~ ZHPDiag v2016.8.8.128 By Nicolas Coolman (2016/08/08)
~ Run by user 1 (Administrator)  (2016/08/08 20:59:29)
~ Web: https://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version:  Version KO
~ Mode: Scan
~ Report: C:\Users\user 1\Desktop\ZHPDiag.txt
~ Report: C:\Users\user 1\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Professional, 32-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (2) - 0s
MFIE: Mozilla Firefox 47.0.1 (x86 en-US)
MSIE: Internet Explorer v11.0.9600.18376

---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ System protection software (1) - 1s
Malwarebytes Anti-Malware version 2.2.1.1043

---\\ Surveillance software (1) - 2s
Adobe Flash Player 22 ActiveX

---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System:  32-bit 
~ Boot mode: Normal (Normal boot)
Total RAM: 3318.68 MB (42% free)
System Restore: Activé (Enable)
System drive C: has 192 GB () free of 237 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: USER1-PC
~ User Name: user 1
~ Logged in as Administrator

---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 192 GB free of 237 GB  (System)
~ Drive D: has  GB free of 0 GB

---\\ State of the Windows Security Center (12) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Search Generic System Files (24) - 3s
[MD5.3DA48EA028AD771C5B71727F0C3984E9] - 09/04/2016 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2973184]  =>.Microsoft Corporation
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544]  =>.Microsoft Corporation
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [96256]  =>.Microsoft Corporation
[MD5.167ADC25991BC960DDC2D9651C55B6FF] - 10/06/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2392576]  =>.Microsoft Corporation
[MD5.52449FD429D6053B78AE564DEF303870] - 17/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [304128]  =>.Microsoft Corporation
[MD5.E3AE23569749DE12D45BA3B489A036AE] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [193536]  =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 22/10/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [270336]  =>.Microsoft Corporation
[MD5.93B49FA857F7036A4EFF32371F6E7391] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944]  =>.Microsoft Corporation
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584]  =>.Microsoft Windows®
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656]  =>.Microsoft Corporation
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544]  =>.Microsoft Corporation
[MD5.F024449C97EC1E464AAFFDA18593DB88] - 20/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336]  =>.Microsoft Corporation
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544]  =>.Microsoft Corporation
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [80896]  =>.Microsoft Corporation
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888]  =>.Microsoft Corporation
[MD5.89CC31A9E81F840D914ABC2E3BD70F9C] - 12/05/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [124416]  =>.Microsoft Corporation
[MD5.A00996C9BFEF29A93B9F21DBE1DC502D] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [188928]  =>.Microsoft Corporation
[MD5.978E7A2E4BF4E8E70D0776EF0D9E97FB] - 11/01/2016 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1212352]  =>.Microsoft Windows®
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [79360]  =>.Microsoft Corporation
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848]  =>.Microsoft Corporation
[MD5.B973FCFC50DC1434E1970A146F7E3885] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133632]  =>.Microsoft Corporation
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168]  =>.Microsoft Corporation
[MD5.BB8817D0508DD5EA69C770C8DEF5AB67] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74752]  =>.Microsoft Corporation
[MD5.F497F67932C6FA693D7DE2780631CFE7] - 20/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [245632]  =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (22) - 4s
O23 - Service: Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\Program Files\IDT\WDM\AEstSrv.exe  =>.Andrea Electronics Corporation
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe  =>.AVAST Software a.s.®
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe  =>.Broadcom Corporation®
O23 - Service: Credential Vault Host Control Service (Credential Vault Host Control Service) . (.Broadcom Corporation - Host Control Application.) - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe {1F0637BA61ED9BD1536E17E44F3FEC1E}  =>.Broadcom Corporation
O23 - Service: Credential Vault Host Storage (Credential Vault Host Storage) . (.Broadcom Corporation - Host Storage Application.) - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe {1F0637BA61ED9BD1536E17E44F3FEC1E}  =>.Broadcom Corporation
O23 - Service: Dell Feature Enhancement Pack Service (DFEPService) . (.Dell Inc. - Dell - Dell Feature Enhancement Pack Servic.) - c:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe {61FCAA5700000000041A}  =>.Dell Inc.
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe  =>.Intel Corporation - Mobile Wireless Group®
O23 - Service: Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation - Intel® PROSet Monitoring Service.) - C:\Windows\System32\IProsetMonitor.exe  =>.Intel Corporation®
O23 - Service: Intel(R) Identity Protection Technology Host Interface Serv (jhi_service) . (.Intel Corporation - Intel  IPT Host Interface Service.) - C:\Program Files\Intel\Services\IPT\jhi_service.exe  =>.Intel® Identity Protection Technology Software®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe  =>.Intel Corporation®
O23 - Service: O2FLASH (O2FLASH) . (.O2Micro International - O2 Flash Memory Service.) - C:\Windows\System32\drivers\o2flash.exe  =>.O2Micro Inc.®
O23 - Service: O2SDIOAssist (O2SDIOAssist) . (...) - c:\Windows\System32\srvany.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe  =>.Intel Corporation - Mobile Wireless Group®
O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) . (.Sonic Solutions - RoxWatch12 Module.) - C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe  =>.Sonic Solutions®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe  =>.Skype Software Sarl®
O23 - Service: SpyHunter 4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC. - Service scanner interface.) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe  =>.Enigma Software Group USA, LLC®
O23 - Service: @C:\Windows\system32\stlang.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\stacsv.exe  =>.IDT, Inc.
O23 - Service: NTRU TSS v1.2.1.36 TCS (tcsd_win32.exe) . (...) - C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: TdmService (TdmService) . (.Wave Systems Corp. - TDM Service.) - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe  =>.Wave Systems Corp.®
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe  =>.Intel Corporation®
O23 - Service: Wave Authentication Manager Service (Wave Authentication Manager Service) . (.Wave Systems Corp. - WaveAMService.) - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe  =>.Wave Systems Corp.
O23 - Service: Intel(R) PROSet/Wireless ZeroConfig Service (ZcfgSvc7) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Zero Config Servic.) - C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe  =>.Intel(R) Corporation

---\\ Services not Microsoft (SR=Run, SS=Stop) (29) - 19s

SS - Demand [19/07/2016] [  270016]  Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe  =>.Adobe Systems Incorporated®
SR - Auto   [03/03/2009] [   81920]  Andrea ST Filters Service (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\IDT\WDM\AEstSrv.exe  =>.Andrea Electronics Corporation
SR - Auto   [07/07/2016] [  197128]  Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe  =>.AVAST Software a.s.®
SR - Auto   [08/02/2011] [  660768]  Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe  =>.Broadcom Corporation®
SR - Auto   [11/05/2011] [  826272]  Credential Vault Host Control Service (Credential Vault Host Control Service) . (.Broadcom Corporation.) - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe {1F0637BA61ED9BD1536E17E44F3FEC1E}  =>.Broadcom Corporation
SR - Auto   [11/05/2011] [   31648]  Credential Vault Host Storage (Credential Vault Host Storage) . (.Broadcom Corporation.) - C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe {1F0637BA61ED9BD1536E17E44F3FEC1E}  =>.Broadcom Corporation
SR - Auto   [24/08/2011] [ 1568664]  Dell Feature Enhancement Pack Service (DFEPService) . (.Dell Inc..) - c:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe {61FCAA5700000000041A}  =>.Dell Inc.
SR - Auto   [23/12/2010] [  936208]  Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe  =>.Intel Corporation - Mobile Wireless Group®
SR - Auto   [22/09/2010] [  110752]  Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\System32\IProsetMonitor.exe  =>.Intel Corporation®
SR - Auto   [24/02/2011] [  212944]  Intel(R) Identity Protection Technology Host Interface Serv (jhi_service) . (.Intel Corporation.) - C:\Program Files\Intel\Services\IPT\jhi_service.exe  =>.Intel® Identity Protection Technology Software®
SR - Auto   [09/08/2011] [  325912]  Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe  =>.Intel Corporation®
SS - Demand [28/06/2016] [  146888]  Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe  =>.Mozilla Corporation®
SR - Auto   [11/02/2010] [   72296]  O2FLASH (O2FLASH) . (.O2Micro International.) - C:\Windows\System32\drivers\o2flash.exe  =>.O2Micro Inc.®
SR - Auto   [19/04/2003] [    8192]  O2SDIOAssist (O2SDIOAssist) . (...) - c:\Windows\System32\srvany.exe
SR - Auto   [23/12/2010] [  481552]  Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe  =>.Intel Corporation - Mobile Wireless Group®
SS - Demand [25/11/2010] [ 1116656]  RoxMediaDB12OEM (RoxMediaDB12OEM) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe  =>.Sonic Solutions®
SS - Auto   [25/11/2010] [  219632]  Roxio Hard Drive Watcher 12 (RoxWatch12) . (.Sonic Solutions.) - C:\Program Files\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe  =>.Sonic Solutions®
SS - Demand [24/05/2011] [ 1508232]  SecureStorageService (SecureStorageService) . (.Wave Systems Corp..) - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Secure Storage Manager\SecureStorageService.exe  =>.Wave Systems Corp.®
SS - Auto   [23/05/2016] [  324224]  Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe  =>.Skype Software Sarl®
SS - Auto   [19/07/2016] [  797352]  SpyHunter 4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC..) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe  =>.Enigma Software Group USA, LLC®
SR - Auto   [25/01/2011] [  274514]  @C:\Windows\system32\stlang.dll (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\stacsv.exe  =>.IDT, Inc.
SR - Demand [03/08/2016] [ 1452320]  Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files\Common Files\Steam\SteamService.exe  =>.Valve®
SS - Demand [09/11/2010] [   74392]  stllssvr (stllssvr) . (.MicroVision Development, Inc..) - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe  =>.MicroVision Development Inc.®
SS - Auto   [17/02/2011] [ 1633280]  NTRU TSS v1.2.1.36 TCS (tcsd_win32.exe) . (...) - C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
SR - Auto   [28/05/2011] [ 2605424]  TdmService (TdmService) . (.Wave Systems Corp..) - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe  =>.Wave Systems Corp.®
SR - Auto   [09/08/2011] [ 2656536]  Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe  =>.Intel Corporation®
SR - Auto   [01/07/2011] [ 1131520]  Wave Authentication Manager Service (Wave Authentication Manager Service) . (.Wave Systems Corp..) - C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe  =>.Wave Systems Corp.
SR - Auto   [23/12/2010] [  577536]  Intel(R) PROSet/Wireless ZeroConfig Service (ZcfgSvc7) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe  =>.Intel(R) Corporation

