~ ZHPDiag v2017.5.18.83 By Nicolas Coolman (2017/05/18) ~ Run by Antonin (Administrator) (2017/05/18 23:26:37) ~ Web: https://www.nicolascoolman.com ~ Blog: https://nicolascoolman.eu/ ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: Version OK ~ Mode: Scan ~ Report: C:\Users\Antonin\Desktop\ZHPDiag.txt ~ Report: C:\Users\Antonin\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Sans échec avec prise en charge du réseau (Fail-safe with network boot) Windows 7 Ultimate, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation ---\\ Internet Browsers (1) - 0s ~ MSIE: Internet Explorer v11.0.9600.18665 ---\\ Windows Product Information (4) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System protection software (1) - 10s Avast Antivirus Gratuit v17.4.2294 (Protection) ---\\ Surveillance software (2) - 10s ~ Adobe Flash Player 25 NPAPI (Surveillance) ~ Adobe Reader XI (Surveillance) ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot) Total RAM: 8303.736 MB (85% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 312 GB (43%) free of 715 GB : OK =>.Disk Space ---\\ Connection to the system mode (3) - 0s ~ Computer Name: PCDEANTONIN ~ User Name: Antonin ~ Logged in as Administrator ---\\ Enumeration of the disk units (1) - 0s ~ Drive C: has 312 GB free of 715 GB (System) ---\\ State of the Windows Security Center (11) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Search Generic System Files (25) - 1s [MD5.332FEAB1435662FC6C672E25BEB37BE3] - 25/02/2011 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2871808] =>.Microsoft Corporation [MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation [MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation [MD5.4A60B440DC5D2BFAD65B55926BC2C292] - 16/04/2017 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [3241472] =>.Microsoft Corporation [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation [MD5.067FA52BFB59A56110A12312EF9AF243] - 20/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation [MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation [MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation [MD5.0DC2A9882540DEA4A55B08785E09D8FC] - 04/04/2017 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [496128] =>.Microsoft Corporation [MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows® [MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation [MD5.F036CE71586E93D94DAB220D7BDF4416] - 20/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation [MD5.9B38580063D281A99E68EF5813022A5F] - 08/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 20/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation [MD5.054F780A442DB96F9FE10501B35E75CA] - 28/04/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation [MD5.E47D571FEC2C76E867935109AB2A770C] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262144] =>.Microsoft Corporation [MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - 12/04/2013 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1656680] =>.Microsoft Windows® [MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation [MD5.471815800AE33E6F1C32FB1B97C490CA] - 20/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation [MD5.1B6163C503398B23FF8B939C67747683] - 20/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation [MD5.EC75A942C32F7F405659D86156DCE4C5] - 04/04/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [117760] =>.Microsoft Corporation [MD5.0D08D2F3B3FF84E433346669B5E0F639] - 20/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows® ---\\ Non Microsoft non disabled Windows Services (13) - 2s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - Avast Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software s.r.o.® O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.® O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe =>.NVIDIA Corporation® O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) . (...) - C:\Windows\System32\libusbd-nt.exe (.not file.) O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation® O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation® O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 355.8.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation O23 - Service: Origin Web Helper Service (Origin Web Helper Service) . (.Electronic Arts - OriginWebHelperService.) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe =>.Electronic Arts, Inc.® O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl® O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation® O23 - Service: Wacom Professional Service (WTabletServicePro) . (.Wacom Technology, Corp. - Tablet Service.) - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe =>.Wacom Technology Corp.® ---\\ Services not Microsoft (SR=Run, SS=Stop) (21) - 8s SS - Auto [25/04/2017] [ 83056] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® SS - Demand [09/05/2017] [ 271864] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SS - Demand [10/05/2017] [ 7346208] aswbIDSAgent (aswbIDSAgent) . (.AVAST Software s.r.o..) - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe =>.AVAST Software s.r.o.® SS - Auto [10/05/2017] [ 263304] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software s.r.o.® SS - Demand [23/11/2016] [ 486936] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\Bluestacks\HD-Service.exe =>.BlueStack Systems, Inc.® SS - Auto [23/11/2016] [ 470552] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\Bluestacks\HD-LogRotatorService.exe =>.BlueStack Systems, Inc.® SS - Demand [23/11/2016] [ 511512] BlueStacks Plus Android Service (BstHdPlusAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\Bluestacks\HD-Plus-Service.exe =>.BlueStack Systems, Inc.® SS - Auto [27/08/2015] [ 1155192] NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe =>.NVIDIA Corporation® SS - Auto [30/08/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [30/08/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [04/04/2005] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe =>.Macrovision Corporation SS - Demand [15/09/2015] [ 644880] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.® SS - Auto [27/08/2015] [ 1872504] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation® SS - Auto [27/08/2015] [ 5544568] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation® SS - Auto [25/08/2015] [ 937776] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation® SS - Demand [28/09/2016] [ 2141192] Origin Client Service (Origin Client Service) . (.Electronic Arts.) - C:\Program Files (x86)\Origin\OriginClientService.exe =>.Electronic Arts, Inc.® SS - Auto [28/09/2016] [ 2206224] Origin Web Helper Service (Origin Web Helper Service) . (.Electronic Arts.) - C:\Program Files (x86)\Origin\OriginWebHelperService.exe =>.Electronic Arts, Inc.® SS - Auto [05/04/2017] [ 317400] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl® SS - Demand [05/04/2017] [ 317400] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe =>.Valve® SS - Auto [05/04/2017] [ 317400] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation® SS - Auto [05/04/2017] [ 317400] Wacom Professional Service (WTabletServicePro) . (.Wacom Technology, Corp..) - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe =>.Wacom Technology Corp.® ---\\ Task Planned Automatically (210) - 15s O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Inc. O39 - APT: Unknown - (.Adobe Inc..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [4312] =>.Adobe Inc. O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\Avast Emergency Update [4172] O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3372] =>.Google Inc. O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3500] =>.Google Inc. O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-313908122-3773879056-2532798837-1000Core [3408] =>.Google Inc. O39 - APT: Unknown - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-313908122-3773879056-2532798837-1000UA [3680] =>.Google Inc. O39 - APT: Unknown - (.Nota Inc..) -- C:\Windows\System32\Tasks\GyazoUpdateTaskMachine [3296] O39 - APT: Unknown - (.Nota Inc..) -- C:\Windows\System32\Tasks\GyazoUpdateTaskMachineDaily [3422] O39 - APT: Unknown - (.Alcatel Lucent.) -- C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-313908122-3773879056-2532798837-1000 [3220] =>.Alcatel Lucent O39 - APT: Unknown - (.Alcatel Lucent.) -- C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-313908122-3773879056-2532798837-1000 [3350] =>.Alcatel Lucent O39 - APT: Unknown - (.Avast Software s.r.o.) -- C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1468415158 [3898] =>.Avast Software s.r.o O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\Yahoo! Powered fomif [4354] =>Adware.YahooPowered O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{01B9ADEF-9FBF-4575-98E7-F08128BA9C68} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{03178FA7-C506-4692-8DE7-A5A7DE3B1F3A} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{04FC3920-9AC4-4737-9CA3-5064389D7786} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{0515B270-01D9-4D64-B566-3EFE73CE2BDD} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{05CBA6F1-15FD-4B2A-AE80-AE5FB3C81F8F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{09B3B1E4-498A-4F38-AA47-C54DCABB1CFC} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{09B7D10D-05D3-452C-8645-3D47180ED160} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{09ECBCE2-763C-4420-B763-6D60E4E5DC5D} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{0B236102-520F-46BA-B495-9F225909F8BC} [3100] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{0B9C4B27-8E30-44B1-B5BA-B3E842B9D51F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{0BC8CB69-0915-4C91-BF74-9F898E317DE7} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{0C2895DC-7B8B-494A-A570-2402EE965572} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{105BD3F3-DB7C-4F45-9BCF-11284A4E3818} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{110BC334-24C6-4703-AFCC-F56464F92745} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{1179B09A-0514-4F1B-B752-2BF80559263F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{13A8F688-94CF-4101-A388-E26EC946D079} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{14D1BD37-F64F-46A9-8DF7-2ED45AF03489} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{14E3360A-FA44-4574-87F8-65CF324578B3} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{152CE05B-7D86-4489-BEFB-01CA5D49E56C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{15FE519A-F58A-46A4-99C5-B6989601421B} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{16725A7D-3AA1-45DC-8816-0E63AA0FF85C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{1A25435F-F81C-485B-8642-FF7D273940D9} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{1C23CA19-B5A3-47F7-A950-ECBB590C88CA} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{20986AB2-EEFD-4A1A-A9A7-587FAFD8EE5C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{24566764-7AB0-4334-A819-7DB74670CE6C} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{24990AE6-9D3D-436E-B6F5-DBB3DE32CBAE} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{26290524-6E84-4B2B-B4D7-48DD1B3F8298} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{276AD1E0-5886-467A-9A95-628B851DD65B} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{281FEFA4-9109-45E7-8CB5-C50262A6442E} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{29261539-592A-4C5D-B5C6-C9460AFFC04D} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{2E42784A-B4B9-4BF0-A505-EB400E897DD9} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{2F63D3BC-C6EC-4D5A-930F-8BF95668025C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{2F6FC0AA-DD0A-4306-A886-A8AC6F2B4C8D} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{2FD00F1D-547B-460C-9FDB-91481B13162A} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{2FEB9672-D34B-4D84-ADFA-C0988EA09E33} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{30216304-7899-4974-B3B8-7E505E635761} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{32CD28F7-8577-4D31-A373-918D410D386B} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{34988C4B-E519-444D-99C1-D52AC9E08A22} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{34997D0C-A30A-4D8B-9FC6-83DF23673A47} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{38AC7821-3C46-4FAF-A083-4B2469C9BFC3} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{3D0CCB51-A0C8-460B-8D7A-57F7C5FB81AC} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{3D49847B-232C-4463-B4EA-E8340E30420A} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{3E006BBE-E5AE-47BF-AA9B-74E3361A8CB9} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{3E5F0276-C948-4A10-AE12-A872C6644FF3} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{45DB02C8-2DFD-4A06-87DD-7BDDC8F4B744} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{47882824-E6E1-441A-917B-6828292562B1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4821BB57-BF07-4DD7-89CF-23BC20078DA6} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{49B8225F-1C8C-49D7-96EF-C82E1A1F8451} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4A57272B-177F-482D-AB4E-3A23F2BC9212} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4B6939F3-AC69-4D3D-BF80-F63739706C22} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4BD0D8B6-16B9-4D4E-AC5E-A82BDAC1B48C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4BEB8F4E-0239-4D43-8493-8ACA31FFAA27} [3046] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4E5A3C1A-86EA-4BAC-B530-1CC6A1E321CF} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4EDA5B39-B609-4F37-AA35-2E7A418A714E} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4EEA1A99-5E2F-4528-A57E-328B227847F2} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{4FB07BEC-C180-48A0-9FB8-12D983546DA2} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{53137689-7834-4209-A2F4-CDFDAE67B5F0} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{54AD7EDF-7D5B-4173-A4D9-6ADD3EEE32A2} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{551AD7EE-CB41-44B6-A259-548D446D2928} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{55231D43-46BA-4CF8-83D5-04809BACC727} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{56F8DE22-A584-4A19-B898-4AA18E7CB529} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{575627CA-C4C0-4277-9725-7894BCB9EC61} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{586D727C-E5CB-4690-B339-A376AE0C8166} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{59552357-F920-4623-9E21-84D967175145} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{5B0983E7-92D5-426A-A884-9E80FF0461D5} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{5B7B2769-4F72-4F58-853F-211A459180EB} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{5CA0B0C9-AF7E-4AE6-9A00-A012C0EC36AF} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{5D4817BA-C9C8-4177-A6B2-62060A33602C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{5D7E9526-7FCF-4813-876D-687EA95CB11F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{5DE34991-D92F-43CA-8D44-70052845576F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{5FE77AA5-628A-43C1-BBD8-C310A2E5F006} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{604E8C86-9C42-431A-AAFE-015DA65F9E49} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{604FAC8C-DEB3-4F9D-AB55-D2B7BA4F0F3F} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{626964FD-6E86-4644-904C-CC0B4A507DBB} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{62E0ECFB-5BDF-4111-A40F-727D5EA3A598} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{644597F5-4CA0-4AFA-A6C5-98FF8428633A} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{6666A246-1FD0-4F09-94BA-73FBB5A195D7} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{6996C74E-CD51-496D-8EC9-299ED4532695} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{69AB8911-8047-482B-B852-57F5FD135AD7} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{6A73F4EE-DB57-4678-8997-40AEFFC6F111} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{6AB8FF80-BBCC-43B9-B051-3F410052ACCE} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{6CF91B3A-C4CC-4E45-A66A-78720DE39C45} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{6EC04608-B1A7-4A76-A238-41B7BC1C1272} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{72575326-C251-4B92-B42A-8B1164D7C3A0} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{74E9BB28-3C62-4558-85A4-6EE8F3B78491} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{756DCF75-CFE7-4C10-B8FD-EB170070EA51} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{76A7C2BE-0FD4-467F-9078-7DB1881A5D91} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7983F7DE-2D23-4B98-A4F0-6EED01A798CB} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{79B40FCE-A0D4-477E-ABC2-AA18B503086B} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