/09 17:52:04 - [] D -- C:\Users\Pat\AppData\Roaming\SolidDocuments O43 - CFD: 2014/11/21 16:37:46 - [] D -- C:\Users\Pat\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 O43 - CFD: 2013/11/29 17:48:56 - [] D -- C:\Users\Pat\AppData\Roaming\Thunderbird O43 - CFD: 2013/12/01 14:00:25 - [] D -- C:\Users\Pat\AppData\Roaming\TrueCrypt O43 - CFD: 2014/01/12 10:56:43 - [] D -- C:\Users\Pat\AppData\Roaming\UBitMenu O43 - CFD: 2015/11/14 14:34:10 - [] D -- C:\Users\Pat\AppData\Roaming\uTorrent O43 - CFD: 2015/11/13 18:39:27 - [] D -- C:\Users\Pat\AppData\Roaming\vlc O43 - CFD: 2015/01/02 22:32:55 - [0] D -- C:\Users\Pat\AppData\Roaming\Vso O43 - CFD: 2014/12/01 18:11:37 - [] D -- C:\Users\Pat\AppData\Roaming\Winamp O43 - CFD: 2013/12/01 13:13:56 - [] D -- C:\Users\Pat\AppData\Roaming\WinRAR O43 - CFD: 2015/11/14 15:51:29 - [] D -- C:\Users\Pat\AppData\Roaming\ZHP O43 - CFD: 2015/07/10 12:13:16 - [] D -- C:\Users\Pat\AppData\Local\Adobe O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\Application Data O43 - CFD: 2015/03/12 20:09:26 - [] D -- C:\Users\Pat\AppData\Local\Apps O43 - CFD: 2013/11/29 15:17:55 - [] D -- C:\Users\Pat\AppData\Local\ATI O43 - CFD: 2015/02/19 12:01:33 - [] D -- C:\Users\Pat\AppData\Local\CloudMe O43 - CFD: 2015/03/13 00:57:55 - [0] D -- C:\Users\Pat\AppData\Local\Deployment O43 - CFD: 2014/12/15 16:06:01 - [] D -- C:\Users\Pat\AppData\Local\ElevatedDiagnostics O43 - CFD: 2014/11/21 16:36:31 - [] D -- C:\Users\Pat\AppData\Local\Flash Builder O43 - CFD: 2014/03/03 17:05:03 - [] D -- C:\Users\Pat\AppData\Local\fontconfig O43 - CFD: 2014/04/21 23:44:36 - [] D -- C:\Users\Pat\AppData\Local\Google O43 - CFD: 2015/03/18 20:16:21 - [] D -- C:\Users\Pat\AppData\Local\GoPro O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\History O43 - CFD: 2014/12/02 12:49:31 - [0] AHD -- C:\Users\Pat\AppData\Local\JD4CVYGi2gADj9 O43 - CFD: 2014/03/31 20:13:09 - [] D -- C:\Users\Pat\AppData\Local\LogMeIn Rescue Applet O43 - CFD: 2013/11/29 19:04:23 - [] D -- C:\Users\Pat\AppData\Local\Macromedia O43 - CFD: 2014/03/03 17:07:22 - [] D -- C:\Users\Pat\AppData\Local\MajorSilence O43 - CFD: 2015/08/28 14:54:55 - [] D -- C:\Users\Pat\AppData\Local\Microsoft O43 - CFD: 2014/04/03 18:18:57 - [] D -- C:\Users\Pat\AppData\Local\Microsoft Help O43 - CFD: 2014/05/18 01:00:06 - [] D -- C:\Users\Pat\AppData\Local\MicroVision Applications O43 - CFD: 2013/12/20 01:07:15 - [] D -- C:\Users\Pat\AppData\Local\Mozilla O43 - CFD: 2014/11/21 16:27:03 - [] HD -- C:\Users\Pat\AppData\Local\OYW2g7XA0 O43 - CFD: 2014/11/21 16:27:03 - [0] D -- C:\Users\Pat\AppData\Local\PACE Anti-Piracy O43 - CFD: 2014/05/05 18:26:04 - [] D -- C:\Users\Pat\AppData\Local\Popcorn-Time O43 - CFD: 2014/06/19 09:42:20 - [] D -- C:\Users\Pat\AppData\Local\PowerDVD DX O43 - CFD: 2013/11/29 18:04:04 - [] D -- C:\Users\Pat\AppData\Local\Programs O43 - CFD: 2013/12/01 13:55:30 - [] D -- C:\Users\Pat\AppData\Local\Quark O43 - CFD: 2014/09/21 13:41:04 - [] D -- C:\Users\Pat\AppData\Local\SDL O43 - CFD: 2014/03/03 17:04:10 - [] D -- C:\Users\Pat\AppData\Local\SkinSoft O43 - CFD: 2015/11/14 13:07:33 - [] D -- C:\Users\Pat\AppData\Local\SoftThinks O43 - CFD: 2013/11/29 15:18:01 - [] D -- C:\Users\Pat\AppData\Local\Stardock_Corporation O43 - CFD: 2015/11/14 15:50:58 - [] D -- C:\Users\Pat\AppData\Local\Temp O43 - CFD: 2013/11/29 15:13:17 - [0] SHD -- C:\Users\Pat\AppData\Local\Temporary Internet Files O43 - CFD: 2015/04/30 23:48:33 - [] D -- C:\Users\Pat\AppData\Local\Thunderbird O43 - CFD: 2014/03/03 17:20:39 - [] D -- C:\Users\Pat\AppData\Local\VirtualStore O43 - CFD: 2013/11/29 19:42:25 - [] D -- C:\Users\Pat\AppData\Local\Western Digital O43 - CFD: 2013/12/24 16:21:07 - [] D -- C:\Users\Pat\AppData\Local\Wondershare O43 - CFD: 2009/07/13 23:54:32 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2013/11/29 15:17:47 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2013/11/30 15:04:52 - [0] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Antidote O43 - CFD: 2015/03/12 20:10:38 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Logitech O43 - CFD: 2009/07/13 23:49:38 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2014/03/18 15:15:11 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder O43 - CFD: 2013/12/28 17:47:10 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portforward.com O43 - CFD: 2013/11/29 15:18:01 - [] RD -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2015/01/17 16:13:40 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ O43 - CFD: 2013/12/01 13:12:16 - [] D -- C:\Users\Pat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ ShareTools MSconfig StartupReg (9) - 1s O53 - SMSR:HKLM\...