---\\ Task Planned Automatically (13) - 5s
[MD5.00000000000000000000000000000000] [APT] [TaskName] (...) -- Task To Run (.not file.)   [0] (.Activate.)  =>.Superfluous.Empty
[MD5.32B31B696CB8E8F380831DFEB80A67E4] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe   [270016] (.Activate.)  =>.Adobe Systems Incorporated®
[MD5.932B0CBB2DFBFD4BC1843B16740E9CD6] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe   [1648720] (.Activate.)  =>.AVAST Software a.s.®
[MD5.6D51713A36C0733A4BDD94EAD5A33AD9] [APT] [HPCustParticipation HP Photosmart 5520 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPCustPartic.exe   [2938984] (.Activate.)  =>.Hewlett Packard®
[MD5.5FA35D553BE9D2279ECC0BD7A569A744] [APT] [SafeZone scheduled Autoupdate 1467920485] (.Avast Software.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe   [735736] (.Activate.)  =>.AVAST Software s.r.o.®
[MD5.24F0F4ADE02A0AE2C3208248DCD7285B] [APT] [SpyHunter4Startup] (.Enigma Software Group USA, LLC..) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe   [7445672] (.Activate.)  =>.Enigma Software Group USA, LLC®
[MD5.CD11D500328F07AE1666D046F94179E0] [APT] [AVAST Software] (.AVAST Software.) -- C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe   [702056] (.Activate.)  =>.AVAST Software a.s.®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job  [830]   =>.Adobe Systems Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater  [3768]   =>.Adobe Systems Incorporated®
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\Windows\System32\Tasks\avast! Emergency Update  [3922]   =>.AVAST Software a.s.®
O39 - APT: HPCustParticipation HP Photosmart 5520 series - (.Hewlett-Packard Co..) -- C:\Windows\System32\Tasks\HPCustParticipation HP Photosmart 5520 series  [3624]   =>.Hewlett Packard®
O39 - APT: SafeZone scheduled Autoupdate 1467920485 - (.Avast Software.) -- C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1467920485  [3890]   =>.AVAST Software s.r.o.®
O39 - APT: SpyHunter4Startup - (.Enigma Software Group USA, LLC..) -- C:\Windows\System32\Tasks\SpyHunter4Startup  [3330]   =>.Enigma Software Group USA, LLC®

