~ ZHPDiag v2015.12.25.197 By Nicolas Coolman (2015/12/25) ~ Run by Manu (Administrator) (2015/12/26 19:02:13) ~ Web: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: No network file ~ Mode: Scan ~ Report: C:\Users\Manu\Desktop\ZHPDiag.txt ~ Report: C:\Users\Manu\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 8.1, 64-bit (Build 9600) ---\\ Internet Browsers (3) - 0s MFIE: Mozilla Firefox 29.0.1 (x86 fr) v29.0.1 OPIE: Opera 34.0.2036.25 v34.0.2036.25 MSIE: Internet Explorer v11.0.9600.16663 ---\\ Windows Product Information (3) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : KO ---\\ System protection software (3) - 1s AVG Protection v2016.12.7303 SMADAV version 10.4.1 v10.4.1 Windows Defender (Deactivate) ---\\ System protection software (Superfluous) (1) - 2s McAfee Security Scan Plus v3.11.266.3 ---\\ Surveillance software (1) - 2s Adobe Flash Player 18 NPAPI ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4083.988 MB (40% free) System Restore: Activé (Enable) System drive C: has 24 GB () free of 162 GB ---\\ Connection to the system mode (3) - 0s ~ Computer Name: PC-MANU ~ User Name: Manu ~ Logged in as Administrator ---\\ Enumeration of the disk units (8) - 0s ~ Drive C: has 24 GB free of 162 GB (System) ~ Drive D: has 1 GB free of 13 GB ~ Drive F: has 65 GB free of 263 GB ~ Drive H: has 19 GB free of 35 GB ~ Drive I: has 2 GB free of 7 GB ~ Drive J: has GB free of 8 GB ~ Drive K: has 0 GB free of 7 GB ~ Drive L: has 0 GB free of 0 GB ---\\ State of the Windows Security Center (12) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Search Generic System Files (24) - 0s [MD5.C1400519D76A364E974E47BBA62B95B0] - 11/11/2013 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [2328328] =>.Microsoft Windows® [MD5.6E0BDFBEEED65B017F2E4C2C910B0520] - 22/08/2013 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [52736] © [MD5.48CFA7BE561A7BE144C29BB912055016] - 22/08/2013 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [144384] © [MD5.F267E9AE8279DF0F4F0246135F2BAF5C] - 11/11/2013 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [2332160] © [MD5.7C94FDA3809015B8F2208D2E1C221F17] - 22/08/2013 - (.Microsoft Corporation - Windows Log-on Application.) -- C:\WINDOWS\System32\Winlogon.exe [564736] © [MD5.2F18065618E39AA2E656EE737B71E791] - 22/08/2013 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [447488] © [MD5.59E2D5DD885C5A06C16CD5E309A5060A] - 22/08/2013 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [655872] © [MD5.9AE11282C83784273732ED155BC9FF4A] - 22/08/2013 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [492032] © [MD5.239268BAB58EAE9A3FF4E08334C00451] - 22/08/2013 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [567296] © [MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [26464] =>.Microsoft Windows® [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576] © [MD5.C6796EA22B513E3457514D92DCDB1A3D] - 22/08/2013 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352] © [MD5.5DB26D7E0216D0BF364A81D3829AD7B9] - 22/08/2013 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [134656] © [MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - 22/08/2013 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [78336] © [MD5.84CFC5EFA97D0C965EDE1D56F116A541] - 22/08/2013 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [107520] © [MD5.E23D32BAF152FBE35F18C6A2AB8EF271] - 11/11/2013 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [141824] © [MD5.6129EDB793A4255B1E2FB41773AC9D9A] - 11/11/2013 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [404992] © [MD5.0217532E19A748F0E5D569307363D5FD] - 22/08/2013 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [282624] © [MD5.725EF69B2DBEB7B33280019A556201BC] - 10/03/2014 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2008408] =>.Microsoft Windows® [MD5.764B1121867B2D9B31C491668AC72B2B] - 22/08/2013 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [94208] © [MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - 22/08/2013 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [120832] © [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 22/08/2013 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584] © [MD5.FFF28F9F6823EB1756C60F1649560BBF] - 22/08/2013 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [107520] © [MD5.9F9CE33B50611A1C61A46B8911E0B30B] - 22/08/2013 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [312160] =>.Microsoft Windows® ---\\ Non Microsoft non disabled Windows Services (23) - 3s O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics® O23 - Service: Arp Intelligent Protection Service (AIPS) . (.Arcai.com - Arp Intelligent Protection Service.) - C:\Program Files (x86)\NetCutDefender\services\aips.exe © O23 - Service: Ask Update Service (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe =>Toolbar.Ask O23 - Service: Application Hosting service (Application Hosting) . (.Copyright © 2015 - Application Hosting.) - C:\ProgramData\Application Hosting\Application Hosting.exe =>PUP.Optional.ApplicationHosting O23 - Service: AVG Firewall (avgfws) . (.AVG Technologies CZ, s.r.o. - AVG Firewall Service.) - C:\Program Files (x86)\AVG\Av\avgfws.exe =>.AVG Technologies CZ, s.r.o.® O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\Av\avgidsagent.exe =>.AVG Technologies CZ, s.r.o.® O23 - Service: AVG Service (avgsvc) . (.AVG Technologies CZ, s.r.o. - AVG Service Process.) - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe =>.AVG Technologies CZ, s.r.o.® O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe =>.AVG Technologies CZ, s.r.o.® O23 - Service: HP SimplePass Cachedrv Service (Cachedrv server) . (...) - C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe O23 - Service: Connectify (Connectify) . (.Connectify - Connectify Service Stub.) - C:\Program Files (x86)\Connectify\ConnectifyService.exe © O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service (CyberLink PowerDVD 12 Media Server Monitor Service) . (.CyberLink - CyberLink Media Server Monitor Service.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe =>.CyberLink Corp.® O23 - Service: CyberLink PowerDVD 12 Media Server Service (CyberLink PowerDVD 12 Media Server Service) . (.CyberLink - CyberLink Media Server Service.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe =>.CyberLink Corp.® O23 - Service: Sentinel LDK License Manager (hasplms) . (.SafeNet Inc. - Sentinel LDK License Manager Service.) - C:\Windows\System32\hasplms.exe =>.SafeNet, Inc.® O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Company® O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company® O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe © O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware® O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products® O23 - Service: LuckyBrowse (LuckyBrowse) . (. - ServiceStarter.) - C:\Program Files (x86)\LuckyBrowse\app\luckyBrowseStarter.exe =>PUP.Optional.LuckyBrowse O23 - Service: HP SimplePass Service (omniserv) . (.Softex Inc. - HP SimplePass Service.) - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe © O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® O23 - Service: UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files (x86)\Togocel 3G\AssistantServices.exe {48D6383A8D149C1CDCE69A728BDD24F6} O23 - Service: WdMan Service (WdMan) . (.TFuns LIMITED - TFuns.) - C:\ProgramData\lWdMl\WdMan.exe {112152F0B3D12E8797FD52AD3D09CA21D59F} =>PUP.Optional.WdsManPro ---\\ Task Planned Automatically (69) - 4s [MD5.00000000000000000000000000000000] [APT] [215be1f3-2b41-4704-ac29-3ac74f226d83-1] (...) -- C:\Program Files (x86)\Radio Canyon\Radio Canyon-codedownloader.exe (.not file.) [0] =>PUP.Optional.RadioCanyon [MD5.00000000000000000000000000000000] [APT] [215be1f3-2b41-4704-ac29-3ac74f226d83-11] (...) -- C:\Program Files (x86)\Radio Canyon\215be1f3-2b41-4704-ac29-3ac74f226d83-11.exe (.not file.) [0] =>PUP.Optional.RadioCanyon [MD5.00000000000000000000000000000000] [APT] [215be1f3-2b41-4704-ac29-3ac74f226d83-4] (...) -- C:\Program Files (x86)\Radio Canyon\215be1f3-2b41-4704-ac29-3ac74f226d83-4.exe (.not file.) [0] =>PUP.Optional.RadioCanyon [MD5.00000000000000000000000000000000] [APT] [215be1f3-2b41-4704-ac29-3ac74f226d83-5] (...) -- C:\Program Files (x86)\Radio Canyon\215be1f3-2b41-4704-ac29-3ac74f226d83-5.exe (.not file.) [0] =>PUP.Optional.RadioCanyon [MD5.00000000000000000000000000000000] [APT] [215be1f3-2b41-4704-ac29-3ac74f226d83-5_user] (...) -- C:\Program Files (x86)\Radio Canyon\215be1f3-2b41-4704-ac29-3ac74f226d83-5.exe (.not file.) [0] =>PUP.Optional.RadioCanyon [MD5.00000000000000000000000000000000] [APT] [215be1f3-2b41-4704-ac29-3ac74f226d83-6] (...) -- C:\Program Files (x86)\Radio Canyon\215be1f3-2b41-4704-ac29-3ac74f226d83-6.exe (.not file.) [0] =>PUP.Optional.RadioCanyon [MD5.00000000000000000000000000000000] [APT] [215be1f3-2b41-4704-ac29-3ac74f226d83-7] (...) -- C:\Program Files (x86)\Radio Canyon\215be1f3-2b41-4704-ac29-3ac74f226d83-7.exe (.not file.) [0] =>PUP.Optional.RadioCanyon [MD5.9B3355B29942AF67F014EA90CE1EA960] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976] =>.Adobe Systems Incorporated® [MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-pc-Manu-Sandra] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208] =>.Adobe Systems Incorporated® [MD5.DFF0F061D69E200211C4A06EF521413D] [APT] [avabvexvac] (...) -- C:\Users\Manu\AppData\Local\avabvexvac\avabvexvac.exe [2135040] =>Heuristic.SearchProtect [MD5.4E9AF25BA5E8219310E384AEA5B0EED8] [APT] [CLMLSvc_P2G8] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576] =>.CyberLink Corp.® [MD5.227E138E4A6D8D3A1CC9C3EA0D1874A5] [APT] [CLVDLauncher] (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [339008] =>.CyberLink Corp.® [MD5.4C01B046885AC867A72DC14580E3C158] [APT] [doPDF Update] (.Copyright © 2014.) -- C:\Program Files\Softland\novaPDF 8\Driver\UpdateApplication.exe [654336] [MD5.00000000000000000000000000000000] [APT] [globalUpdateUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe (.not file.) [0] =>PUP.Optional.GlobalUpdate [MD5.00000000000000000000000000000000] [APT] [globalUpdateUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe (.not file.) [0] =>PUP.Optional.GlobalUpdate [MD5.00000000000000000000000000000000] [APT] [GQzBHFzNPSxyT2HscMJheSG] (...) -- C:\Users\Manu\AppData\Roaming\GQzBHFzNPSxyT2HscMJheSG.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.AF51D4FE088A3EFA5303B36FFFD0581B] [APT] [HPCeeScheduleForManu] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704] =>.Hewlett-Packard Company® [MD5.D3011505A64872E8302BB6051C449E31] [APT] [HPGenoobeReminder] (.Copyright © 2012.) -- C:\Program Files (x86)\Hewlett-Packard\HP Registration Service\HP GenOOBE\HPGenOOBE.exe [31520] =>.Hewlett-Packard Company® [MD5.00000000000000000000000000000000] [APT] [Kit Diner] (...) -- C:\Users\Manu\AppData\Local\Kit Diner\Bin\KitDiner.dll (.not file.) [0] [MD5.70CB79B525FF3D953AB60030EC32265D] [APT] [Opera scheduled Autoupdate 1414577577] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [696952] =>.Opera Software ASA® [MD5.7AA26DFA05081B82F49F41CCB4A4B22E] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe [133800] =>Toolbar.Ask [MD5.00000000000000000000000000000000] [APT] [smadav] (...) -- C:\Program Files (x86)\Smadav\SM?RTP.exe [1658880] [MD5.BE5F9C72E9994D403FE5BFA9BC39AE14] [APT] [SoftwareInformerService] (.Informer Technologies, Inc..) -- C:\Program Files\Software Informer\softinfo.exe [1536000] [MD5.A80FC2A8023A01245B1CA249BDB38650] [APT] [Synaptics TouchPad Enhancements] (.Synaptics Incorporated.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2780912] =>.Synaptics Incorporated® [MD5.00000000000000000000000000000000] [APT] [tAIvw6Juu5zViUfmCsdn9dvVsxM] (...) -- C:\Users\Manu\AppData\Roaming\tAIvw6Juu5zViUfmCsdn9dvVsxM.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.00000000000000000000000000000000] [APT] [winter_web_notification_service] (...) -- C:\Program Files (x86)\winter web\winter_web_notification_service.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [winter_web_updating_service] (...) -- C:\Program Files (x86)\winter web\winter_web_updating_service.exe (.not file.) [0] O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-1 - (...) -- C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-1.job [3108] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-11 - (...) -- C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-11.job [4836] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-4 - (...) -- C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-4.job [4490] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-5 - (...) -- C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5.job [2442] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-5_user - (...) -- C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5_user.job [2442] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-6 - (...) -- C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-6.job [4154] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-7 - (...) -- C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-7.job [3810] =>PUP.Optional.RadioCanyon O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [830] © O39 - APT: globalUpdateUpdateTaskMachineCore - (...) -- C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job [900] =>PUP.Optional.GlobalUpdate O39 - APT: globalUpdateUpdateTaskMachineUA - (...) -- C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job [904] =>PUP.Optional.GlobalUpdate O39 - APT: GQzBHFzNPSxyT2HscMJheSG - (...) -- C:\WINDOWS\Tasks\GQzBHFzNPSxyT2HscMJheSG.job [1030] =>PUP.Optional.CrossRider O39 - APT: HPCeeScheduleForManu - (.Hewlett-Packard.) -- C:\WINDOWS\Tasks\HPCeeScheduleForManu.job [344] © O39 - APT: tAIvw6Juu5zViUfmCsdn9dvVsxM - (...) -- C:\WINDOWS\Tasks\tAIvw6Juu5zViUfmCsdn9dvVsxM.job [1038] =>PUP.Optional.CrossRider O39 - APT: winter_web_notification_service - (...) -- C:\WINDOWS\Tasks\winter_web_notification_service.job [1328] O39 - APT: winter_web_updating_service - (...) -- C:\WINDOWS\Tasks\winter_web_updating_service.job [690] O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-1 - (...) -- C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-1 [6112] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-11 - (...) -- C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-11 [7840] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-4 - (...) -- C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-4 [7494] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-5 - (...) -- C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5 [5444] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-5_user - (...) -- C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5_user [5436] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-6 - (...) -- C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-6 [7158] =>PUP.Optional.RadioCanyon O39 - APT: 215be1f3-2b41-4704-ac29-3ac74f226d83-7 - (...) -- C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-7 [6814] =>PUP.Optional.RadioCanyon O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3718] © O39 - APT: AdobeAAMUpdater-1.0-pc-Manu-Sandra - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-pc-Manu-Sandra [3502] © O39 - APT: avabvexvac - (...) -- C:\WINDOWS\System32\Tasks\avabvexvac [3456] =>Heuristic.SearchProtect O39 - APT: CLMLSvc_P2G8 - (.CyberLink.) -- C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8 [3160] © O39 - APT: CLVDLauncher - (.CyberLink Corp..) -- C:\WINDOWS\System32\Tasks\CLVDLauncher [3160] © O39 - APT: doPDF Update - (.Copyright © 2014.) -- C:\WINDOWS\System32\Tasks\doPDF Update [3560] O39 - APT: globalUpdateUpdateTaskMachineCore - (...) -- C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineCore [3640] =>PUP.Optional.GlobalUpdate O39 - APT: globalUpdateUpdateTaskMachineUA - (...) -- C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineUA [3876] =>PUP.Optional.GlobalUpdate O39 - APT: GQzBHFzNPSxyT2HscMJheSG - (...) -- C:\WINDOWS\System32\Tasks\GQzBHFzNPSxyT2HscMJheSG [4034] =>PUP.Optional.CrossRider O39 - APT: HPCeeScheduleForManu - (.Hewlett-Packard.) -- C:\WINDOWS\System32\Tasks\HPCeeScheduleForManu [3156] © O39 - APT: HPGenoobeReminder - (.Copyright © 2012.) -- C:\WINDOWS\System32\Tasks\HPGenoobeReminder [4020] O39 - APT: Kit Diner - (...) -- C:\WINDOWS\System32\Tasks\Kit Diner [3054] O39 - APT: Opera scheduled Autoupdate 1414577577 - (.Opera Software.) -- C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1414577577 [3832] © O39 - APT: Scheduled Update for Ask Toolbar - (...) -- C:\WINDOWS\System32\Tasks\Scheduled Update for Ask Toolbar [3814] =>Toolbar.Ask O39 - APT: smadav - (...) -- C:\WINDOWS\System32\Tasks\smadav [3238] O39 - APT: SoftwareInformerService - (.Informer Technologies, Inc..) -- C:\WINDOWS\System32\Tasks\SoftwareInformerService [3300] O39 - APT: Synaptics TouchPad Enhancements - (.Synaptics Incorporated.) -- C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements [2990] © O39 - APT: tAIvw6Juu5zViUfmCsdn9dvVsxM - (...) -- C:\WINDOWS\System32\Tasks\tAIvw6Juu5zViUfmCsdn9dvVsxM [4040] =>PUP.Optional.CrossRider O39 - APT: winter_web_notification_service - (...) -- C:\WINDOWS\System32\Tasks\winter_web_notification_service [4322] O39 - APT: winter_web_updating_service - (...) -- C:\WINDOWS\System32\Tasks\winter_web_updating_service [3684] ---\\ Process running (22) - 4s [MD5.DEE40211AA700A0A9D7F95EC38DE0714] - (...) -- C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe [109568] [PID.1544] [MD5.1300D100EF891C98504DE38624D3F639] - (.Softex Inc. - HP SimplePass Service.) -- C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [87552] [PID.1572] © [MD5.2870CE9BFD6BA66FB0FFC6D11C9E41A7] - (.Arcai.com - Arp Intelligent Protection Service.) -- C:\Program Files (x86)\NetCutDefender\services\aips.exe [262144] [PID.1876] © [MD5.8E2B86E774F961B899226E4A0D9B62D9] - (.Copyright © 2015 - Application Hosting.) -- C:\ProgramData\Application Hosting\Application Hosting.exe [70656] [PID.2136] [MD5.DAE6C3099D291EED8922A65C29ABCF52] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520] [PID.2644] © [MD5.CE16A422E8D341F322F35E30A15021FB] - (...) -- C:\Program Files (x86)\Togocel 3G\AssistantServices.exe [276376] [PID.2872] {48D6383A8D149C1CDCE69A728BDD24F6} [MD5.1B9111D7486B8975E64F373FE0E4FABA] - (.TFuns LIMITED - TFuns.) -- C:\ProgramData\lWdMl\WdMan.exe [338056] [PID.2936] {112152F0B3D12E8797FD52AD3D09CA21D59F} =>PUP.Optional.WdsManPro [MD5.1AA95BEF239331E55667D73F92A92F7A] - (.Connectify - Connectify Service Stub.) -- C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936] [PID.3048] © [MD5.1298D670D2D0366283425890599695E1] - (.Connectify - Connectify Daemon Service.) -- C:\Program Files (x86)\Connectify\ConnectifyD.exe [2801440] [PID.1408] {71844350E30B64B59FD6BEC66B063550} © [MD5.8AFD109901B377D55D1CB387B77C5893] - (.Smadsoft - Smadav USB Antivirus & Additional Protectio.) -- C:\Program Files (x86)\SMADAV\SMΔRTP.exe [1658880] [PID.4124] [MD5.BE5F9C72E9994D403FE5BFA9BC39AE14] - (.Informer Technologies, Inc. - Software Informer.) -- C:\Program Files\Software Informer\softinfo.exe [1536000] [PID.4140] [MD5.732ED03303FEE8003E2922D87ABF9903] - (...) -- C:\Program Files (x86)\LuckyBrowse\app\luckybrowse.exe [585728] [PID.4484] =>PUP.Optional.LuckyBrowse [MD5.CDFEAA94AD3E362BCE09E0556B92EC84] - (...) -- C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe [65024] [PID.5076] [MD5.C37C62759F25CC6647D4069BA01D4540] - (.FSPro Labs - My Lockbox.) -- C:\Program Files\My Lockbox\mylbx.exe [2305288] [PID.5200] {7B6CC6957166C29858134F621F7124F8} © [MD5.BE5F9C72E9994D403FE5BFA9BC39AE14] - (.Informer Technologies, Inc. - Software Informer.) -- C:\Program Files\Software Informer\softinfo.exe [1536000] [PID.5260] [MD5.3C1BD3321E9BEC87759EA6F57C5DFDC6] - (...) -- C:\Program Files (x86)\Feed Notifier\notifier.exe [58880] [PID.5936] [MD5.4EE76D4CB055E8EC281177771345E8B3] - (.Power Software Ltd - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [312376] [PID.6044] {11214EC0AA9D4C5C4268811B30352BF16983} © [MD5.15617202631697E539E8BA2A46FA23F7] - (...) -- C:\Program Files (x86)\Togocel 3G\UIExec.exe [157592] [PID.6096] {48D6383A8D149C1CDCE69A728BDD24F6} [MD5.8695D4E286BF30F6E6CF6930F85AAF04] - (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) -- C:\Program Files (x86)\Notepad++\notepad++.exe [2404352] [PID.5764] [MD5.8032EE41504B1EE95D277CE0EDD977B6] - (.AIMP DevTeam - AIMP3.) -- C:\Program Files (x86)\AIMP3\AIMP3.exe [1703880] [PID.4760] © [MD5.9B8EAF7F70273FC07558897AB22BDB7F] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Manu\Desktop\ZHPDiag3.exe [2042368] [PID.8572] © [MD5.9B8EAF7F70273FC07558897AB22BDB7F] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Manu\Desktop\ZHPDiag3.exe [2042368] [PID.620] © ---\\ Google Chrome, Start,Search,Extensions (1) - 0s G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.mystartsearch.com/ =>PUP.Optional.StartSearch ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (35) - 1s M0 - MFSP: prefs.js [Manu - tiednl1e.default] http://www.istartpageing.com/?type=hp&ts=1451106037&z=f4cc96903d669e694f793begaz7wcg8gfe8tfq5w2q&from=cmi&uid=HGSTXHTS545050A7E680_TM8513PY35HZEM35HZEMX =>PUP.Optional.IstartPageing P2 - EXT FILE: (...) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\toolbar_BTRSP-C@apn.ask.com.xpi =>Toolbar.Ask P2 - EXT FILE: (...) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\{63b0a261-20d9-47e9-8f1f-e5f82ab57625}.xpi P2 - EXT FILE: (...) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\searchplugins\ask-search.xml P2 - EXT FILE: (...) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\searchplugins\default-search.xml P2 - EXT FILE: (...) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\searchplugins\findit.xml =>PUP.Optional.SmartBar P2 - EXT FILE: (...) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\searchplugins\trovi.xml =>PUP.Optional.TroviCom P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\amazon-france.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\default-search.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\delta-homes.xml =>PUP.Optional.DeltaHomes P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\eBay-france.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\findit.xml =>PUP.Optional.SmartBar P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mystartsearch.xml =>PUP.Optional.StartSearch P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\yahoo-france.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} © P2 - EXT: (.Buca Apps - Radio Canyon.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\1853a82e-ce44-4a8c-a6fe-9bcf74a65575@4b6b1c16-5f0a-4ef0-866f-b063e235ef97.com P2 - EXT: (. - winter web.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\bixFO2L@gmail.com P2 - EXT: (.lightningnewtab.com - Default NewTab.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\default_newtabff@gmail.com =>PUP.Optional.LightningNewTab P2 - EXT: (.lightningnewtab.com - deskCut.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab P2 - EXT: (. - Linkey for Firefox.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\extension@linkeyproject.com =>PUP.Optional.LinkeySearch P2 - EXT: (. - vdpurelink64.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\vdpure@link64 P2 - EXT: (. - Mozilla Firefox Hotfixer.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\veggy@veggyAddon.com =>PUP.Optional.VeggyAddon P2 - EXT: (. - Ultra Finder.) -- C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\{60984d64-3925-4636-a8c2-1b22a35f133f} P2 - FPN: [HKCU] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd..) -- C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll © P2 - FPN: [HKLM] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd..) -- C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=10] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate P2 - FPN: [HKLM] [@staging.google.com/globalUpdate Update;version=4] - (.globalUpdate.) -- C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll =>PUP.Optional.GlobalUpdate P2 - FPN: [HKLM] [@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products Ltd..) -- C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll ---\\ Opera, Plugins,Start,Search (3) - 1s B2 - EXT: [Radio Canyon] C:\Users\Manu\AppData\Roaming\Opera Software\Opera Stable\Extensions\bikofacodmhdpkfdeeocponfcgjcdfbk B2 - EXT: [Ski Search] C:\Users\Manu\AppData\Roaming\Opera Software\Opera Stable\Extensions\cbijdpillpmfkgloninghgpglbkkdomj B2 - EXT: [ohodmcahedcphoipgooelhjcfahodhcj] C:\Users\Manu\AppData\Roaming\Opera Software\Opera Stable\Extensions\ohodmcahedcphoipgooelhjcfahodhcj ---\\ Internet Explorer Extensions, Start, Search (20) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWv3j9qLkXQZ-73WFdsg-_-13SO_i0miYv5gg9MV3eJlUZwGQfMM0JBsDuRIfirmwQRBoslp0jdlW3BectJqQCv36RIX1t8VjwiDyuzK327Ct273gJymJTuTw-W1MXZ9bqXlDF5PmWPzCTVOFwkvfDQjmsnQ,, =>PUP.Optional.Linkury R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgijvkxlyip4nye17avlwv3j9qlkxqz-73wfdsg-_-13so_i0miyv5gg9mv3ejluzwgqfmm0jbsdurifirmwqrboslp0jdlw3betspgh2kbhbv8j9qasgnhwo3glanvytwh_z3vws3rm2uwghtpxme53qcu4-qzjlt11noqzdn13ynq,,&q={searchterms} =>PUP.Optional.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgijvkxlyip4nye17avlwv3j9qlkxqz-73wfdsg-_-13so_i0miyv5gg9mv3ejluzwgqfmm0jbsdurifirmwqrboslp0jdlw3betspgh2kbhbv8j9qasgnhwo3glanvytwh_z3vws3rm2uwghtpxme53qcu4-qzjlt11noqzdn13ynq,,&q={searchterms} =>PUP.Optional.Linkury R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=hpntdfjs R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgijvkxlyip4nye17avlwv3j9qlkxqz-73wfdsg-_-13so_i0miyv5gg9mv3ejluzwgqfmm0jbsdurifirmwqrboslp0jdlw3betspgh2kbhbv8j9qasgnhwo3glanvytwh_z3vws3rm2uwghtpxme53qcu4-qzjlt11noqzdn13ynq,,&q={searchterms} =>PUP.Optional.Linkury R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgijvkxlyip4nye17avlwv3j9qlkxqz-73wfdsg-_-13so_i0miyv5gg9mv3ejluzwgqfmm0jbsdurifirmwqrboslp0jdlw3betspgh2kbhbv8j9qasgnhwo3glanvytwh_z3vws3rm2uwghtpxme53qcu4-qzjlt11noqzdn13ynq,,&q={searchterms} =>PUP.Optional.Linkury R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=hpntdfjs R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKEY_USERS\S-1-5-21-3191689804-1299655028-3616208351-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6f%6e%69%63-%73%65%61%72%63%68.%63%6f%6d/?p=mko_awfzxipyrahdgijvkxlyip4nye17avlwv3j9qlkxqz-73wfdsg-_-13so_i0miyv5gg9mv3ejluzwgqfmm0jbsdurifirmwqrboslp0jdlw3betspgh2kbhbv8j9qasgnhwo3glanvytwh_z3vws3rm2uwghtpxme53qcu4-qzjlt11noqzdn13ynq,,&q={searchterms} =>PUP.Optional.Linkury R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) © F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) © F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) © ---\\ Hosts file redirection (2) - 0s 0 ~ Le fichier hôte est sain (The hosts file is clean) (30) ---\\ Browser Helper Object (BHO) (6) - 0s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.® O2 - BHO: 71c6c330e74701318a6f0adb73eaa5ae0060804 [64Bits] - {11111111-1111-1111-1111-110611081104} . (.Radio Canyon - Radio Canyon BHO.) -- C:\Program Files (x86)\Radio Canyon\Radio Canyon-bho.dll =>PUP.Optional.RadioCanyon O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll =>.Microsoft Corporation® O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL =>.Microsoft Corporation® O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.Hewlett-Packard - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll =>.Hewlett-Packard Company® ---\\ Internet Explorer Toolbars (1) - 0s O3 - Toolbar: 0x00 - [HKLM]{D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll {0965F2AC7236C7E1BDCA44ED139B273A} =>Toolbar.Ask ---\\ Auto loading programs from Registry and folders (52) - 1s O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe =>.Intel Corporation - Software and Firmware Products® O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation - Software and Firmware Products® O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation - Software and Firmware Products® O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [SimplePass] . (.Hewlett-Packard - HP SimplePass Application.) -- C:\Program Files\Hewlett-Packard\SimplePass\HPSmplPass.exe =>.Softex Incorporated® O4 - HKLM\..\Run: [OPBHOBroker] . (.Hewlett-Packard - HP SimplePass BHO Broker.) -- C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe =>.Softex Incorporated® O4 - HKLM\..\Run: [OPBHOBrokerDesktop] . (.Hewlett-Packard - HP SimplePass BHO Broker.) -- C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe =>.Softex Incorporated® O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [mylbx] . (.FSPro Labs - My Lockbox.) -- C:\Program Files\My Lockbox\mylbx.exe {7B6CC6957166C29858134F621F7124F8} © O4 - HKLM\..\Run: [Connectify Hotspot] . (.Connectify - Connectify Hotspot.) -- C:\Program Files (x86)\Connectify\Connectify.exe {71844350E30B64B59FD6BEC66B063550} © O4 - HKLM\..\Run: [Connectify Dispatch] . (.Connectify - Connectify Dispatch.) -- C:\Program Files (x86)\Connectify\DispatchUI.exe {71844350E30B64B59FD6BEC66B063550} © O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated® O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe © O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Manu\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - HKCU\..\Run: [Software Informer] . (.Informer Technologies, Inc. - Software Informer.) -- C:\Program Files\Software Informer\softinfo.exe O4 - HKCU\..\Run: [AdobeBridge] (Orphean) O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Sticky Notes.) -- C:\Windows\System32\StikyNot.exe © O4 - HKCU\..\RunOnce: [Application Restart #0] . (.Google Inc. - Google Chrome.) -- C:\Users\Manu\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - HKLM\..\Wow6432Node\Run: [YouCam Service] . (.CyberLink Corp. - CyberLink YouCam Service.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe =>.CyberLink Corp.® O4 - HKLM\..\Wow6432Node\Run: [HPMessageService] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe =>.Hewlett-Packard Company® O4 - HKLM\..