7A300BA0-5D4E-45BD-BA06-F3659A45B6D0} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7C5A037A-877E-41FB-9B34-FC133A000701} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7C81D357-C62E-45B5-BDC9-BC967938CA17} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7CE59361-512C-483F-9E90-10285A9041D4} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7D2BED1A-6C31-4C52-A753-CCB0CE8CCDB1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7DAC6B5F-3DE0-4BE4-8684-E84815BF3A5E} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{7FA9093B-B418-40E7-9081-4E4493359DC3} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{802DC519-FD65-4895-852C-B0EC2C81557C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{80C70DB9-4651-4D95-A12F-74BA98E52283} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{80E6F108-A0DB-44BE-8730-EE45DC033829} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{8382BDD3-1EFF-4796-B488-83110683FDF8} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{84654591-145C-49A0-97E2-42B3FF92FB02} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{84ABFC07-F852-4037-8B1C-26C820C1A19B} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{855080D2-230D-46C1-8011-E8756525CBEA} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{864BD9A2-84BB-48B8-A8FA-2C20A8D3F4C5} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{864C53E7-52B0-44B4-B981-A44951FF344E} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{866F14DB-8BCF-4EBC-920A-ECE06B05DE45} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{8773DFF8-9789-4E45-8E72-44E95C0FC829} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{88E56264-3361-4254-994A-467D520014B1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{8A1852A9-F8AD-432F-AF43-8941C57AFE86} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{8AA38EDD-35FF-4ECA-954F-FC87FAEC5DD1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{8B7BA8B4-5393-41BD-B76D-7AB11DBD9442} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{8BE075E0-4082-492D-9771-9D4D5D380446} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{8CC2904C-3DB1-4938-B129-DD88EFD03C19} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9050489C-F18E-4F74-997A-DD5831625F96} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{90C98DAB-D5E7-4B9B-B26A-8CDF87C4C5E2} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{92B1AD7C-052F-455D-B38C-6A31CE39F174} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{938B685C-3279-4D1E-93B0-F132DA152407} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{94ED9558-8C9E-4FAB-BE6E-BC45F2969CFA} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9511A79C-B96B-45BD-AD30-A70AF57AEEB4} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9623B32C-D657-4131-ACDE-056DC56920AD} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{98DA3D27-4813-4456-AA32-37D0746177E6} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9A46F41B-2487-4B4C-8170-794536443E8C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9A7D3C49-9326-49A9-B8F2-CEA05B59601D} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9C4BD692-9999-4D28-8C93-0FCC9AFDA944} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9DA66752-CD13-46C8-8D35-FE42A8B70300} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9ED346EA-9338-42EB-85FF-350E73B4C669} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9FC69F54-D69F-4A30-92D1-0FB89FD69307} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{9FD2BDF0-6611-4CD3-BF69-0C5EA163A261} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{A3453B4B-4FFA-4C28-BA5E-FA2599D958D2} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{A4DCB0BD-404A-44BB-802C-4C8BC12135B1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{A5DE4DB1-0754-4E5C-9A91-40F68C1AAAC7} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{A7A25F17-DD2D-4C72-ACB5-6C3B8A58A0CF} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AD635F72-A1E2-47E8-B68E-38CB75D48C7A} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AD7F7851-37D1-4B72-83FC-72803D30D44E} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AE0802C8-C8EA-4734-A5F2-9B5E06AF814F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AE235FF4-5468-4139-A788-1A9EF8A1B41E} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AE308E49-C9CF-47B4-BF22-1B6F79F1E5FE} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AE3C9917-D1C9-45B5-84DA-2B56A024B283} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AFA6E482-5D93-4950-A989-4AB4D454A2BE} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{AFF3938A-F0BC-4B1F-920C-140C2442FB8D} [3156] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{B1C9CA1C-33F4-4B8A-88BB-0CA07D629CD1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{B306052D-8188-46D5-8443-0991CF430519} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{B4138C00-4AD2-46D7-92B7-7E33847174A1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{B71D2D35-E65B-42AC-93CE-363A88990653} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{B80E2B2B-3BD7-4E8E-8851-3C240A37A141} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{BA15BF3C-A26A-409A-85CB-0CDF0F618F46} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{BAA9A074-4B1E-42CF-B432-061C73434AB7} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{BCBAA246-5086-4647-8027-5F5FD35629CE} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{C0F47243-C8E1-4820-BF3B-8ED0D3C2342C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{C1C64B91-748F-4CF8-BA00-EBDE39AD9042} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{C9A4ABDB-BAB0-46E1-A685-7BC3091D19F3} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{CAD5A1DC-352F-4485-8CEF-C4F8AF944787} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{CAE32F27-1907-4A98-81AA-A2B549F39FEF} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{CDD2A83F-0A53-4B50-A6D3-3C866E51CA6B} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{CE058DBC-D7B9-488A-88A0-55824C5C8A8C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{CEC23BB3-19C9-45A7-8127-E804F823EFB7} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{CF0F8BFF-E713-47BB-8E0B-CA9DB8DD5251} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D0E41F47-DCD3-43D2-BD78-71B48CFD96CA} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D4E61BE8-97EE-4453-84C0-E76E58304A2C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D586014E-F445-4D6C-A62F-9642BA2F173A} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D7212709-BE22-4F85-8075-80221B00195A} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D8C7B46E-0931-43C6-B8D8-588D95DBF359} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{D9559230-7EC1-48D0-96F7-2A6422C864BE} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{DC1D9954-8DF8-4BB3-AE49-0E0B043D03AD} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{DF496E67-C89F-4FB2-8933-4F49706FB1F0} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{DF7A91BA-5539-4550-8CE6-C886140EFB42} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E2A4AFF4-4395-48F8-B0B4-9A9033015DE9} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E30BB450-CA6A-4DCC-8105-177C0D475524} [3100] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E3AE7E33-E0A8-4C60-A084-716B3FEF0D8C} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E495BD4B-602E-4DA8-9758-A220122F7FF8} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E4F4DDCA-4BC1-447E-A4D7-5FF1797BD140} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E5531AF3-9140-4F11-A212-BC31680A73F9} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E5D6AF4E-0091-41FE-B2CE-E10B92553913} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E7B62F72-C4F8-499C-94B9-A8AF53D8F0AA} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E815D550-3443-4EBB-A372-DAFA8D3F415F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E8A44F03-348D-4FBE-853B-2D4507219B64} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{E9CACBF6-594F-482B-869B-4872DAE6F316} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{EB2018E4-1F34-4D2D-8FD0-13C5EEF6C899} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{EC3C09E4-5A86-4562-9B78-ABC7325CAB8F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{ECE08766-31FE-4EBF-B9A4-2E5560FAD8A9} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{EE8EFC77-1D42-43AB-9769-D5536BCF0265} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{EEF37AEF-9DE7-48BE-8E1B-ED4AE79FBBB6} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F10C1875-96FB-43C4-97CA-6D0C0E049737} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F1445645-1859-4CA8-8992-5608700F2EB1} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F2F2DC39-E4C5-4847-9FE2-FF25361AF7CF} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F2F54ED6-0FE1-415B-81E4-53445F8683F3} [3058] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F34D2D2B-C00F-4C3E-9917-C7D447E32A78} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F3751414-7E58-41CB-B32B-8C0021154D97} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F3A69F17-B909-4424-A645-3D1F4BBEDC20} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F4F2DE1D-7637-41EC-BE44-A2644092081F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F5886939-C3A4-4EE4-AB88-2B1F97F10530} [3190] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F6E0E107-AD33-4251-8951-3E72349105CA} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F6FDC740-BD7A-4A87-9B51-9F39DA587177} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F7C2F502-1638-4900-8F0A-4F04EA59A40F} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{F8D9E4E1-945C-436D-B359-AE8A47C2F059} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{FDB314F7-C018-4C1D-BFCC-C4A71A2BA2CB} [2956] O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\{FF70D034-16CE-4C97-947C-FA4161B164CC} [2956] ---\\ Auto loading programs from Registry and folders (42) - 2s O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe =>.Intel Corporation O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe =>.Intel Corporation O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe =>.Intel Corporation O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll =>.Logitech, Inc. O4 - HKLM\..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (.not file.) O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\system32\nvspcap64.dll =>.NVIDIA Corporation O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe =>.NVIDIA Corporation® O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.® O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - AvLaunch component.) -- C:\Program Files\AVAST Software\Avast\AvLaunch.exe =>.AVAST Software s.r.o.® O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Google Update Core.) -- C:\Users\Antonin\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe =>.Google Inc® O4 - HKCU\..\Run: [GreedyTorrent] C:\Program Files (x86)\GreedyTorrent\GTor.exe (.not file.) O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd® O4 - HKCU\..\Run: [AutoStartNPSAgent] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe =>.SAMSUNG ELECTRONICS CO.,LTD.® O4 - HKCU\..\Run: [Voobly] C:\Program Files (x86)\Voobly\voobly.exe (.not file.) O4 - HKCU\..\Run: [Gyazo] . (.Nota Inc. - Gyazo Station.) -- C:\Program Files (x86)\Gyazo\GyStation.exe =>.Nota Inc.® O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Antonin\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation® O4 - HKCU\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe =>.Electronic Arts, Inc.® O4 - HKCU\..\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\Bluestacks\HD-Agent.exe =>.BlueStack Systems, Inc.® O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_727423F7E0485DB70422384AEFB5ADEE] . (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - HKCU\..\Run: [Chromium] . (.The Chromium Authors - Chromium.) -- c:\Users\Antonin\AppData\Local\Chromium\application\chrome.exe =>.The Chromium Authors O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_7E60EFDBB141C9A9568F75A949D3782B] . (.The Chromium Authors - Chromium.) -- C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - HKCU\..\RunOnce: [Report] . (...) -- C:\AdwCleaner\AdwCleaner[C0].txt O4 - HKLM\..\Wow6432Node\Run: [NPSStartup] (.Orphan.) =>.Superfluous.Orphan O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (.not file.) O4 - HKLM\..\Wow6432Node\RunOnce: [DeleteOnReboot] . (...) -- C:\Users\Antonin\AppData\Local\Temp\DeleteOnReboot.bat O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [Google Update] . (.Google Inc. - Google Update Core.) -- C:\Users\Antonin\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe =>.Google Inc® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [GreedyTorrent] C:\Program Files (x86)\GreedyTorrent\GTor.exe (.not file.) O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [AutoStartNPSAgent] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSAgent.exe =>.SAMSUNG ELECTRONICS CO.,LTD.® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [Voobly] C:\Program Files (x86)\Voobly\voobly.exe (.not file.) O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [Gyazo] . (.Nota Inc. - Gyazo Station.) -- C:\Program Files (x86)\Gyazo\GyStation.exe =>.Nota Inc.® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\Antonin\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [EADM] . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe =>.Electronic Arts, Inc.® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\Bluestacks\HD-Agent.exe =>.BlueStack Systems, Inc.® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [GoogleChromeAutoLaunch_727423F7E0485DB70422384AEFB5ADEE] . (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [Chromium] . (.The Chromium Authors - Chromium.) -- c:\Users\Antonin\AppData\Local\Chromium\application\chrome.exe =>.The Chromium Authors O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\Run: [GoogleChromeAutoLaunch_7E60EFDBB141C9A9568F75A949D3782B] . (.The Chromium Authors - Chromium.) -- C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - HKUS\S-1-5-21-313908122-3773879056-2532798837-1000\..\RunOnce: [Report] . (...) -- C:\AdwCleaner\AdwCleaner[C0].txt ---\\ Process running (7) - 0s [MD5.64F911CA43AF4099B679CD85759EAC04] - (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe [941912] [PID.1864] =>.Google Inc® [MD5.64F911CA43AF4099B679CD85759EAC04] - (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe [941912] [PID.1872] =>.Google Inc® [MD5.64F911CA43AF4099B679CD85759EAC04] - (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe [941912] [PID.1900] =>.Google Inc® [MD5.64F911CA43AF4099B679CD85759EAC04] - (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe [941912] [PID.244] =>.Google Inc® [MD5.64F911CA43AF4099B679CD85759EAC04] - (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe [941912] [PID.1764] =>.Google Inc® [MD5.64F911CA43AF4099B679CD85759EAC04] - (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe [941912] [PID.1800] =>.Google Inc® [MD5.EAFCE2E0E2AB0FC139843039FFE773DB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Antonin\Downloads\ZHPDiag3.exe [2731008] [PID.1660] =>.Nicolas Coolman ---\\ Google Chrome, Start,Search,Extensions (14) - 0s G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.commentcamarche.net =>.commentcamarche.net G0 - GCSP: Preferences [User Data\Default][HomePage] http://ajax.googleapis.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://ogs.google.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr =>.Google Inc. G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc. G2 - GCE: Preference [User Data\Default] [ejocekekgcaldnmjngfdbmbeebcekelc] SPOTS - A better way to start G2 - GCE: Preference [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl] Skype =>.Skype Technologies G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc. ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (11) - 1s P2 - FPN: [HKCU] [thehappycloud.com/HappyCloudPlugin] - (.The Happy Cloud.) -- C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll =>.Superfluous.HappyCloud P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (...) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll =>.Adobe Systems Incorporated P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll =>.Apple Inc. P2 - FPN: [HKLM] [@esn.me/esnsonar,version=0.70.3] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.3\npesnsonar.dll =>.ESN Social Software AB P2 - FPN: [HKLM] [@esn/esnlaunch,version=1.102.0] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\1.102.0\npesnlaunch.dll =>.ESN Social Software AB P2 - FPN: [HKLM] [@esn/esnlaunch,version=1.110.0] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\1.110.0\npesnlaunch.dll =>.ESN Social Software AB P2 - FPN: [HKLM] [@esn/esnlaunch,version=1.118.0] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll =>.ESN Social Software AB P2 - FPN: [HKLM] [@esn/esnlaunch,version=1.138.0] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll =>.ESN Social Software AB P2 - FPN: [HKLM] [@esn/esnlaunch,version=2.1.7] - (.ESN Social Software AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll =>.ESN Social Software AB P2 - FPN: [HKLM] [@esn/npbattlelog,version=2.3.2] - (.EA Digital Illusions CE AB.) -- C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll =>.EA Digital Illusions CE AB ---\\ Internet Explorer Extensions, Start, Search (8) - 0s R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://allssearch.com =>PUP.Optional.SocialSkinz R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (60) ---\\ Browser Helper Object (BHO) (3) - 0s O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software s.r.o.