---\\ Process running (50) - 1s
[MD5.A97FCA92BE4E62BC589371058CBC769E] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\stacsv.exe [274514] [PID.1160]  =>.IDT, Inc.
[MD5.816025E303A1DAE89E39D3D77CCBA2FB] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [936208] [PID.1504]  =>.Intel Corporation - Mobile Wireless Group®
[MD5.4F5D56FF81B8C0294E22DCC62136F253] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Zero Config Servic.) -- C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe [577536] [PID.1716]  =>.Intel(R) Corporation
[MD5.8EF7C84BB20329D6DCAC09CF6B19345A] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128] [PID.1768]  =>.AVAST Software a.s.®
[MD5.1D0CF63DF5F1E7C7D2A89ACB417A5B21] - (.UPEK Inc. - Fingerprint Server Process for Vista.) -- C:\Program Files\Common Files\SPBA\upeksvr.exe [57168] [PID.1824]  =>.UPEK Inc.®
[MD5.6AE7CBE46D1C6F92B5E037E4DE89C441] - (.Broadcom Corporation - Host Control Application.) -- C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [826272] [PID.932] {1F0637BA61ED9BD1536E17E44F3FEC1E}  =>.Broadcom Corporation
[MD5.9864058A3860B4C56E59FAF7D9A0ADED] - (.Broadcom Corporation - Host Storage Application.) -- C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [31648] [PID.1216] {1F0637BA61ED9BD1536E17E44F3FEC1E}  =>.Broadcom Corporation
[MD5.0BAD1BC9BA31218B682455182134537D] - (.Wave Systems Corp. - TDM Service.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe [2605424] [PID.1888]  =>.Wave Systems Corp.®
[MD5.827DBC22C96EECF6D36A13162FABAFD3] - (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) -- C:\Program Files\IDT\WDM\AEstSrv.exe [81920] [PID.2284]  =>.Andrea Electronics Corporation
[MD5.2A6008A9511330B7864B30A8B455AD0A] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [660768] [PID.2328]  =>.Broadcom Corporation®
[MD5.5953ED0990B6F10C9C4C36C7B80941FE] - (.Dell Inc. - Dell - Dell Feature Enhancement Pack Servic.) -- c:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe [1568664] [PID.2484] {61FCAA5700000000041A}  =>.Dell Inc.
[MD5.F2C6FB081B707863A0A21D639F325475] - (.Intel Corporation - Intel® PROSet Monitoring Service.) -- C:\Windows\System32\IProsetMonitor.exe [110752] [PID.2576]  =>.Intel Corporation®
[MD5.6C85719A21B3F62C2C76280F4BD36C7B] - (.Intel Corporation - Intel  IPT Host Interface Service.) -- C:\Program Files\Intel\Services\IPT\jhi_service.exe [212944] [PID.2612]  =>.Intel® Identity Protection Technology Software®
[MD5.4E37455DB16AEC75862B1D0BC35B589E] - (.O2Micro International - O2 Flash Memory Service.) -- C:\Windows\System32\drivers\o2flash.exe [72296] [PID.2680]  =>.O2Micro Inc.®
[MD5.4635935FC972C582632BF45C26BFCB0E] - (...) -- c:\Windows\System32\srvany.exe [8192] [PID.2700]
[MD5.B3BBFEB98C4B7FC5E3084498A68DA433] - (.O2Micro. - SDIOAssist.) -- c:\Windows\System32\SDIOAssist.exe [223848] [PID.2728]  =>.O2Micro Inc.®
[MD5.B064FC671688A9A1C5F46AE06E87F70D] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [481552] [PID.2740]  =>.Intel Corporation - Mobile Wireless Group®
[MD5.79E2E832DE566CFEDBF4E6DAFE73B959] - (.Wave Systems Corp. - WaveAMService.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe [1131520] [PID.2936]  =>.Wave Systems Corp.
[MD5.0A70F4022EC2E14C159EFC4F69AA2477] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1710464] [PID.2996]  =>.Microsoft Corporation®
[MD5.9C879E1C3B27085FB46EFECCD7120D51] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [193408] [PID.3216]  =>.Microsoft Corporation®
[MD5.24F0F4ADE02A0AE2C3208248DCD7285B] - (.Enigma Software Group USA, LLC. - SpyHunter4 application.) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [7445672] [PID.3784]  =>.Enigma Software Group USA, LLC®
[MD5.6103B6E41E588551189862453879E098] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe [505720] [PID.3816]  =>.Alps Electric Co., LTD.®
[MD5.12C864E55D5ED1A4061FA18BCCD80AC5] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe [536668] [PID.2568]  =>.IDT, Inc.
[MD5.A92AC5C2B800460316E2FBD99349ABF2] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1210640] [PID.2228]  =>.Intel Corporation - Mobile Wireless Group®
[MD5.A0EDCF34A355729CD4A38648A6142FE6] - (.Copyright (C) 2008 - FF_Protection MFC Application.) -- C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704] [PID.1928]  =>.STMicroelectronics®
[MD5.8817313A31DB7DEA4B2E329FB3AA90D3] - (.Dell Inc. - Dell Feature Enhancement Pack.) -- C:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe [6306712] [PID.3332] {61FCAA5700000000041A}  =>.Dell Inc.
[MD5.F928A70B855CF83E3CE9704BDD0BD895] - (.Wave Systems Corp. - Trusted Drive Manager User Notifier.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe [214384] [PID.3328]  =>.Wave Systems Corp.®
[MD5.F5FBA8724DE219E96D9ABAF4772D31A3] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [87336] [PID.4116]  =>.CyberLink®
[MD5.4164A47F3A2DA7EA44572904C3DF44A4] - (.Copyright 2008 - Roxio Burn Launcher.) -- C:\Program Files\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544] [PID.4320]  =>.Sonic Solutions®
[MD5.6AADCD86580327E42AC2E725A394E0CF] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [143640] [PID.4340]  =>.Intel Corporation®
[MD5.684578945B948339D02CE4FA38EEFF8A] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [176920] [PID.4348]  =>.Intel Corporation®
[MD5.3A26349CFFC98FB67A58A9797AEC5C66] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [178456] [PID.4372]  =>.Intel Corporation®
[MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [96056] [PID.4420]  =>.Hewlett-Packard Company®
[MD5.70050353213574B62CA9EC28F65F2F3E] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [8900328] [PID.4508]  =>.AVAST Software a.s.®
[MD5.B70EFFF003D51A94FCC4C6C66F5E610F] - (.Alps Electric Co., Ltd. - ApMsgFwd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe [57680] [PID.4548]  =>.Alps Electric Co., LTD.®
[MD5.DFC8186972EB21F75E5B532194AF4C3A] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver for Windows NT/.) -- C:\Program Files\DellTPad\ApntEx.exe [54640] [PID.4632]  =>.Alps Electric Co., LTD.®
[MD5.7A42A8E161DC32C5A40C5813ED64DF03] - (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\hidfind.exe [54744] [PID.4648]  =>.Alps Electric Co., LTD.®
[MD5.EE9D93E2688A461FE532A866E291111F] - (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe [2852128] [PID.4676]  =>.Valve®
[MD5.3DECBA13E02DDD8C75276A1836492131] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [29494400] [PID.5048]  =>.Skype Software Sarl®
[MD5.395BCC9122E705F6586217E32CD01CC9] - (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [1837672] [PID.5452]  =>.Hewlett Packard®
[MD5.14767A3B686BB46F600C2325D2689C8E] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [840992] [PID.5540]  =>.Broadcom Corporation®
[MD5.586CBBFC7162FF4B6B4CE3864A6FDD7C] - (.Microsoft - DellSmartSettings.) -- C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe [494488] [PID.5888] {61FCAA5700000000041A}  =>.Microsoft
[MD5.F4CC196E5633297C2122E5D7D92CE0EE] - (.Hewlett-Packard Co. - HPNetworkCommunicatorCom.) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe [790120] [PID.6120]  =>.Hewlett Packard®
[MD5.A1CB053A6376D99D4751CF1961EE593F] - (.Intel Corporation - Intel(R) Management and Security Status.) -- C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1923864] [PID.4808]  =>.Intel Corporation®
[MD5.D25980ADB2BAA5C57981407E67D3BC6E] - (.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files\Steam\bin\steamwebhelper.exe [2065696] [PID.2152]  =>.Valve®
[MD5.296268EE8C9427D49DDA579017014244] - (.Valve Corporation - Steam Client Service.) -- C:\Program Files\Common Files\Steam\SteamService.exe [1452320] [PID.2652]  =>.Valve®
[MD5.11B3252211948CED1ADB4547091B2FF1] - (.Broadcom Corporation. - Bluetooth Stack COM Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe [2852128] [PID.2780]  =>.Broadcom Corporation®
[MD5.519D66259DF1672AABCE9D2E0ACC5552] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325912] [PID.2588]  =>.Intel Corporation®
[MD5.1B71370AEC1115F80D9A4A209317C968] - (.Intel Corporation - User Notification Service.) -- C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656536] [PID.1516]  =>.Intel Corporation®
[MD5.CBA12209AB7AF17742771B364DD4B000] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\user 1\Downloads\ZHPDiag3(4).exe [2285056] [PID.5580]  =>.Nicolas Coolman

---\\ Google Chrome, Start,Search,Extensions (8) - 1s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest  =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (5) - 0s
M0 - MFSP: prefs.js [user 1 - 5o672l43.default] https://www.google.com 
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
P2 - EXT FILE: (...) -- C:\Users\user 1\AppData\Roaming\Mozilla\Firefox\Profiles\5o672l43.default\extensions\bingsearch.full@microsoft.com.xpi
P2 - EXT FILE: (...) -- C:\Users\user 1\AppData\Roaming\Mozilla\Firefox\Profiles\5o672l43.default\searchplugins\bing-.xml
P2 - FPN: [HKLM] [@alawar.com/npapi] - (.Alawar.) -- C:\Windows\npapi.dll

---\\ Internet Explorer Extensions, Start, Search (12) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avast.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.avast.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.avast.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.avast.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan  =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer, Proxy Management (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)  =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)  =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)  =>.Microsoft Corporation

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (31)

---\\ Browser Helper Object (BHO) (4) - 0s
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll  =>.AVAST Software a.s.®
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll  =>.Microsoft Corporation®
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll  =>.Skype Software Sarl®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll  =>.Sun Microsystems, Inc.®

---\\ Auto loading programs from Registry and folders (23) - 0s
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\DellTPad\Apoint.exe  =>.Alps Electric Co., LTD.®
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe  =>.IDT, Inc.
O4 - HKLM\..\Run: [IntelPROSet] . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Framework.) -- C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe  =>.Intel Corporation - Mobile Wireless Group®
O4 - HKLM\..\Run: [FreeFallProtection] . (.Copyright (C) 2008 - FF_Protection MFC Application.) -- C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe  =>.STMicroelectronics®
O4 - HKLM\..\Run: [IMSS] . (.Intel Corporation - PIcon startup utility.) -- C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe  =>.Intel Corporation®
O4 - HKLM\..\Run: [DFEPApplication] . (.Dell Inc. - Dell Feature Enhancement Pack.) -- c:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe {61FCAA5700000000041A}  =>.Dell Inc.
O4 - HKLM\..\Run: [TdmNotify] . (.Wave Systems Corp. - Trusted Drive Manager User Notifier.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe  =>.Wave Systems Corp.®
O4 - HKLM\..\Run: [RemoteControl9] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe  =>.CyberLink®
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] . (.CyberLink Corp. - PowerDVD Language Application.) -- C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe  =>.CyberLink®
O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe  =>.Valve®
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\user 1\AppData\Local\Microsoft\BingSvc\BingSvc.exe  =>.Microsoft Corporation®
O4 - HKCU\..\Run: [HP Photosmart 5520 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe  =>.Hewlett Packard®
O4 - HKCU\..\Run: [ctfmon] . (.Microsoft Corporation - CTF Loader.) -- C:\Windows\System32\ctfmon.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3511460339-1816064973-2629746193-1000\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files\Steam\Steam.exe  =>.Valve®
O4 - HKUS\S-1-5-21-3511460339-1816064973-2629746193-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - HKUS\S-1-5-21-3511460339-1816064973-2629746193-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\user 1\AppData\Local\Microsoft\BingSvc\BingSvc.exe  =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3511460339-1816064973-2629746193-1000\..\Run: [HP Photosmart 5520 series (NET)] . (.Hewlett-Packard Co. - ScanToPCActivationApp.) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe  =>.Hewlett Packard®
O4 - HKUS\S-1-5-21-3511460339-1816064973-2629746193-1000\..\Run: [ctfmon] . (.Microsoft Corporation - CTF Loader.) -- C:\Windows\System32\ctfmon.exe  =>.Microsoft Corporation