\policies\Explorer\Run: [1329541977] C:\ProgramData\mskscsczb.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [719691914] C:\ProgramData\msmgthkiw.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [321849511] C:\PROGRA~3\msfovmyo.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [572566483] C:\PROGRA~3\mskuz.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [816443219] C:\PROGRA~3\msdgvsse.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1213593603] C:\PROGRA~3\msbrdpeu.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1737517245] C:\ProgramData\msvoto.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [621667431] C:\ProgramData\msrervr.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1086738292] C:\PROGRA~3\msxuuqtd.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1246420542] C:\PROGRA~3\msnzrxmzc.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1984766764] C:\PROGRA~3\msjqrj.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [447032203] C:\PROGRA~3\msisoxahc.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1178391362] C:\PROGRA~3\msloft.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1497463699] C:\ProgramData\msccfrsao.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1360407548] C:\PROGRA~3\msqsvn.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [203747222] C:\ProgramData\msrde.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [393257343] C:\PROGRA~3\mstrnjm.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [337240159] C:\PROGRA~3\msnbfjhq.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [955148571] C:\PROGRA~3\msurcn.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [148257634] C:\PROGRA~3\mswjreoke.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1996596528] C:\PROGRA~3\msjsatdp.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1877486015] C:\PROGRA~3\msxpqehnz.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1251757804] C:\PROGRA~3\mswfgv.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1386857178] C:\PROGRA~3\msaazmot.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [1115612025] C:\PROGRA~3\msoubeivp.exe (.not file.) O4 - HKLM\..\policies\Explorer\Run: [632148712] C:\PROGRA~3\msvijnm.exe (.not file.) O4 - HKUS\S-1-5-21-3191689804-1299655028-3616208351-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe © O4 - HKUS\S-1-5-21-3191689804-1299655028-3616208351-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Manu\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - HKUS\S-1-5-21-3191689804-1299655028-3616208351-1001\..\Run: [Software Informer] . (.Informer Technologies, Inc. - Software Informer.) -- C:\Program Files\Software Informer\softinfo.exe O4 - HKUS\S-1-5-21-3191689804-1299655028-3616208351-1001\..\Run: [AdobeBridge] (Orphean) O4 - HKUS\S-1-5-21-3191689804-1299655028-3616208351-1001\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Sticky Notes.) -- C:\Windows\System32\StikyNot.exe © O4 - HKUS\S-1-5-21-3191689804-1299655028-3616208351-1001\..\RunOnce: [Application Restart #0] . (.Google Inc. - Google Chrome.) -- C:\Users\Manu\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® ---\\ Global shortcuts Startup (1) - 5s O4 - GS\CommonDesktop [Public]: Continue BearShare installation.lnk . (...) F:\Mes logiciels\BearShareSetup-r1569-n-bc.exe =>PUP.Optional.BearShare ---\\ Lop.com/Domain Hijackers (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.43.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5B037EFB-B9A1-4C45-9814-F07AF62B6987}: DhcpNameServer = 192.168.43.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{851429E9-04A0-4625-8B0C-31DC8F73B58C}: DhcpNameServer = 192.168.1.1 ---\\ Extra protocols (24) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll © O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll © O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation® O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll © O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation® O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll © O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll © O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll © O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ AppInit_DLLs Registry value Autorun (1) - 0s O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\VC64LO~1.DLL C:\ProgramData\BluetoothPoint\Inchphase.dll (.not file.) =>PUP.Optional.BluetoothPoint ---\\ Software installed (129) - 11s O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc® O42 - Logiciel: 7-Zip 9.20 - (...) [HKLM][64Bits] -- 7-Zip O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000} © O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {B194272D-1F92-46DF-99EB-8D5CE91CB4EC} © O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7} © O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 © O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {15FEDA5F-141C-4127-8D7E-B962D1742728} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player © O42 - Logiciel: AIMP3 - (.AIMP DevTeam.) [HKLM][64Bits] -- AIMP3 © O42 - Logiciel: ALPIlmclient 1.5 - (.ALPI.) [HKLM][64Bits] -- {243029A8-32D5-4DDE-97EC-0BEA48D05634} © O42 - Logiciel: AlpiUpdate - (.ALPI (Applications Logiciels Pour l'Ingénierie).) [HKLM][64Bits] -- {38DAB551-3919-42C6-A6D9-3B648E390800} O42 - Logiciel: Archiveur WinRAR - (...) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM][64Bits] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE} =>Toolbar.AsktBar O42 - Logiciel: AVG - (.AVG Technologies.) [HKLM][64Bits] -- {A597ED27-4945-4E0B-8E37-DCD93DD85AD0} © O42 - Logiciel: AVG 2016 - (.AVG Technologies.) [HKLM][64Bits] -- {2272D5BF-6158-4042-9E55-5D0E0793D32E} © O42 - Logiciel: AVG Protection - (.AVG Technologies.) [HKLM][64Bits] -- AVG =>.AVG Technologies CZ, s.r.o.® O42 - Logiciel: BluetoothService - (." ".) [HKLM][64Bits] -- {E6426C0D-A723-4DBF-B754-1339CB2A683D} =>PUP.Optional.Multiplug O42 - Logiciel: Borland Delphi 7 - (.Borland Software Corporation.) [HKLM][64Bits] -- {72263053-50D1-4598-9502-51ED64E54C51} O42 - Logiciel: CanecoEP 4.0 - (.ALPI.) [HKLM][64Bits] -- {C8933ACA-0AF3-4E3C-9C7B-B8FB0E30F5EA} © O42 - Logiciel: CanecoEP 4.1 - (.ALPI.) [HKLM][64Bits] -- {878B70AF-6DD8-452B-B8D5-B1FED118F79E} © O42 - Logiciel: Compatible Web Directory - (.Compatible Web Directory.) [HKLM][64Bits] -- PopupProduct =>PUP.Optional.CompatibleWebDir O42 - Logiciel: Connectify - (.Connectify.) [HKLM][64Bits] -- Connectify © O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} =>.CyberLink Corp.® O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} =>.CyberLink Corp.® O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A} =>.CyberLink Corp.® O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A} =>.CyberLink Corp.® O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink Corp.® O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink Corp.® O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} © O42 - Logiciel: DisableMSDefender - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {74FE39A0-FB76-47CD-84BA-91E2BBB17EF2} © O42 - Logiciel: doPDF - (.Softland.) [HKLM][64Bits] -- {2FC5AA08-A4A7-4CA2-87CA-B591CDC29BFA} © O42 - Logiciel: doPDF 8 - (.Softland.) [HKLM][64Bits] -- {bc8555e0-f2a4-4d0c-9063-97b6e92291f5} =>.Softland S.R.L.® O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..) [HKLM][64Bits] -- EA Download Manager =>.Electronic Arts® O42 - Logiciel: Energy Star - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7} © O42 - Logiciel: Feed Notifier 2.6 - (.Michael Fogleman.) [HKLM][64Bits] -- {6091F327-2B13-4193-A6F1-4B2271613A74}_is1 O42 - Logiciel: FileZilla Client 3.14.1 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client © O42 - Logiciel: FMW 1 - (.AVG Technologies.) [HKLM][64Bits] -- {BCA7CC8C-745B-4340-B3A8-BC79A8498107} © O42 - Logiciel: Free PDF to Word Converter 1.3 - (.Free-PDF-to-Word.com.) [HKLM][64Bits] -- Free PDF to Word Converter_is1 O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.2.3 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F} © O42 - Logiciel: HP Connected Music (Meridian - installer) - (.Meridian Audio Ltd.) [HKLM][64Bits] -- StartHPConnectedMusic =>.Meridian Audio Ltd® O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544} © O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {CCE5C597-03EA-423E-BA80-6FCD280A8465} © O42 - Logiciel: HP Postscript Converter - (.Hewlett-Packard.) [HKLM][64Bits] -- {6E14E6D6-3175-4E1A-B934-CAB5A86367CD} © O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {FD49537C-C3A6-4F8D-93E6-68C778A1E192} © O42 - Logiciel: HP Registration Service - (.Hewlett-Packard.) [HKLM][64Bits] -- {D1E8F2D7-7794-4245-B286-87ED86C1893C} © O42 - Logiciel: HP SimplePass - (.Hewlett-Packard.) [HKLM][64Bits] -- {314FAD12-F785-4471-BCE8-AB506642B9A1} © O42 - Logiciel: HP SimplePass - (.Hewlett-Packard.) [HKLM][64Bits] -- InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1} © O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {3AF15EEA-8EDF-4393-BB6C-CF8A9986486A} © O42 - Logiciel: HP System Event Utility - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {C78E8F51-3EAD-4F0C-83F0-EF371075E0B4} © O42 - Logiciel: HP Utility Center - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {7A75E042-0D30-43C2-BD2A-684F4BE38FF7} © O42 - Logiciel: HP Wireless Button Driver - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {30B2D1D8-0A07-4B71-9553-0710C5D31E35} © O42 - Logiciel: Inst5675 - (.Softex Inc..) [HKLM][64Bits] -- {2DE6247C-7077-451B-8BA7-FFD1A2ABBB47} © O42 - Logiciel: Inst5676 - (.Softex Inc..) [HKLM][64Bits] -- {878F6913-7421-4713-97F7-0A736EE2A188} © O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation - Software and Firmware Products® O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - Software and Firmware Products® O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} © O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {E5FAF48A-145F-4B33-A062-DCFAAFAE5D41} © O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {B5E06417-A4AC-4225-B36E-7E34C91616E7} © O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.® O42 - Logiciel: Kit Diner - (.Mart Form corp.) [HKCU][64Bits] -- {9563BC59-9556-4805-8CD4-886781779D8D} O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan =>.McAfee, Inc.® O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} © O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-0000-0000000FF1CE} © O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-0000-0000000FF1CE} © O42 - Logiciel: Mozilla Firefox 29.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 29.0.1 (x86 fr) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService © O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} © O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} © O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} © O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94} © O42 - Logiciel: My Lockbox 3.3 - (...) [HKLM][64Bits] -- My Lockbox_is1 {45FB369A2BC4B8B5E5131DB218373C22} O42 - Logiciel: mystartsearch uninstall - (.mystartsearch.) [HKLM][64Bits] -- mystartsearch uninstall =>PUP.Optional.StartSearch O42 - Logiciel: Need for Speed Most Wanted - (...) [HKLM][64Bits] -- Need for Speed Most Wanted_is1 O42 - Logiciel: Need for Speed(TM) Hot Pursuit - (.Electronic Arts.) [HKLM][64Bits] -- {83A606F5-BF6F-42ED-9F33-B9F74297CDED} © O42 - Logiciel: Need for Speed™ Most Wanted - (...) [HKLM][64Bits] -- {A48B9CD8-C2BA-4EC9-0081-7260D238C7CF} O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ © O42 - Logiciel: novaPDF 8 Printer Driver - (.Softland.) [HKLM][64Bits] -- {5ED19569-C344-4C55-983F-AAF03CE33723} © O42 - Logiciel: Opera Stable 34.0.2036.25 - (.Opera Software.) [HKLM][64Bits] -- Opera 34.0.2036.25 =>.Opera Software ASA® O42 - Logiciel: oursurfing uninstall - (.oursurfing.) [HKLM][64Bits] -- oursurfing uninstall =>PUP.Optional.OurSurfing O42 - Logiciel: PDF Settings CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {A78FE97A-C0C8-49CE-89D0-EDD524A17392} © O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1 =>.Tracker Software Products (Canada) Ltd® O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 © O42 - Logiciel: PowerISO - (.Power Software Ltd.) [HKLM][64Bits] -- PowerISO © O42 - Logiciel: Raccolta foto - (.Microsoft Corporation.) [HKLM][64Bits] -- {FA6BC7A5-85B3-4DC2-825C-D508E386151A} © O42 - Logiciel: Radio Canyon - (.Radio Canyon.) [HKLM][64Bits] -- Radio Canyon =>PUP.Optional.RadioCanyon O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp® O42 - Logiciel: Realtek Ethernet Controller All-In-One Windows Driver - (.Realtek.) [HKLM][64Bits] -- {F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F} =>.Realtek Semiconductor Corp® O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} © O42 - Logiciel: REALTEK Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {A5107464-AA9B-4177-8129-5FF2F42DD322} =>.Realtek Semiconductor Corp® O42 - Logiciel: Remote Desktop Access (VuuPC) - (.CMI Limited.) [HKLM][64Bits] -- VOPackage =>PUP.Optional.Downware O42 - Logiciel: SAMSUNG Mobile Modem Driver Set - (...) [HKLM][64Bits] -- SAMSUNG Mobile Modem O42 - Logiciel: Samsung Mobile phone USB driver Drive Software - (...) [HKLM][64Bits] -- Samsung Mobile phone USB driver Drive O42 - Logiciel: SAMSUNG Mobile USB Modem 1.0 Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem 1.0 {3FA7D585CA88E05E45A52A81E7875048} O42 - Logiciel: SAMSUNG Mobile USB Modem Software - (...) [HKLM][64Bits] -- SAMSUNG Mobile USB Modem {3FA7D585CA88E05E45A52A81E7875048} O42 - Logiciel: Search App by Ask - (.APN, LLC.) [HKLM][64Bits] -- {42545253-502D-4300-76A7-A75C790C2500} =>PUP.Optional.BrowserTabSearch O42 - Logiciel: Search Protect - (.Client Connect LTD.) [HKLM][64Bits] -- SearchProtect {354F4C7E49A131A6E4BF89B253C78A2D} =>PUP.Optional.SearchProtect O42 - Logiciel: SEE Electrical Building V4R3 - (.IGE+XAO.) [HKLM][64Bits] -- {EDCAE65C-1127-4BCA-95DD-0FBA2870B1FB} O42 - Logiciel: SEE Electrical V7R2 - (.IGE+XAO.) [HKLM][64Bits] -- {70C22AC3-A821-4C90-8CA9-4985E7346290} O42 - Logiciel: Ski Search - (.Ski Search.) [HKLM][64Bits] -- Ski Search {713F78733FA0D620BA8404F1BD989A22} =>PUP.Optional.SkiSearch O42 - Logiciel: SMADAV version 10.4.1 - (.SmadSoft.) [HKLM][64Bits] -- {8B9FA5FF-3E61-4658-B0DA-E6DDB46D6BAD}_is1 O42 - Logiciel: SnapDo - (.Resoft.) [HKLM][64Bits] -- {C098B9BD-68DD-43A2-9B20-9A2F913C3163} =>PUP.Optional.SmartBar O42 - Logiciel: Software Informer 1.4.1273.0 - (.Informer Technologies, Inc..) [HKLM][64Bits] -- Software Informer_is1 O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} © O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey © O42 - Logiciel: Togocel 3G - (.ZTE Corporation.) [HKLM][64Bits] -- {A9E5EDA7-2E6C-49E7-924B-A32B89C24A04} {48D6383A8D149C1CDCE69A728BDD24F6} © O42 - Logiciel: Update for Skype for Business 2015 (KB2889853) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUSR_{AE1BB975-11D1-49A0-82E8-1D26DD62AFE7} =>.Microsoft