® O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation® O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll =>.Oracle America, Inc.® ---\\ Global shortcuts Startup (210) - 13s O4 - GS\Desktop [Administrator]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Desktop [Administrator]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\Desktop [Administrator]: Continue Fire Emblem If - Special Edition... Installation.lnk . (.Corobofatu - Gitaren Setup.) C:\Users\Antonin\AppData\Local\Temp\ICReinstall_Fire Emblem If - Special Edition.exe /ppn:YHhybg0dXAt1eGqREw /RR /mnl {1121BA855EED3CFF403D39EDCDA9844389DA} O4 - GS\Desktop [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Administrator]: OpenOffice.org 3.3.lnk . (.OpenOffice.org - OpenOffice.org 3.3.) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe =>.OpenOffice.org O4 - GS\Desktop [Administrator]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Desktop [Administrator]: Popcorn Time.lnk . (...) C:\Users\Antonin\AppData\Local\Popcorn Time\nw.exe =>.Superfluous.PopcornTime O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Antonin\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrator]: AION.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe --app=http://boost.games724.com/ =>.Google Inc. O4 - GS\Quicklaunch [Administrator]: Apowersoft Phone Manager.lnk . (.Apowersoft - Apowersoft Phone Manager.) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe =>.Apowersoft Ltd® O4 - GS\Quicklaunch [Administrator]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Quicklaunch [Administrator]: Gyazo GIF.lnk . (.Nota Inc. - GyazoGIF.) C:\Program Files (x86)\Gyazo\GyazoGIF.exe =>.Nota Inc.® O4 - GS\Quicklaunch [Administrator]: Gyazo.lnk . (.Nota Inc. - Gyazo: Screen Uploader.) C:\Program Files (x86)\Gyazo\Gyazowin.exe =>.Nota Inc.® O4 - GS\Quicklaunch [Administrator]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Quicklaunch [Administrator]: Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd. - New PC Studio.) C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe =>.SAMSUNG ELECTRONICS CO.,LTD.® O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl® O4 - GS\TaskBar [Administrator]: Adobe Photoshop CC.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) C:\Program Files (x86)\Adobe\Photoshop cc\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\TaskBar [Administrator]: Dolphin.lnk . (...) C:\Program Files\Dolphin\Dolphin.exe {1AC567ACDE7A15E81546F756D6A17C35} O4 - GS\TaskBar [Administrator]: GER.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\GOD EATER RESURRECTION\GER.exe =>.Steam Games O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Administrator]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\TaskBar [Administrator]: PCSX2 1.4.0.lnk . (...) C:\Program Files (x86)\PCSX2 1.4.0\pcsx2.exe O4 - GS\TaskBar [Administrator]: Play Synthesia.lnk . (.(c)2013 Synthesia LLC - Synthesia.) C:\Program Files (x86)\Synthesia\Synthesia.exe {5EC51B397083179E59994D2ED19E294A} O4 - GS\TaskBar [Administrator]: RomStation.lnk . (...) C:\RomStation\RomStation.exe O4 - GS\TaskBar [Administrator]: Tales of Berseria (2).lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Berseria\Tales of Berseria.exe =>.Steam Games O4 - GS\TaskBar [Administrator]: Tales of Zestiria.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Zestiria\Tales of Zestiria.exe =>.Steam Games O4 - GS\TaskBar [Administrator]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Startup [Administrator]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\ProgramData\MEGAsync\MEGAsync.exe {166DC4B190914581A6A56199} =>.MEGA Limited O4 - GS\Startup [Administrator]: PlutoTV.lnk . (.Pluto, Inc. - Pluto TV.) C:\Users\Antonin\AppData\Roaming\Pluto TV\PlutoTV.exe O4 - GS\Programs [Administrator]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [Administrator]: DarthMod Empire.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\data\DME\DME Platinum.exe =>.Steam Games O4 - GS\Programs [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Programs [Administrator]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Desktop [Antonin]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Desktop [Antonin]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\Desktop [Antonin]: Continue Fire Emblem If - Special Edition... Installation.lnk . (.Corobofatu - Gitaren Setup.) C:\Users\Antonin\AppData\Local\Temp\ICReinstall_Fire Emblem If - Special Edition.exe /ppn:YHhybg0dXAt1eGqREw /RR /mnl {1121BA855EED3CFF403D39EDCDA9844389DA} O4 - GS\Desktop [Antonin]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Antonin]: OpenOffice.org 3.3.lnk . (.OpenOffice.org - OpenOffice.org 3.3.) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe =>.OpenOffice.org O4 - GS\Desktop [Antonin]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Desktop [Antonin]: Popcorn Time.lnk . (...) C:\Users\Antonin\AppData\Local\Popcorn Time\nw.exe =>.Superfluous.PopcornTime O4 - GS\Desktop [Antonin]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Antonin\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Antonin]: AION.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe --app=http://boost.games724.com/ =>.Google Inc. O4 - GS\Quicklaunch [Antonin]: Apowersoft Phone Manager.lnk . (.Apowersoft - Apowersoft Phone Manager.) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe =>.Apowersoft Ltd® O4 - GS\Quicklaunch [Antonin]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Quicklaunch [Antonin]: Gyazo GIF.lnk . (.Nota Inc. - GyazoGIF.) C:\Program Files (x86)\Gyazo\GyazoGIF.exe =>.Nota Inc.® O4 - GS\Quicklaunch [Antonin]: Gyazo.lnk . (.Nota Inc. - Gyazo: Screen Uploader.) C:\Program Files (x86)\Gyazo\Gyazowin.exe =>.Nota Inc.® O4 - GS\Quicklaunch [Antonin]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Quicklaunch [Antonin]: Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd. - New PC Studio.) C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe =>.SAMSUNG ELECTRONICS CO.,LTD.® O4 - GS\sendTo [Antonin]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Antonin]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl® O4 - GS\TaskBar [Antonin]: Adobe Photoshop CC.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) C:\Program Files (x86)\Adobe\Photoshop cc\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Antonin]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\TaskBar [Antonin]: Dolphin.lnk . (...) C:\Program Files\Dolphin\Dolphin.exe {1AC567ACDE7A15E81546F756D6A17C35} O4 - GS\TaskBar [Antonin]: GER.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\GOD EATER RESURRECTION\GER.exe =>.Steam Games O4 - GS\TaskBar [Antonin]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Antonin]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\TaskBar [Antonin]: PCSX2 1.4.0.lnk . (...) C:\Program Files (x86)\PCSX2 1.4.0\pcsx2.exe O4 - GS\TaskBar [Antonin]: Play Synthesia.lnk . (.(c)2013 Synthesia LLC - Synthesia.) C:\Program Files (x86)\Synthesia\Synthesia.exe {5EC51B397083179E59994D2ED19E294A} O4 - GS\TaskBar [Antonin]: RomStation.lnk . (...) C:\RomStation\RomStation.exe O4 - GS\TaskBar [Antonin]: Tales of Berseria (2).lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Berseria\Tales of Berseria.exe =>.Steam Games O4 - GS\TaskBar [Antonin]: Tales of Zestiria.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Zestiria\Tales of Zestiria.exe =>.Steam Games O4 - GS\TaskBar [Antonin]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Startup [Antonin]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\ProgramData\MEGAsync\MEGAsync.exe {166DC4B190914581A6A56199} =>.MEGA Limited O4 - GS\Startup [Antonin]: PlutoTV.lnk . (.Pluto, Inc. - Pluto TV.) C:\Users\Antonin\AppData\Roaming\Pluto TV\PlutoTV.exe O4 - GS\Programs [Antonin]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [Antonin]: DarthMod Empire.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\data\DME\DME Platinum.exe =>.Steam Games O4 - GS\Programs [Antonin]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Programs [Antonin]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Programs [Antonin]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Desktop [ASPNET]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Desktop [ASPNET]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\Desktop [ASPNET]: Continue Fire Emblem If - Special Edition... Installation.lnk . (.Corobofatu - Gitaren Setup.) C:\Users\Antonin\AppData\Local\Temp\ICReinstall_Fire Emblem If - Special Edition.exe /ppn:YHhybg0dXAt1eGqREw /RR /mnl {1121BA855EED3CFF403D39EDCDA9844389DA} O4 - GS\Desktop [ASPNET]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [ASPNET]: OpenOffice.org 3.3.lnk . (.OpenOffice.org - OpenOffice.org 3.3.) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe =>.OpenOffice.org O4 - GS\Desktop [ASPNET]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Desktop [ASPNET]: Popcorn Time.lnk . (...) C:\Users\Antonin\AppData\Local\Popcorn Time\nw.exe =>.Superfluous.PopcornTime O4 - GS\Desktop [ASPNET]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Antonin\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [ASPNET]: AION.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe --app=http://boost.games724.com/ =>.Google Inc. O4 - GS\Quicklaunch [ASPNET]: Apowersoft Phone Manager.lnk . (.Apowersoft - Apowersoft Phone Manager.) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe =>.Apowersoft Ltd® O4 - GS\Quicklaunch [ASPNET]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Quicklaunch [ASPNET]: Gyazo GIF.lnk . (.Nota Inc. - GyazoGIF.) C:\Program Files (x86)\Gyazo\GyazoGIF.exe =>.Nota Inc.® O4 - GS\Quicklaunch [ASPNET]: Gyazo.lnk . (.Nota Inc. - Gyazo: Screen Uploader.) C:\Program Files (x86)\Gyazo\Gyazowin.exe =>.Nota Inc.® O4 - GS\Quicklaunch [ASPNET]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Quicklaunch [ASPNET]: Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd. - New PC Studio.) C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe =>.SAMSUNG ELECTRONICS CO.,LTD.® O4 - GS\sendTo [ASPNET]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [ASPNET]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl® O4 - GS\TaskBar [ASPNET]: Adobe Photoshop CC.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) C:\Program Files (x86)\Adobe\Photoshop cc\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [ASPNET]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\TaskBar [ASPNET]: Dolphin.lnk . (...) C:\Program Files\Dolphin\Dolphin.exe {1AC567ACDE7A15E81546F756D6A17C35} O4 - GS\TaskBar [ASPNET]: GER.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\GOD EATER RESURRECTION\GER.exe =>.Steam Games O4 - GS\TaskBar [ASPNET]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [ASPNET]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\TaskBar [ASPNET]: PCSX2 1.4.0.lnk . (...) C:\Program Files (x86)\PCSX2 1.4.0\pcsx2.exe O4 - GS\TaskBar [ASPNET]: Play Synthesia.lnk . (.(c)2013 Synthesia LLC - Synthesia.) C:\Program Files (x86)\Synthesia\Synthesia.exe {5EC51B397083179E59994D2ED19E294A} O4 - GS\TaskBar [ASPNET]: RomStation.lnk . (...) C:\RomStation\RomStation.exe O4 - GS\TaskBar [ASPNET]: Tales of Berseria (2).lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Berseria\Tales of Berseria.exe =>.Steam Games O4 - GS\TaskBar [ASPNET]: Tales of Zestiria.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Zestiria\Tales of Zestiria.exe =>.Steam Games O4 - GS\TaskBar [ASPNET]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Startup [ASPNET]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\ProgramData\MEGAsync\MEGAsync.exe {166DC4B190914581A6A56199} =>.MEGA Limited O4 - GS\Startup [ASPNET]: PlutoTV.lnk . (.Pluto, Inc. - Pluto TV.) C:\Users\Antonin\AppData\Roaming\Pluto TV\PlutoTV.exe O4 - GS\Programs [ASPNET]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [ASPNET]: DarthMod Empire.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\data\DME\DME Platinum.exe =>.Steam Games O4 - GS\Programs [ASPNET]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Programs [ASPNET]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Programs [ASPNET]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Desktop [Guest]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Desktop [Guest]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\Desktop [Guest]: Continue Fire Emblem If - Special Edition... Installation.lnk . (.Corobofatu - Gitaren Setup.) C:\Users\Antonin\AppData\Local\Temp\ICReinstall_Fire Emblem If - Special Edition.exe /ppn:YHhybg0dXAt1eGqREw /RR /mnl {1121BA855EED3CFF403D39EDCDA9844389DA} O4 - GS\Desktop [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Guest]: OpenOffice.org 3.3.lnk . (.OpenOffice.org - OpenOffice.org 3.3.) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe =>.OpenOffice.org O4 - GS\Desktop [Guest]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Desktop [Guest]: Popcorn Time.lnk . (...) C:\Users\Antonin\AppData\Local\Popcorn Time\nw.exe =>.Superfluous.PopcornTime O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Antonin\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Guest]: AION.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe --app=http://boost.games724.com/ =>.Google Inc. O4 - GS\Quicklaunch [Guest]: Apowersoft Phone Manager.lnk . (.Apowersoft - Apowersoft Phone Manager.) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe =>.Apowersoft Ltd® O4 - GS\Quicklaunch [Guest]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Quicklaunch [Guest]: Gyazo GIF.lnk . (.Nota Inc. - GyazoGIF.) C:\Program Files (x86)\Gyazo\GyazoGIF.exe =>.Nota Inc.® O4 - GS\Quicklaunch [Guest]: Gyazo.lnk . (.Nota Inc. - Gyazo: Screen Uploader.) C:\Program Files (x86)\Gyazo\Gyazowin.exe =>.Nota Inc.® O4 - GS\Quicklaunch [Guest]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Quicklaunch [Guest]: Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd. - New PC Studio.) C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe =>.SAMSUNG ELECTRONICS CO.,LTD.® O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe /sendto: =>.Skype Software Sarl® O4 - GS\TaskBar [Guest]: Adobe Photoshop CC.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CC.) C:\Program Files (x86)\Adobe\Photoshop cc\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Citra Edge.lnk . (.GitHub - Update.) C:\Users\Antonin\AppData\Local\citra\Update.exe --processStart "updater.exe" =>.GitHub O4 - GS\TaskBar [Guest]: Dolphin.lnk . (...) C:\Program Files\Dolphin\Dolphin.exe {1AC567ACDE7A15E81546F756D6A17C35} O4 - GS\TaskBar [Guest]: GER.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\GOD EATER RESURRECTION\GER.exe =>.Steam Games O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Guest]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\TaskBar [Guest]: PCSX2 1.4.0.lnk . (...) C:\Program Files (x86)\PCSX2 1.4.0\pcsx2.exe O4 - GS\TaskBar [Guest]: Play Synthesia.lnk . (.(c)2013 Synthesia LLC - Synthesia.) C:\Program Files (x86)\Synthesia\Synthesia.exe {5EC51B397083179E59994D2ED19E294A} O4 - GS\TaskBar [Guest]: RomStation.lnk . (...) C:\RomStation\RomStation.exe O4 - GS\TaskBar [Guest]: Tales of Berseria (2).lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Berseria\Tales of Berseria.exe =>.Steam Games O4 - GS\TaskBar [Guest]: Tales of Zestiria.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Tales of Zestiria\Tales of Zestiria.exe =>.Steam Games O4 - GS\TaskBar [Guest]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\Startup [Guest]: MEGAsync.lnk . (.Mega Limited - MEGAsync.) C:\ProgramData\MEGAsync\MEGAsync.exe {166DC4B190914581A6A56199} =>.MEGA Limited O4 - GS\Startup [Guest]: PlutoTV.lnk . (.Pluto, Inc. - Pluto TV.) C:\Users\Antonin\AppData\Roaming\Pluto TV\PlutoTV.exe O4 - GS\Programs [Guest]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [Guest]: DarthMod Empire.