---\\ Global shortcuts Startup (27) - 2s
O4 - GS\Desktop [Administrator]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Users\user 1\ZHPCleaner.exe  =>.Nicolas Coolman
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrator]: UC浏览器.lnk . (...) C:\Program Files\UCBrowser\Application\UCBrowser.exe
O4 - GS\Startup [Administrator]: Smart Settings.lnk . (.Microsoft - DellSmartSettings.) C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe {61FCAA5700000000041A}  =>.Microsoft
O4 - GS\Desktop [Guest]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Users\user 1\ZHPCleaner.exe  =>.Nicolas Coolman
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\TaskBar [Guest]: UC浏览器.lnk . (...) C:\Program Files\UCBrowser\Application\UCBrowser.exe
O4 - GS\Startup [Guest]: Smart Settings.lnk . (.Microsoft - DellSmartSettings.) C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe {61FCAA5700000000041A}  =>.Microsoft
O4 - GS\Desktop [user 1]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Users\user 1\ZHPCleaner.exe  =>.Nicolas Coolman
O4 - GS\sendTo [user 1]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files\Skype\Phone\Skype.exe  =>.Skype Software Sarl®
O4 - GS\TaskBar [user 1]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\TaskBar [user 1]: UC浏览器.lnk . (...) C:\Program Files\UCBrowser\Application\UCBrowser.exe
O4 - GS\Startup [user 1]: Smart Settings.lnk . (.Microsoft - DellSmartSettings.) C:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe {61FCAA5700000000041A}  =>.Microsoft
O4 - GS\CommonDesktop [Public]: Avast Antivirus Gratuit.lnk . (.AVAST Software - avast! Antivirus.) C:\Program Files\AVAST Software\Avast\AvastUI.exe  =>.AVAST Software a.s.®
O4 - GS\CommonDesktop [Public]: Avast SafeZone Browser.lnk . (.Avast Software - Avast SafeZone Browser.) C:\Program Files\AVAST Software\SZBrowser\launcher.exe  =>.AVAST Software s.r.o.®
O4 - GS\CommonDesktop [Public]: eID Viewer.lnk . (.FedICT - Viewer for Belgian eID Cards.) C:\Program Files\Belgium Identity Card\EidViewer\eID Viewer.exe  =>.Fedict
O4 - GS\CommonDesktop [Public]: HP Photosmart 5520 series.lnk . (.Hewlett-Packard Co. - HP Printer Assistant.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HP Photosmart 5520 series.exe  =>.Hewlett Packard®
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe  =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe  =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Roxio Creator Starter.lnk . (.Copyright © Sonic Solutions - Roxio Creator.) C:\Program Files\Roxio\OEM\Roxio Central 5\RoxioCentralFx.exe  =>.Sonic Solutions®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) C:\Program Files\Steam\Steam.exe  =>.Valve®
O4 - GS\CommonDesktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) C:\Program Files\ZHPFix\ZHPhep.exe  =>.Nicolas Coolman
O4 - GS\Startup [Public]: Bluetooth.lnk . (.Broadcom Corporation. - Bluetooth Tray Application.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe  =>.Broadcom Corporation®
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc

---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{088661C6-CA68-46F6-8AA8-C1F8A28F0A99}: DhcpNameServer = 192.168.1.1

---\\ Extra protocols (25) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll  =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll  =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll  =>.Microsoft Corporation®
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll  =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll  =>.Microsoft Corporation
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll  =>.Microsoft Corporation®
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll  =>.Skype Software Sarl®
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll  =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll  =>.Microsoft Corporation®
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll  =>.Microsoft Corporation®
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation®