Corporation® O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} © O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} © O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player © O42 - Logiciel: WampServer 2.5 - (.Hervé Leclerc (HeL).) [HKLM][64Bits] -- WampServer 2_is1 © O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst © O42 - Logiciel: Xilisoft Video Converter Ultimate - (.Xilisoft.) [HKLM][64Bits] -- Xilisoft Video Converter Ultimate © O42 - Logiciel: Yahoo! Search - (.Pay-By-Ads.) [HKCU][64Bits] -- Yahoo! Search O42 - Logiciel: Youtube Downloader HD v. 2.9.9.21 - (.YoutubeDownloaderHD.com.) [HKLM][64Bits] -- Youtube Downloader HD_is1 © ---\\ HKCU & HKLM Software Keys (171) - 11s HKLM\SOFTWARE\Wow6432Node\65596c37-06ba-4d57-97b9-fa2e0610d71f =>PUP.Optional.CrossRider HKLM\SOFTWARE\Wow6432Node\7-Zip HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\Aladdin Knowledge Systems HKLM\SOFTWARE\Wow6432Node\ALPI HKLM\SOFTWARE\Wow6432Node\ALWIL Software HKLM\SOFTWARE\Wow6432Node\APN =>Toolbar.Ask HKLM\SOFTWARE\Wow6432Node\AppDataLow HKLM\SOFTWARE\Wow6432Node\Arcai HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.AskBar HKLM\SOFTWARE\Wow6432Node\AskToolbar =>Toolbar.Ask HKLM\SOFTWARE\Wow6432Node\AVAST Software HKLM\SOFTWARE\Wow6432Node\Avg HKLM\SOFTWARE\Wow6432Node\Borland HKLM\SOFTWARE\Wow6432Node\CAE Development HKLM\SOFTWARE\Wow6432Node\Caphyon HKLM\SOFTWARE\Wow6432Node\CyberLink HKLM\SOFTWARE\Wow6432Node\DivXNetworks HKLM\SOFTWARE\Wow6432Node\EA Games HKLM\SOFTWARE\Wow6432Node\eb4499d2-2879-4dfb-8f2d-a6bb6418cb6a =>PUP.Optional.CrossRider HKLM\SOFTWARE\Wow6432Node\Electronic Arts HKLM\SOFTWARE\Wow6432Node\ErrorLists-crcodedownloader =>PUP.Optional.CrossRider HKLM\SOFTWARE\Wow6432Node\FileZilla 3 HKLM\SOFTWARE\Wow6432Node\FileZilla Client HKLM\SOFTWARE\Wow6432Node\FLEXlm License Manager HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\Huawei technologies HKLM\SOFTWARE\Wow6432Node\IGE-XAO HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Internet Download Manager HKLM\SOFTWARE\Wow6432Node\istartpageingSoftware =>PUP.Optional.IstartPageing HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\Lake HKLM\SOFTWARE\Wow6432Node\Linkey =>PUP.Optional.LinkeySearch HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard HKLM\SOFTWARE\Wow6432Node\LuckyBrowse =>PUP.Optional.LuckyBrowse HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Mooii HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\mtBluetoothPoint =>PUP.Optional.BluetoothPoint HKLM\SOFTWARE\Wow6432Node\mtSublight =>PUP.Optional.AppthgilbuS HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch HKLM\SOFTWARE\Wow6432Node\Nevrona Designs HKLM\SOFTWARE\Wow6432Node\Notepad++ HKLM\SOFTWARE\Wow6432Node\Nuance HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Opera Software HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing HKLM\SOFTWARE\Wow6432Node\PowerISO HKLM\SOFTWARE\Wow6432Node\Radio Canyon =>PUP.Optional.RadioCanyon HKLM\SOFTWARE\Wow6432Node\Radio Canyon-nv =>PUP.Optional.RadioCanyon HKLM\SOFTWARE\Wow6432Node\Realtek HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Reg HKLM\SOFTWARE\Wow6432Node\Research In Motion HKLM\SOFTWARE\Wow6432Node\RtWLan HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect HKLM\SOFTWARE\Wow6432Node\SiteSee =>PUP.Optional.SiteSee HKLM\SOFTWARE\Wow6432Node\Ski Search =>PUP.Optional.SkiSearch HKLM\SOFTWARE\Wow6432Node\SmdmF =>PUP.Optional.SettingsManager HKLM\SOFTWARE\Wow6432Node\SPPDCOM =>.Superfluous.PCSpeedUp HKLM\SOFTWARE\Wow6432Node\SpringFiles HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.WpManager HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak HKLM\SOFTWARE\Wow6432Node\TSv =>PUP.Optional.Elex HKLM\SOFTWARE\Wow6432Node\TuneUp HKLM\SOFTWARE\Wow6432Node\VideoLAN HKLM\SOFTWARE\Wow6432Node\VMware, Inc. HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro HKLM\SOFTWARE\Wow6432Node\WinPcap HKLM\SOFTWARE\Wow6432Node\Wow6432Node HKLM\SOFTWARE\Wow6432Node\ZTE Corporation HKLM\SOFTWARE\Wow6432Node\ZTEUSBDriverFlag HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\3rd Eye Solutions HKCU\SOFTWARE\7-Zip HKCU\SOFTWARE\7Wonders HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\ALPI HKCU\SOFTWARE\APN =>Toolbar.Ask HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Arcai.com HKCU\SOFTWARE\Ask.com =>Toolbar.Ask HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar HKCU\SOFTWARE\ASProtect HKCU\SOFTWARE\Avg HKCU\SOFTWARE\Besier 3D-Edutainment HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Borland HKCU\SOFTWARE\CAE Development HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\CyberLink HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\drpsu HKCU\SOFTWARE\Electronic Arts HKCU\SOFTWARE\Extended Systems HKCU\SOFTWARE\FSPro Labs HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate HKCU\SOFTWARE\Google HKCU\SOFTWARE\GQzBHFzNPSxyT2HscMJheSG =>PUP.Optional.CrossRider HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\IGE+XAO HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\Informer Technologies, Inc. HKCU\SOFTWARE\InstallCore =>Adware.InstallCore HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKCU\SOFTWARE\InstallPath HKCU\SOFTWARE\Intel HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch HKCU\SOFTWARE\LogMeInRescueCallingCard HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\MCAFEE HKCU\SOFTWARE\Mine HKCU\SOFTWARE\Mooii HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\mtBluetoothPoint =>PUP.Optional.BluetoothPoint HKCU\SOFTWARE\mtSublight =>PUP.Optional.AppthgilbuS HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\OB HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\PCSuite HKCU\SOFTWARE\PowerISO HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\Redemption HKCU\SOFTWARE\Reg HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Research In Motion HKCU\SOFTWARE\Rtp HKCU\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect HKCU\SOFTWARE\Ski Search =>PUP.Optional.SkiSearch HKCU\SOFTWARE\SMADΔV HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager HKCU\SOFTWARE\Softex HKCU\SOFTWARE\Softland HKCU\SOFTWARE\SourceForge HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak HKCU\SOFTWARE\tAIvw6Juu5zViUfmCsdn9dvVsxM =>PUP.Optional.CrossRider HKCU\SOFTWARE\Tracker Software HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\TuneUp HKCU\SOFTWARE\UpdateStar HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\VirtualDJ HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\winter web =>PUP.Optional.WinterWeb HKCU\SOFTWARE\winterweb =>PUP.Optional.WinterWeb HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\XHEO INC HKCU\SOFTWARE\Xilisoft HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Google Updater HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\AskToolbar =>Toolbar.Ask HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider HKCU\SOFTWARE\AppDataLow\Software\Radio Canyon =>PUP.Optional.RadioCanyon ---\\ Contents of the Common Files folders (310) - 12s O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\4ED1D4CA-1440453526-B0D5-C8A3-A0D3C16FDDEE =>PUP.Optional.CrossRider O43 - CFD: 11/11/2014 - [] D -- C:\Program Files (x86)\7-Zip O43 - CFD: 09/08/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated® O43 - CFD: 08/07/2015 - [] D -- C:\Program Files (x86)\AIMP3 O43 - CFD: 23/08/2015 - [] D -- C:\Program Files (x86)\ALPI {5A3AF074B09C3700B310BB7BFE6E75B5} O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Ask.com {0965F2AC7236C7E1BDCA44ED139B273A} =>Toolbar.Ask O43 - CFD: 25/01/2015 - [] D -- C:\Program Files (x86)\AskPartnerNetwork =>Toolbar.Ask =>Toolbar.AskBar O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\AVG =>.AVG Technologies CZ, s.r.o.® O43 - CFD: 25/12/2015 - [] D -- C:\Program Files (x86)\baidu O43 - CFD: 13/09/2015 - [0] D -- C:\Program Files (x86)\BearShare Applications =>PUP.Optional.BearShare O43 - CFD: 25/01/2015 - [] D -- C:\Program Files (x86)\Borland O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 06/03/2015 - [] D -- C:\Program Files (x86)\Connectify {71844350E30B64B59FD6BEC66B063550} O43 - CFD: 12/01/2014 - [] D -- C:\Program Files (x86)\CyberLink =>.CyberLink Corp.® O43 - CFD: 04/11/2014 - [] D -- C:\Program Files (x86)\EA Games O43 - CFD: 13/10/2015 - [] D -- C:\Program Files (x86)\Electronic Arts =>.Electronic Arts® O43 - CFD: 17/02/2015 - [0] D -- C:\Program Files (x86)\FastReports O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\Feed Notifier O43 - CFD: 18/12/2015 - [] D -- C:\Program Files (x86)\FileZilla FTP Client =>.Open Source Developer, Tim Kosse® O43 - CFD: 11/11/2014 - [] D -- C:\Program Files (x86)\Free PDF to Word Converter O43 - CFD: 29/10/2014 - [] D -- C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate O43 - CFD: 24/12/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 01/12/2014 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company® O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\HPConnectedMusic =>.Meridian Audio Ltd® O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\IGE+XAO O43 - CFD: 17/02/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Realtek Semiconductor Corp® O43 - CFD: 12/01/2014 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - Software and Firmware Products® O43 - CFD: 29/10/2014 - [] D -- C:\Program Files (x86)\Internet Download Manager O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 26/11/2014 - [] D -- C:\Program Files (x86)\iziSoftware O43 - CFD: 23/08/2015 - [] D -- C:\Program Files (x86)\LuckyBrowse =>PUP.Optional.LuckyBrowse O43 - CFD: 01/12/2014 - [] D -- C:\Program Files (x86)\McAfee =>.McAfee, Inc.® O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation® O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation® O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Microsoft SQL Server O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\MiniLite =>PUP.Optional.AgentODR O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Mobile Partner =>.Huawei Technologies Co., Ltd.® O43 - CFD: 12/04/2015 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation® O43 - CFD: 29/11/2014 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation® O43 - CFD: 26/08/2013 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 26/11/2014 - [] D -- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 17/02/2015 - [] D -- C:\Program Files (x86)\NetCutDefender O43 - CFD: 27/11/2014 - [] D -- C:\Program Files (x86)\Notepad++ O43 - CFD: 27/10/2014 - [] RD -- C:\Program Files (x86)\Online Services O43 - CFD: 25/12/2015 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA® O43 - CFD: 29/10/2014 - [] D -- C:\Program Files (x86)\PowerISO {11214EC0AA9D4C5C4268811B30352BF16983} O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\Radio Canyon =>PUP.Optional.RadioCanyon O43 - CFD: 12/01/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp® O43 - CFD: 26/08/2013 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 17/02/2015 - [] D -- C:\Program Files (x86)\Samsung O43 - CFD: 18/07/2015 - [] D -- C:\Program Files (x86)\SearchProtect {354F4C7E49A131A6E4BF89B253C78A2D} =>PUP.Optional.SearchProtect O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\Ski Search {713F78733FA0D620BA8404F1BD989A22} =>PUP.Optional.SkiSearch O43 - CFD: 26/12/2015 - [] D -- C:\Program Files (x86)\SMADAV O43 - CFD: 30/10/2014 - [] D -- C:\Program Files (x86)\Softland O43 - CFD: 20/01/2015 - [] D -- C:\Program Files (x86)\SupportAppCB {48D6383A8D149C1CDCE69A728BDD24F6} O43 - CFD: 12/01/2014 - [0] HD -- C:\Program Files (x86)\Temp O43 - CFD: 20/01/2015 - [] D -- C:\Program Files (x86)\Togocel 3G {48D6383A8D149C1CDCE69A728BDD24F6} O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\VideoLAN O43 - CFD: 27/12/2014 - [] D -- C:\Program Files (x86)\VirtualDJ O43 - CFD: 21/01/2015 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation® O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 22/08/2013 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 15/12/2014 - [] D -- C:\Program Files (x86)\WinPcap =>.Riverbed Technology, Inc.® O43 - CFD: 09/12/2014 - [] D -- C:\Program Files (x86)\WinRAR O43 - CFD: 26/12/2015 - [0] D -- C:\Program Files (x86)\winter web =>PUP.Optional.WinterWeb O43 - CFD: 31/10/2014 - [] D -- C:\Program Files (x86)\Xilisoft O43 - CFD: 25/01/2015 - [] D -- C:\Program Files (x86)\Youtube Downloader HD O43 - CFD: 09/11/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3D Driving-School Demo O43 - CFD: 11/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip O43 - CFD: 22/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 22/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 11/11/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 08/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3 O43 - CFD: 23/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALPI O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG O43 - CFD: 26/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Borland Delphi 7 O43 - CFD: 27/10/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat O43 - CFD: 19/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connectify O43 - CFD: 30/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\doPDF 8 O43 - CFD: 05/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games O43 - CFD: 23/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts O43 - CFD: 18/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client O43 - CFD: 11/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free PDF to Word Converter O43 - CFD: 13/10/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 11/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 27/10/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IGE+XAO O43 - CFD: 29/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 22/08/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 O43 - CFD: 27/10/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos O43 - CFD: 27/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ O43 - CFD: 27/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer O43 - CFD: 30/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 O43 - CFD: 29/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO O43 - CFD: 27/10/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools O43 - CFD: 27/10/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection O43 - CFD: 25/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus O43 - CFD: 12/04/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Informer O43 - CFD: 19/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 22/08/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 22/08/2013 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 20/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Togocel 3G O43 - CFD: 29/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 04/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer O43 - CFD: 29/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap O43 - CFD: 09/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader HD O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\7bb6df21-8ca8-4eec-965d-8cd2261544c7 