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\data\DME\DME Platinum.exe =>.Steam Games O4 - GS\Programs [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Programs [Guest]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\CommonDesktop [Public]: Adobe Download Assistant.lnk . (...) C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe O4 - GS\CommonDesktop [Public]: Age of Empires.lnk . (.Microsoft Corporation - Age of Empires.) C:\Program Files (x86)\Microsoft Games\Age of Empires\EMPIRES.EXE =>.Microsoft Corporation O4 - GS\CommonDesktop [Public]: Apowersoft Gestionnaire de Smartphone.lnk . (.Apowersoft - Apowersoft Phone Manager.) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe =>.Apowersoft Ltd® O4 - GS\CommonDesktop [Public]: Avast Antivirus Gratuit.lnk . (.AVAST Software - Avast Antivirus.) C:\Program Files\AVAST Software\Avast\avastui.exe =>.AVAST Software s.r.o.® O4 - GS\CommonDesktop [Public]: Avast SafeZone Browser.lnk . (.Avast Software - Avast SafeZone Browser.) C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software s.r.o.® O4 - GS\CommonDesktop [Public]: Battle.net.lnk . (.Blizzard Entertainment - Battle.net Launcher.) C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe =>.Blizzard Entertainment, Inc.® O4 - GS\CommonDesktop [Public]: BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks App Player.) C:\Program Files (x86)\Bluestacks\BlueStacks.exe =>.BlueStack Systems, Inc.® O4 - GS\CommonDesktop [Public]: Dolphin.lnk . (...) C:\Program Files\Dolphin\Dolphin.exe {1AC567ACDE7A15E81546F756D6A17C35} O4 - GS\CommonDesktop [Public]: Google Earth.lnk . (.Google - Google Earth.) C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe =>.Google Inc® O4 - GS\CommonDesktop [Public]: Gyazo.lnk . (.Nota Inc. - Gyazo: Screen Uploader.) C:\Program Files (x86)\Gyazo\Gyazowin.exe =>.Nota Inc.® O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc. O4 - GS\CommonDesktop [Public]: Les Sims 4.lnk . (.Electronic Arts Inc. - The Sims™ 4.) C:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe =>.Electronic Arts® O4 - GS\CommonDesktop [Public]: Origin.lnk . (.Electronic Arts - Origin.) C:\Program Files (x86)\Origin\Origin.exe =>.Electronic Arts, Inc.® O4 - GS\CommonDesktop [Public]: PaintTool SAI Ver.1.lnk . (.SYSTEMAX Software Development Inc. - sai.) C:\PaintToolSAI\sai.exe O4 - GS\CommonDesktop [Public]: PCSX2 1.4.0.lnk . (...) C:\Program Files (x86)\PCSX2 1.4.0\pcsx2.exe O4 - GS\CommonDesktop [Public]: RomStation.lnk . (...) C:\RomStation\RomStation.exe O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}\SkypeIcon.exe =>.Skype Technologies O4 - GS\CommonDesktop [Public]: Steam.lnk . (.Valve Corporation - Steam Client Bootstrapper.) C:\Program Files (x86)\Steam\Steam.exe =>.Valve® O4 - GS\CommonDesktop [Public]: TP-LINK Wireless Configuration Utility.lnk . (...) C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe O4 - GS\Programs [Public]: Chromium.lnk . (.The Chromium Authors - Chromium.) C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O4 - GS\Programs [Public]: DarthMod Empire.lnk . (...) C:\Program Files (x86)\Steam\SteamApps\common\Empire Total War\data\DME\DME Platinum.exe =>.Steam Games O4 - GS\Programs [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\Programs [Public]: osu!.lnk . (.ppy - osu!.) C:\Users\Antonin\AppData\Local\osu!\osu!.exe =>.Dean Herbert® O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Windows Command Processor.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\Windows\explorer.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Private Character Editor.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation O4 - GS\Startup [Public]: TP-LINK Wireless Configuration Utility.lnk . (...) C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe -nogui O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Windows Calculator.) C:\Windows\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Display Switch.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Math Input Panel Accessory.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Windows Mobility Center.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Windows Sound Recorder.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Sticky Notes.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Windows host process (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Microsoft® Disk Defragmenter.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Disk Space Cleanup Manager for Windows.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Resource and Performance Monitor.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - System Information.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Microsoft® Windows System Restore.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Windows Easy Transfer Post Migration Applic.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Windows Easy Transfer Application.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Adobe Download Assistant.lnk . (...) C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe O4 - GS\ProgramsCommon [Public]: Adobe Reader XI.lnk . (...) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico =>.Adobe Inc. O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\Windows\Installer\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}\AppleSoftwareUpdateIco.exe =>.Apple Inc. O4 - GS\ProgramsCommon [Public]: Avast SafeZone Browser.lnk . (.Avast Software - Avast SafeZone Browser.) C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software s.r.o.® O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: paint.net.lnk . (.dotPDN LLC - .) C:\Program Files (x86)\paint.net\PaintDotNet.exe =>.dotPDN LLC O4 - GS\ProgramsCommon [Public]: PaintTool SAI Ver.1.lnk . (.SYSTEMAX Software Development Inc. - sai.) C:\PaintToolSAI\sai.exe O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Windows Desktop Gadgets.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Synthesia.lnk . (.(c)2013 Synthesia LLC - Synthesia.) C:\Program Files (x86)\Synthesia\Synthesia.exe {5EC51B397083179E59994D2ED19E294A} O4 - GS\ProgramsCommon [Public]: Visionneuse Microsoft Office PowerPoint 2007.lnk . (...) C:\Windows\Installer\{95120000-00AF-040C-0000-0000000FF1CE}\ppvwicon.exe =>.Microsoft Corporation® O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - XPS Viewer.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation ---\\ Lop.com/Domain Hijackers (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{124D134F-DBF0-463F-A5B4-50FCD5D9EC58}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress O17 - HKLM\System\CCS\Services\Tcpip\..\{E9EA7DB4-D9E6-4BC1-96A0-5A6859D1584C}: DhcpNameServer = 192.168.1.1 192.168.1.1 =>.Local IP Adress ---\\ Extra protocols (20) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® ---\\ AppInit_DLLs Registry value Autorun (1) - 0s O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 355.) - C:\Windows\system32\nvinitx.dll =>.NVIDIA Corporation ---\\ Software installed (110) - 12s O42 - Logiciel: Action Replay PowerSaves 3DS version 1.45 - (.Datel Design & Development.) [HKLM][64Bits] -- {CD24B06F-0A4D-410A-AEF2-DFE6A28AB4C0}_is1 =>.Datel Design & Development O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7B77622E-DE90-48EA-B2C7-227B1DE58A01} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B8B7838E-449E-B187-57E1-1AA686F225DC} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.downloadassistant.AdobeDownloadAssistant =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Flash Player 25 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Flash Player 25 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Reader XI (11.0.20) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824225037} =>.Adobe Systems Incorporated O42 - Logiciel: Age of empire - (..) [HKLM][64Bits] -- {b19f5f93-2cb6-44e8-bf57-35afc39050f9}.sdb O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM][64Bits] -- {4D530FA3-9B89-4186-98B7-F51000000100} O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM][64Bits] -- {4D530FA3-9B89-4186-98B7-F51000008100} O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM][64Bits] -- GFWL_{4D530FA3-9B89-4186-98B7-F51000000100} O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM][64Bits] -- GFWL_{4D530FA3-9B89-4186-98B7-F51000008100} O42 - Logiciel: Age of Mythology - The Titans Expansion - (..) [HKLM][64Bits] -- Age of Mythology Expansion Pack 1.0 O42 - Logiciel: AION - (..) [HKLM][64Bits] -- AION O42 - Logiciel: Apowersoft Gestionnaire de Smartphone version 2.8.6 - (.APOWERSOFT LIMITED.) [HKLM][64Bits] -- {4A00E3C4-2D0F-4AE7-9F2A-74870BE09EF8}_is1 =>.APOWERSOFT LIMITED O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF} =>.Apple Inc. O42 - Logiciel: Avast Antivirus Gratuit - (.AVAST Software.) [HKLM][64Bits] -- Avast Antivirus =>.AVAST Software s.r.o.® O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net =>.Blizzard Entertainment, Inc.® O42 - Logiciel: Battlefield: Bad Company™ 2 - (.Electronic Arts.) [HKLM][64Bits] -- {3AC8457C-0385-4BEA-A959-E095F05D6D67} =>.Electronic Arts O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks =>.BlueStack Systems, Inc.® O42 - Logiciel: Chromium - (.Chromium Team.) [HKLM][64Bits] -- {97BE7F7E-C73E-AEFE-76BE-DE7EA63E0DFE} =>.Chromium Team O42 - Logiciel: Citra Edge - (.Citra Development Team.) [HKCU][64Bits] -- citra O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd® O42 - Logiciel: Dolphin - (.Dolphin Team.) [HKLM][64Bits] -- Dolphin =>.Dolphin Team O42 - Logiciel: ƒ}ƒWƒJƒ‹ƒoƒgƒ‹ƒAƒŠ[ƒiNEXTEŒ¶‘z‹½‹ó‘M•P - (..) [HKLM][64Bits] -- ƒ}ƒWƒJƒ‹ƒoƒgƒ‹ƒAƒŠ[ƒiNEXTEŒ¶‘z‹½‹ó‘M•P O42 - Logiciel: GOD EATER RESURRECTION - (..) [HKLM][64Bits] -- Steam App 460870 =>.Valve® O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome =>.Google Inc® O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {F6430171-B86B-4639-839E-374913E7911D} =>.Google O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc. O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect O42 - Logiciel: Gyazo 3.3.1 - (.Nota Inc..) [HKLM][64Bits] -- {6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1 =>.Nota Inc.® O42 - Logiciel: Happy Cloud Client - (.Happy Cloud, Inc..) [HKCU][64Bits] -- HappyCloud {3CF4DE4437393E71CEE142B08449B9F8} =>.Superfluous.HappyCloud O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {88509E20-3936-4D88-A1C0-B274C7BB5151} =>.Apple Inc. O42 - Logiciel: Java 8 Update 31 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218031F0} =>.Oracle Corporation O42 - Logiciel: Java 8 Update 31 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418031F0} =>.Oracle Corporation O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation O42 - Logiciel: JavaFX 2.1.1 - (.Oracle Corporation.) [HKLM][64Bits] -- {1111706F-666A-4037-7777-211328764D10} =>.Oracle Corporation O42 - Logiciel: LEGO® Star Wars™ : La Saga Complète - (.LucasArts.) [HKLM][64Bits] -- InstallShield_{D596980D-17BE-4425-B8F0-5640719AADE9} =>.LUCASFILM ENTERTAINMENT COMPANY LTD® O42 - Logiciel: LEGO® Star Wars™: The Complete Saga - (.LucasArts.) [HKLM][64Bits] -- {D596980D-17BE-4425-B8F0-5640719AADE9} =>.LucasArts O42 - Logiciel: Les Sims™ 4 - (.Electronic Arts Inc..) [HKLM][64Bits] -- {48EBEBBF-B9F8-4520-A3CF-89A730721917} =>.Electronic Arts, Inc.® O42 - Logiciel: LibUSB-Win32-0.1.10.1 - (.LibUSB-Win32.) [HKLM][64Bits] -- LibUSB-Win32_is1 =>.LibUSB-Win32 O42 - Logiciel: MEGAsync - (.Mega Limited.) [HKLM][64Bits] -- MEGAsync {166DC4B190914581A6A56199} =>.MEGA Limited O42 - Logiciel: Microsoft Age of Empires Gold - (..) [HKLM][64Bits] -- Age of Empires Gold 1.0 O42 - Logiciel: Microsoft Age of Empires II - (..) [HKLM][64Bits] -- Age of Empires 2.0 O42 - Logiciel: Microsoft Age of Empires II : The Conquerors Expansion - (..) [HKLM][64Bits] -- Age of Empires II: The Conquerors Expansion 1.0 O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D} =>.Microsoft Corporation O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {67F42018-F647-4D3C-BE62-F8CB4FE2FCD5} =>.Microsoft Corporation O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation O42 - Logiciel: Mount & Blade: Warband - (.Taleworlds Entertainment.) [HKLM][64Bits] -- Steam App 48700 =>.Valve® O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} =>.Microsoft Corporation O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} =>.Microsoft Corporation O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM][64Bits] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13} =>.Microsoft Game Studios O42 - Logiciel: NVIDIA 3D Vision Controller Driver 352.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation O42 - Logiciel: NVIDIA 3D Vision Driver 355.82 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Control Panel 355.82 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation O42 - Logiciel: NVIDIA GeForce Experience 2.5.14.5 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience =>.NVIDIA Corporation O42 - Logiciel: NVIDIA GeForce Experience Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Graphics Driver 355.82 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation O42 - Logiciel: NVIDIA HD Audio Driver 1.3.34.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation O42 - Logiciel: NVIDIA LED Visualizer 1.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Network Service - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service =>.NVIDIA Corporation O42 - Logiciel: NVIDIA PhysX System Software 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX =>.NVIDIA Corporation O42 - Logiciel: NVIDIA ShadowPlay 2.5.14.5 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo =>.NVIDIA Corporation® O42 - Logiciel: NVIDIA Update 2.5.14.5 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Update Core - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core =>.NVIDIA Corporation O42 - Logiciel: NVIDIA Virtual Audio 1.2.31 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver =>.NVIDIA Corporation O42 - Logiciel: OpenAL - (.Open Audio Library.) [HKLM][64Bits] -- OpenAL O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369} =>.OpenOffice.org O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin =>.Electronic Arts, Inc.® O42 - Logiciel: osu! - (.ppy Pty Ltd.) [HKLM][64Bits] -- {c4f79ac7-49df-4e09-a3a6-4c43f1e91253} =>.Dean Herbert® O42 - Logiciel: paint.net - (.dotPDN LLC.) [HKLM][64Bits] -- {19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42} =>.dotPDN LLC O42 - Logiciel: PaintTool SAI Ver.1 - (.Systemax Software Development.) [HKLM][64Bits] -- PaintToolSAI O42 - Logiciel: PCSX2 - Playstation 2 Emulator - (..) [HKLM][64Bits] -- pcsx2 O42 - Logiciel: Pluto TV version 0.4.0 - (.Pluto TV.) [HKCU][64Bits] -- Pluto TV_is1 =>.Pluto TV O42 - Logiciel: Popcorn Time - (.Popcorn Official.) [HKCU][64Bits] -- Popcorn Time =>.Superfluous.PopcornTime O42 - Logiciel: PRO PC Cleaner - (.PRO PC Cleaner.) [HKLM][64Bits] -- PRO PC Cleaner =>.Superfluous.DoctorPC O42 - Logiciel: RomStation - (.RomStation.) [HKLM][64Bits] -- {223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1 =>.RomStation O42 - Logiciel: SafeZone Stable 3.55.2393.596 - (.Avast Software.) [HKLM][64Bits] -- SafeZone 3.55.2393.596 =>.AVAST Software s.r.o.® O42 - Logiciel: Samsung Mobile phone USB driver Drive Software - (.Samsung Electronics.) [HKLM][64Bits] -- Samsung Mobile phone USB driver Drive =>.SAMSUNG Electronics O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A} =>.Samsung Electronics Co., Ltd. O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A} =>.SAMSUNG ELECTRONICS CO.,LTD.® O42 - Logiciel: Samsung PC Studio 3 - (.Samsung Electronics Co., Ltd..) [HKLM][64Bits] -- {C79A37F3-C076-48BE-B290-F4C8676ABD74} =>.Samsung Electronics Co., Ltd. O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.SAMSUNG ELECTRONICS CO.,LTD.® O42 - Logiciel: SHIELD Streaming - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv =>.NVIDIA Corporation O42 - Logiciel: SHIELD Wireless Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController =>.NVIDIA Corporation O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B} =>.Microsoft Corporation O42 - Logiciel: Skype™ 7.36 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {3B7E914A-93D5-4A29-92BB-AF8C3F66C431} =>.Skype Technologies S.A. O42 - Logiciel: Star Wars Galactic Battlegrounds - (..) [HKLM][64Bits] -- {A202BDBA-753F-41B9-B649-CFB0B45FC03E} O42 - Logiciel: Star Wars Galactic Battlegrounds: Clone Campaigns - (..) [HKLM][64Bits] -- {0314ED3D-26A7-4F62-86A2-6B23353445E8} O42 - Logiciel: Star Wars The Old Republic - (.Bioware/EA.) [HKLM][64Bits] -- swtor_swtor =>.Bioware/EA O42 - Logiciel: StarCraft II - (.Blizzard Entertainment.) [HKLM][64Bits] -- StarCraft II =>.Blizzard Entertainment, Inc.® O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3} =>.Valve Corporation O42 - Logiciel: Synthesia - (.Synthesia LLC.) [HKLM][64Bits] -- Synthesia =>.Synthesia LLC O42 - Logiciel: Tales of Berseria - (.BANDAI NAMCO Studios Inc..) [HKLM][64Bits] -- Steam App 429660 =>.Valve® O42 - Logiciel: Tales of Zestiria - (.BANDAI NAMCO Studio Inc..) [HKLM][64Bits] -- Steam App 351970 =>.Valve® O42 - Logiciel: TP-LINK TL-WDN3800 Driver - (.TP-LINK.) [HKLM][64Bits] -- {FDA7E907-6539-42C1-9721-0239C281B336} =>.TP-LINK O42 - Logiciel: TP-LINK Wireless Configuration Utility - (.TP-LINK.) [HKLM][64Bits] -- {319D91C6-3D44-436C-9F79-36C0D22372DC} =>.TP-LINK O42 - Logiciel: UE4 Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {2890ae6b-90e9-448d-b3e6-97e43c21e2fd} =>.Epic Games Inc.