\startupreg\BitTorrent [Key] . (...) -- C:\Users\Pat\AppData\Roaming\BitTorrent\BitTorrent.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\CloudMe Sync [Key] . (...) -- C:\Program Files (x86)\CloudMe\CloudMe\CloudMe.exe O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O53 - SMSR:HKLM\...\startupreg\Gestionnaire Antidote.exe [Key] . (.Druide informatique inc. - Gestionnaire Antidote.) -- C:\Program Files (x86)\Druide\Antidote\Gestionnaire Antidote.exe O53 - SMSR:HKLM\...\startupreg\GRC V2 Hyperappel [Key] . (.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\Program Files\Le Robert\Le Grand Robert & Collins\GRCHA.exe O53 - SMSR:HKLM\...\startupreg\GrooveMonitor [Key] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe O53 - SMSR:HKLM\...\startupreg\Hercules DJ Series 2 [Key] . (.Hercules® - DJ Series2 Control Panel.) -- C:\Program Files\Hercules\Audio\DJ USB Audio\HDJSeries2CPL.exe O53 - SMSR:HKLM\...\startupreg\Le Petit Robert V3 Hyperappel [Key] . (.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\Program Files\Le Robert\Le Petit Robert 2010\RobertHA.exe O53 - SMSR:HKLM\...\startupreg\uTorrent [Key] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe ---\\ System Drivers List (71) - 1s O58 - SDL:2008/06/27 07:51:10 A . (.Adobe Systems, Inc. - Adobe Drive File System Driver.) -- C:\Windows\System32\drivers\adfs.sys [88632] O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] O58 - SDL:2009/07/13 20:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] O58 - SDL:2009/07/13 20:52:21 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [106576] O58 - SDL:2009/07/13 20:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] O58 - SDL:2009/07/13 20:52:21 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [28752] O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] O58 - SDL:2009/07/13 20:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [28656] O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys [90968] O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [93528] O58 - SDL:2015/09/13 20:26:31 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [65224] O58 - SDL:2015/11/06 20:20:06 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswsnx.sys [1059656] O58 - SDL:2015/11/06 20:20:06 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys [449992] O58 - SDL:2015/09/13 20:26:32 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys [150672] O58 - SDL:2015/09/13 20:26:32 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [274808] O58 - SDL:2009/10/01 01:34:00 A . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\AtiHdmi.sys [121872] O58 - SDL:2009/12/10 19:40:28 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [6179328] O58 - SDL:2009/06/10 15:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] O58 - SDL:2009/06/10 15:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] O58 - SDL:2009/07/13 20:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] O58 - SDL:2009/06/10 15:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] O58 - SDL:2009/06/10 15:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] O58 - SDL:2009/05/15 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\drivers\cdr4_xp.sys [10224] O58 - SDL:2009/05/15 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\drivers\cdralw2k.sys [10224] O58 - SDL:2006/08/25 14:36:52 A . (.B.H.A Corporation - CD-ROM Filter Driver for Windows2000/xp.) -- C:\Windows\System32\drivers\cdrbsdrv.sys [39208] O58 - SDL:2009/07/13 20:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] O58 - SDL:2013/12/01 15:30:42 A . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [283064] O58 - SDL:2009/07/13 20:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] O58 - SDL:2009/06/10 15:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] O58 - SDL:2009/06/10 15:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] O58 - SDL:2012/08/07 14:07:18 A . (.Hercules - HDJusbaudio Kernel Streaming Driver.) -- C:\Windows\System32\drivers\HDJusbaudioks_x64.sys [94064] O58 - SDL:2012/08/07 14:07:16 A . (.Hercules - HDJusbaudio Class Driver.) -- C:\Windows\System32\drivers\HDJusbaudio_x64.sys [354672] O58 - SDL:2009/07/13 20:47:48 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [77888] O58 - SDL:2009/06/04 21:54:36 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [408600] O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410688] O58 - SDL:2009/07/13 20:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] O58 - SDL:2009/07/24 21:58:56 A . (.JMicron Technology Corp. - JMicron JMB36X RAID Driver.) -- C:\Windows\System32\drivers\jraid.sys [100776] O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [25816] O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [109272] O58 - SDL:2015/11/14 15:35:11 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [192216] O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] O58 - SDL:2009/07/13 20:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] O58 - SDL:2015/10/05 09:50:18 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [63704] O58 - SDL:2009/07/13 20:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] O58 - SDL:2015/09/13 20:26:24 A . (.AVAST Software - avast! NG snapshot driver.) -- C:\Windows\System32\drivers\ngvss.sys [115152] O58 - SDL:2009/07/13 20:48:27 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [149056] O58 - SDL:2009/07/13 20:45:45 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [167488] O58 - SDL:2011/11/03 03:01:00 N . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\Windows\System32\drivers\PxHlpa64.sys [56208] O58 - SDL:2009/07/13 20:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] O58 - SDL:2009/07/13 20:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] O58 - SDL:2009/05/23 01:52:30 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [215040] O58 - SDL:2009/10/02 22:10:10 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHD64.sys [2007968] O58 - SDL:2009/06/04 19:46:50 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\drivers\RtsUStor.sys [216064] O58 - SDL:2009/06/10 15:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] O58 - SDL:2009/07/13 20:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] O58 - SDL:2009/07/13 20:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] O58 - SDL:2009/07/13 20:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] O58 - SDL:2013/12/01 13:58:48 A . (.TrueCrypt Foundation - TrueCrypt Driver.) -- C:\Windows\System32\drivers\truecrypt.sys [231376] O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] O58 - SDL:2009/07/13 20:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] O58 - SDL:2009/02/13 12:02:52 A . (.Western Digital Technologies - WD SCSI Architecture Model (SAM) driver.) -- C:\Windows\System32\drivers\wdcsam64.sys [14464] ---\\ Last modified or created user files (11) - 7s O61 - LFC: 2015/11/14 14:41:59 A . (.OldTimer Tools.) -- C:\Users\Pat\Downloads\OTL.exe [602112] O61 - LFC: 2015/11/13 12:05:04 A . (.Safer-Networking Ltd..) -- C:\Users\Pat\Downloads\spybot-2.4.exe [46525608] O61 - LFC: 2015/11/10 21:08:52 A . (..) -- C:\Users\Pat\AppData\Roaming\PrSxITcg\lMIVfkul\nfWGhjxJ\vquMpDSws.exe [262144] O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avcodec-55.dll [10146890] O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avfilter-3.dll [1158947] O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avformat-55.dll [2134348] O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\avutil-52.dll [542107] O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\ffmpeg.exe [428889] O61 - LFC: 2015/11/14 13:15:53 A . (..) -- C:\Users\Pat\AppData\Roaming\Mozilla\Firefox\Profiles\5xp3wq93.default-1387903862131\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\swresample-0.dll [159175] O61 - LFC: 2015/11/14 13:08:01 A . (..) -- C:\Users\Pat\AppData\Local\ATI\ACE\Manifest.Bin [26869] O61 - LFC: 2015/11/12 13:40:41 A . (..) -- C:\Users\Pat\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [204153] ---\\ File Associations Shell Spawning (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\WINDOWS\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\WINDOWS\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe ---\\ Start Menu Internet (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\System32\ie4uinit.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\System32\ie4uinit.