---\\ Software installed (81) - 10s
 Access  Access - (.Dell Inc..) [HKLM] -- {A7D91856-258D-4C87-8041-B170851CE432}  =>.Wave Systems Corp.®
 Access - (.Wave Systems Corp.) [HKLM] -- {ABBA2EA4-740E-4052-902B-9CA70B081E3F}  =>.Wave Systems Corp.®
 Drivers - (.Dell Inc..) [HKLM] -- {4E4E65EE-C456-45AC-B5AD-C62C3A325BD0}  =>.Dell Inc.
 Middleware - (.Dell Inc..) [HKLM] -- {841CBDD5-4BB5-403E-AEE3-2FADC3890BE8}  =>.Dell Inc.
O42 - Logiciel: AccelerometerP11 - (.STMicroelectronics.) [HKLM] -- {87434D51-51DB-4109-B68F-A829ECDCF380}  =>.STMicroelectronics
O42 - Logiciel: Adobe Flash Player 22 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX  =>.Adobe Systems Incorporated®
O42 - Logiciel: AdVenture Capitalist - (.Hyper Hippo Games.) [HKLM] -- Steam App 346900  =>.Valve®
O42 - Logiciel: Avast Antivirus Gratuit - (.AVAST Software.) [HKLM] -- Avast  =>.AVAST Software a.s.®
O42 - Logiciel: Belgium e-ID middleware 4.1.18 (build 1730) - (.Belgian Government.) [HKLM] -- {4DDF16AE-8D5D-4027-A2D1-8CBB498E1730}  =>.Belgian Government
O42 - Logiciel: BioAPI Framework - (.Dell Inc..) [HKLM] -- {9DAED4FC-2B0E-4F3F-8141-F2ABF02CCFCB}  =>.Dell Inc.
O42 - Logiciel: Custom - (.Wave Systems Corp..) [HKLM] -- {7206B668-FEE0-455B-BB1F-9B5A2E0EC94A}  =>.Wave Systems Corp.
O42 - Logiciel: CyberLink PowerDVD 9.5 - (.CyberLink Corp..) [HKLM] -- {A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}  =>.CyberLink®
O42 - Logiciel: CyberLink PowerDVD 9.5 - (.CyberLink Corp..) [HKLM] -- InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}  =>.CyberLink®
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}  =>.Microsoft
O42 - Logiciel: Dell Client System Update - (.Dell Inc..) [HKLM] -- {2B2B45B1-3CA0-4F8D-BBB3-AC77ED46A0FE}  =>.Dell Inc.
O42 - Logiciel: Dell ControlVault Host Components Installer - (.Broadcom Corporation.) [HKLM] -- {7FA89EC8-023D-4AEA-94E2-32820FBBDC44}  =>.Broadcom Corporation
O42 - Logiciel: Dell Data Protection O42 - Logiciel: Dell Edoc Viewer - (.Dell Inc.) [HKLM] -- {3138EAD3-700B-4A10-B617-B3F8096EE30D}  =>.Dell Inc
O42 - Logiciel: Dell Feature Enhancement Pack - (.Dell.) [HKLM] -- {992D1CE7-A20F-4AB0-9D9D-AFC3418844DA}  =>.Dell
O42 - Logiciel: Dell Touchpad - (.ALPS ELECTRIC CO., LTD..) [HKLM] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}  =>.Alps Electric Co., LTD.®
O42 - Logiciel: DellAccess - (.Wave Systems Corp..) [HKLM] -- {F839C6BD-E92E-48FA-9CE6-7BFAF94F7096}  =>.Wave Systems Corp.
O42 - Logiciel: DirectX 9 Runtime - (.Sonic Solutions.) [HKLM] -- {AF9E97C1-7431-426D-A8D5-ABE40995C0B1}  =>.Sonic Solutions
O42 - Logiciel: Edna & Harvey: Harvey's New Eyes - (.Daedalic Entertainment.) [HKLM] -- Steam App 219910  =>.Valve®
O42 - Logiciel: EMBASSY Security Center - (.Wave Systems Corp..) [HKLM] -- {EEAFE1E5-076B-430A-96D9-B567792AFA88}  =>.Wave Systems Corp.
O42 - Logiciel: Gemalto - (.Wave Systems Corp.) [HKLM] -- {0CCAF47C-E428-48C2-82B2-5F25CE1D67DA}  =>.Wave Systems Corp
O42 - Logiciel: HP Photosmart 5520 series Basic Device Software - (.Hewlett-Packard Co..) [HKLM] -- {E8ED5ADB-3EB5-4890-85F6-0FEA13A47EEE}  =>.Hewlett-Packard Co.
O42 - Logiciel: HP Photosmart 5520 series Help - (.Hewlett Packard.) [HKLM] -- {7137E26A-10F7-4B1C-9980-0893579E92DA}  =>.Hewlett Packard
O42 - Logiciel: HP Photosmart 5520 series Product Improvement Study - (.Hewlett-Packard Co..) [HKLM] -- {B58FBD4F-C69A-41C1-94AC-1A47AD946C91}  =>.Hewlett-Packard Co.
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2}  =>.Hewlett-Packard
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM] -- ProInst
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}  =>.Intel Corporation®
O42 - Logiciel: Intel(R) Identity Protection Technology 1.1.2.0 - (.Intel Corporation.) [HKLM] -- {C01A86F5-56E7-101F-9BC9-E3F1025EB779}  =>.Intel Corporation
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}  =>.Intel Corporation®
O42 - Logiciel: Intel(R) Network Connections 15.7.176.1 - (.Dell.) [HKLM] -- {8C9B6B1F-0A8E-402A-A60C-110BBB38D67E}  =>.Dell
O42 - Logiciel: Intel(R) Network Connections 15.7.176.1 - (.Dell.) [HKLM] -- PROSetDX  =>.Dell
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}  =>.Intel Corporation®
O42 - Logiciel: Intel(R) PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM] -- {4C1CCA11-0D08-4D5E-8444-2D9FB48BCABF}  =>.Intel Corporation
O42 - Logiciel: Java Auto Updater - (.Sun Microsystems, Inc..) [HKLM] -- {4A03706F-666A-4037-7777-5F2748764D10}  =>.Sun Microsystems, Inc.
O42 - Logiciel: Java(TM) 6 Update 27 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216027FF}  =>.Oracle
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}  =>.Microsoft Corporation
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.1.1043 - (.Malwarebytes.) [HKLM] -- Malwarebytes Anti-Malware_is1  =>.Malwarebytes
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM] -- {95120000-00B9-0409-0000-0000000FF1CE}  =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}  =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 47.0.1 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 47.0.1 (x86 en-US)  =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService  =>.Mozilla
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}  =>.Microsoft
O42 - Logiciel: NTRU TCG Software Stack - (.Security Innovation, Inc..) [HKLM] -- {414B7B9C-B353-4821-9393-78AE034079E7}
O42 - Logiciel: O2Micro Flash Memory Card Windows Driver - (.O2Micro International LTD..) [HKLM] -- {0CB3B7EE-52C7-4136-AF40-605567D90318}  =>.O2Micro International LTD.
O42 - Logiciel: O2Micro Flash Memory Card Windows Driver - (.O2Micro International LTD..) [HKLM] -- InstallShield_{0CB3B7EE-52C7-4136-AF40-605567D90318}  =>.O2Micro Inc.®
O42 - Logiciel: PC-CCID - (.Gemalto.) [HKLM] -- {BD3068DE-D53B-4CE8-B2BC-32E1323441CD}  =>.Gemalto
O42 - Logiciel: PhotoShowExpress - (.Sonic Solutions.) [HKLM] -- {3250260C-7A95-4632-893B-89657EB5545B}  =>.Sonic Solutions
O42 - Logiciel: Preboot Manager - (.Wave Systems Corp..) [HKLM] -- {3A6BE9F4-5FC8-44BB-BE7B-32A29607FEF6}  =>.Wave Systems Corp.
O42 - Logiciel: Private Information Manager - (.Wave Systems Corp..) [HKLM] -- {0B0A2153-58A6-4244-B458-25EDF5FCD809}  =>.Wave Systems Corp.
O42 - Logiciel: Roxio Activation Module - (.Roxio.) [HKLM] -- {A121EEDE-C68F-461D-91AA-D48BA226AF1C}  =>.Roxio
O42 - Logiciel: Roxio BackOnTrack - (.Roxio.) [HKLM] -- {5A06423A-210C-49FB-950E-CB0EB8C5CEC7}  =>.Roxio
O42 - Logiciel: Roxio Burn - (.Roxio.) [HKLM] -- {7746BFAA-2B5D-4FFD-A0E8-4558F4668105}  =>.Roxio
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM] -- {6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}  =>.Sonic Solutions®
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM] -- {EF56258E-0326-48C5-A86C-3BAC26FC15DF}  =>.Roxio
O42 - Logiciel: Roxio Creator Starter - (.Roxio.) [HKLM] -- {F06B5C4C-8D2E-4B24-9D43-7A45EEC6C878}  =>.Roxio
O42 - Logiciel: Roxio Express Labeler 3 - (.Roxio.) [HKLM] -- {6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}  =>.Roxio
O42 - Logiciel: Roxio File Backup - (.Roxio.) [HKLM] -- {60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}  =>.Roxio
O42 - Logiciel: SafeZone Stable 1.48.2066.114 - (.Avast Software.) [HKLM] -- SafeZone 1.48.2066.114  =>.AVAST Software s.r.o.®
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}  =>.Microsoft Corporation
O42 - Logiciel: Skype™ 7.26 - (.Skype Technologies S.A..) [HKLM] -- {FC965A47-4839-40CA-B618-18F486F042C6}  =>.Skype Technologies S.A.
O42 - Logiciel: Sonic CinePlayer Decoder Pack - (.Sonic Solutions.) [HKLM] -- {9A00EC4E-27E1-42C4-98DD-662F32AC8870}  =>.Sonic Solutions
O42 - Logiciel: SPBA 5.9 - (.UPEK Inc..) [HKLM] -- {2EECD5EF-5095-467C-B80C-4AB3096EFD60}  =>.UPEK Inc.
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM] -- Steam  =>.Valve®
O42 - Logiciel: The Night of the Rabbit - (.Daedalic Entertainment.) [HKLM] -- Steam App 230820  =>.Valve®
O42 - Logiciel: The Whispered World Special Edition - (.Daedalic Entertainment.) [HKLM] -- Steam App 268540  =>.Valve®
O42 - Logiciel: Trusted Drive Manager - (.Wave Systems Corp..) [HKLM] -- {6AC87FB3-ACFC-4416-890C-8976D5A9B371}  =>.Wave Systems Corp.
O42 - Logiciel: Upek Touchchip Fingerprint Reader - (.Dell Inc..) [HKLM] -- {4E60E212-3177-4B16-BCB3-616CCC52357D}  =>.Dell Inc.
O42 - Logiciel: VASCO Card Reader Plug-In (32-Bit) - (.VASCO Data Security.) [HKLM] -- {47659F12-27AE-3200-9B8A-2BD803020304}  =>.VASCO Data Security
O42 - Logiciel: VASCO Smart Card Reader Plug-In (User) - (.VASCO Data Security.) [HKCU] -- {c77cb28d-ddd3-46f7-b51a-14a599127ba7}  =>.Vasco Data Security International GmbH®
O42 - Logiciel: Wave Infrastructure Installer - (.Wave Systems Corp.) [HKLM] -- {63CD55E5-2938-46FA-88E6-AE8EADDC7937}  =>.Wave Systems Corp
O42 - Logiciel: Wave Support Software Installer - (.Wave Systems Corp.) [HKLM] -- {07D618CD-B016-438A-ADC9-A75BD23F85CE}  =>.Wave Systems Corp
O42 - Logiciel: WIDCOMM Bluetooth Software - (.Broadcom Corporation.) [HKLM] -- {436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}  =>.Broadcom Corporation
O42 - Logiciel: Windows Driver Package - Dell Inc. PBADRV System  (09/11/2009 1.0.1.6) - (.Dell Inc..) [HKLM] -- 9512AA21B791B05A54E27065C45BBC417AB282DF  =>.Microsoft Windows®
O42 - Logiciel: Windows Driver Package - Fedict SmartCard  (08/08/2015 4.1.5) - (.Fedict.) [HKLM] -- 9F46F7AB1E3B1B5F5482EA8D97F401B04FBF7958  =>.Microsoft Windows®
O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1  =>.Nicolas Coolman