® O42 - Logiciel: UE4 Prerequisites (x64) - (.Epic Games, Inc..) [HKLM][64Bits] -- {36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4} =>.Epic Games, Inc. O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer =>.Unity Technologies ApS O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: Wacom Tablet - (.Wacom Technology Corp..) [HKLM][64Bits] -- Wacom Tablet Driver =>.Wacom Technology Corp.® O42 - Logiciel: WebTablet FB Plugin 32 bit - (.Wacom Technology Corp..) [HKLM][64Bits] -- Wacom WebTabletPlugin for Internet Explorer and Netscape =>.Wacom Technology Corp. O42 - Logiciel: WebTablet FB Plugin 64 bit - (.Wacom Technology Corp..) [HKLM][64Bits] -- Wacom WebTabletPlugin for Internet Explorer and Netscape =>.Wacom Technology Corp. O42 - Logiciel: WinRAR 4.01 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH O42 - Logiciel: Yahoo! Powered - (..) [HKLM][64Bits] -- {24F8CC38-7478-1DB8-C5F8-6D381578BEB8} =>Adware.YahooPowered ---\\ HKCU & HKLM Software Keys (185) - 12s HKLM\SOFTWARE\Wow6432Node\Activision =>.Activision HKLM\SOFTWARE\Wow6432Node\Adobe =>.Adobe HKLM\SOFTWARE\Wow6432Node\AGEIA Technologies =>.AGEIA Technologies HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. =>.Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. =>.Apple Inc. HKLM\SOFTWARE\Wow6432Node\AVAST Software =>.AVAST Software HKLM\SOFTWARE\Wow6432Node\Battlelog Web Plugins HKLM\SOFTWARE\Wow6432Node\Bethesda Softworks =>.Bethesda Softworks HKLM\SOFTWARE\Wow6432Node\BioWare =>.BioWare HKLM\SOFTWARE\Wow6432Node\Blizzard Entertainment =>.Blizzard Entertainment HKLM\SOFTWARE\Wow6432Node\BlueStacks =>.BlueStack Systems, Inc. HKLM\SOFTWARE\Wow6432Node\Bohemia Interactive =>.Bohemia Interactive HKLM\SOFTWARE\Wow6432Node\Bohemia Interactive Studio =>.Bohemia Interactive Studio HKLM\SOFTWARE\Wow6432Node\Bunndle =>.Unknow HKLM\SOFTWARE\Wow6432Node\C07ft5Y =>.Total War Game HKLM\SOFTWARE\Wow6432Node\CDDB =>.Cddb Software HKLM\SOFTWARE\Wow6432Node\Codemasters =>.Codemasters HKLM\SOFTWARE\Wow6432Node\cyanide =>.Cyanide HKLM\SOFTWARE\Wow6432Node\DICE =>.DICE HKLM\SOFTWARE\Wow6432Node\DT Soft =>.DT Soft Ltd HKLM\SOFTWARE\Wow6432Node\EA Games =>.EA Games HKLM\SOFTWARE\Wow6432Node\Electronic Arts =>.Electronic Arts HKLM\SOFTWARE\Wow6432Node\ESN Launcher-1.102.0 HKLM\SOFTWARE\Wow6432Node\ESN Launcher-1.110.0 HKLM\SOFTWARE\Wow6432Node\ESN Launcher-1.118.0 HKLM\SOFTWARE\Wow6432Node\ESN Launcher-1.138.0 HKLM\SOFTWARE\Wow6432Node\ESN Sonar-0.70.3 =>.Electronic Arts, Inc. HKLM\SOFTWARE\Wow6432Node\FreeDownloadManager.ORG =>.FreeDownloadManager.org HKLM\SOFTWARE\Wow6432Node\Google =>.Google HKLM\SOFTWARE\Wow6432Node\IM Providers =>.IM Providers HKLM\SOFTWARE\Wow6432Node\InstallShield =>.InstallShield HKLM\SOFTWARE\Wow6432Node\Intel =>.Intel HKLM\SOFTWARE\Wow6432Node\JavaSoft =>.JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics =>.JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos =>.Khronos HKLM\SOFTWARE\Wow6432Node\LucasArts =>.LucasArts HKLM\SOFTWARE\Wow6432Node\LucasArts Entertainment Company LLC =>.LucasArts Entertainment Company LLC HKLM\SOFTWARE\Wow6432Node\Macromedia =>.Macromedia HKLM\SOFTWARE\Wow6432Node\MarkAny =>.MarkAny HKLM\SOFTWARE\Wow6432Node\Maxis =>.Maxis HKLM\SOFTWARE\Wow6432Node\mcafeeupdater =>.McAfee Inc. HKLM\SOFTWARE\Wow6432Node\Mindscape =>.Mindscape HKLM\SOFTWARE\Wow6432Node\Mount&Blade Warband =>.Mount And Blade HKLM\SOFTWARE\Wow6432Node\Mozilla =>.Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org =>.mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins =>.MozillaPlugins HKLM\SOFTWARE\Wow6432Node\Nero =>.Ahead Corporation HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation =>.nVidia Corporation HKLM\SOFTWARE\Wow6432Node\ODBC =>.DB Connectivity Solutions HKLM\SOFTWARE\Wow6432Node\OpenAL =>.Open Audio Library HKLM\SOFTWARE\Wow6432Node\Oracle =>.Oracle HKLM\SOFTWARE\Wow6432Node\Origin =>.Electronic Arts, Inc. HKLM\SOFTWARE\Wow6432Node\Origin Games =>.Electronic Arts, Inc. HKLM\SOFTWARE\Wow6432Node\Overwolf =>.Overwolf HKLM\SOFTWARE\Wow6432Node\Paradox Interactive =>.Paradox Interactive HKLM\SOFTWARE\Wow6432Node\PCSX2 HKLM\SOFTWARE\Wow6432Node\PocketSoft HKLM\SOFTWARE\Wow6432Node\PRO PC Cleaner =>.Superfluous.DoctorPC HKLM\SOFTWARE\Wow6432Node\RealNetworks =>.RealNetworks HKLM\SOFTWARE\Wow6432Node\Rockstar Games =>.Rockstar Games HKLM\SOFTWARE\Wow6432Node\Samsung =>.Samsung Electronics HKLM\SOFTWARE\Wow6432Node\Samsung Electronics Co., Ltd. =>.Samsung Electronics HKLM\SOFTWARE\Wow6432Node\SEGA =>.SEGA HKLM\SOFTWARE\Wow6432Node\Skype =>.Skype HKLM\SOFTWARE\Wow6432Node\Sports Interactive =>.Sports Interactive HKLM\SOFTWARE\Wow6432Node\Sunflowers =>.Sunflowers HKLM\SOFTWARE\Wow6432Node\SuppHelpDir =>.Toshiba Corporation HKLM\SOFTWARE\Wow6432Node\Synthesia HKLM\SOFTWARE\Wow6432Node\The Creative Assembly =>.The Creative Assembly HKLM\SOFTWARE\Wow6432Node\THQ =>.THQ HKLM\SOFTWARE\Wow6432Node\TP-LINK =>.TP-LINK HKLM\SOFTWARE\Wow6432Node\Turbine =>.Turbine HKLM\SOFTWARE\Wow6432Node\Ubisoft =>.Ubisoft HKLM\SOFTWARE\Wow6432Node\Valve =>.Valve HKLM\SOFTWARE\Wow6432Node\VideoLAN =>.VideoLAN HKLM\SOFTWARE\Wow6432Node\Volatile =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\Wacom =>.Wacom HKLM\SOFTWARE\Wow6432Node\webtogo =>.WebToGo HKLM\SOFTWARE\Wow6432Node\Windows =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\Wow6432Node =>.Microsoft Corporation HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp. =>.Xing Technology Corp. HKLM\SOFTWARE\Wow6432Node\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\Adobe =>.Adobe HKCU\SOFTWARE\Apowersoft =>.Apowersoft HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation HKCU\SOFTWARE\Apple Computer, Inc. =>.Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. =>.Apple Inc. HKCU\SOFTWARE\Aureal =>.Aureal Semiconductor HKCU\SOFTWARE\AVAST Software =>.AVAST Software HKCU\SOFTWARE\Battlefield 1942 =>.Electronic Arts, Inc. HKCU\SOFTWARE\Blizzard Entertainment =>.Blizzard Entertainment HKCU\SOFTWARE\Bohemia Interactive =>.Bohemia Interactive HKCU\SOFTWARE\Bohemia Interactive Studio =>.Bohemia Interactive Studio HKCU\SOFTWARE\Bugsplat =>.Bugsplat Game HKCU\SOFTWARE\Caphyon =>.Caphyon HKCU\SOFTWARE\Chromium =>.Chromium HKCU\SOFTWARE\Cyanide =>.Cyanide HKCU\SOFTWARE\DMGR1.25 HKCU\SOFTWARE\DT Soft =>.DT Soft Ltd HKCU\SOFTWARE\EA Games =>.EA Games HKCU\SOFTWARE\EB HKCU\SOFTWARE\Electronic Arts =>.Electronic Arts HKCU\SOFTWARE\Enterbrain =>.Enterbrain HKCU\SOFTWARE\Epic Games =>.Epic Games HKCU\SOFTWARE\Firaxis =>.Firaxis Games HKCU\SOFTWARE\flv2avi HKCU\SOFTWARE\FreeDownloadManager.ORG =>.FreeDownloadManager.org HKCU\SOFTWARE\FreeTime =>.FreeTime Inc HKCU\SOFTWARE\Gaijin =>.Gaijin Entertainment HKCU\SOFTWARE\GamersGate HKCU\SOFTWARE\GameSpy =>.GameSpy HKCU\SOFTWARE\Google =>.Google HKCU\SOFTWARE\Gravitysensation HKCU\SOFTWARE\GreedyTorrent HKCU\SOFTWARE\Gyazo =>.Nota Inc. HKCU\SOFTWARE\Haemimont Games =>.Haemimont Games HKCU\SOFTWARE\HappyCloud =>.Superfluous.HappyCloud HKCU\SOFTWARE\HngSync =>.Reto-Moto Aps HKCU\SOFTWARE\IM Providers =>.IM Providers HKCU\SOFTWARE\Intel =>.Intel HKCU\SOFTWARE\IO Interactive =>.IO Interactive HKCU\SOFTWARE\JavaSoft =>.JavaSoft HKCU\SOFTWARE\LogiShrd =>.LogiShrd HKCU\SOFTWARE\LucasArts Entertainment Company LLC =>.LucasArts Entertainment Company LLC HKCU\SOFTWARE\Macromedia =>.Macromedia HKCU\SOFTWARE\MCAFEE =>.McAfee Inc. HKCU\SOFTWARE\Messengerdusexe HKCU\SOFTWARE\Mobileleader HKCU\SOFTWARE\MountAndBladeKeys =>.Mount And Blade HKCU\SOFTWARE\MountAndBladeWarbandKeys =>.Mount And Blade HKCU\SOFTWARE\MountAndBladeWarbandWFASKeys =>.Mount And Blade HKCU\SOFTWARE\Mozilla =>.Mozilla HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins HKCU\SOFTWARE\mtarini HKCU\SOFTWARE\Mumble =>.Mumble HKCU\SOFTWARE\Nero =>.Ahead Corporation HKCU\SOFTWARE\Netscape =>.Netscape HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation HKCU\SOFTWARE\OpenAutomate =>.nVidia Corporation HKCU\SOFTWARE\OpenOffice.org =>.SourceForge HKCU\SOFTWARE\osu! =>.Osu! Games HKCU\SOFTWARE\paint.net =>.Rick Brewster HKCU\SOFTWARE\PaintTool SAI HKCU\SOFTWARE\PCSX2 HKCU\SOFTWARE\perforce =>.Perforce Software HKCU\SOFTWARE\Pipix HKCU\SOFTWARE\PlutoTV HKCU\SOFTWARE\PRO PC Cleaner =>.Superfluous.DoctorPC HKCU\SOFTWARE\PROPCCleanerLanguage =>.Superfluous.DoctorPC HKCU\SOFTWARE\QtProject =>.QtProject HKCU\SOFTWARE\Razer =>.Razer HKCU\SOFTWARE\RealNetworks =>.RealNetworks HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation HKCU\SOFTWARE\Related Designs =>.Related Designs HKCU\SOFTWARE\Rockstar Games =>.Rockstar Games HKCU\SOFTWARE\roms43 HKCU\SOFTWARE\Samsung =>.Samsung Electronics HKCU\SOFTWARE\SecuROM =>.SecuROM HKCU\SOFTWARE\SEGA =>.SEGA HKCU\SOFTWARE\Skype =>.Skype HKCU\SOFTWARE\Smartly Dressed Games =>.Smartly Dressed Games HKCU\SOFTWARE\Software Engineering HKCU\SOFTWARE\Solidshield HKCU\SOFTWARE\SYSTEMAX Software Development =>.Systemax Software Development HKCU\SOFTWARE\The Creative Assembly =>.The Creative Assembly HKCU\SOFTWARE\TheCreativeAssembly =>.The Creative Assembly HKCU\SOFTWARE\Trolltech =>.Trolltech HKCU\SOFTWARE\Ubisoft =>.Ubisoft HKCU\SOFTWARE\Unity =>.Unity HKCU\SOFTWARE\Valve =>.Valve HKCU\SOFTWARE\Verdun HKCU\SOFTWARE\Volition =>.Volition HKCU\SOFTWARE\Voobly =>.Voobly HKCU\SOFTWARE\Wargaming.net =>.Wargaming.net HKCU\SOFTWARE\WinRAR =>.WinRAR HKCU\SOFTWARE\WinRAR SFX =>.RarLab HKCU\SOFTWARE\WinterCell Studios HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation HKCU\SOFTWARE\yahooinstall =>.Yahoo! Inc. HKCU\SOFTWARE\YandereDev =>.Games Software HKCU\SOFTWARE\ZHP =>.Nicolas Coolman HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation HKCU\SOFTWARE\AppDataLow\Software\Adobe =>.Adobe HKCU\SOFTWARE\AppDataLow\Software\JavaSoft =>.JavaSoft HKCU\SOFTWARE\AppDataLow\Software\Unity =>.Unity ---\\ Contents of the Common Files folders (396) - 25s O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software s.r.o.® O43 - CFD: 02/08/2015 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation O43 - CFD: 20/03/2014 - [] D -- C:\Program Files\Crusader Kings II 2.0.4 O43 - CFD: 17/04/2017 - [] D -- C:\Program Files\Dolphin =>.Dolphin DevTeam O43 - CFD: 15/03/2017 - [] D -- C:\Program Files\DVD Maker =>.Aone Software O43 - CFD: 11/05/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation O43 - CFD: 19/09/2015 - [] D -- C:\Program Files\iPod =>.Apple Inc.® O43 - CFD: 19/09/2015 - [] D -- C:\Program Files\iTunes =>.Apple Inc. O43 - CFD: 26/01/2015 - [] D -- C:\Program Files\Java =>.Oracle O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games =>.Microsoft Corporation O43 - CFD: 13/04/2017 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation O43 - CFD: 07/08/2015 - [] D -- C:\Program Files\NVIDIA Corporation =>.nVidia Corporation O43 - CFD: 05/02/2015 - [] D -- C:\Program Files\paint.net =>.Rick Brewster O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 25/10/2015 - [] D -- C:\Program Files\Tablet =>.Wacom Technology Corp.® O43 - CFD: 25/10/2015 - [] D -- C:\Program Files\TabletPlugins =>.Wacom Technology O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation O43 - CFD: 12/07/2013 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation O43 - CFD: 12/05/2016 - [] D -- C:\Program Files\Windows Journal =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 26/10/2011 - [] D -- C:\Program Files\WinRAR =>.WinRAR O43 - CFD: 03/12/2016 - [] D -- C:\Program Files (x86)\Action Replay PowerSaves 3DS =>.RSA Security O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated® O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\Adobe Download Assistant =>.Adobe Inc. O43 - CFD: 14/05/2017 - [] D -- C:\Program Files (x86)\Apowersoft =>.Apowersoft O43 - CFD: 19/09/2015 - [] D -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc. O43 - CFD: 06/06/2016 - [] D -- C:\Program Files (x86)\Battle.net =>.Games Software O43 - CFD: 02/03/2015 - [] D -- C:\Program Files (x86)\Battlelog Web Plugins =>.Electronic Arts® O43 - CFD: 17/02/2017 - [] AD -- C:\Program Files (x86)\Bluestacks =>.BlueStack Systems, Inc. O43 - CFD: 11/11/2011 - [] D -- C:\Program Files (x86)\Bohemia Interactive =>.Bohemia Interactive O43 - CFD: 17/11/2012 - [] D -- C:\Program Files (x86)\Codemasters =>.Codemasters O43 - CFD: 10/05/2017 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation O43 - CFD: 17/01/2012 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite =>.DAEMON Tools O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\data O43 - CFD: 23/01/2012 - [] D -- C:\Program Files (x86)\directx =>.Microsoft Corporation O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\EA Games =>.EA Games O43 - CFD: 23/11/2011 - [] D -- C:\Program Files (x86)\Electronic Arts =>.EA Digital Illusions CE AB® O43 - CFD: 05/02/2015 - [0] D -- C:\Program Files (x86)\FreeTime =>.FreeTime O43 - CFD: 03/02/2017 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 08/04/2017 - [] D -- C:\Program Files (x86)\Gyazo =>.Nota Inc. O43 - CFD: 20/10/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.InstallShield Software O43 - CFD: 27/10/2011 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation O43 - CFD: 11/05/2017 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation O43 - CFD: 19/09/2015 - [] D -- C:\Program Files (x86)\iTunes =>.Apple Inc. O43 - CFD: 26/01/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle O43 - CFD: 30/10/2011 - [] D -- C:\Program Files (x86)\LibUSB-Win32-0.1.10.1 O43 - CFD: 29/09/2015 - [] D -- C:\Program Files (x86)\LucasArts =>.LucasArts O43 - CFD: 30/01/2012 - [] D -- C:\Program Files (x86)\MarkAny =>.MarkAny O43 - CFD: 13/01/2013 - [] D -- C:\Program Files (x86)\Maxis =>.Maxis O43 - CFD: 18/10/2014 - [] D -- C:\Program Files (x86)\Microsoft ASP.NET =>.Microsoft Corporation O43 - CFD: 05/05/2014 - [] D -- C:\Program Files (x86)\Microsoft Chart Controls =>.Microsoft Corporation O43 - CFD: 05/04/2013 - [] D -- C:\Program Files (x86)\Microsoft Games =>.Microsoft Corporation O43 - CFD: 23/02/2014 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE =>.Microsoft Corporation O43 - CFD: 28/04/2014 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation O43 - CFD: 13/04/2017 - [] D -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 31/07/2013 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation O43 - CFD: 28/04/2014 - [] D -- C:\Program Files (x86)\MSECache =>.Microsoft Corporation O43 - CFD: 01/11/2011 - [0] D -- C:\Program Files (x86)\MSXML 4.0 =>.Microsoft Corporation O43 - CFD: 29/09/2015 - [] D -- C:\Program Files (x86)\Mumble =>.Mumble O43 - CFD: 27/10/2014 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.nVidia Corporation O43 - CFD: 28/04/2013 - [] D -- C:\Program Files (x86)\OpenAL =>.Open Audio Library O43 - CFD: 28/11/2011 - [] D -- C:\Program Files (x86)\OpenOffice.org 3 =>.SourceForge O43 - CFD: 31/07/2012 - [] D -- C:\Program Files (x86)\Oracle =>.Oracle O43 - CFD: 28/09/2016 - [] D -- C:\Program Files (x86)\Origin =>.Electronic Arts, Inc. O43 - CFD: 06/04/2016 - [] D -- C:\Program Files (x86)\Origin Games =>.Electronic Arts, Inc. O43 - CFD: 28/04/2017 - [] D -- C:\Program Files (x86)\PCSX2 1.4.0 O43 - CFD: 19/10/2012 - [] D -- C:\Program Files (x86)\Real =>.RealNetworks Inc. O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies =>.Microsoft Corporation O43 - CFD: 31/07/2012 - [] D -- C:\Program Files (x86)\Rome Tool O43 - CFD: 30/01/2012 - [] D -- C:\Program Files (x86)\Samsung =>.Samsung Electronics O43 - CFD: 10/05/2017 - [] RD -- C:\Program Files (x86)\Skype =>.Skype O43 - CFD: 25/04/2014 - [] D -- C:\Program Files (x86)\SQUARE ENIX =>.Square Enix O43 - CFD: 15/09/2015 - [] D -- C:\Program Files (x86)\StarCraft II =>.Blizzard Entertainment, Inc.