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\System32\ie4uinit.exe ---\\ Search Browser Infection (1) - 3s O69 - SBI: SearchScopes [HKCU] [DefaultScope] - (Conduit Search) - http://search.conduit.com/ =>PUP.Optional.Conduit ---\\ Crack & Keygen Files (5) - 19s O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\adobe_oobelib.dll [2286216] =>.Crack,Keygen O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\amtlib.Crack.CS6\64-bit\amtlib.dll [2249352] =>.Crack,Keygen O82 - LFC: 2014/11/25 15:33:14 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Encore Working\Fix Encore Problem Optional\DLL Cracked\amtlib.Crack.CS6\32-bit\amtlib.dll [1793672] =>.Crack,Keygen O82 - LFC: 2014/11/25 15:53:50 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Adobe Premiere Pro CS6 6.0.0 LS7 Multilanguage [ChingLiu]\Cracked dll\64-bit\amtlib.dll [2249352] =>.Crack,Keygen O82 - LFC: 2014/11/25 15:46:18 A . (.Adobe Systems, Incorporated.) -- C:\Users\Pat\Documents\Adobe versions\Adobe Premiere Pro CS6 6.0.0 LS7 Multilanguage [ChingLiu]\Cracked dll\32-bit\amtlib.dll [1793672] =>.Crack,Keygen ---\\ Search Svchost Services (33) - 0s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [235520] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [776192] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [845824] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [676864] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [343552] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\Sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\WINDOWS\System32\tapisrv.dll [316416] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [706560] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2418176] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [848384] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\System32\shsvcs.dll [369664] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [565760] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\WINDOWS\System32\SessEnv.dll [104960] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1104384] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [208384] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] O83 - Search Svchost Services: SearchIndexer (SearchIndexer) . (...) -- C:\Windows\system32\SearchIndexer.dll [0] ---\\ Firewall Active Exception List (30) - 2s O87 - FAEL: "TCP Query User{8215BF17-F44F-497E-81B9-767F551B358A}C:\program files\le robert\le petit robert 2010\robertha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\program files\le robert\le petit robert 2010\robertha.exe O87 - FAEL: "UDP Query User{F81986D5-19A0-4BED-B65D-C3AAF95D4B8B}C:\program files\le robert\le petit robert 2010\robertha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert Hyperappel.) -- C:\program files\le robert\le petit robert 2010\robertha.exe O87 - FAEL: "TCP Query User{E24A8454-C6DA-43F7-8CFA-632257FE2982}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe O87 - FAEL: "UDP Query User{8E38A8F0-B0DE-4E63-9C52-8A299661164B}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe O87 - FAEL: "{E843BC3F-6ACD-4C80-BE8A-1A344C8F6E0B}" [In-None-P6-FALSE] .(.Nullsoft, Inc. - Winamp.) -- C:\Program Files (x86)\Winamp\winamp.exe O87 - FAEL: "{271EEB67-F175-44BD-BEF8-A7DCE0CBCFB1}" [In-None-P17-FALSE] .(.Nullsoft, Inc. - Winamp.) -- C:\Program Files (x86)\Winamp\winamp.exe O87 - FAEL: "{38DAB961-D2ED-4532-AF77-5E910DBAF65B}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "{02E99AFA-965F-40BB-82B2-76761FBD68D3}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "{DA224E4E-FBD4-4D67-91CD-BB784E418D36}" [In-None-P6-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "{F0171658-DB73-4A5A-B5B2-710BEC02B2E9}" [In-None-P17-TRUE] .(.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe O87 - FAEL: "TCP Query User{248463A8-D0A4-4A60-A72A-BBFEF1A63558}C:\program files (x86)\pfportchecker\pfportchecker.exe" [In-None-P6-TRUE] .(.portforward.com - PFPortchecker by portforward.com helps chec.) -- C:\program files (x86)\pfportchecker\pfportchecker.exe O87 - FAEL: "UDP Query User{8B2E2DD0-72A4-4D0D-BAAE-B7346B859BA4}C:\program files (x86)\pfportchecker\pfportchecker.exe" [In-None-P17-TRUE] .(.portforward.com - PFPortchecker by portforward.com helps chec.) -- C:\program files (x86)\pfportchecker\pfportchecker.exe O87 - FAEL: "TCP Query User{FF4DBBB2-65CF-4AA5-8E88-82D4464DA8D4}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe O87 - FAEL: "UDP Query User{6619E41C-3B83-45DF-ADF5-C87D1545B903}C:\program files\le robert\le grand robert & collins\grcha.