---\\ HKCU & HKLM Software Keys (99) - 10s
HKLM\SOFTWARE\360Safe
HKLM\SOFTWARE\AdsFix
HKLM\SOFTWARE\Alps
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\Axalto
HKLM\SOFTWARE\BEID
HKLM\SOFTWARE\BioAPI
HKLM\SOFTWARE\Broadcom
HKLM\SOFTWARE\BSD
HKLM\SOFTWARE\CBSTEST
HKLM\SOFTWARE\CyberLink
HKLM\SOFTWARE\Data Fellows
HKLM\SOFTWARE\Debug
HKLM\SOFTWARE\Dell
HKLM\SOFTWARE\Dell Computer Corporation
HKLM\SOFTWARE\Dell Inc.
HKLM\SOFTWARE\EnigmaSoftwareGroup
HKLM\SOFTWARE\ESET
HKLM\SOFTWARE\F-Secure
HKLM\SOFTWARE\FreeFallProtection
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\HitmanPro
HKLM\SOFTWARE\HP
HKLM\SOFTWARE\IDT
HKLM\SOFTWARE\illiminable
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\InstalledOptions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Lake
HKLM\SOFTWARE\LiveUpdate360
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\ManageableUpdatePackage
HKLM\SOFTWARE\MicroVision
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NTRU Cryptosystems
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Protector Suite
HKLM\SOFTWARE\Protector Suite QL
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Roxio
HKLM\SOFTWARE\RSA
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Software
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\STMicroelectronics
HKLM\SOFTWARE\Sysinternals
HKLM\SOFTWARE\UtilTool
HKLM\SOFTWARE\Valve
HKLM\SOFTWARE\Visan
HKLM\SOFTWARE\vtapi
HKLM\SOFTWARE\Wave Systems Corp
HKLM\SOFTWARE\Wave Systems Corp.
HKLM\SOFTWARE\Widcomm
HKLM\SOFTWARE\WOW6432Node
HKCU\SOFTWARE\AdsFix
HKCU\SOFTWARE\Alawar
HKCU\SOFTWARE\Alawar111
HKCU\SOFTWARE\Alps
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\AVAST Software
HKCU\SOFTWARE\BEID
HKCU\SOFTWARE\Bitdefender
HKCU\SOFTWARE\BSD
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\cks
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Dell
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\Hyper Hippo Productions Ltd.
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Ludashi
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\PopWnd
HKCU\SOFTWARE\Roxio
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SNDA
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\UtilTool
HKCU\SOFTWARE\Valve
HKCU\SOFTWARE\VASCO
HKCU\SOFTWARE\Visan
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contents of the Common Files folders (185) - 24s
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files\AVAST Software  =>.AVAST Software s.r.o.®
O43 - CFD: 18/06/2016 - [] D -- C:\Program Files\BeID Minidriver
O43 - CFD: 18/06/2016 - [] D -- C:\Program Files\Belgium Identity Card
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Broadcom Corporation {1F0637BA61ED9BD1536E17E44F3FEC1E}
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Cisco
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Common Files
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\CyberLink  =>.CyberLink®
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Dell {61FCAA5700000000041A}
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Dell Inc
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\DellTPad  =>.Alps Electric Co., LTD.®
O43 - CFD: 18/06/2016 - [] D -- C:\Program Files\DIFX  =>.Microsoft Windows®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Enigma Software Group  =>.Enigma Software Group USA, LLC®
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Gemalto
O43 - CFD: 19/07/2016 - [] D -- C:\Program Files\Google
O43 - CFD: 04/07/2016 - [] D -- C:\Program Files\Hewlett-Packard  =>.Hewlett-Packard Company®
O43 - CFD: 04/07/2016 - [] D -- C:\Program Files\HP  =>.Hewlett-Packard Company®
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\IDT
O43 - CFD: 22/10/2011 - [] HD -- C:\Program Files\InstallShield Installation Information  =>.CyberLink®
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Intel  =>.Microsoft Windows®
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Java  =>.Sun Microsystems, Inc.®
O43 - CFD: 06/07/2016 - [] D -- C:\Program Files\LDSGameCenter  =>.Qihoo 360 Software (Beijing) Company Limited®
O43 - CFD: 08/08/2016 - [] D -- C:\Program Files\LuDaShi {26279F0F2F11970DCCF63EBA88F2D4C4}
O43 - CFD: 06/07/2016 - [] D -- C:\Program Files\Malwarebytes Anti-Malware  =>.Malwarebytes Corporation®
O43 - CFD: 20/07/2016 - [0] D -- C:\Program Files\Microsoft
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Microsoft Silverlight  =>.Microsoft Corporation®
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 10/02/2011 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 29/06/2016 - [] D -- C:\Program Files\Mozilla Firefox  =>.Mozilla Corporation®
O43 - CFD: 29/06/2016 - [] D -- C:\Program Files\Mozilla Maintenance Service  =>.Mozilla Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\NTRU Cryptosystems
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\O2Micro
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Roxio  =>.MicroVision Development Inc.®
O43 - CFD: 01/08/2016 - [] RD -- C:\Program Files\Skype  =>.Skype Software Sarl®
O43 - CFD: 08/08/2016 - [] D -- C:\Program Files\Steam  =>.Valve®
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\STMicroelectronics  =>.STMicroelectronics®
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 06/07/2016 - [] D -- C:\Program Files\UtilTool {324728EED9FB931B303E33CC10EB21D8}
O43 - CFD: 20/07/2016 - [0] D -- C:\Program Files\VS Revo Group
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\WIDCOMM  =>.Broadcom Corporation®
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Windows Live  =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Photo Viewer  =>.Microsoft Corporation®
O43 - CFD: 20/11/2010 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 08/08/2016 - [] D -- C:\Program Files\ZHPFix
O43 - CFD: 11/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/02/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 18/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belgium - eID
O43 - CFD: 08/08/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 9.5
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 21/11/2010 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 05/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 22/10/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Creator Starter
O43 - CFD: 15/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 22/10/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 15/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 21/11/2010 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 22/10/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 08/08/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
O43 - CFD: 08/07/2016 - [] D -- C:\ProgramData\AlawarWrapper
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Application Data
O43 - CFD: 07/07/2016 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Broadcom
O43 - CFD: 06/07/2016 - [] D -- C:\ProgramData\BSD
O43 - CFD: 06/07/2016 - [] D -- C:\ProgramData\clp
O43 - CFD: 11/05/2016 - [] D -- C:\ProgramData\Dell
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Documents
O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\F-Secure
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 21/07/2016 - [] D -- C:\ProgramData\HitmanPro
O43 - CFD: 04/07/2016 - [] D -- C:\ProgramData\HP
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Intel
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 06/07/2016 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 20/07/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 07/07/2016 - [] D -- C:\ProgramData\NETC
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\NTRU Cryptosystems
O43 - CFD: 18/06/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\PhotoShow Shared Assets
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Roxio
O43 - CFD: 01/08/2016 - [] D -- C:\ProgramData\Skype
O43 - CFD: 20/07/2016 - [] D -- C:\ProgramData\Sonic
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Sun
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Templates
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Uninstall
O43 - CFD: 06/07/2016 - [] D -- C:\ProgramData\UtilTool
O43 - CFD: 04/07/2016 - [] D -- C:\ProgramData\Visan
O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\Wave Systems Corp
O43 - CFD: 07/07/2016 - [] D -- C:\Program Files\Common Files\AV
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\CyberLink
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\Intel
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\postureAgent
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 15/05/2016 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\SPBA
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 03/08/2016 - [] D -- C:\Program Files\Common Files\Steam
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 20/07/2016 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 22/10/2011 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Adobe
O43 - CFD: 07/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\AVAST Software
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Enigma Software Group
O43 - CFD: 15/05/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Five-BN Games
O43 - CFD: 16/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\HpUpdate
O43 - CFD: 11/05/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Identities
O43 - CFD: 11/05/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Intel
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Kuaizip
O43 - CFD: 08/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Legendary Mahjong
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\lockhomepage
O43 - CFD: 08/08/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Ludashi
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Macromedia
O43 - CFD: 21/11/2010 - [0] D -- C:\Users\user 1\AppData\Roaming\Media Center Programs
O43 - CFD: 20/07/2016 - [] SD -- C:\Users\user 1\AppData\Roaming\Microsoft
O43 - CFD: 12/05/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Mozilla
O43 - CFD: 08/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Opera Software
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Profiles
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\QuickScan
O43 - CFD: 11/05/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Roxio
O43 - CFD: 05/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Roxio Burn
O43 - CFD: 08/08/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Skype
O43 - CFD: 06/07/2016 - [0] D -- C:\Users\user 1\AppData\Roaming\Softlink
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\steam.transformice.com
O43 - CFD: 06/07/2016 - [0] D -- C:\Users\user 1\AppData\Roaming\tmp
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\UtilTool
O43 - CFD: 20/05/2016 - [] D -- C:\Users\user 1\AppData\Roaming\VASCO
O43 - CFD: 08/08/2016 - [] D -- C:\Users\user 1\AppData\Roaming\ZHP
O43 - CFD: 08/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Alawar
O43 - CFD: 08/07/2016 - [] D -- C:\Users\user 1\AppData\Local\AlawarWrapper
O43 - CFD: 11/05/2016 - [] SHD -- C:\Users\user 1\AppData\Local\Application Data
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Apps
O43 - CFD: 11/05/2016 - [] D -- C:\Users\user 1\AppData\Local\Broadcom
O43 - CFD: 15/05/2016 - [] D -- C:\Users\user 1\AppData\Local\CEF
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Daedalic Entertainment
O43 - CFD: 11/05/2016 - [] D -- C:\Users\user 1\AppData\Local\Dell
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Diagnostics
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Local\ElevatedDiagnostics
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Local\F-Secure
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Google
O43 - CFD: 17/07/2016 - [] D -- C:\Users\user 1\AppData\Local\GWX
O43 - CFD: 11/05/2016 - [] SHD -- C:\Users\user 1\AppData\Local\History
O43 - CFD: 04/07/2016 - [] D -- C:\Users\user 1\AppData\Local\HP
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Microsoft
O43 - CFD: 15/05/2016 - [] D -- C:\Users\user 1\AppData\Local\Mozilla
O43 - CFD: 20/05/2016 - [] D -- C:\Users\user 1\AppData\Local\Package Cache
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Profiles
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Programs
O43 - CFD: 15/05/2016 - [] D -- C:\Users\user 1\AppData\Local\Steam
O43 - CFD: 08/08/2016 - [] D -- C:\Users\user 1\AppData\Local\Temp
O43 - CFD: 11/05/2016 - [] SHD -- C:\Users\user 1\AppData\Local\Temporary Internet Files
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Local\UCBrowser
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Local\VirtualStore
O43 - CFD: 07/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Wave Systems Corp
O43 - CFD: 08/07/2016 - [] D -- C:\Users\user 1\AppData\Local\Yandex
O43 - CFD: 06/07/2016 - [0] D -- C:\Users\user 1\AppData\Local\Programs\Common
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\user 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 20/07/2016 - [] RD -- C:\Users\user 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\user 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
O43 - CFD: 20/07/2016 - [] RD -- C:\Users\user 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 06/07/2016 - [] D -- C:\Users\user 1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
O43 - CFD: 20/07/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\ESET
O43 - CFD: 18/07/2016 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft

---\\ ShellIconOverlayIdentifiers (SIOI) (6) - 0s
O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll  =>.AVAST Software a.s.®
O106 - SIOI: FdeInitIcon Class [EnabledUnlockedFDEIconOverlay] - {30D3C2AF-9709-4D05-9CF4-13335F3C1E4A}. (.Wave Systems Corp. - TDM Icon Overlay.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll  =>.Wave Systems Corp.®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll  =>.Microsoft Corporation
O106 - SIOI:  [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\Windows\System32\cscui.dll  =>.Microsoft Corporation
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll  =>.Microsoft Corporation
O106 - SIOI: FdeUninitIcon Class [UninitializedFdeIconOverlay] - {CF08DA3E-C97D-4891-A66B-E39B28DD270F}. (.Wave Systems Corp. - TDM Icon Overlay.) -- C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmIconOverlay.dll  =>.Wave Systems Corp.®

---\\ System Drivers List (100) - 7s
O58 - SDL:2016/04/12 10:47:56 A . (.Advanced Card Systems Ltd - PCSC/CCID IFD Handler.) -- C:\Windows\System32\drivers\a38usb.sys   [37632]  =>.Advanced Card Systems Ltd
O58 - SDL:2011/07/22 22:28:26 A . (.ST Microelectronics - Accelerometer Port I/O.) -- C:\Windows\System32\drivers\accelern.sys   [44144]  =>.STMicroelectronics®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys   [422976]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys   [297552]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys   [146512]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys   [14400]  =>.Microsoft Windows®
O58 - SDL:2011/10/22 09:54:40 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys   [80256]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys   [159312]  =>.Microsoft Windows®
O58 - SDL:2011/10/22 09:54:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys   [22400]  =>.Microsoft Windows®
O58 - SDL:2011/05/26 20:50:30 A . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\System32\drivers\Apfiltr.sys   [305488]  =>.Alps Electric Co., LTD.®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys   [76368]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys   [86608]  =>.Microsoft Windows®
O58 - SDL:2016/07/07 21:34:01 A . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\drivers\aswHwid.sys   [34008]  =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2016/07/07 21:40:21 A . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\drivers\aswKbd.sys   [35096]  =>.AVAST Software a.s.®
O58 - SDL:2016/07/07 21:34:01 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\drivers\aswMonFlt.sys   [91680]  =>.AVAST Software a.s.®
O58 - SDL:2016/07/07 21:34:01 A . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys   [91232]  =>.AVAST Software a.s.®
O58 - SDL:2016/07/07 21:34:01 A . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys   [60424]  =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2016/07/07 21:33:22 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys   [816304]  =>.AVAST Software a.s.®
O58 - SDL:2016/07/16 21:38:23 A . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\drivers\aswsp.sys   [438296]  =>.AVAST Software a.s.®
O58 - SDL:2016/07/07 21:34:01 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswStm.sys   [118152]  =>.AVAST Software a.s.®
O58 - SDL:2016/08/05 22:20:25 A . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\drivers\aswvmm.sys   [224616]  =>.AVAST Software a.s.® (ALWIL Software)
O58 - SDL:2009/07/14 00:02:49 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60x.sys   [229888]  =>.Broadcom Corporation
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys   [13568]  =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys   [5248]  =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys   [272128]  =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys   [62336]  =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys   [12160]  =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys   [11904]  =>.Brother Industries Ltd.
O58 - SDL:2011/10/22 08:13:42 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys   [302120]  =>.Broadcom Corporation®
O58 - SDL:2011/10/22 08:13:42 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys   [93224]  =>.Broadcom Corporation®
O58 - SDL:2011/10/22 08:13:42 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys   [114728]  =>.Broadcom Corporation®
O58 - SDL:2011/10/22 08:13:42 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys   [33832]  =>.Broadcom Corporation®
O58 - SDL:2011/10/22 08:13:42 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys   [18728]  =>.Broadcom Corporation®
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys   [430080]  =>.Broadcom Corporation
O58 - SDL:2009/10/20 10:00:00 A . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\Windows\System32\drivers\cdr4_xp.sys   [9072]  =>.Sonic Solutions®
O58 - SDL:2009/10/20 10:00:00 A . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\drivers\cdralw2k.sys   [9200]  =>.Sonic Solutions®
O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys   [15952]  =>.Microsoft Windows®
O58 - SDL:2011/05/10 21:05:48 A . (.Broadcom Corporation - Broadcom Credential Vault USB Driver.) -- C:\Windows\System32\drivers\cvusbdrv.sys   [33896] {1F0637BA61ED9BD1536E17E44F3FEC1E}  =>.Broadcom Corporation
O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys   [70720]  =>.Microsoft Windows®
O58 - SDL:2010/10/28 17:41:02 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1c6232.sys   [238760]  =>.Intel Corporation®
O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys   [453712]  =>.Microsoft Windows®
O58 - SDL:2016/07/19 15:57:54 A . (...) -- C:\Windows\System32\drivers\EsgScanner.sys   [19984]  =>.Enigma Software Group USA, LLC®
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys   [3100160]  =>.Broadcom Corporation
O58 - SDL:2011/07/20 00:24:20 A . (.Dell Inc. - Dell Tablet PC Key Button HID Driver.) -- C:\Windows\System32\drivers\HBtnKey.sys   [11008]  =>.Dell Inc.
O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys   [26624]  =>.Hauppauge Computer Works, Inc.
O58 - SDL:2010/10/20 04:33:40 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECI.sys   [41088]  =>.Intel Corporation
O58 - SDL:2016/07/21 07:06:06 A . (.© 2014 SurfRight B.V. - HitmanPro 3.7 Support Driver.) -- C:\Windows\System32\drivers\hitmanpro37.sys   [39280]  =>.SurfRight B.V.®
O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys   [67152]  =>.Microsoft Windows®
O58 - SDL:2010/09/20 15:32:40 A . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\System32\drivers\iANSW60.sys   [136416]  =>.Intel Corporation®
O58 - SDL:2010/11/06 04:39:18 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\Windows\System32\drivers\iaStor.sys   [354840]  =>.Intel Corporation®
O58 - SDL:2011/10/22 09:54:40 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys   [332160]  =>.Microsoft Windows®
O58 - SDL:2011/04/05 03:02:20 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys   [10542080]  =>.Intel Corporation
O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys   [41040]  =>.Microsoft Windows®
O58 - SDL:2010/02/27 02:31:24 A . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\System32\drivers\Impcd.sys   [132480]  =>.Intel Corporation
O58 - SDL:2010/10/15 11:27:18 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys   [269824]  =>.Intel(R) Corporation
O58 - SDL:2010/09/17 10:02:22 A . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\System32\drivers\iqvw32.sys   [30368]  =>.Intel Corporation®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys   [95824]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys   [89168]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys   [54864]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys   [96848]  =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:08:52 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys   [24448]  =>.Malwarebytes Corporation®
O58 - SDL:2016/03/10 14:08:56 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys   [126336]  =>.Malwarebytes Corporation®
O58 - SDL:2016/07/20 22:10:23 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys   [170200]  =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys   [30800]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys   [235584]  =>.Microsoft Windows®
O58 - SDL:2016/03/10 14:09:04 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys   [53120]  =>.Malwarebytes Corporation®
O58 - SDL:2010/12/21 21:07:44 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\drivers\NETwNs32.sys   [7434240]  =>.Intel Corporation
O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys   [44624]  =>.Microsoft Windows®
O58 - SDL:2011/10/22 09:54:40 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys   [117120]  =>.Microsoft Windows®
O58 - SDL:2011/10/22 09:54:40 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys   [143744]  =>.Microsoft Windows®
O58 - SDL:2011/01/04 23:44:06 A . (.O2Micro - O2Micro Media Reader Driver.) -- C:\Windows\System32\drivers\o2mdfw7.sys   [60904]  =>.O2Micro Inc.®
O58 - SDL:2011/01/05 00:41:58 A . (.O2Micro - O2Micro Media Reader Driver.) -- C:\Windows\System32\drivers\O2MDRw7.sys   [62440]  =>.O2Micro Inc.®
O58 - SDL:2011/03/23 23:50:58 A . (.O2Micro - O2Micro SD Reader Driver.) -- C:\Windows\System32\drivers\o2sdjw7.sys   [63976]  =>.O2Micro Inc.®
O58 - SDL:2010/07/21 20:13:40 A . (.Dell Inc - PBA Support Driver.) -- C:\Windows\System32\drivers\PBADRV.sys   [26608]  =>.Dell Inc.®
O58 - SDL:2010/03/19 10:00:00 A . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\drivers\pxhelp20.sys   [45648]  =>.Sonic Solutions®
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys   [1383488]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys   [106064]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys   [20480]  =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys   [40016]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys   [77888]  =>.Microsoft Windows®
O58 - SDL:2011/07/16 06:30:50 A . (.ST Microelectronics - Disk Class Filter Driver for Accelerometer.) -- C:\Windows\System32\drivers\stdcfltn.sys   [17904]  =>.STMicroelectronics®
O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise  SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys   [21072]  =>.Microsoft Windows®
O58 - SDL:2011/01/25 11:57:18 A . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\drivers\stwrt.sys   [435200]  =>.IDT, Inc.
O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys   [16976]  =>.Microsoft Windows®
O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys   [141904]  =>.Microsoft Windows®
O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\Windows\System32\country.sys   [27097]
O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS   [4768]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS   [42809]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS   [42537]
O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS   [27866]
O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS   [29146]
O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS   [29370]
O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS   [29274]
O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS   [29146]
O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS   [33952]
O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS   [34672]
O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS   [35776]
O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS   [35536]
O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS   [34672]