® O43 - CFD: 09/05/2017 - [] D -- C:\Program Files (x86)\Steam =>.Steam Games O43 - CFD: 23/02/2013 - [] D -- C:\Program Files (x86)\Super Mario World O43 - CFD: 26/10/2016 - [] D -- C:\Program Files (x86)\Synthesia =>.Synthesia O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\TabletPlugins =>.Wacom Technology O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\TP-LINK =>.TP-LINK O43 - CFD: 29/03/2012 - [0] D -- C:\Program Files (x86)\TrackMania 2 Canyon O43 - CFD: 02/06/2014 - [] D -- C:\Program Files (x86)\Tropico 5 =>.Kalypso Media O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Ubisoft =>.Ubisoft O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information =>.Microsoft Corporation O43 - CFD: 25/02/2012 - [] D -- C:\Program Files (x86)\VideoLAN =>.VideoLan Team O43 - CFD: 23/02/2013 - [] D -- C:\Program Files (x86)\Voobly =>.Voobly O43 - CFD: 22/03/2012 - [0] D -- C:\Program Files (x86)\VS Revo Group =>.VS Revo Group O43 - CFD: 28/10/2013 - [] D -- C:\Program Files (x86)\War Thunder O43 - CFD: 12/07/2013 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 13/10/2016 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation O43 - CFD: 12/03/2016 - [] D -- C:\Program Files (x86)\—̈æZERO O43 - CFD: 25/10/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 03/12/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Action Replay PowerSaves 3DS =>.RSA Security O43 - CFD: 14/03/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 14/05/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft =>.Apowersoft O43 - CFD: 16/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software =>.AVAST Software O43 - CFD: 17/02/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net =>.Games Software O43 - CFD: 11/11/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive =>.Bohemia Interactive O43 - CFD: 17/01/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite =>.DAEMON Tools O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolphin =>.Dolphin DevTeam O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA =>.Electronic Arts, Inc. O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Europa Barbarorum O43 - CFD: 14/07/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firaxis Games =>.Firaxis Games O43 - CFD: 06/04/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation O43 - CFD: 03/02/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth =>.Google Earth O43 - CFD: 09/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo =>.Nota Inc. O43 - CFD: 22/02/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iron Europe O43 - CFD: 19/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes =>.Apple Inc. O43 - CFD: 21/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java =>.Oracle O43 - CFD: 06/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Les Sims 4 =>.Electronic Arts, Inc. O43 - CFD: 30/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibUSB-Win32 =>.LibUSB-Win32 O43 - CFD: 29/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LucasArts =>.LucasArts O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 13/01/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maxis =>.Maxis O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGAsync =>.MegaSystems O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games =>.Microsoft Corporation O43 - CFD: 23/02/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace =>.Microsoft Corporation O43 - CFD: 13/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight =>.Microsoft Corporation O43 - CFD: 16/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\North&South First Manassas O43 - CFD: 19/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation =>.nVidia Corporation O43 - CFD: 02/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin =>.Electronic Arts, Inc. O43 - CFD: 28/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2 O43 - CFD: 14/03/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roma Surrectum II O43 - CFD: 20/04/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RomStation =>.RomStation O43 - CFD: 30/01/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung New PC Studio =>.Samsung Electronics O43 - CFD: 30/01/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung PC Studio 3 =>.Pinnacle Systems, Inc. O43 - CFD: 18/03/2017 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype =>.Skype O43 - CFD: 31/03/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stainless Steel O43 - CFD: 31/10/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II O43 - CFD: 20/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 21/01/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam =>.Steam Games O43 - CFD: 20/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sumotori Dreams Demo O43 - CFD: 26/10/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Synthesia =>.Synthesia O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC =>.Wacom Technology O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TP-LINK =>.TP-LINK O43 - CFD: 18/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN =>.VideoLan Team O43 - CFD: 25/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wacom Tablet O43 - CFD: 26/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 30/10/2014 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 =>.GEAR Software, Inc. O43 - CFD: 05/02/2015 - [] D -- C:\ProgramData\Adobe =>.Adobe O43 - CFD: 14/04/2012 - [] D -- C:\ProgramData\Age of Empires 3 O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Apple =>.Apple Inc. O43 - CFD: 23/09/2013 - [] D -- C:\ProgramData\Apple Computer =>.Apple Inc. O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation O43 - CFD: 19/03/2017 - [] D -- C:\ProgramData\AVAST Software =>.AVAST Software O43 - CFD: 06/06/2016 - [] D -- C:\ProgramData\Battle.net =>.Games Software O43 - CFD: 24/06/2012 - [] D -- C:\ProgramData\Blizzard Entertainment =>.Blizzard Entertainment O43 - CFD: 29/11/2016 - [0] D -- C:\ProgramData\BlueStacksSetup =>.BlueStack Systems, Inc. O43 - CFD: 10/06/2015 - [] D -- C:\ProgramData\boost_interprocess =>.boost.org O43 - CFD: 17/01/2012 - [] D -- C:\ProgramData\DAEMON Tools Lite =>.DAEMON Tools O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation O43 - CFD: 02/08/2015 - [] D -- C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 =>.Gearbox Software O43 - CFD: 27/10/2011 - [] D -- C:\ProgramData\EA Core =>.Electronic Arts, Inc. O43 - CFD: 15/02/2012 - [] D -- C:\ProgramData\EA Logs =>.Electronic Arts, Inc. O43 - CFD: 13/11/2011 - [] D -- C:\ProgramData\Electronic Arts =>.Electronic Arts O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites =>.Microsoft Corporation O43 - CFD: 18/01/2014 - [] D -- C:\ProgramData\Free Download Manager =>.FreeDownloadManager.com O43 - CFD: 17/02/2017 - [] D -- C:\ProgramData\Gyazo =>.Nota Inc. O43 - CFD: 01/04/2013 - [] D -- C:\ProgramData\HappyCloud =>.Superfluous.HappyCloud O43 - CFD: 14/06/2012 - [] D -- C:\ProgramData\HP =>.Hewlett-Packard O43 - CFD: 08/02/2012 - [] D -- C:\ProgramData\InstallMate =>.Superfluous.Tarma O43 - CFD: 28/02/2013 - [] D -- C:\ProgramData\ManiaPlanet =>.Nadeo O43 - CFD: 22/03/2012 - [] D -- C:\ProgramData\McAfee =>.McAfee O43 - CFD: 11/05/2017 - [] D -- C:\ProgramData\MEGAsync =>.MegaSystems O43 - CFD: 13/09/2015 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation O43 - CFD: 07/06/2014 - [] D -- C:\ProgramData\Nero =>.Ahead Corporation O43 - CFD: 17/05/2017 - [] D -- C:\ProgramData\NVIDIA =>.nVidia Corporation O43 - CFD: 19/09/2015 - [] D -- C:\ProgramData\NVIDIA Corporation =>.nVidia Corporation O43 - CFD: 26/01/2015 - [] D -- C:\ProgramData\Oracle =>.Oracle O43 - CFD: 22/03/2014 - [] D -- C:\ProgramData\Orbit =>.Orbit O43 - CFD: 11/05/2017 - [] D -- C:\ProgramData\Origin =>.Electronic Arts, Inc. O43 - CFD: 17/04/2017 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation O43 - CFD: 19/10/2012 - [] D -- C:\ProgramData\Real =>.RealNetworks Inc. O43 - CFD: 30/01/2012 - [] D -- C:\ProgramData\Samsung =>.Samsung Electronics O43 - CFD: 31/10/2011 - [] SHD -- C:\ProgramData\SecuROM =>.SecuROM O43 - CFD: 10/05/2017 - [] D -- C:\ProgramData\Skype =>.Skype O43 - CFD: 31/12/2011 - [] D -- C:\ProgramData\Solidshield =>.Solidshield Technologies O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation O43 - CFD: 28/10/2013 - [] D -- C:\ProgramData\Steam =>.Steam Games O43 - CFD: 26/10/2011 - [] D -- C:\ProgramData\Sun =>.Oracle O43 - CFD: 11/05/2017 - [0] D -- C:\ProgramData\SWCUTemp O43 - CFD: 25/09/2016 - [] D -- C:\ProgramData\SYSTEMAX Software Development =>.Systemax Software Development O43 - CFD: 24/12/2011 - [] D -- C:\ProgramData\Tages O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\TP-LINK =>.TP-LINK O43 - CFD: 01/04/2013 - [0] D -- C:\ProgramData\Turbine =>.Turbine O43 - CFD: 21/05/2012 - [] D -- C:\ProgramData\Ubisoft =>.Ubisoft O43 - CFD: 26/02/2015 - [] D -- C:\ProgramData\WarThunder =>.Games Software O43 - CFD: 14/05/2017 - [] D -- C:\ProgramData\{F92F3C4C-736D-B68A-F5AB-28C86FE9A306} O43 - CFD: 25/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe O43 - CFD: 05/02/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR =>.Adobe Inc. O43 - CFD: 20/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Apple =>.Apple Inc. O43 - CFD: 15/04/2017 - [] D -- C:\Program Files (x86)\Common Files\AV =>.Avast O43 - CFD: 19/02/2015 - [] D -- C:\Program Files (x86)\Common Files\BioWare =>.BioWare O43 - CFD: 17/02/2015 - [] D -- C:\Program Files (x86)\Common Files\Blizzard Entertainment =>.Blizzard Entertainment O43 - CFD: 06/04/2016 - [] HD -- C:\Program Files (x86)\Common Files\EAInstaller =>.Electronic Arts, Inc. O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield =>.InstallShield O43 - CFD: 26/01/2015 - [] D -- C:\Program Files (x86)\Common Files\Java =>.Oracle O43 - CFD: 29/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Games =>.Microsoft Corporation O43 - CFD: 28/04/2014 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation O43 - CFD: 10/05/2017 - [] D -- C:\Program Files (x86)\Common Files\Skype =>.Skype O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines =>.Microsoft Corporation O43 - CFD: 19/03/2017 - [] D -- C:\Program Files (x86)\Common Files\Steam =>.Steam Games O43 - CFD: 23/01/2012 - [0] D -- C:\Program Files (x86)\Common Files\SWF Studio =>.SWF Studio O43 - CFD: 21/01/2012 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation O43 - CFD: 14/03/2013 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard =>.Seagate O43 - CFD: 16/04/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\.minecraft =>.Microsoft Corporation O43 - CFD: 31/08/2014 - [] D -- C:\Users\Antonin\AppData\Roaming\.minefield O43 - CFD: 06/07/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\.Nitrous O43 - CFD: 06/04/2016 - [] D -- C:\Users\Antonin\AppData\Roaming\Adobe =>.Adobe O43 - CFD: 01/05/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\AION O43 - CFD: 14/05/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Apowersoft =>.Apowersoft O43 - CFD: 08/08/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 31/08/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\AVAST Software =>.AVAST Software O43 - CFD: 06/06/2016 - [] D -- C:\Users\Antonin\AppData\Roaming\Battle.net =>.Games Software O43 - CFD: 30/04/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Citra O43 - CFD: 05/02/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant =>.Adobe Inc. O43 - CFD: 26/01/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\DAEMON Tools Lite =>.DAEMON Tools O43 - CFD: 10/10/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Doublefine O43 - CFD: 11/11/2016 - [] D -- C:\Users\Antonin\AppData\Roaming\dvdcss =>.VideoLan Team O43 - CFD: 06/09/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Fatshark =>.Fatshark O43 - CFD: 14/07/2013 - [] D -- C:\Users\Antonin\AppData\Roaming\Firaxis Games =>.Firaxis Games O43 - CFD: 21/05/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\ftblauncher =>.Games Software O43 - CFD: 15/03/2014 - [0] D -- C:\Users\Antonin\AppData\Roaming\Goofball O43 - CFD: 19/12/2014 - [] D -- C:\Users\Antonin\AppData\Roaming\Gyazo =>.Nota Inc. O43 - CFD: 22/07/2014 - [] D -- C:\Users\Antonin\AppData\Roaming\HeroesAndGeneralsDesktop =>.Reto-Moto O43 - CFD: 25/10/2011 - [] D -- C:\Users\Antonin\AppData\Roaming\Identities =>.Microsoft Corporation O43 - CFD: 05/02/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\java =>.Oracle O43 - CFD: 02/06/2014 - [] D -- C:\Users\Antonin\AppData\Roaming\Kalypso Media =>.Kalypso Media O43 - CFD: 26/10/2011 - [] D -- C:\Users\Antonin\AppData\Roaming\Macromedia =>.Macromedia O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Antonin\AppData\Roaming\Media Center Programs =>.Microsoft Corporation O43 - CFD: 15/11/2016 - [] SD -- C:\Users\Antonin\AppData\Roaming\Microsoft =>.Microsoft Corporation O43 - CFD: 11/05/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Mount&Blade Warband =>.Mount And Blade O43 - CFD: 25/04/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Mount&Blade With Fire and Sword =>.Mount And Blade O43 - CFD: 31/03/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\Mumble =>.Mumble O43 - CFD: 29/09/2015 - [0] D -- C:\Users\Antonin\AppData\Roaming\My Games =>.My Games O43 - CFD: 28/10/2013 - [] D -- C:\Users\Antonin\AppData\Roaming\Natural Selection 2 O43 - CFD: 06/06/2014 - [] D -- C:\Users\Antonin\AppData\Roaming\Nero =>.Ahead Corporation O43 - CFD: 26/03/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\NVIDIA =>.nVidia Corporation O43 - CFD: 28/11/2011 - [] D -- C:\Users\Antonin\AppData\Roaming\OpenOffice.org =>.OpenOffice.org O43 - CFD: 10/12/2016 - [] D -- C:\Users\Antonin\AppData\Roaming\Origin =>.Electronic Arts, Inc. O43 - CFD: 11/05/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Pluto TV =>.Pluto TV O43 - CFD: 19/10/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Real =>.RealNetworks Inc. O43 - CFD: 30/01/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Samsung =>.Samsung Electronics O43 - CFD: 31/10/2011 - [] RHD -- C:\Users\Antonin\AppData\Roaming\SecuROM =>.SecuROM O43 - CFD: 04/07/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\Shooter =>.Marcel Pol O43 - CFD: 08/03/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Skype =>.Skype O43 - CFD: 29/04/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Synthesia =>.Synthesia O43 - CFD: 25/09/2016 - [] D -- C:\Users\Antonin\AppData\Roaming\SYSTEMAX Software Development =>.Systemax Software Development O43 - CFD: 30/05/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\The Creative Assembly =>.The Creative Assembly O43 - CFD: 20/06/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\TownOfSalem O43 - CFD: 20/10/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\TP-LINK =>.TP-LINK O43 - CFD: 30/09/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\TS3Client =>.TeamSpeak O43 - CFD: 21/05/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Ubisoft =>.Ubisoft O43 - CFD: 10/03/2015 - [0] D -- C:\Users\Antonin\AppData\Roaming\uTorrent O43 - CFD: 17/04/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\vlc =>.VideoLan Team O43 - CFD: 08/03/2013 - [] D -- C:\Users\Antonin\AppData\Roaming\Wargaming.net =>.Wargaming.net O43 - CFD: 26/10/2011 - [] D -- C:\Users\Antonin\AppData\Roaming\WinRAR =>.WinRAR O43 - CFD: 25/10/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\WTablet =>.Wacom Technology O43 - CFD: 18/05/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 26/03/2012 - [] D -- C:\Users\Antonin\AppData\Local\2K Games =>.2K Games O43 - CFD: 25/10/2015 - [] D -- C:\Users\Antonin\AppData\Local\Adobe =>.Adobe O43 - CFD: 06/09/2013 - [] D -- C:\Users\Antonin\AppData\Local\Apple =>.Apple Inc. O43 - CFD: 06/09/2013 - [] D -- C:\Users\Antonin\AppData\Local\Apple Computer =>.Apple Inc. O43 - CFD: 25/10/2011 - [0] SHD -- C:\Users\Antonin\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 18/04/2014 - [] D -- C:\Users\Antonin\AppData\Local\ApplicationHistory =>.Microsoft Corporation O43 - CFD: 28/03/2012 - [] D -- C:\Users\Antonin\AppData\Local\Apps =>.Microsoft Corporation O43 - CFD: 12/03/2016 - [] D -- C:\Users\Antonin\AppData\Local\AreaZero O43 - CFD: 11/11/2011 - [] D -- C:\Users\Antonin\AppData\Local\ArmA 2 Free =>.Bohemia Interactive Studio O43 - CFD: 11/04/2013 - [] D -- C:\Users\Antonin\AppData\Local\Arma 3 Alpha Lite =>.Bohemia Interactive Studio O43 - CFD: 11/01/2017 - [] D -- C:\Users\Antonin\AppData\Local\BANDAI NAMCO Entertainment =>.BANDAI NAMCO Entertainment O43 - CFD: 27/11/2016 - [] D -- C:\Users\Antonin\AppData\Local\BANDAI NAMCO Games =>.BANDAI NAMCO Games O43 - CFD: 06/06/2016 - [] D -- C:\Users\Antonin\AppData\Local\Battle.net =>.Games Software O43 - CFD: 28/09/2015 - [0] D -- C:\Users\Antonin\AppData\Local\Black_Tree_Gaming =>.Black Tree Gaming Ltd O43 - CFD: 25/01/2014 - [] D -- C:\Users\Antonin\AppData\Local\Blizzard Entertainment =>.Blizzard Entertainment O43 - CFD: 29/11/2016 - [] D -- C:\Users\Antonin\AppData\Local\Bluestacks =>.BlueStack Systems, Inc. O43 - CFD: 02/08/2015 - [] D -- C:\Users\Antonin\AppData\Local\CEF =>.CEF O43 - CFD: 08/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\Chromium =>.Chromium O43 - CFD: 08/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\citra O43 - CFD: 26/02/2014 - [] D -- C:\Users\Antonin\AppData\Local\CrashRpt =>.Superfluous.CrashReports O43 - CFD: 13/11/2011 - [] D -- C:\Users\Antonin\AppData\Local\Criterion Games O43 - CFD: 20/06/2012 - [0] D -- C:\Users\Antonin\AppData\Local\Deployment =>.Microsoft Corporation O43 - CFD: 25/01/2016 - [0] D -- C:\Users\Antonin\AppData\Local\Diagnostics =>.Microsoft Corporation O43 - CFD: 30/01/2012 - [] D -- C:\Users\Antonin\AppData\Local\Downloaded Installations =>.Microsoft Corporation O43 - CFD: 27/10/2011 - [] D -- C:\Users\Antonin\AppData\Local\Downloader O43 - CFD: 17/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\ElevatedDiagnostics =>.Microsoft Corporation O43 - CFD: 06/07/2015 - [0] SHD -- C:\Users\Antonin\AppData\Local\EmieBrowserModeList =>.Enterprise mode Site List Mgr O43 - CFD: 06/07/2015 - [0] SHD -- C:\Users\Antonin\AppData\Local\EmieSiteList =>.Enterprise mode Site List Mgr O43 - CFD: 06/07/2015 - [0] SHD -- C:\Users\Antonin\AppData\Local\EmieUserList =>.Enterprise mode Site List Mgr O43 - CFD: 10/01/2013 - [] D -- C:\Users\Antonin\AppData\Local\EsfEditor O43 - CFD: 23/02/2013 - [] D -- C:\Users\Antonin\AppData\Local\ESN =>.ESN O43 - CFD: 02/11/2011 - [] D -- C:\Users\Antonin\AppData\Local\ESN Sonar =>.Electronic Arts, Inc. O43 - CFD: 21/05/2015 - [] D -- C:\Users\Antonin\AppData\Local\ftblauncher =>.Games Software O43 - CFD: 02/06/2014 - [] D -- C:\Users\Antonin\AppData\Local\Game Updater =>.Splitscreen Studios GmbH O43 - CFD: 31/10/2016 - [] D -- C:\Users\Antonin\AppData\Local\Google =>.Google O43 - CFD: 25/10/2011 - [0] SHD -- C:\Users\Antonin\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 01/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\lacamis O43 - CFD: 22/01/2012 - [] D -- C:\Users\Antonin\AppData\Local\LucasArts =>.LucasArts O43 - CFD: 08/08/2012 - [] D -- C:\Users\Antonin\AppData\Local\Macromedia =>.Macromedia O43 - CFD: 25/10/2015 - [] D -- C:\Users\Antonin\AppData\Local\Mega Limited =>.MEGA Limited O43 - CFD: 24/07/2013 - [] D -- C:\Users\Antonin\AppData\Local\messengerdusexe =>.Superfluous.Rentabiliweb O43 - CFD: 14/12/2015 - [] D -- C:\Users\Antonin\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 02/03/2013 - [] D -- C:\Users\Antonin\AppData\Local\Microsoft Games =>.Microsoft Corporation O43 - CFD: 23/12/2011 - [] D -- C:\Users\Antonin\AppData\Local\Mozilla =>.Mozilla Corporation O43 - CFD: 15/01/2012 - [] D -- C:\Users\Antonin\AppData\Local\Mumble =>.Mumble O43 - CFD: 24/07/2013 - [] D -- C:\Users\Antonin\AppData\Local\My Games =>.My Games O43 - CFD: 12/12/2013 - [] D -- C:\Users\Antonin\AppData\Local\NVIDIA =>.nVidia Corporation O43 - CFD: 03/10/2014 - [] D -- C:\Users\Antonin\AppData\Local\NVIDIA Corporation =>.nVidia Corporation O43 - CFD: 13/10/2016 - [] D -- C:\Users\Antonin\AppData\Local\Origin =>.Electronic Arts, Inc. O43 - CFD: 11/03/2017 - [] D -- C:\Users\Antonin\AppData\Local\osu! =>.osu! Game O43 - CFD: 24/04/2016 - [] D -- C:\Users\Antonin\AppData\Local\paint.net =>.Rick Brewster O43 - CFD: 17/10/2014 - [] D -- C:\Users\Antonin\AppData\Local\PAYDAY =>.505 Games O43 - CFD: 19/10/2014 - [] D -- C:\Users\Antonin\AppData\Local\PAYDAY 2 O43 - CFD: 12/09/2015 - [] D -- C:\Users\Antonin\AppData\Local\Popcorn Time =>.Superfluous.PopcornTime O43 - CFD: 20/12/2015 - [] D -- C:\Users\Antonin\AppData\Local\Popcorn-Time =>.Superfluous.PopcornTime O43 - CFD: 18/07/2013 - [] D -- C:\Users\Antonin\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 10/10/2013 - [] D -- C:\Users\Antonin\AppData\Local\PunkBuster =>.PunkBuster Games O43 - CFD: 11/10/2014 - [] D -- C:\Users\Antonin\AppData\Local\Robot Entertainment =>.Robot Entertainment O43 - CFD: 02/04/2013 - [] D -- C:\Users\Antonin\AppData\Local\Rockstar Games =>.Rockstar Games O43 - CFD: 24/11/2012 - [] D -- C:\Users\Antonin\AppData\Local\SCE =>.SCE O43 - CFD: 02/06/2014 - [] D -- C:\Users\Antonin\AppData\Local\Setup Integrity Check =>.Unknow O43 - CFD: 14/03/2013 - [] D -- C:\Users\Antonin\AppData\Local\SKIDROW =>.SKIDROW O43 - CFD: 14/12/2015 - [0] D -- C:\Users\Antonin\AppData\Local\Skype =>.Skype O43 - CFD: 21/07/2014 - [] D -- C:\Users\Antonin\AppData\Local\Skyrim =>.Skyrim Games O43 - CFD: 24/11/2012 - [] D -- C:\Users\Antonin\AppData\Local\Sony Online Entertainment =>.Sony Online Entertainment O43 - CFD: 21/05/2015 - [] D -- C:\Users\Antonin\AppData\Local\Sports Interactive =>.Sports Interactive O43 - CFD: 30/04/2017 - [] D -- C:\Users\Antonin\AppData\Local\SquirrelTemp =>.Squirrels O43 - CFD: 13/12/2016 - [] D -- C:\Users\Antonin\AppData\Local\Steam =>.Steam Games O43 - CFD: 01/09/2014 - [] D -- C:\Users\Antonin\AppData\Local\Supraball_Launcher =>.Supra Games Gbr O43 - CFD: 08/05/2014 - [] D -- C:\Users\Antonin\AppData\Local\SWTORPerf =>.Electronic Arts, Inc. O43 - CFD: 30/09/2015 - [] D -- C:\Users\Antonin\AppData\Local\TeamSpeak 3 Client =>.TeamSpeak O43 - CFD: 18/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 25/10/2011 - [0] SHD -- C:\Users\Antonin\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 04/10/2014 - [] D -- C:\Users\Antonin\AppData\Local\Ubisoft =>.Ubisoft O43 - CFD: 30/11/2014 - [] D -- C:\Users\Antonin\AppData\Local\Unity =>.Unity O43 - CFD: 27/03/2013 - [] D -- C:\Users\Antonin\AppData\Local\UWebKit O43 - CFD: 21/03/2014 - [] D -- C:\Users\Antonin\AppData\Local\VirtualStore =>.Microsoft Corporation O43 - CFD: 18/07/2013 - [0] D -- C:\Users\Antonin\AppData\Local\WarThunder =>.Games Software O43 - CFD: 24/07/2013 - [] D -- C:\Users\Antonin\AppData\Local\yesmessenger =>.Yes! Messenger O43 - CFD: 19/10/2012 - [0] D -- C:\Users\Antonin\AppData\Local\yummyinteractiveinc O43 - CFD: 15/01/2012 - [] D -- C:\Users\Antonin\AppData\Local\Yummy_Interactive_Inc O43 - CFD: 18/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\ZHP =>.Nicolas Coolman O43 - CFD: 08/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\{62545408-46FC-38B0-2B64-1D580F0CE1C0} O43 - CFD: 01/05/2017 - [] D -- C:\Users\Antonin\AppData\Local\{906DA631-B4C5-CA89-D95D-EF61FD3513F9} O43 - CFD: 18/07/2013 - [0] D -- C:\Users\Antonin\AppData\Local\Programs\Common =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation O43 - CFD: 22/10/2015 - [] RD -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools O43 - CFD: 01/05/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AION O43 - CFD: 11/11/2011 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive =>.Bohemia Interactive O43 - CFD: 08/05/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Citra Development Team O43 - CFD: 09/02/2013 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DarthMod Empire =>.DarthMod Productions O43 - CFD: 02/08/2013 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games =>.Microsoft Corporation O43 - CFD: 14/03/2013 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Happy Cloud =>.Happy Cloud O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation O43 - CFD: 28/11/2011 - [] SD -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3 =>.SourceForge O43 - CFD: 01/05/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pluto TV =>.Pluto TV O43 - CFD: 12/09/2015 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime O43 - CFD: 25/05/2013 - [0] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roma Surrectum II O43 - CFD: 31/10/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StarCraft II O43 - CFD: 01/05/2017 - [] RD -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation O43 - CFD: 26/01/2017 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam =>.Steam Games O43 - CFD: 04/08/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Third Age - Total War 3.0 (Part 1of2) =>.Games Software O43 - CFD: 18/12/2012 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft =>.Ubisoft O43 - CFD: 26/10/2011 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR O43 - CFD: 12/03/2016 - [] D -- C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\—̈æZERO O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation O43 - CFD: 14/07/2009 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 14/04/2012 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Application Data =>.Microsoft Corporation O43 - CFD: 18/12/2013 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Google =>.Google O43 - CFD: 14/04/2012 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\History =>.Microsoft Corporation O43 - CFD: 14/04/2012 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation O43 - CFD: 14/04/2012 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Programs =>.Microsoft Corporation O43 - CFD: 14/04/2012 - [0] -- C:\Windows\System32\Config\systemprofile\AppData\Local\Temporary Internet Files =>.Microsoft Corporation O43 - CFD: 23/09/2013 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Apple Computer =>.Apple Inc. O43 - CFD: 25/03/2012 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\McAfee =>.McAfee O43 - CFD: 14/04/2012 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation ---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 0s O106 - SIOI: ###MegaShellExtPending [###MegaShellExtPending] - {056D528D-CE28-4194-9BA3-BA2E9197FF8C}. (...) -- C:\ProgramData\MEGAsync\ShellExtX32.dll O106 - SIOI: ###MegaShellExtSynced [###MegaShellExtSynced] - {05B38830-F4E9-4329-978B-1DD28605D202}. (...) -- C:\ProgramData\MEGAsync\ShellExtX32.dll O106 - SIOI: ###MegaShellExtSyncing [###MegaShellExtSyncing] - {0596C850-7BDD-4C9D-AFDF-873BE6890637}. (...) -- C:\ProgramData\MEGAsync\ShellExtX32.dll O106 - SIOI: avast [00asw] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - Avast Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software s.r.o.® O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - Avast Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software s.r.o.® O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ Image File Execution Options (4) - 0s O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - IE Per-User Initialization Utility.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] =>.Microsoft Corporation O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Microsoft (R) HTML Application host.) [MitigationOptions\\256] =>.Microsoft Corporation ---\\ System Drivers List (82) - 5s O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows® O58 - SDL:2010/11/20 15:32:46 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows® O58 - SDL:2010/11/20 15:32:47 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows® O58 - SDL:2017/05/10 11:14:50 A . (.AVAST Software s.r.o. - IDS Application Activity Monitor Driver..) -- C:\Windows\System32\drivers\aswbidsdrivera.sys [311808] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:14:50 A . (.AVAST Software s.r.o. - Application Activity Monitor Helper Driver.) -- C:\Windows\System32\drivers\aswbidsha.sys [190256] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:14:50 A . (.AVAST Software s.r.o. - Logging Driver.) -- C:\Windows\System32\drivers\aswbloga.sys [334576] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:14:50 A . (.AVAST Software s.r.o. - Universal Driver.) -- C:\Windows\System32\drivers\aswbuniva.sys [49016] =>.AVAST Software s.r.o.® O58 - SDL:2017/02/23 19:58:57 A . (.AVAST Software - Home Network Security.) -- C:\Windows\System32\drivers\aswHdsKe.sys [85552] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:15:21 A . (.AVAST Software - Avast HWID.) -- C:\Windows\System32\drivers\aswHwid.sys [38296] =>.AVAST Software s.r.o.® (.AVAST Software) O58 - SDL:2017/05/10 11:14:58 A . (.AVAST Software - Avast Keyboard Filter Driver.) -- C:\Windows\System32\drivers\aswKbd.sys [32600] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:15:21 A . (.AVAST Software - Avast File System Minifilter for Windows 20.) -- C:\Windows\System32\drivers\aswMonFlt.sys [128648] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:15:20 A . (.AVAST Software - Avast WFP Redirect Driver.) -- C:\Windows\System32\drivers\aswRdr2.sys [101152] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:15:21 A . (.AVAST Software - Avast Revert.) -- C:\Windows\System32\drivers\aswRvrt.sys [75704] =>.AVAST Software s.r.o.® (.AVAST Software) O58 - SDL:2017/05/10 11:14:58 A . (.AVAST Software - Avast Virtualization Driver.) -- C:\Windows\System32\drivers\aswSnx.sys [1007160] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:15:21 A . (.AVAST Software - Avast self protection module.) -- C:\Windows\System32\drivers\aswSP.sys [569192] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/12 20:38:40 A . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\drivers\aswstm.sys [158880] =>.AVAST Software s.r.o.® O58 - SDL:2017/05/10 11:15:21 A . (.AVAST Software - Avast VM Monitor.) -- C:\Windows\System32\drivers\aswVmm.sys [339696] =>.AVAST Software s.r.o.® (.AVAST Software) O58 - SDL:2013/01/22 14:41:08 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athrx.sys [2807808] =>.Atheros Communications, Inc. O58 - SDL:2011/12/24 08:51:12 A . (.Authors - .) -- C:\Windows\System32\drivers\atksgt.sys [314016] =>.Tages SA® O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd. O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows® O58 - SDL:2012/01/17 17:25:17 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\System32\drivers\dtsoftbus01.sys [279616] =>.DT Soft Ltd® O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows® O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation O58 - SDL:2012/08/21 13:01:20 A . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\drivers\GEARAspiWDM.sys [33240] =>.GEAR Software Inc.® O58 - SDL:2009/03/18 18:35:42 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\drivers\hamachi.sys [33856] =>.LogMeIn, Inc.® O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc. O58 - SDL:2010/10/20 00:34:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation® O58 - SDL:2013/04/30 19:18:10 A . (.Windows (R) Win 7 DDK provider - Filter Driver for HID-KMDF Interface.) -- C:\Windows\System32\drivers\hidkmdf.sys [14136] =>.Wacom Technology Corp.® O58 - SDL:2010/11/20 15:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows® O58 - SDL:2010/11/20 15:33:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows® O58 - SDL:2011/08/31 19:53:22 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [12306848] =>.Intel Corporation O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows® O58 - SDL:2011/12/24 08:51:12 A . (.Authors - .) -- C:\Windows\System32\drivers\lirsgt.sys [43680] =>.Tages SA® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows® O58 - SDL:2011/11/10 19:32:02 A . (.MotioninJoy - MotioninJoy DS3 driver.) -- C:\Windows\System32\drivers\MijXfilt.sys [115272] =>.MotionInjoy O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows® O58 - SDL:2015/07/25 01:28:44 A . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\drivers\nvhda64v.sys [204648] =>.NVIDIA Corporation® O58 - SDL:2015/08/25 20:46:21 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [11089200] =>.NVIDIA Corporation® O58 - SDL:2010/11/20 15:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows® O58 - SDL:2010/11/20 15:33:48 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows® O58 - SDL:2015/08/11 06:52:30 A . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\drivers\nvvad64v.sys [50472] =>.NVIDIA Corporation® O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows® O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited, O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows® O58 - SDL:2010/04/27 04:25:16 A . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\Windows\System32\drivers\ss_bbus.sys [127488] =>.MCCI Corporation® O58 - SDL:2010/04/27 04:25:16 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ss_bcm.sys [15360] =>.MCCI Corporation® O58 - SDL:2010/04/27 04:25:16 A . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\ss_bcmnt.sys [15360] =>.MCCI Corporation® O58 - SDL:2010/04/27 04:25:16 A . (.MCCI Corporation - SAMSUNG USB Mobile Modem Filter.) -- C:\Windows\System32\drivers\ss_bmdfl.sys [18944] =>.MCCI Corporation® O58 - SDL:2010/04/27 04:25:16 A . (.MCCI Corporation - SAMSUNG USB Mobile Modem.) -- C:\Windows\System32\drivers\ss_bmdm.sys [161280] =>.MCCI Corporation® O58 - SDL:2010/04/27 04:25:16 A . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP.) -- C:\Windows\System32\drivers\ss_bwh.sys [15872] =>.MCCI Corporation® O58 - SDL:2010/04/27 04:25:16 A . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP.) -- C:\Windows\System32\drivers\ss_bwhnt.sys [15872] =>.MCCI Corporation® O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows® O58 - SDL:2010/06/14 10:32:54 A . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\System32\drivers\TFsExDisk.sys [16448] =>.Teruten, Inc.® O58 - SDL:2015/06/10 23:08:36 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc. O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows® O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows® O58 - SDL:2013/04/30 19:18:10 A . (.Wacom Technology - Wacom HID Router.) -- C:\Windows\System32\drivers\wachidrouter.sys [85304] =>.Wacom Technology Corp.® O58 - SDL:2012/12/21 00:20:06 A . (.Wacom Technology - Wacom Router Filter Driver.) -- C:\Windows\System32\drivers\wacomrouterfilter.sys [15344] =>.Wacom Technology Corp.