O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\a617e161-6c3b-4c9a-be84-9c80a0569108 O43 - CFD: 11/08/2015 - [] D -- C:\ProgramData\Adobe O43 - CFD: 23/08/2015 - [] D -- C:\ProgramData\ALPI O43 - CFD: 26/12/2015 - [0] D -- C:\ProgramData\Alwil Software O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\APN =>Toolbar.Ask O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Apple O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 23/08/2015 - [] D -- C:\ProgramData\Application Hosting O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\AskPartnerNetwork =>Toolbar.YahooPartner O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\AVAST Software O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\Avg O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\BluetoothPoint =>PUP.Optional.BluetoothPoint O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\BluetoothPoints =>PUP.Optional.BluetoothPoint O43 - CFD: 27/10/2014 - [] HD -- C:\ProgramData\Common Files O43 - CFD: 19/01/2015 - [] D -- C:\ProgramData\Connectify O43 - CFD: 26/12/2015 - [0] SHD -- C:\ProgramData\CreativeAudio O43 - CFD: 15/09/2015 - [] D -- C:\ProgramData\CyberLink O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\DatacardService O43 - CFD: 27/10/2014 - [0] SHD -- C:\ProgramData\Dati applicazioni O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 06/11/2015 - [] D -- C:\ProgramData\devDept Software O43 - CFD: 27/10/2014 - [0] SHD -- C:\ProgramData\Documenti O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\DWinManProD O43 - CFD: 23/11/2014 - [] D -- C:\ProgramData\EA Core O43 - CFD: 23/11/2014 - [] D -- C:\ProgramData\Electronic Arts O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Google O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Hewlett-Packard O43 - CFD: 29/10/2014 - [0] D -- C:\ProgramData\IDM O43 - CFD: 12/04/2015 - [] D -- C:\ProgramData\Informer Technologies, Inc O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\install_clap O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Intel O43 - CFD: 23/08/2015 - [] D -- C:\ProgramData\LuckyBrowse =>PUP.Optional.LuckyBrowse O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\lWdMl =>PUP.Optional.WdsManPro O43 - CFD: 06/12/2014 - [] D -- C:\ProgramData\McAfee O43 - CFD: 05/12/2015 - [] D -- C:\ProgramData\McAfee Security Scan O43 - CFD: 27/10/2014 - [0] SHD -- C:\ProgramData\Menu Avvio O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\MFAData O43 - CFD: 27/10/2014 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 08/08/2015 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 11/11/2014 - [] D -- C:\ProgramData\Mobile Partner =>Toolbar.YahooPartner O43 - CFD: 27/10/2014 - [0] SHD -- C:\ProgramData\Modelli O43 - CFD: 28/10/2014 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\nWdsManPron =>PUP.Optional.WdsManPro O43 - CFD: 30/10/2014 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\QWMiniProQ =>PUP.Optional.WdsManPro O43 - CFD: 09/08/2015 - [] D -- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 27/10/2014 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 30/10/2014 - [] D -- C:\ProgramData\regid.2008-09.org.wixtoolset O43 - CFD: 17/01/2015 - [] D -- C:\ProgramData\smdmf =>PUP.Optional.SystemK O43 - CFD: 30/10/2014 - [] D -- C:\ProgramData\Softland O43 - CFD: 13/10/2015 - [] D -- C:\ProgramData\Solidshield O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Sublight O43 - CFD: 23/08/2015 - [] D -- C:\ProgramData\Sublights O43 - CFD: 27/10/2014 - [] D -- C:\ProgramData\Synaptics O43 - CFD: 12/01/2014 - [] D -- C:\ProgramData\Temp O43 - CFD: 22/08/2013 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 28/10/2014 - [] D -- C:\ProgramData\TuneUp Software O43 - CFD: 26/12/2015 - [] D -- C:\ProgramData\update O43 - CFD: 06/12/2014 - [] D -- C:\ProgramData\VMware O43 - CFD: 24/10/2015 - [] D -- C:\ProgramData\WWdsManProW =>PUP.Optional.WdsManPro O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\XollaQifk O43 - CFD: 28/10/2014 - [0] D -- C:\ProgramData\{A5CCDB92-FA53-47D1-89E6-32B82D86621A} O43 - CFD: 28/10/2014 - [0] SHD -- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} O43 - CFD: 23/08/2015 - [] D -- C:\Program Files (x86)\Common Files\3ksmxa2x.hoi O43 - CFD: 09/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 23/11/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Aladdin Shared O43 - CFD: 30/08/2015 - [] D -- C:\Program Files (x86)\Common Files\ALPI Shared O43 - CFD: 26/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared O43 - CFD: 12/01/2014 - [] D -- C:\Program Files (x86)\Common Files\CyberLink O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\Common Files\IGE+XAO O43 - CFD: 11/11/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 12/01/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 26/11/2014 - [] D -- C:\Program Files (x86)\Common Files\MAGIX Services O43 - CFD: 20/01/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 12/01/2014 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\Common Files\SafeNet Sentinel O43 - CFD: 22/08/2013 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Tempfax O43 - CFD: 11/11/2013 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 09/11/2015 - [0] D -- C:\Program Files (x86)\Common Files\XCPCSync.OEM O43 - CFD: 18/12/2014 - [] D -- C:\Users\Manu\AppData\Roaming\7Wonders O43 - CFD: 14/08/2015 - [] D -- C:\Users\Manu\AppData\Roaming\Adobe O43 - CFD: 14/08/2015 - [] D -- C:\Users\Manu\AppData\Roaming\Adobe Mini Bridge CS5 O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\AIMP3 O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\AVG O43 - CFD: 28/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\CyberLink O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\DMCache O43 - CFD: 11/09/2015 - [] D -- C:\Users\Manu\AppData\Roaming\dvdcss O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\FileZilla O43 - CFD: 29/12/2014 - [] D -- C:\Users\Manu\AppData\Roaming\FirefoxToolbar O43 - CFD: 27/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Hewlett-Packard O43 - CFD: 27/10/2014 - [0] D -- C:\Users\Manu\AppData\Roaming\hpqlog O43 - CFD: 25/10/2015 - [] D -- C:\Users\Manu\AppData\Roaming\IDM O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\istartpageing =>PUP.Optional.IstartPageing O43 - CFD: 28/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Macromedia O43 - CFD: 17/02/2015 - [] SD -- C:\Users\Manu\AppData\Roaming\Microsoft O43 - CFD: 26/12/2015 - [0] D -- C:\Users\Manu\AppData\Roaming\Microsoft Office O43 - CFD: 28/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Mozilla O43 - CFD: 28/08/2015 - [] D -- C:\Users\Manu\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch O43 - CFD: 27/11/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Notepad++ O43 - CFD: 29/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Opera Software O43 - CFD: 23/08/2015 - [] D -- C:\Users\Manu\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing O43 - CFD: 30/12/2014 - [0] D -- C:\Users\Manu\AppData\Roaming\PhotoScape O43 - CFD: 25/01/2015 - [] D -- C:\Users\Manu\AppData\Roaming\RHEng =>PUP.Optional.Conduit O43 - CFD: 25/01/2015 - [0] D -- C:\Users\Manu\AppData\Roaming\Smadav O43 - CFD: 30/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Softland O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\Software Informer O43 - CFD: 25/10/2015 - [] D -- C:\Users\Manu\AppData\Roaming\Software Tool O43 - CFD: 14/08/2015 - [] D -- C:\Users\Manu\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 O43 - CFD: 27/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Synaptics O43 - CFD: 09/11/2015 - [0] D -- C:\Users\Manu\AppData\Roaming\systweak =>PUP.Optional.Systweak O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\TSv =>PUP.Optional.Elex O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\TuneUp Software O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\uTorrent O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\vlc O43 - CFD: 03/12/2014 - [] D -- C:\Users\Manu\AppData\Roaming\VMware O43 - CFD: 24/08/2015 - [] D -- C:\Users\Manu\AppData\Roaming\VOPackage =>PUP.Optional.Downware O43 - CFD: 19/11/2014 - [0] D -- C:\Users\Manu\AppData\Roaming\WebTest O43 - CFD: 27/10/2014 - [0] D -- C:\Users\Manu\AppData\Roaming\WinRAR O43 - CFD: 11/05/2015 - [] D -- C:\Users\Manu\AppData\Roaming\Youtube Downloader HD O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Roaming\ZHP O43 - CFD: 09/11/2015 - [] D -- C:\Users\Manu\AppData\Roaming\ZTEEVDO O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Local\4ED1D4CA-1451110205-B0D5-C8A3-A0D3C16FDDEE O43 - CFD: 14/08/2015 - [] D -- C:\Users\Manu\AppData\Local\Adobe O43 - CFD: 25/01/2015 - [] D -- C:\Users\Manu\AppData\Local\AskPartnerNetwork =>Toolbar.AskBar O43 - CFD: 19/07/2015 - [] D -- C:\Users\Manu\AppData\Local\avabvexvac =>Heuristic.SearchProtect O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Local\Avg O43 - CFD: 20/12/2015 - [] D -- C:\Users\Manu\AppData\Local\Avg2014 O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Local\AvgSetupLog O43 - CFD: 23/12/2015 - [] D -- C:\Users\Manu\AppData\Local\CrashDumps O43 - CFD: 27/10/2014 - [0] SHD -- C:\Users\Manu\AppData\Local\Cronologia O43 - CFD: 12/12/2015 - [] D -- C:\Users\Manu\AppData\Local\CyberLink O43 - CFD: 27/10/2014 - [0] SHD -- C:\Users\Manu\AppData\Local\Dati applicazioni O43 - CFD: 20/02/2015 - [0] D -- C:\Users\Manu\AppData\Local\Diagnostics O43 - CFD: 23/08/2015 - [] D -- C:\Users\Manu\AppData\Local\Downloaded Installations O43 - CFD: 11/12/2014 - [0] D -- C:\Users\Manu\AppData\Local\ElevatedDiagnostics O43 - CFD: 29/10/2014 - [] D -- C:\Users\Manu\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate O43 - CFD: 30/10/2015 - [] D -- C:\Users\Manu\AppData\Local\Google O43 - CFD: 06/01/2015 - [] D -- C:\Users\Manu\AppData\Local\Hewlett-Packard O43 - CFD: 29/10/2014 - [] D -- C:\Users\Manu\AppData\Local\Intel_Corporation O43 - CFD: 06/11/2015 - [] D -- C:\Users\Manu\AppData\Local\IsolatedStorage O43 - CFD: 26/07/2015 - [0] D -- C:\Users\Manu\AppData\Local\Kit Cooking O43 - CFD: 29/08/2015 - [] D -- C:\Users\Manu\AppData\Local\Kit Diner O43 - CFD: 16/01/2015 - [] D -- C:\Users\Manu\AppData\Local\Linkey =>PUP.Optional.LinkeySearch O43 - CFD: 30/10/2014 - [] D -- C:\Users\Manu\AppData\Local\Macromedia O43 - CFD: 20/12/2015 - [] D -- C:\Users\Manu\AppData\Local\MFAData O43 - CFD: 01/01/2015 - [] D -- C:\Users\Manu\AppData\Local\Microsoft O43 - CFD: 14/09/2015 - [] D -- C:\Users\Manu\AppData\Local\Microsoft Help O43 - CFD: 29/10/2014 - [] D -- C:\Users\Manu\AppData\Local\Mozilla O43 - CFD: 29/10/2014 - [] D -- C:\Users\Manu\AppData\Local\Opera Software O43 - CFD: 15/08/2015 - [] D -- C:\Users\Manu\AppData\Local\Packages O43 - CFD: 24/08/2015 - [] D -- C:\Users\Manu\AppData\Local\Pay-By-Ads =>PUP.Optional.PaybyAds O43 - CFD: 26/07/2015 - [0] D -- C:\Users\Manu\AppData\Local\Plugin Camera O43 - CFD: 27/10/2014 - [] D -- C:\Users\Manu\AppData\Local\Power2Go8 O43 - CFD: 27/10/2014 - [] D -- C:\Users\Manu\AppData\Local\Programs O43 - CFD: 09/11/2015 - [0] D -- C:\Users\Manu\AppData\Local\Research In Motion O43 - CFD: 18/07/2015 - [] D -- C:\Users\Manu\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect O43 - CFD: 25/10/2015 - [] D -- C:\Users\Manu\AppData\Local\Systweak =>PUP.Optional.Systweak O43 - CFD: 26/12/2015 - [] D -- C:\Users\Manu\AppData\Local\Temp O43 - CFD: 27/10/2014 - [0] SHD -- C:\Users\Manu\AppData\Local\Temporary Internet Files O43 - CFD: 07/11/2015 - [] D -- C:\Users\Manu\AppData\Local\tmp10500 O43 - CFD: 28/08/2015 - [] D -- C:\Users\Manu\AppData\Local\tmp15671 O43 - CFD: 01/11/2015 - [0] D -- C:\Users\Manu\AppData\Local\tmp19562 O43 - CFD: 27/08/2015 - [0] D -- C:\Users\Manu\AppData\Local\tmp24184 O43 - CFD: 27/10/2015 - [0] D -- C:\Users\Manu\AppData\Local\tmp26129 O43 - CFD: 01/09/2015 - [0] D -- C:\Users\Manu\AppData\Local\tmp27716 O43 - CFD: 06/11/2015 - [0] D -- C:\Users\Manu\AppData\Local\tmp30550 O43 - CFD: 28/10/2015 - [] D -- C:\Users\Manu\AppData\Local\tmp4986 O43 - CFD: 25/10/2015 - [] D -- C:\Users\Manu\AppData\Local\tmp660 O43 - CFD: 08/11/2015 - [] D -- C:\Users\Manu\AppData\Local\tmp8638 O43 - CFD: 28/10/2014 - [] D -- C:\Users\Manu\AppData\Local\VirtualStore O43 - CFD: 22/08/2013 - [] RD -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 22/08/2013 - [] RD -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 27/10/2014 - [] RD -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 28/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 29/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 22/08/2013 - [] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 28/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Lockbox O43 - CFD: 27/11/2014 - [0] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ O43 - CFD: 26/12/2015 - [] RD -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 22/08/2013 - [] RD -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 27/12/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ O43 - CFD: 24/08/2015 - [] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware O43 - CFD: 09/12/2014 - [0] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 31/10/2014 - [] D -- C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Xilisoft ---\\ Latest files created in Prefetcher (2) - 8s O45 - LFCP:[MD5.C253DCB3BCD5E168F1C96DC5557A86C8] 26/12/2015 A -- C:\WINDOWS\Prefetch\LUCKYBROWSE.EXE-1067AA68.pf =>PUP.Optional.LuckyBrowse O45 - LFCP:[MD5.9699B301B12D8A719A3405F58726EE9E] 26/12/2015 A -- C:\WINDOWS\Prefetch\TAIVW6JUU5ZVIUFMCSDN9DVVSXM.E-6E998964.pf =>PUP.Optional.CrossRider ---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 2s O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Sync root make available online verb [StorageProviderError] - {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF}. (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\SysWOW64\shell32.dll =>.Microsoft Windows® O106 - SIOI: Sync root make available online verb [StorageProviderSyncing] - {0A30F902-8398-4ee8-86F7-4CFB589F04D1}. (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\SysWOW64\shell32.dll =>.Microsoft Windows® ---\\ System Drivers List (81) - 8s O58 - SDL:2013/08/22 13:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176] =>.Microsoft Windows® O58 - SDL:2013/08/01 15:11:56 A . (.SafeNet Inc. - Safenet Inc. Sentinel Data Filter Driver.) -- C:\WINDOWS\System32\drivers\aksdf.sys [91784] =>.SafeNet, Inc.® O58 - SDL:2013/08/01 15:11:56 A . (.SafeNet Inc. - Ancillary Function Driver.) -- C:\WINDOWS\System32\drivers\aksfridge.sys [140736] =>.SafeNet, Inc.® O58 - SDL:2013/08/22 13:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016] =>.Microsoft Windows® O58 - SDL:2015/09/09 02:23:42 A . (.AVG Technologies CZ, s.r.o. - AVG Early Launch Anti-Malware Driver.) -- C:\WINDOWS\System32\drivers\avgboota.sys [23152] =>.Microsoft Windows Early Launch Anti-malware Publisher® O58 - SDL:2015/11/06 15:50:34 A . (.AVG Technologies CZ, s.r.o. - AVG File Vault Driver.) -- C:\WINDOWS\System32\drivers\avgdiska.sys [184240] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/08/29 14:31:02 A . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) -- C:\WINDOWS\System32\drivers\avgfwd6a.sys [97208] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/11/06 15:49:38 A . (.AVG Technologies CZ, s.r.o. - AVG IDS Application Activity Monitor Driver.) -- C:\WINDOWS\System32\drivers\avgidsdrivera.sys [313776] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/08/20 12:58:04 A . (.AVG Technologies CZ, s.r.o. - AVG Application Activity Monitor Helper Dri.) -- C:\WINDOWS\System32\drivers\avgidsha.sys [298416] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/10/21 16:16:48 A . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\WINDOWS\System32\drivers\avgldx64.sys [284080] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/08/14 13:24:40 A . (.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) -- C:\WINDOWS\System32\drivers\avgloga.sys [398256] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/11/06 15:49:38 A . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\WINDOWS\System32\drivers\avgmfx64.sys [256432] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/08/10 14:25:40 A . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\WINDOWS\System32\drivers\avgrkx64.sys [42416] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2015/10/08 07:46:44 A . (.AVG Technologies CZ, s.r.o. - AVG Firewall driver.) -- C:\WINDOWS\System32\drivers\avgwfpa.sys [306608] =>.AVG Technologies CZ, s.r.o.® O58 - SDL:2013/08/13 00:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation® O58 - SDL:2013/08/22 13:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows® O58 - SDL:2013/03/05 12:01:42 A . (.CyberLink - It is a virtual device driver which could c.) -- C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [91712] =>.CyberLink Corp.® O58 - SDL:2013/03/05 07:22:20 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\WINDOWS\System32\drivers\clwvd.sys [41408] =>.CyberLink Corp.® O58 - SDL:2015/01/19 16:16:30 A . (.Connectify - NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy3.sys [35352] {71844350E30B64B59FD6BEC66B063550} © O58 - SDL:2008/12/18 08:14:18 A . (.Aladdin Knowledge Systems Ltd. - SmartKey Driver.) -- C:\WINDOWS\System32\drivers\eusk3usb-amd64.sys [76480] {6BEA1E66D2B4A57E74CE91893FACE0D8} O58 - SDL:2013/08/22 13:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024] =>.Microsoft Windows® O58 - SDL:2011/06/03 23:59:38 A . (.FSPro Labs - FSPro File System Filter.) -- C:\WINDOWS\System32\drivers\FSPFltd2.sys [57648] {5B4C9286D5437F09B40BEE7A9F6A6DC1} © O58 - SDL:2013/08/01 15:11:56 A . (.SafeNet Inc. - Sentinel Hardlock Device Driver for Windows.) -- C:\WINDOWS\System32\drivers\hardlock.sys [331328] =>.SafeNet, Inc.® O58 - SDL:2013/08/22 13:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows® O58 - SDL:2013/07/30 19:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568] =>.Intel Corporation - Software and Firmware Products® O58 - SDL:2013/07/25 20:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320] =>.Intel Corporation - Software and Firmware Products® O58 - SDL:2013/08/22 11:08:42 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [644968] =>.Intel Corporation - Intel® Rapid Storage Technology® O58 - SDL:2013/08/10 01:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248] =>.Intel Corporation - Intel® Rapid Storage Technology® O58 - SDL:2013/08/22 13:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows® O58 - SDL:2013/11/28 01:24:18 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [175480] =>.Tonec Inc.® O58 - SDL:2013/10/01 19:16:26 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [4185600] © O58 - SDL:2013/10/01 19:25:24 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [449528] =>.Intel Corporation - Software and Firmware Products® O58 - SDL:2013/09/26 10:08:22 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [39320] =>.Intel Wireless Display® O58 - SDL:2013/09/26 10:08:22 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [27032] =>.Intel Wireless Display® O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows® O58 - SDL:2011/08/29 11:42:56 A . (.MBB Incorporated - CDROM Filter.) -- C:\WINDOWS\System32\drivers\massfilter.sys [11776] © O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows® O58 - SDL:2013/03/01 02:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.® O58 - SDL:2013/08/22 13:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288] =>.Microsoft Windows® O58 - SDL:2012/12/10 15:48:02 A . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\WINDOWS\System32\drivers\RimSerial_AMD64.sys [44544] © O58 - SDL:2013/08/15 23:28:42 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [830680] =>.Realtek Semiconductor Corp® O58 - SDL:2013/09/03 17:56:56 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [3630168] =>.Realtek Semiconductor Corp® O58 - SDL:2013/08/26 23:54:38 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\WINDOWS\System32\drivers\RtsP2Stor.sys [290520] =>.Realtek Semiconductor Corp® O58 - SDL:2013/08/26 23:54:36 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\WINDOWS\System32\drivers\RtsUStor.sys [263896] =>.Realtek Semiconductor Corp® O58 - SDL:2013/09/12 11:17:00 A . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driverr.) -- C:\WINDOWS\System32\drivers\rtwlane.sys [2945240] =>.Realtek Semiconductor Corp® O58 - SDL:2011/11/15 04:50:14 A . (.Power Software Ltd - PowerISO Virtual Drive.) -- C:\WINDOWS\System32\drivers\scdemu.sys [125376] {11214EC0AA9D4C5C4268811B30352BF16983} © O58 - SDL:2013/08/22 16:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040] © O58 - SDL:2013/08/22 13:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows® O58 - SDL:2013/09/20 06:10:18 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [30448] =>.Synaptics Incorporated® O58 - SDL:2013/09/20 06:10:18 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [34544] =>.Synaptics Incorporated® O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [108800] =>.DEVGURU CO LTD® O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] =>.DEVGURU CO LTD® O58 - SDL:2013/08/22 13:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows® O58 - SDL:2013/09/20 06:10:18 A . (.Synaptics Incorporated - Synaptics Touchpad 64-bit Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [533232] =>.Synaptics Incorporated® O58 - SDL:2013/09/16 22:20:12 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverx64.sys [99288] =>.Intel Corporation - Intel® Management Engine Firmware® O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800] =>.Microsoft Windows® O58 - SDL:2013/08/22 13:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows® O58 - SDL:2013/07/22 16:45:58 A . (.Hewlett-Packard Development Company, L.P. - HP Wireless Button Driver.) -- C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [20800] =>.Hewlett-Packard Company® O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys [123264] © O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys [123264] © O58 - SDL:2011/08/29 11:42:56 A . (.ZTE Incorporated - ZTE Incorporated.) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys [123264] © O58 - SDL:2015/10/11 11:43:22 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{255c5937-e738-42fa-92bb-6f1570cffbc3}Gw64.sys [48784] {713F78733FA0D620BA8404F1BD989A22} =>PUP.Optional.LinkiDoo O58 - SDL:2015/08/23 00:46:32 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{63b0a261-20d9-47e9-8f1f-e5f82ab57625}Gw64.sys [48784] {713F78733FA0D620BA8404F1BD989A22} =>PUP.Optional.LinkiDoo O58 - SDL:2015/08/28 10:21:26 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{846eb63e-c628-451d-9e55-c06ac1c47f38}Gw64.sys [48784] {713F78733FA0D620BA8404F1BD989A22} =>PUP.Optional.LinkiDoo O58 - SDL:2014/11/19 01:32:14 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{8ca7f150-5454-4b4c-9537-1b831c71d329}Gw64.sys [48784] {1E3B5C4453E4282F35D4B16FE677D245} =>PUP.Optional.LinkiDoo O58 - SDL:2014/11/23 23:24:32 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{93feeb25-9f23-4de1-b697-6a2c12816bac}Gw64.sys [48784] {1E3B5C4453E4282F35D4B16FE677D245} =>PUP.Optional.LinkiDoo O58 - SDL:2014/11/22 21:25:32 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{bf07813e-aac8-4cea-bf69-7178c16076ac}Gw64.sys [48784] {1E3B5C4453E4282F35D4B16FE677D245} =>PUP.Optional.LinkiDoo O58 - SDL:2015/08/24 05:25:18 A . (.StdLib - StdLib.) -- C:\WINDOWS\System32\drivers\{da442ffc-addd-4b1a-9675-0d3b94c7b03c}Gw64.sys [48784] {713F78733FA0D620BA8404F1BD989A22} =>PUP.Optional.LinkiDoo O58 - SDL:2012/10/09 09:39:52 A . (.Softex Inc - OmniPass PBA Driver.) -- C:\WINDOWS\System32\oprom.sys [5120] © ---\\ Last modified or created user files (22) - 13s O61 - LFC: 2015/12/25 21:45:14 A . (.SmadSoft.) -- C:\Users\Manu\Downloads\Programs\smadav104.exe [1350973] O61 - LFC: 2015/12/19 14:13:38 A . (.BitTorrent Inc..) -- C:\Users\Manu\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe [336896] O61 - LFC: 2015/12/26 05:59:58 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\aeWZta[1].exe [127888] O61 - LFC: 2015/12/26 05:59:53 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\cmmdWriter[2].exe [81098] O61 - LFC: 2015/12/26 06:11:12 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\policyname[1].exe [61057] O61 - LFC: 2015/12/26 02:30:30 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\pptxd[1].exe [0] O61 - LFC: 2015/12/26 02:41:34 A . (.systweak.com.) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\rcpsetup_17970[1].exe [1409024] O61 - LFC: 2015/12/26 06:10:25 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\setup_362[2].exe [254464] O61 - LFC: 2015/12/26 02:41:13 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\Validate[1].exe [24576] O61 - LFC: 2015/12/26 06:13:56 A . (.Copyright 2013.) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\ZLE08KCB\Validate[2].exe [61981] O61 - LFC: 2015/12/26 06:04:37 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\PN9S8WDI\dDHXszq[1].exe [222208] O61 - LFC: 2015/12/21 21:45:26 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\PN9S8WDI\lite560[1].exe [191488] O61 - LFC: 2015/12/26 06:00:04 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\PN9S8WDI\SearchUpdater[1].exe [394352] O61 - LFC: 2015/12/26 06:11:50 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\GWWSF7K7\68Ffe[1].exe [1756160] O61 - LFC: 2015/12/26 02:28:04 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\GWWSF7K7\setup_888555[2].exe [10752] O61 - LFC: 2015/12/26 06:13:18 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\GWWSF7K7\VuuPC_VO2_8907[1].exe [233277] =>PUP.Optional.VuuPC O61 - LFC: 2015/12/26 02:30:02 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\00BEIWOL\4bbda52393b575e64d530bd478a6717b[1].exe [55635] O61 - LFC: 2015/12/26 06:00:11 A . (.Software Removal Tool.) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\00BEIWOL\cmi_istartpageing[1].exe [308856] {1121B3B0C5A9889FC43006F4B89AB3063462} =>PUP.Optional.IstartPageing O61 - LFC: 2015/12/20 08:04:43 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\00BEIWOL\lite556[1].exe [4029] O61 - LFC: 2015/12/26 06:01:03 A . (..) -- C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\00BEIWOL\MxlQi[1].exe [2580480] O61 - LFC: 2015/12/26 06:01:53 A . (..) -- C:\Users\Manu\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082] O61 - LFC: 2015/12/26 06:10:16 A . (..) -- C:\Users\Manu\AppData\Local\4ED1D4CA-1451110205-B0D5-C8A3-A0D3C16FDDEE\Uninstall.exe [51069] ---\\ File Associations Shell Spawning (11) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe © O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe © O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe © O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe © O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® ---\\ Start Menu Internet (12) - 1s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe http://www.mystartsearch.com/ =>PUP.Optional.StartSearch O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.ex http://www.oursurfing.com/ =>PUP.Optional.OurSurfing O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialisation Utility.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialisation Utility.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialisation Utility.) -- C:\Windows\System32\ie4uinit.exe © O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe © ---\\ Search Browser Infection (29) - 10s O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("browser.search.defaultenginename", "mystartsearch"); =>PUP.Optional.StartSearch O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("browser.search.order.1", "default-search.net"); =>PUP.Optional.SearchNet O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("browser.search.selectedEngine", "mystartsearch"); =>PUP.Optional.StartSearch O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("browser.startup.homepage", "http://www.istartpageing.com/?type=hp&ts=1451106037&z=f4cc96903d669e694f793begaz7wcg8gfe8tf[...] =>PUP.Optional.IstartPageing O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.APN_TB.first-previous-keyword-url", "http://www.default-search.net/search?sid=503&aid=112&itype=n&ver=13986&[...] =>PUP.Optional.SearchNet O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.BTRSP-C.previous-keyword-url", "\"http://www.default-search.net/search?sid=503&aid=112&itype=n&ver=13986&tm=[...] =>PUP.Optional.SearchNet O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.EnterDigital.asul", "1416742412005"); =>PUP.Optional.EnterDigital O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.EnterDigital.aul", "1416835226041"); =>PUP.Optional.EnterDigital O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.EnterDigital.irl", true); =>PUP.Optional.EnterDigital O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.EnterDigital.is", "isgiwhTG"); =>PUP.Optional.EnterDigital O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.EnterDigital.ug", "ABD38E35-0DFF-438C-87AD-4FDCD97B36E2"); =>PUP.Optional.EnterDigital O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.a1853a82ece444a8ca6fe9bcf74a655754b6b1c165f0a4ef0866fb063e235ef97com60804.60804.name", "Radio Canyon"); =>PUP.Optional.RadioCanyon O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.crossrider.bic", "14960ae5618569b70dcbe5cd4f80f490"); =>PUP.Optional.CrossRider O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.enabledAddons", "bixFO2L%40gmail.com:1005.88.459.0,%7B60984d64-3925-4636-a8c2-1b22a35f133f%7D:0.1,deskCutv2%[...] =>PUP.Optional.DeskCut O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"deskCutv2@gmail.com\":{\"descriptor\":\"C:\\\[...] =>PUP.Optional.DeskCut O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart O69 - SBI: prefs.js [Manu - tiednl1e.