---\\ Last modified or created user files (7) - 75s
O61 - LFC: 2016/08/07 07:12:12 A . (..) -- C:\Users\user 1\Downloads\CKScanner(1).exe   [468480]
O61 - LFC: 2016/08/07 07:16:51 A . (..) -- C:\Users\user 1\Downloads\CKScanner(2).exe   [468480]
O61 - LFC: 2016/08/07 07:18:48 A . (..) -- C:\Users\user 1\Downloads\CKScanner(3).exe   [468480]
O61 - LFC: 2016/08/07 07:19:39 A . (..) -- C:\Users\user 1\Downloads\ckscanner(4).exe   [468480]
O61 - LFC: 2016/08/07 07:11:41 A . (..) -- C:\Users\user 1\Downloads\CKScanner.exe   [468480]
O61 - LFC: 2016/08/07 07:05:06 A . (..) -- C:\Users\user 1\Downloads\winchk_2.0(1).exe   [315000]
O61 - LFC: 2016/08/07 07:08:57 A . (..) -- C:\Users\user 1\Downloads\winchk_2.0(2).exe   [315000]

---\\ File Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe  =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S

---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe   =>.Mozilla Corporation®
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe   =>.Microsoft Corporation®
O68 - StartMenuInternet: <SafeZoneStable> <SafeZone Stable>[HKLM\..\Shell\open\Command] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe   =>.AVAST Software s.r.o.®
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <SafeZoneStable> <SafeZone Stable>[HKLM\..\InstallInfo\ShowIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe  =>.AVAST Software
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <SafeZoneStable> <SafeZone Stable>[HKLM\..\InstallInfo\ReinstallCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe  =>.AVAST Software
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe  =>.Mozilla Corporation
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe  =>.Microsoft Corporation
O68 - StartMenuInternet: <SafeZoneStable> <SafeZone Stable>[HKLM\..\InstallInfo\HideIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe  =>.AVAST Software

---\\ Search Browser Infection (2) - 9s
O69 - SBI: SearchScopes [HKCU] {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} [DefaultScope] - (Avast Search) - http://search.avast.com/
O69 - SBI: SearchScopes [HKLM] {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} [DefaultScope] - (Avast Search) - http://search.avast.com/

---\\ Search Svchost Services (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll   [62464]  =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll   [67584]  =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll   [67584]  =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll   [168960]  =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll   [606720]  =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL   [679424]  =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\audiosrv.dll   [475136]  =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll   [90624]  =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll   [286208]  =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll   [75264]  =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll   [49664]  =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll   [300544]  =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll   [242176]  =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll   [523776]  =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll   [2062848]  =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll   [585728]  =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll   [328192]  =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll   [499712]  =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll   [21504]  =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll   [47104]  =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll   [114688]  =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\System32\mmcss.dll   [49664]  =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll   [61440]  =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll   [98304]  =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [164864]  =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll   [751104]  =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\System32\KMSVC.DLL   [71168]  =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll   [113664]  =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [168960]  =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll   [102912]  =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll   [37376]  =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll   [76800]  =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll   [149504]  =>.Microsoft Corporation

---\\ Firewall Active Exception List (8) - 3s
O87 - FAEL: "{696AE843-B34E-4F4E-B57F-F833BA6E6F4C}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe  =>.Steam SteamApps Games
O87 - FAEL: "{EA462E53-B456-4193-A95D-32B3DB0A6361}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe  =>.Steam SteamApps Games
O87 - FAEL: "{D1D9718C-50B4-479A-9A15-59917D90803F}" [In-None-P6-TRUE] .(.Daedalic Entertainment GmbH - Visionaire Player for Edna & Harvey: Harvey.) -- C:\Program Files\Steam\steamapps\common\Edna and Harvey Harvey's New Eyes\harvey.exe  =>.Steam SteamApps Games
O87 - FAEL: "{08367601-D0F2-4251-B961-8C65AB50617D}" [In-None-P17-TRUE] .(.Daedalic Entertainment GmbH - Visionaire Player for Edna & Harvey: Harvey.) -- C:\Program Files\Steam\steamapps\common\Edna and Harvey Harvey's New Eyes\harvey.exe  =>.Steam SteamApps Games
O87 - FAEL: "{BED1FD0C-6F24-43E2-990A-8444CFFF80A3}" [In-None-P6-TRUE] .(.Daedalic Entertainment GmbH - The Whispered World Special Edition.) -- C:\Program Files\Steam\steamapps\common\The Whispered World Special Edition\twwse.exe  =>.Steam SteamApps Games
O87 - FAEL: "{A973FC62-62E7-45E6-B32F-C69FC16EB7C2}" [In-None-P17-TRUE] .(.Daedalic Entertainment GmbH - The Whispered World Special Edition.) -- C:\Program Files\Steam\steamapps\common\The Whispered World Special Edition\twwse.exe  =>.Steam SteamApps Games
O87 - FAEL: "{33999F58-B278-426B-AD59-6CED35CF4C0E}" [In-None-P6-TRUE] .(.Daedalic Entertainment GmbH - Visionaire Player for The Night of the Rabb.) -- C:\Program Files\Steam\steamapps\common\The Night of the Rabbit\rabbit.exe  =>.Steam SteamApps Games
O87 - FAEL: "{84713880-D261-401D-A8E9-7F002D398A72}" [In-None-P17-TRUE] .(.Daedalic Entertainment GmbH - Visionaire Player for The Night of the Rabb.) -- C:\Program Files\Steam\steamapps\common\The Night of the Rabbit\rabbit.exe  =>.Steam SteamApps Games

---\\ Additional Scan (O88) (1) - 0s
~ No malicious or unnecessary items found.

---\\ Summary of the elements found (1) - 0s
~ No malicious or unnecessary items found.

~ End of the scan, 29025 items in 00h02mn59s (915)