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Grand Robert & Collins Hyperappel.) -- C:\program files\le robert\le grand robert & collins\grcha.exe O87 - FAEL: "{E3FB347E-A4C6-4643-B2F6-3E923C681177}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{419D6B75-88BD-406A-B6C9-BDD9F421E31A}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "TCP Query User{35EDECF1-49AC-413D-A874-30B042C59FD3}C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" [In-None-P6-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe O87 - FAEL: "UDP Query User{4F674B9F-410F-441F-BACA-FC1212A1B0D0}C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe" [In-None-P17-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe O87 - FAEL: "{51A7F211-CA7E-484C-9A40-8BAABF095C9F}" [In-None-P17-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe O87 - FAEL: "{73C264B6-9F62-4673-A89E-874B7666C6A4}" [In-None-P6-TRUE] .(.LogMeIn, Inc. - LogMeIn Rescue.) -- C:\users\pat\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe O87 - FAEL: "{C3A68598-0545-4878-B33C-6457737645E1}" [In-None-P6-TRUE] .(.DVDVideoSoft Ltd. - Free Torrent Download.) -- C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe O87 - FAEL: "{69B1BA58-030F-438E-86D3-59F49385CC06}" [Out-None-P6-TRUE] .(.DVDVideoSoft Ltd. - Free Torrent Download.) -- C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe O87 - FAEL: "{3BE822CB-993A-4B90-BEFB-5C849546B40A}" [In-None-P6-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{99905424-D6B0-43F4-9D81-8E2FB1D99E01}" [In-None-P17-TRUE] .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Pat\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "TCP Query User{25529F25-DFBD-4E4B-BB2A-D72578687E86}C:\program files\le robert\le petit robert 2010\prnet.exe" [In-None-P6-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert 2010.) -- C:\program files\le robert\le petit robert 2010\prnet.exe O87 - FAEL: "UDP Query User{AC6C0778-A8E9-4147-B6FB-4FA4CBC0DB67}C:\program files\le robert\le petit robert 2010\prnet.exe" [In-None-P17-TRUE] .(.Dictionnaire Le Robert - Le Petit Robert 2010.) -- C:\program files\le robert\le petit robert 2010\prnet.exe O87 - FAEL: "{F02D106A-A76B-4E94-92BF-DCFABB03D877}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe (.not file.) O87 - FAEL: "{016DB43F-B1E9-4741-B16E-0668FB112E29}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe (.not file.) O87 - FAEL: "TCP Query User{17B58C5C-349A-4D60-8A49-26823CF77198}C:\program files (x86)\xming\xming.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe O87 - FAEL: "UDP Query User{47F251E6-04DC-45F0-8D34-531C77A87076}C:\program files (x86)\xming\xming.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe ---\\ Services not Microsoft (SR=Run, SS=Stop) (13) - 11s SR - Auto [2012/12/03 14:49:32] [ 2571704] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe SR - Auto [2013/10/07 09:54:10] [ 218112] DirMngr (DirMngr) . (...) - C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe SR - Auto [2009/06/09 10:11:14] [ 155648] Dock Login Service (DockLoginService) . (.Stardock Corporation.) - C:\Program Files\Dell\DellDock\DockLogin.exe SS - Demand [2013/12/01 15:34:56] [ 655624] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SS - Demand [2013/12/01 15:35:55] [ 1038088] FLEXnet Licensing Service 64 (FLEXnet Licensing Service 64) . (.Acresso Software Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe SS - Auto [2015/08/28 02:32:36] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - Demand [2015/08/28 02:32:36] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SR - Auto [2013/10/15 12:27:38] [ 3921880] Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe SR - Auto [2013/09/20 10:57:26] [ 1042272] Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe SR - Auto [2013/09/13 10:38:30] [ 171416] Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe SR - Auto [2011/08/18 11:05:46] [ 1692480] SoftThinks Agent Service (SftService) . (.SoftThinks SAS.) - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE SS - Demand [2009/05/21 08:59:08] [ 206064] SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) . (.SupportSoft, Inc..) - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe SS - Demand [2009/04/30 12:59:38] [ 74392] stllssvr (stllssvr) . (.MicroVision Development, Inc..) - c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe ---\\ Additional Scan (O88) (4) - 0s HKCU\SOFTWARE\eSupport.com =>PUP.Optional.eSupport HKCU\SOFTWARE\Softonic =>PUP.Optional.Softonic C:\Program Files (x86)\eSupport.com =>PUP.Optional.eSupport C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com =>PUP.Optional.eSupport ---\\ Summary of the elements found (3) - 0s http://www.nicolascoolman.fr/blog =>PUP.Optional.eSupport http://www.nicolascoolman.fr/blog =>PUP.Optional.Softonic http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit ~ End of the scan, 32392 items in 84 seconds (1008)(5)()