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart O69 - SBI: SearchScopes [HKCU] {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} - (Trovi) - http://www.trovi.com/ =>PUP.Optional.Trovigo O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Goo) - http://www.google.com/ O69 - SBI: SearchScopes [HKCU] {6C34D77F-E4D3-47FF-894F-338AC611B8B0} - (Google) - http://www.google.com/ O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} - (default-search.net) - http://www.default-search.net/ =>PUP.Optional.SearchNet O69 - SBI: SearchScopes [HKCU] {E25AAE28-93A6-4CD3-971E-38E4023E75C6} - (Ask Search) - http://websearch.ask.com/ =>Toolbar.Ask O69 - SBI: SearchScopes [HKCU] {ielnksrch} - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWv3j9qLkXQZ-73WFdsg-_-13SO_i0miYv5gg9MV3eJlUZwGQfMM0JBsDuRIfirmwQRBoslp0jdlW3BetsPgH2kBhBv8J9QasGnhwO3GlaNvYtwH_Z3vwS3RM2UWghtpxME53qCU4-QZjlT11nOqzdn13yNQ,,&q={searchTerms} =>PUP.Optional.Linkury O69 - SBI: SearchScopes [HKLM] ielnksrch - (Search the web) - http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIP4NYe17aVLWv3j9qLkXQZ-73WFdsg-_-13SO_i0miYv5gg9MV3eJlUZwGQfMM0JBsDuRIfirmwQRBoslp0jdlW3BetsPgH2kBhBv8J9QasGnhwO3GlaNvYtwH_Z3vwS3RM2UWghtpxME53qCU4-QZjlT11nOqzdn13yNQ,,&q={searchTerms} =>PUP.Optional.Linkury O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} - (default-search.net) - http://www.default-search.net/ =>PUP.Optional.SearchNet O69 - SBI: SearchScopes [HKUS\.DEFAULT] {9B8D440A-D958-4965-80E3-7E03A5A840A1} - (Ask Search) - http://websearch.ask.com/ =>Toolbar.Ask O69 - SBI: SearchScopes [HKUS\S-1-5-18] {9B8D440A-D958-4965-80E3-7E03A5A840A1} - (Ask Search) - http://websearch.ask.com/ =>Toolbar.Ask ---\\ Crack & Keygen Files (7) - 7s O82 - LFC: 2015/10/25 00:26:28 A . (...) -- C:\Users\Manu\Downloads\Compressed\Keygen Tool v15.33 - Razor1911.rar [0] =>.Crack,Keygen O82 - LFC: 2015/02/07 23:14:59 A . (...) -- C:\Users\Manu\Downloads\Compressed\Repligo_Pdf_keygen.zip [0] =>.Crack,Keygen O82 - LFC: 2014/09/01 23:14:25 N . (...) -- C:\Users\Manu\Downloads\Compressed\Repligo_Pdf_keygen\Repligo_Pdf_keygen.exe [0] =>.Crack,Keygen O82 - LFC: 2015/08/26 11:56:02 A . (...) -- C:\Users\Manu\Desktop\Keygen Tool v15.33 - Razor1911.zip [0] =>.Crack,Keygen O82 - LFC: 2015/08/26 04:52:35 A . (.Copyright © 2015.) -- C:\Users\Manu\AppData\Local\Temp\7zOBB6.tmp\Keygen Tool v15.33 - Razor1911.exe [0] =>.Crack,Keygen O82 - LFC: 2015/08/26 04:52:35 A . (.Copyright © 2015.) -- C:\Users\Manu\AppData\Local\Temp\7zO705F.tmp\Keygen Tool v15.33 - Razor1911.exe [0] =>.Crack,Keygen O82 - LFC: 2015/08/26 04:52:35 A . (.Copyright © 2015.) -- C:\Users\Manu\AppData\Local\Temp\7zO69E0.tmp\Keygen Tool v15.33 - Razor1911.exe [0] =>.Crack,Keygen ---\\ Search Svchost Services (34) - 1s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\WINDOWS\System32\aelupsvc.dll [207360] © O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smart card Certificate Propagatio.) -- C:\WINDOWS\System32\certprop.dll [155136] © O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smart card Certificate Propagatio.) -- C:\WINDOWS\System32\certprop.dll [155136] © O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [324608] © O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1311744] © O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [1102336] © O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [903168] © O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Log-on Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [30720] © O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [109568] © O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [150528] © O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [107008] © O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [1212416] © O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [220672] © O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\WINDOWS\system32\mmcss.dll [70656] © O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [134144] © O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [220672] © O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [326656] © O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [81408] © O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\WINDOWS\system32\kmsvc.dll [97792] © O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [336896] © O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Windows Location Framework Service.) -- C:\Windows\System32\GeofenceMonitorService.dll [491520] © O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [1555456] © O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [50688] © O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [201728] © O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [164352] © O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [101376] © O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [534016] © O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [223744] © O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [71680] © O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [433152] © O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [306688] © O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [3524096] © O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [1017856] © O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [629760] © ---\\ Firewall Active Exception List (13) - 1s O87 - FAEL: "{1D16A719-052A-4D47-9574-6535CC7EC049}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe (.not file.) O87 - FAEL: "{2D5C84FC-75B0-4B67-A9A2-155300DF6505}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Bonjour\mDNSResponder.exe (.not file.) O87 - FAEL: "{7EC20FC8-8731-4A3A-B92D-B086183A8EBA}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe (.not file.) O87 - FAEL: "{786AF353-FD37-4119-B8F3-F50DE79B77D2}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe (.not file.) O87 - FAEL: "{016D0D44-DDDF-43EA-913C-737AC6FB128D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (.not file.) O87 - FAEL: "{758097E9-CD0F-42BA-9B50-E765865A17B0}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe (.not file.) O87 - FAEL: "{3EA337F1-6A4F-4E76-8C30-ACD469CA6B9D}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\LuckyBrowse\app\LuckyBrowse.exe =>PUP.Optional.LuckyBrowse O87 - FAEL: "{16AD70FB-EB09-4923-B773-63A5EE7C84DC}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\LuckyBrowse\app\LuckyBrowse.exe =>PUP.Optional.LuckyBrowse O87 - FAEL: "{7E0E373A-4FFB-489C-8D60-35CB623176A5}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\XollaQifk\tiwash.exe (.not file.) O87 - FAEL: "{51A6A76C-8E57-403A-B1EA-9124E17E8DDA}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\XollaQifk\tiwash.exe (.not file.) O87 - FAEL: "{A6F5E1B0-4227-4679-8BF8-AC71852D6A8A}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\XollaQifk\tiwash.exe (.not file.) O87 - FAEL: "{B1A8CA75-A77E-4B1D-9D3C-E83034F8FCC7}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\XollaQifk\tiwash.exe (.not file.) O87 - FAEL: "{6B1784C2-A0B1-41DA-99A5-35E71BCF9B10}" [In-None-P17-TRUE] .(.SafeNet Inc. - Sentinel LDK License Manager Service.) -- C:\WINDOWS\system32\hasplms.exe ---\\ Product Upgrade Codes (2) - 2s O90 - PUC: "35254524D2050034677A7AC597C05200" . (.Search App by Ask.) -- C:\WINDOWS\Installer\{42545253-502D-4300-76A7-A75C790C2500}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) -- c:\program files (x86)\ask.com\fv_f685.ico =>Toolbar.AsktBar ---\\ Services not Microsoft (SR=Run, SS=Stop) (38) - 33s SS - Demand [18/07/2015] [ 268976] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SR - Auto [17/11/2009] [ 98208] Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe =>.Andrea Electronics® SR - Auto [28/07/2011] [ 262144] Arp Intelligent Protection Service (AIPS) . (.Arcai.com.) - C:\Program Files (x86)\NetCutDefender\services\aips.exe © SR - Auto [11/11/2015] [ 198544] Ask Update Service (APNMCP) . (.APN LLC..) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe =>Toolbar.Ask SR - Auto [12/08/2015] [ 70656] Application Hosting service (Application Hosting) . (.Copyright © 2015.) - C:\ProgramData\Application Hosting\Application Hosting.exe =>PUP.Optional.ApplicationHosting SS - Demand [09/12/2015] [ 615584] AvgAMPS (AvgAMPS) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Av\avgamps.exe =>.AVG Technologies CZ, s.r.o.® SR - Auto [09/12/2015] [ 1587128] AVG Firewall (avgfws) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Av\avgfws.exe =>.AVG Technologies CZ, s.r.o.® SS - Auto [09/12/2015] [ 3857272] AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Av\avgidsagent.exe =>.AVG Technologies CZ, s.r.o.® SR - Auto [12/11/2015] [ 1046952] AVG Service (avgsvc) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe =>.AVG Technologies CZ, s.r.o.® SR - Auto [09/12/2015] [ 579776] AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe =>.AVG Technologies CZ, s.r.o.® SR - Auto [14/10/2013] [ 109568] HP SimplePass Cachedrv Service (Cachedrv server) . (...) - C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe SR - Auto [23/12/2013] [ 487936] Connectify (Connectify) . (.Connectify.) - C:\Program Files (x86)\Connectify\ConnectifyService.exe © SS - Demand [15/10/2013] [ 279024] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - Software and Firmware Products® SR - Auto [05/09/2013] [ 77576] CyberLink PowerDVD 12 Media Server Monitor Service (CyberLink PowerDVD 12 Media Server Monitor Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe =>.CyberLink Corp.® SR - Auto [05/09/2013] [ 298760] CyberLink PowerDVD 12 Media Server Service (CyberLink PowerDVD 12 Media Server Service) . (.CyberLink.) - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe =>.CyberLink Corp.® SS - Demand [08/02/2011] [ 136120] Google Updater Service (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe =>.Google Inc® SR - Auto [01/08/2013] [ 4609928] Sentinel LDK License Manager (hasplms) . (.SafeNet Inc..) - C:\WINDOWS\system32\hasplms.exe SR - Auto [19/05/2015] [ 99128] HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Company® SS - Demand [13/05/2013] [ 1129760] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe =>.Hewlett-Packard Company® SR - Auto [08/10/2013] [ 1039160] HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe =>.Hewlett-Packard Company® SR - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation® SR - Auto [27/08/2013] [ 747520] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe © SS - Demand [27/08/2013] [ 828376] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service® SR - Auto [16/09/2013] [ 169432] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Intel® Management Engine Firmware® SR - Auto [16/09/2013] [ 390616] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Software and Firmware Products® SS - Auto [23/08/2015] [ 281600] LuckyBrowse (LuckyBrowse) . (...) - C:\Program Files (x86)\LuckyBrowse\app\luckyBrowseStarter.exe =>PUP.Optional.LuckyBrowse SR - Demand [02/12/2015] [ 289256] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe =>.McAfee, Inc.® SS - Demand [07/05/2014] [ 119408] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [14/10/2013] [ 87552] HP SimplePass Service (omniserv) . (.Softex Inc..) - C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe © SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.® SR - Auto [23/08/2013] [ 289496] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® SS - Demand [23/08/2015] [ 34816] Sublight (Sublight) . (.Copyright © Main 2015.) - C:\ProgramData\Sublight\Sublight.exe SS - Demand [19/02/2010] [ 517096] (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe © SR - Auto [08/01/2013] [ 276376] UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files (x86)\Togocel 3G\AssistantServices.exe {48D6383A8D149C1CDCE69A728BDD24F6} SS - Demand [01/05/2014] [ 22016] wampapache (wampapache) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe © SS - Demand [01/05/2014] [10959360] wampmysqld (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe SR - Auto [26/12/2015] [ 338056] WdMan Service (WdMan) . (.TFuns LIMITED.) - C:\ProgramData\lWdMl\WdMan.exe {112152F0B3D12E8797FD52AD3D09CA21D59F} =>PUP.Optional.WdsManPro ---\\ Search Tracing Registry Key (10) - 2s HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BluetoothPoint_RASAPI32 =>PUP.Optional.BluetoothPoint HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BluetoothPoint_RASMANCS =>PUP.Optional.BluetoothPoint HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateEnterDigital_RASAPI32 =>PUP.Optional.EnterDigital HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateEnterDigital_RASMANCS =>PUP.Optional.EnterDigital HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilEnterDigital_RASAPI32 =>PUP.Optional.EnterDigital HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilEnterDigital_RASMANCS =>PUP.Optional.EnterDigital ---\\ Additional Scan (O88) (179) - 0s HKLM\SYSTEM\CurrentControlSet\Services\Application Hosting =>PUP.Optional.ApplicationHosting C:\ProgramData\Application Hosting\Application Hosting.exe =>PUP.Optional.ApplicationHosting HKLM\SYSTEM\CurrentControlSet\Services\LuckyBrowse =>PUP.Optional.LuckyBrowse C:\Program Files (x86)\LuckyBrowse\app\luckyBrowseStarter.exe =>PUP.Optional.LuckyBrowse HKLM\SYSTEM\CurrentControlSet\Services\WdMan =>PUP.Optional.WdsManPro C:\ProgramData\lWdMl\WdMan.exe =>PUP.Optional.WdsManPro C:\Users\Manu\AppData\Local\avabvexvac =>Heuristic.SearchProtect C:\Users\Manu\AppData\Local\avabvexvac\avabvexvac.exe =>Heuristic.SearchProtect C:\Program Files (x86)\Ask.com\UpdateTask.exe =>Toolbar.Ask C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-1.job =>PUP.Optional.RadioCanyon C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-11.job =>PUP.Optional.RadioCanyon C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-4.job =>PUP.Optional.RadioCanyon C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5.job =>PUP.Optional.RadioCanyon C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5_user.job =>PUP.Optional.RadioCanyon C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-6.job =>PUP.Optional.RadioCanyon C:\WINDOWS\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-7.job =>PUP.Optional.RadioCanyon C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineCore.job =>PUP.Optional.GlobalUpdate C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job =>PUP.Optional.GlobalUpdate C:\WINDOWS\Tasks\GQzBHFzNPSxyT2HscMJheSG.job =>PUP.Optional.CrossRider C:\WINDOWS\Tasks\tAIvw6Juu5zViUfmCsdn9dvVsxM.job =>PUP.Optional.CrossRider C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-1 =>PUP.Optional.RadioCanyon C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-11 =>PUP.Optional.RadioCanyon C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-4 =>PUP.Optional.RadioCanyon C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5 =>PUP.Optional.RadioCanyon C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-5_user =>PUP.Optional.RadioCanyon C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-6 =>PUP.Optional.RadioCanyon C:\WINDOWS\System32\Tasks\215be1f3-2b41-4704-ac29-3ac74f226d83-7 =>PUP.Optional.RadioCanyon C:\WINDOWS\System32\Tasks\avabvexvac =>Heuristic.SearchProtect C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineCore =>PUP.Optional.GlobalUpdate C:\WINDOWS\System32\Tasks\globalUpdateUpdateTaskMachineUA =>PUP.Optional.GlobalUpdate C:\WINDOWS\System32\Tasks\GQzBHFzNPSxyT2HscMJheSG =>PUP.Optional.CrossRider C:\WINDOWS\System32\Tasks\Scheduled Update for Ask Toolbar =>Toolbar.Ask C:\WINDOWS\System32\Tasks\tAIvw6Juu5zViUfmCsdn9dvVsxM =>PUP.Optional.CrossRider C:\Program Files (x86)\LuckyBrowse\app\luckybrowse.exe =>PUP.Optional.LuckyBrowse C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\toolbar_BTRSP-C@apn.ask.com.xpi =>Toolbar.Ask C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\searchplugins\findit.xml =>PUP.Optional.SmartBar C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\searchplugins\trovi.xml =>PUP.Optional.TroviCom C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\delta-homes.xml =>PUP.Optional.DeltaHomes C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\findit.xml =>PUP.Optional.SmartBar C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\mystartsearch.xml =>PUP.Optional.StartSearch C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\default_newtabff@gmail.com =>PUP.Optional.LightningNewTab C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\deskCutv2@gmail.com =>PUP.Optional.LightningNewTab C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\extension@linkeyproject.com =>PUP.Optional.LinkeySearch C:\Users\Manu\AppData\Roaming\Mozilla\Firefox\Profiles\tiednl1e.default\extensions\veggy@veggyAddon.com =>PUP.Optional.VeggyAddon C:\Program Files (x86)\Radio Canyon\Radio Canyon-bho.dll =>PUP.Optional.RadioCanyon HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611081104} =>PUP.Optional.RadioCanyon C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll =>Toolbar.Ask HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ski Search =>PUP.Optional.SkiSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\mystartsearch uninstall =>PUP.Optional.StartSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\oursurfing uninstall =>PUP.Optional.OurSurfing HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PopupProduct =>PUP.Optional.CompatibleWebDir HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Radio Canyon =>PUP.Optional.RadioCanyon HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect =>PUP.Optional.SearchProtect HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage =>PUP.Optional.Downware HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{42545253-502D-4300-76A7-A75C790C2500} =>PUP.Optional.BrowserTabSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} =>Toolbar.AsktBar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C098B9BD-68DD-43A2-9B20-9A2F913C3163} =>PUP.Optional.SmartBar HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E6426C0D-A723-4DBF-B754-1339CB2A683D} =>PUP.Optional.Multiplug HKLM\SOFTWARE\Wow6432Node\65596c37-06ba-4d57-97b9-fa2e0610d71f =>PUP.Optional.CrossRider HKLM\SOFTWARE\Wow6432Node\APN =>Toolbar.Ask HKLM\SOFTWARE\Wow6432Node\AskPartnerNetwork =>Toolbar.AskBar HKLM\SOFTWARE\Wow6432Node\AskToolbar =>Toolbar.Ask HKLM\SOFTWARE\Wow6432Node\eb4499d2-2879-4dfb-8f2d-a6bb6418cb6a =>PUP.Optional.CrossRider HKLM\SOFTWARE\Wow6432Node\ErrorLists-crcodedownloader =>PUP.Optional.CrossRider HKLM\SOFTWARE\Wow6432Node\GlobalUpdate =>PUP.Optional.GlobalUpdate HKLM\SOFTWARE\Wow6432Node\IHProtect =>PUP.Optional.AgentODR HKLM\SOFTWARE\Wow6432Node\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKLM\SOFTWARE\Wow6432Node\istartpageingSoftware =>PUP.Optional.IstartPageing HKLM\SOFTWARE\Wow6432Node\Linkey =>PUP.Optional.LinkeySearch HKLM\SOFTWARE\Wow6432Node\LuckyBrowse =>PUP.Optional.LuckyBrowse HKLM\SOFTWARE\Wow6432Node\mtBluetoothPoint =>PUP.Optional.BluetoothPoint HKLM\SOFTWARE\Wow6432Node\mtSublight =>PUP.Optional.AppthgilbuS HKLM\SOFTWARE\Wow6432Node\mystartsearchSoftware =>PUP.Optional.StartSearch HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware =>PUP.Optional.OurSurfing HKLM\SOFTWARE\Wow6432Node\Radio Canyon =>PUP.Optional.RadioCanyon HKLM\SOFTWARE\Wow6432Node\Radio Canyon-nv =>PUP.Optional.RadioCanyon HKLM\SOFTWARE\Wow6432Node\SearchProtect =>PUP.Optional.SearchProtect HKLM\SOFTWARE\Wow6432Node\SiteSee =>PUP.Optional.SiteSee HKLM\SOFTWARE\Wow6432Node\Ski Search =>PUP.Optional.SkiSearch HKLM\SOFTWARE\Wow6432Node\SmdmF =>PUP.Optional.SettingsManager HKLM\SOFTWARE\Wow6432Node\SPPDCOM =>.Superfluous.PCSpeedUp HKLM\SOFTWARE\Wow6432Node\SupDp =>PUP.Optional.SupTab HKLM\SOFTWARE\Wow6432Node\supWindowsMangerProtect =>PUP.Optional.WpManager HKLM\SOFTWARE\Wow6432Node\Systweak =>PUP.Optional.Systweak HKLM\SOFTWARE\Wow6432Node\TSv =>PUP.Optional.Elex HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro HKCU\SOFTWARE\APN =>Toolbar.Ask HKCU\SOFTWARE\Ask.com =>Toolbar.Ask HKCU\SOFTWARE\AskPartnerNetwork =>Toolbar.AskBar HKCU\SOFTWARE\globalUpdate =>PUP.Optional.GlobalUpdate HKCU\SOFTWARE\GQzBHFzNPSxyT2HscMJheSG =>PUP.Optional.CrossRider HKCU\SOFTWARE\InstallCore =>Adware.InstallCore HKCU\SOFTWARE\InstalledBrowserExtensions =>PUP.Optional.BrowserExtensions HKCU\SOFTWARE\Linkey =>PUP.Optional.LinkeySearch HKCU\SOFTWARE\mtBluetoothPoint =>PUP.Optional.BluetoothPoint HKCU\SOFTWARE\mtSublight =>PUP.Optional.AppthgilbuS HKCU\SOFTWARE\SearchProtect =>PUP.Optional.SearchProtect HKCU\SOFTWARE\Ski Search =>PUP.Optional.SkiSearch HKCU\SOFTWARE\SmdmF =>PUP.Optional.SettingsManager HKCU\SOFTWARE\systweak =>PUP.Optional.Systweak HKCU\SOFTWARE\tAIvw6Juu5zViUfmCsdn9dvVsxM =>PUP.Optional.CrossRider HKCU\SOFTWARE\winter web =>PUP.Optional.WinterWeb HKCU\SOFTWARE\winterweb =>PUP.Optional.WinterWeb HKCU\SOFTWARE\AppDataLow\Software\AskToolbar =>Toolbar.Ask HKCU\SOFTWARE\AppDataLow\Software\Crossrider =>PUP.Optional.CrossRider HKCU\SOFTWARE\AppDataLow\Software\Radio Canyon =>PUP.Optional.RadioCanyon C:\Program Files (x86)\4ED1D4CA-1440453526-B0D5-C8A3-A0D3C16FDDEE =>PUP.Optional.CrossRider C:\Program Files (x86)\Ask.com =>Toolbar.Ask C:\Program Files (x86)\AskPartnerNetwork =>Toolbar.AskBar C:\Program Files (x86)\BearShare Applications =>PUP.Optional.BearShare C:\Program Files (x86)\globalUpdate =>PUP.Optional.GlobalUpdate C:\Program Files (x86)\LuckyBrowse =>PUP.Optional.LuckyBrowse C:\Program Files (x86)\MiniLite =>PUP.Optional.AgentODR C:\Program Files (x86)\Radio Canyon =>PUP.Optional.RadioCanyon C:\Program Files (x86)\SearchProtect =>PUP.Optional.SearchProtect C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch C:\Program Files (x86)\Ski Search =>PUP.Optional.SkiSearch C:\Program Files (x86)\winter web =>PUP.Optional.WinterWeb C:\ProgramData\APN =>Toolbar.Ask C:\ProgramData\AskPartnerNetwork =>Toolbar.YahooPartner C:\ProgramData\BluetoothPoint =>PUP.Optional.BluetoothPoint C:\ProgramData\BluetoothPoints =>PUP.Optional.BluetoothPoint C:\ProgramData\LuckyBrowse =>PUP.Optional.LuckyBrowse C:\ProgramData\lWdMl =>PUP.Optional.WdsManPro C:\ProgramData\Mobile Partner =>Toolbar.YahooPartner C:\ProgramData\nWdsManPron =>PUP.Optional.WdsManPro C:\ProgramData\QWMiniProQ =>PUP.Optional.WdsManPro C:\ProgramData\smdmf =>PUP.Optional.SystemK C:\ProgramData\WWdsManProW =>PUP.Optional.WdsManPro C:\Users\Manu\AppData\Roaming\istartpageing =>PUP.Optional.IstartPageing C:\Users\Manu\AppData\Roaming\mystartsearch =>PUP.Optional.StartSearch C:\Users\Manu\AppData\Roaming\oursurfing =>PUP.Optional.OurSurfing C:\Users\Manu\AppData\Roaming\RHEng =>PUP.Optional.Conduit C:\Users\Manu\AppData\Roaming\systweak =>PUP.Optional.Systweak C:\Users\Manu\AppData\Roaming\TSv =>PUP.Optional.Elex C:\Users\Manu\AppData\Roaming\VOPackage =>PUP.Optional.Downware C:\Users\Manu\AppData\Local\AskPartnerNetwork =>Toolbar.AskBar C:\Users\Manu\AppData\Local\globalUpdate =>PUP.Optional.GlobalUpdate C:\Users\Manu\AppData\Local\Linkey =>PUP.Optional.LinkeySearch C:\Users\Manu\AppData\Local\Pay-By-Ads =>PUP.Optional.PaybyAds C:\Users\Manu\AppData\Local\SearchProtect =>PUP.Optional.SearchProtect C:\Users\Manu\AppData\Local\Systweak =>PUP.Optional.Systweak C:\Users\Manu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage =>PUP.Optional.Downware C:\WINDOWS\Prefetch\LUCKYBROWSE.EXE-1067AA68.pf =>PUP.Optional.LuckyBrowse C:\WINDOWS\Prefetch\TAIVW6JUU5ZVIUFMCSDN9DVVSXM.E-6E998964.pf =>PUP.Optional.CrossRider C:\WINDOWS\System32\drivers\{255c5937-e738-42fa-92bb-6f1570cffbc3}Gw64.sys =>PUP.Optional.LinkiDoo C:\WINDOWS\System32\drivers\{63b0a261-20d9-47e9-8f1f-e5f82ab57625}Gw64.sys =>PUP.Optional.LinkiDoo C:\WINDOWS\System32\drivers\{846eb63e-c628-451d-9e55-c06ac1c47f38}Gw64.sys =>PUP.Optional.LinkiDoo C:\WINDOWS\System32\drivers\{8ca7f150-5454-4b4c-9537-1b831c71d329}Gw64.sys =>PUP.Optional.LinkiDoo C:\WINDOWS\System32\drivers\{93feeb25-9f23-4de1-b697-6a2c12816bac}Gw64.sys =>PUP.Optional.LinkiDoo C:\WINDOWS\System32\drivers\{bf07813e-aac8-4cea-bf69-7178c16076ac}Gw64.sys =>PUP.Optional.LinkiDoo C:\WINDOWS\System32\drivers\{da442ffc-addd-4b1a-9675-0d3b94c7b03c}Gw64.sys =>PUP.Optional.LinkiDoo C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\GWWSF7K7\VuuPC_VO2_8907[1].exe =>PUP.Optional.VuuPC C:\Users\Manu\AppData\Local\Microsoft\Windows\INetCache\IE\00BEIWOL\cmi_istartpageing[1].exe =>PUP.Optional.IstartPageing HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} =>PUP.Optional.Trovigo HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} =>PUP.Optional.SearchNet HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E25AAE28-93A6-4CD3-971E-38E4023E75C6} =>Toolbar.Ask HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{ielnksrch} =>PUP.Optional.Linkury HKLM\Software\Microsoft\Internet Explorer\SearchScopes\ielnksrch =>PUP.Optional.Linkury HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} =>PUP.Optional.SearchNet HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{9B8D440A-D958-4965-80E3-7E03A5A840A1} =>Toolbar.Ask HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{9B8D440A-D958-4965-80E3-7E03A5A840A1} =>Toolbar.Ask C:\WINDOWS\Installer\{42545253-502D-4300-76A7-A75C790C2500}\ToolbarIcon.exe =>PUP.Optional.BrowserTabSearch HKLM\Software\Classes\Installer\Products\35254524D2050034677A7AC597C05200 =>PUP.Optional.BrowserTabSearch HKLM\Software\Classes\Installer\Features\35254524D2050034677A7AC597C05200 =>PUP.Optional.BrowserTabSearch c:\program files (x86)\ask.com\fv_f685.ico =>Toolbar.AsktBar HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AsktBar HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AsktBar HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 =>PUP.Optional.AdvancedSystemProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\AdvancedSystemProtector_RASMANCS =>PUP.Optional.AdvancedSystemProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BluetoothPoint_RASAPI32 =>PUP.Optional.BluetoothPoint HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BluetoothPoint_RASMANCS =>PUP.Optional.BluetoothPoint HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASAPI32 =>PUP.Optional.BProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\PerformanceOptimizer_RASMANCS =>PUP.Optional.BProtector HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateEnterDigital_RASAPI32 =>PUP.Optional.EnterDigital HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateEnterDigital_RASMANCS =>PUP.Optional.EnterDigital HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilEnterDigital_RASAPI32 =>PUP.Optional.EnterDigital HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilEnterDigital_RASMANCS =>PUP.Optional.EnterDigital ---\\ Summary of the elements found (54) - 0s http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.ApplicationHosting http://www.nicolascoolman.fr/pup-optional-luckybrowse/ =>PUP.Optional.LuckyBrowse http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WdsManPro http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.RadioCanyon http://www.nicolascoolman.fr/?p=4664 =>Heuristic.SearchProtect http://www.nicolascoolman.fr/pup-globalupdate/ =>PUP.Optional.GlobalUpdate http://www.nicolascoolman.fr/?p=180 =>PUP.Optional.CrossRider http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask http://www.nicolascoolman.fr/pup-optional-startsearch/ =>PUP.Optional.StartSearch http://www.nicolascoolman.fr/pup-optional-istartpageing/ =>PUP.Optional.IstartPageing http://www.nicolascoolman.fr/?p=308 =>PUP.Optional.SmartBar http://www.nicolascoolman.fr/?p=674 =>PUP.Optional.TroviCom http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeltaHomes http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.OurSurfing http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.LightningNewTab http://www.nicolascoolman.fr/?p=381 =>PUP.Optional.LinkeySearch http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.VeggyAddon http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Linkury http://www.nicolascoolman.fr/?p=343 =>PUP.Optional.BearShare http://www.nicolascoolman.fr/pup-optional-bluetoothpoint/ =>PUP.Optional.BluetoothPoint http://www.nicolascoolman.fr/pup-optional-skisearch/ =>PUP.Optional.SkiSearch http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.CompatibleWebDir http://www.nicolascoolman.fr/?p=1633 =>PUP.Optional.SearchProtect http://www.nicolascoolman.fr/?p=401 =>PUP.Optional.Downware http://www.nicolascoolman.fr/pup-browsertabsearch/ =>PUP.Optional.BrowserTabSearch http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AsktBar http://www.nicolascoolman.fr/?p=1402 =>PUP.Optional.Multiplug http://www.nicolascoolman.fr/?p=4664 =>Toolbar.AskBar http://www.nicolascoolman.fr/pup-agentodr/ =>PUP.Optional.AgentODR http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BrowserExtensions http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.AppthgilbuS http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SiteSee http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SettingsManager http://www.nicolascoolman.fr/?p=1255 =>.Superfluous.PCSpeedUp http://www.nicolascoolman.fr/?p=297 =>PUP.Optional.SupTab http://www.nicolascoolman.fr/?p=173 =>PUP.Optional.WpManager http://www.nicolascoolman.fr/pup-systweak/ =>PUP.Optional.Systweak http://www.nicolascoolman.fr/?p=996 =>PUP.Optional.Elex http://www.nicolascoolman.fr/?p=279 =>Adware.InstallCore http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WinterWeb http://www.nicolascoolman.fr/?p=220 =>PUP.Optional.MyWebSearch http://www.nicolascoolman.fr/?p=4664 =>Toolbar.YahooPartner http://www.nicolascoolman.fr/?p=56 =>PUP.Optional.SystemK http://www.nicolascoolman.fr/?p=210 =>PUP.Optional.Conduit http://www.nicolascoolman.fr/?p=1754 =>PUP.Optional.PaybyAds http://www.nicolascoolman.fr/?p=62 =>PUP.Optional.LinkiDoo http://www.nicolascoolman.fr/?p=1216 =>PUP.Optional.VuuPC http://www.nicolascoolman.fr/?p=83 =>PUP.Optional.SearchNet http://www.nicolascoolman.fr/pup-enterdigital/ =>PUP.Optional.EnterDigital http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.DeskCut http://www.nicolascoolman.fr/?p=666 =>PUP.Optional.QuickStart http://www.nicolascoolman.fr/?p=1042 =>PUP.Optional.Trovigo http://www.nicolascoolman.fr/?p=336 =>PUP.Optional.AdvancedSystemProtector http://www.nicolascoolman.fr/?p=533 =>PUP.Optional.BProtector ~ End of the scan, 36810 items in 00h02mn13s (1489)(7)