® O58 - SDL:2008/05/06 16:06:00 A . (.Western Digital Technologies - WD SCSI Architecture Model (SAM) driver.) -- C:\Windows\System32\drivers\wdcsam64.sys [14464] =>.Western Digital Technologies O58 - SDL:2013/01/22 14:41:08 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\athrx.sys [2807808] =>.Atheros Communications, Inc. O58 - SDL:2009/03/18 17:35:42 AH . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [33856] =>.LogMeIn, Inc.® ---\\ Last modified or created user files (2) - 71s O61 - LFC: 2017/05/17 11:38:52 A . (..) -- C:\Users\Antonin\AppData\Local\NVIDIA\NvBackend\Packages\0000a139\CoProc update.22132285.exe [770512] =>.NVIDIA Corporation O61 - LFC: 2017/05/17 11:39:11 A . (..) -- C:\Users\Antonin\AppData\Local\NVIDIA\NvBackend\Packages\0000a150\DAO.22134291.exe [10719680] =>.NVIDIA Corporation ---\\ File Associations Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Start Menu Internet (16) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.The Chromium Authors - Chromium.) -- C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- iexplore.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe =>.AVAST Software s.r.o.® O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.The Chromium Authors - Chromium.) -- C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.The Chromium Authors - Chromium.) -- C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.The Chromium Authors - Chromium.) -- C:\Users\Antonin\AppData\Local\Chromium\Application\chrome.exe =>.The Chromium Authors O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Users\Antonin\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe =>.AVAST Software ---\\ Search Browser Infection (1) - 0s O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com ---\\ Search Svchost Services (33) - 0s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [794624] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [680448] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2651136] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation ---\\ Firewall Active Exception List (118) - 5s O87 - FAEL: "{4D8147E6-4E72-479B-B51A-8F9B936CA66B}" [In-None-P6-TRUE] .(...) -- D:\fscommand\CKSocketServer.exe (.not file.) O87 - FAEL: "{85AC331C-544A-492D-8E0A-B966C0CADDCD}" [In-None-P17-TRUE] .(...) -- D:\fscommand\CKSocketServer.exe (.not file.) O87 - FAEL: "TCP Query User{19AFEDFA-5F33-41DB-8388-DCFA1EE2A10B}C:\program files (x86)\microsoft games\age of mythology\aom.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\microsoft games\age of mythology\aom.exe (.not file.) O87 - FAEL: "UDP Query User{E87D7ECF-575D-4E28-AFA8-00A0F77DCDD3}C:\program files (x86)\microsoft games\age of mythology\aom.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\microsoft games\age of mythology\aom.exe (.not file.) O87 - FAEL: "{D094946F-0C4C-4FBF-B360-4214AE833A17}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\microsoft games\age of mythology\aom.exe (.not file.) O87 - FAEL: "{24020252-B2E6-4DF0-8E27-5031532A132D}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\microsoft games\age of mythology\aom.exe (.not file.) O87 - FAEL: "{6B5197B6-7F15-4C63-8C75-36B0736DD86C}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Bohemia Interactive\ArmA 2 Free\arma2free.exe (.not file.) O87 - FAEL: "{69382363-4EAD-4540-B764-2A5C2E4C2D0F}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Bohemia Interactive\ArmA 2 Free\arma2free.exe (.not file.) O87 - FAEL: "{2EA150DC-5C57-4A28-9BE7-E580D09020B4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutLauncher.exe (.not file.) O87 - FAEL: "{366DCDB9-CA27-49D3-BC77-FE9D111FE67B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutLauncher.exe (.not file.) O87 - FAEL: "{CAA507EC-39CA-4EFB-B94C-C7E9012EEBB4}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutConfigTool.exe (.not file.) O87 - FAEL: "{A2BA9CCF-B4E9-43FB-BC1A-AD06D823E4E2}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutConfigTool.exe (.not file.) O87 - FAEL: "{EE8ADE77-F2C4-4D68-9311-DBFB034682F9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe (.not file.) O87 - FAEL: "{6D7F5F18-525A-49FC-9995-9890CD742309}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe (.not file.) O87 - FAEL: "{6779C5C7-824F-4A50-A97F-31BF2FC93529}" [In-None-P6-TRUE] .(...) -- C:\Metaboli\Jeux\anno1404fr\ANNO 1404\Anno4.exe (.not file.) O87 - FAEL: "{D89D9862-35AC-4292-8E1E-8780D2D9AF99}" [In-None-P17-TRUE] .(...) -- C:\Metaboli\Jeux\anno1404fr\ANNO 1404\Anno4.exe (.not file.) O87 - FAEL: "{2D301532-F33A-42B2-8CD0-1CDB45156D1D}" [In-None-P6-TRUE] .(...) -- C:\Metaboli\Jeux\anno1404fr\ANNO 1404\gu.exe (.not file.) O87 - FAEL: "{2AC86879-99C2-47F1-B76B-0EC6C8FD41E6}" [In-None-P17-TRUE] .(...) -- C:\Metaboli\Jeux\anno1404fr\ANNO 1404\gu.exe (.not file.) O87 - FAEL: "{E02AE850-4F2C-4279-88C4-61D866E6A965}" [In-None-P6-TRUE] .(...) -- C:\Metaboli\Jeux\anno1404fr\ANNO 1404\TagesClient.exe (.not file.) O87 - FAEL: "{33F24005-2BC1-4852-8BD8-F02B793995BB}" [In-None-P17-TRUE] .(...) -- C:\Metaboli\Jeux\anno1404fr\ANNO 1404\TagesClient.exe (.not file.) O87 - FAEL: "{3FA9DCF3-4D4D-4405-BE17-D93323FED8CE}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Common Files\Metaboli\Core\yummy.installer.exe (.not file.) O87 - FAEL: "{25DE4C50-6D7F-4B9A-A058-D7F7B956A20C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Common Files\Metaboli\Core\yummy.installer.exe (.not file.) O87 - FAEL: "{157FFB67-41C6-48A9-8228-6F9D1A0AC762}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Common Files\Metaboli\Core\yummy.launcher.exe (.not file.) O87 - FAEL: "{4F60B559-FD2F-4AEB-B6FE-99B4CF60FE6D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Common Files\Metaboli\Core\yummy.launcher.exe (.not file.) O87 - FAEL: "TCP Query User{40A26C2E-B542-4776-9FAF-5573744098D2}C:\program files (x86)\greedytorrent\gtor.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\greedytorrent\gtor.exe (.not file.) O87 - FAEL: "UDP Query User{EA76B649-D866-419F-8C6C-9F86885F0471}C:\program files (x86)\greedytorrent\gtor.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\greedytorrent\gtor.exe (.not file.) O87 - FAEL: "{C1E44FFA-3E9B-40E6-BE7E-3572956AF216}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\greedytorrent\gtor.exe (.not file.) O87 - FAEL: "{266D9D74-7A79-4BBA-980F-604B91FAF5C0}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\greedytorrent\gtor.exe (.not file.) O87 - FAEL: "TCP Query User{09329595-5D54-49F5-B17B-652ED0C94CAD}C:\program files (x86)\ea games\battlefield 1942 singleplayer demo\bf1942.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\ea games\battlefield 1942 singleplayer demo\bf1942.exe (.not file.) O87 - FAEL: "UDP Query User{7BE9B42B-2EB6-4614-AA2F-37DA1128AA8E}C:\program files (x86)\ea games\battlefield 1942 singleplayer demo\bf1942.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\ea games\battlefield 1942 singleplayer demo\bf1942.exe (.not file.) O87 - FAEL: "{764AAC56-5C7E-4A44-B609-77937B198062}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe (.not file.) O87 - FAEL: "{E1BF976E-5969-483B-9095-ACBB7ED7FFAB}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe (.not file.) O87 - FAEL: "{1272A7BD-8AA4-46AA-A2F5-CA885568CD22}" [In-None-P6-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe (.not file.) O87 - FAEL: "{AA00FE27-E6FF-4FBA-941D-EAFF52D166C1}" [In-None-P17-TRUE] .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe (.not file.) O87 - FAEL: "{300CD49D-C6E6-4DDD-B595-F1ECB8300CE4}" [In-None-P6-FALSE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (.not file.) O87 - FAEL: "{33339F2E-5092-468A-8A73-913D8DF20A08}" [In-None-P17-FALSE] .(...) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (.not file.) O87 - FAEL: "{F164289E-7F1B-4619-A40F-2706A2AAD5FA}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\napoleon total war demo\Napoleon.exe (.not file.) =>.Steam Games O87 - FAEL: "{52270A44-83C6-406D-9CDF-6DBA24BB034D}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\SteamApps\common\napoleon total war demo\Napoleon.exe (.not file.) =>.Steam Games O87 - FAEL: "{E86A139F-988C-4357-8928-257D526198D6}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe (.not file.) O87 - FAEL: "{3427FA8B-8897-4144-B727-E42D7E059CF9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\ma-config.com\maconfservice.exe (.not file.) O87 - FAEL: "TCP Query User{71138EB3-A024-4E6C-8FC4-4DB005C5161E}C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0017_574e57d9b3df0368\launcher.exe" [In-None-P6-TRUE] .(...) -- C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0017_574e57d9b3df0368\launcher.exe (.not file.) O87 - FAEL: "UDP Query User{573F9278-B040-4839-8AAD-6E8E35DF1CB5}C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0017_574e57d9b3df0368\launcher.exe" [In-None-P17-TRUE] .(...) -- C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0017_574e57d9b3df0368\launcher.exe (.not file.) O87 - FAEL: "TCP Query User{7A03EB5F-09F8-4BB0-8AD3-73FEF1A61437}C:\ubisoft\gro\pdc-live\yeti_release.exe" [In-None-P6-TRUE] .(.Copyright (C) 2011 Ubisoft. - GRO Client.) -- C:\ubisoft\gro\pdc-live\yeti_release.exe O87 - FAEL: "UDP Query User{B46550C8-2D2E-4F20-846D-A1CE2F2A6AB8}C:\ubisoft\gro\pdc-live\yeti_release.exe" [In-None-P17-TRUE] .(.Copyright (C) 2011 Ubisoft. - GRO Client.) -- C:\ubisoft\gro\pdc-live\yeti_release.exe O87 - FAEL: "TCP Query User{C392AF68-753F-4B87-84AB-09CE523ACC2F}C:\program files (x86)\maniaplanet\maniaplanet.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\maniaplanet\maniaplanet.exe (.not file.) O87 - FAEL: "UDP Query User{8DF017DF-54A5-4EA6-8D43-BCD35C8DAE44}C:\program files (x86)\maniaplanet\maniaplanet.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\maniaplanet\maniaplanet.exe (.not file.) O87 - FAEL: "TCP Query User{A6C4D319-B45F-4F9F-9D91-ADB9206ADAB7}C:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe (.not file.) =>.Steam Games O87 - FAEL: "UDP Query User{3D8EB42E-6D99-485E-B09D-BB4EEA27BCDA}C:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\age of empires online\spartan.exe (.not file.) =>.Steam Games O87 - FAEL: "{C3285B0E-E259-4546-98F0-36633271EF83}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe (.not file.) O87 - FAEL: "{363E6DE4-0CE0-4DD1-8EEE-14F1C0C57B8C}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe (.not file.) O87 - FAEL: "TCP Query User{DA653F06-25FB-4B9D-BB04-5A66C1119C81}C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0018_2b8913981b129228\launcher.exe" [In-None-P6-TRUE] .(...) -- C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0018_2b8913981b129228\launcher.exe (.not file.) O87 - FAEL: "UDP Query User{12BEB4CF-84F5-476A-A559-D0B16B7A3D7F}C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0018_2b8913981b129228\launcher.exe" [In-None-P17-TRUE] .(...) -- C:\users\antonin\appdata\local\apps\2.0\y69ybq20.lrh\1qbvgk6p.el0\laun...app_59711684aa47878d_0001.0018_2b8913981b129228\launcher.exe (.not file.) O87 - FAEL: "TCP Query User{E8DB4261-1565-461F-AC53-3C9A2EDFC9E6}C:\program files (x86)\ubisoft\related designs\anno 2070\anno5.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\ubisoft\related designs\anno 2070\anno5.exe (.not file.) O87 - FAEL: "UDP Query User{032458EF-9392-408C-B7C4-8BF745010FD7}C:\program files (x86)\ubisoft\related designs\anno 2070\anno5.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\ubisoft\related designs\anno 2070\anno5.exe (.not file.) O87 - FAEL: "TCP Query User{A331F2F2-4AC8-4984-AA41-ACDA7CC79E3F}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.) O87 - FAEL: "UDP Query User{938B5B48-CC5E-403D-86B0-102363447382}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe (.not file.) O87 - FAEL: "{BCB4B9BD-BC14-4F36-8996-A0B1C7AD5CE2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.exe (.not file.) O87 - FAEL: "{B8C03A0A-6C46-4BC7-9423-5C02C05EE7DD}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.exe (.not file.) O87 - FAEL: "{163F0D84-1581-48C1-92CB-D59492D2F5EF}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe (.not file.) O87 - FAEL: "{EB3C5C5E-AEE9-4E3A-8A39-C8D60D0CEED0}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\World of Warcraft\Launcher.patch.exe (.not file.) O87 - FAEL: "TCP Query User{240F8EEB-72C7-4173-B41C-3B178EFEEF29}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe (.not file.) O87 - FAEL: "UDP Query User{BA47AD17-C048-4976-AB62-E06054FE3FA3}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe (.not file.) O87 - FAEL: "TCP Query User{CAC8CED8-355B-40BC-8BEC-008E5B672B8C}C:\program files (x86)\world of warcraft\backgrounddownloader.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\world of warcraft\backgrounddownloader.exe (.not file.) O87 - FAEL: "UDP Query User{B6F7A3E3-C431-4C7C-A154-41E123AF8DBF}C:\program files (x86)\world of warcraft\backgrounddownloader.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\world of warcraft\backgrounddownloader.exe (.not file.) O87 - FAEL: "{C861B834-98AD-42FC-B9F5-046178E7F752}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Battlefield 2 Complete Collection\BF2.exe (.not file.) O87 - FAEL: "{C652765F-6FE4-4E38-B19A-90800E65DB68}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Battlefield 2 Complete Collection\BF2.exe (.not file.) O87 - FAEL: "TCP Query User{5FCEC410-2D5B-4B08-9CB7-06FCD9A31100}C:\users\antonin\downloads\pipix_v2.6.exe" [In-None-P6-TRUE] .(...) -- C:\users\antonin\downloads\pipix_v2.6.exe (.not file.) O87 - FAEL: "UDP Query User{46768935-15DC-4131-93CF-8F89BB67E213}C:\users\antonin\downloads\pipix_v2.6.exe" [In-None-P17-TRUE] .(...) -- C:\users\antonin\downloads\pipix_v2.6.exe (.not file.) O87 - FAEL: "TCP Query User{5ED62DD6-7701-4052-BD8D-17B257A40AC3}C:\program files (x86)\1clickdownload\1clickdownloader.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\1clickdownload\1clickdownloader.exe (.not file.) =>PUP.Optional.1ClickDownloader O87 - FAEL: "UDP Query User{EAA15F54-F1B1-4C13-81D4-0ED747661E93}C:\program files (x86)\1clickdownload\1clickdownloader.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\1clickdownload\1clickdownloader.exe (.not file.) =>PUP.Optional.1ClickDownloader O87 - FAEL: "TCP Query User{60508F47-2DAC-402E-8967-F9BAFCD74377}C:\program files\java\jre6\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre6\bin\javaw.exe (.not file.) O87 - FAEL: "UDP Query User{E7694C86-A0C7-4B81-A825-EC484670ED7A}C:\program files\java\jre6\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre6\bin\javaw.exe (.not file.) O87 - FAEL: "TCP Query User{27D41730-7DF6-4809-9D62-467FEE17BC72}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe (.not file.) O87 - FAEL: "UDP Query User{070D602E-6DFA-4481-9DCF-434E11E54291}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe (.not file.) O87 - FAEL: "TCP Query User{D48D688E-8FF0-4A7D-A524-932E61EE7B76}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.) O87 - FAEL: "UDP Query User{325E0A48-E631-4007-8431-E0BFB5B2F93A}C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe (.not file.) O87 - FAEL: "{E8762BB8-2366-4E59-9177-949B11EC4D7E}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe (.not file.) O87 - FAEL: "{7D5ED188-A0B0-4E44-8E42-CE757B1E4D15}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe (.not file.) O87 - FAEL: "{8472D0DB-048E-472B-A392-56D9E71AB8A3}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe (.not file.) O87 - FAEL: "{16179436-772A-4F5F-9328-2B0E8F48E198}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1267\Agent.exe (.not file.) O87 - FAEL: "{186F743B-F15E-4002-A0BB-E30C43D20E95}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe (.not file.) O87 - FAEL: "{88C2A93E-F3CE-41AF-9885-BFA5D4C3D74F}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe (.not file.) O87 - FAEL: "TCP Query User{E4663428-E808-417A-8837-DF14EC305F11}C:\program files (x86)\steam\steamapps\common\war of the roses alpha\postman.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\war of the roses alpha\postman.exe (.not file.) =>.Steam Games O87 - FAEL: "UDP Query User{A5E35C31-E3EA-4172-870B-4A2903F1D366}C:\program files (x86)\steam\steamapps\common\war of the roses alpha\postman.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\war of the roses alpha\postman.exe (.not file.) =>.Steam Games O87 - FAEL: "{8338F66A-5600-4A80-AE3B-F407B71F82D3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (.not file.) O87 - FAEL: "{16A232C1-B518-4171-A339-9639A79341F0}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe (.not file.) O87 - FAEL: "{22899960-B39C-4674-A6BE-1AFB2CE9D8CC}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe (.not file.) O87 - FAEL: "{18F443CB-E8F7-42DA-A5EC-391441483242}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe (.not file.) O87 - FAEL: "TCP Query User{2D01010E-FCA5-4666-8D7F-96C4AE0330C3}C:\users\antonin\appdata\local\temp\yummyinteractiveinc\yummy.installer.exe" [In-None-P6-TRUE] .(...) -- C:\users\antonin\appdata\local\temp\yummyinteractiveinc\yummy.installer.exe (.not file.) =>.Temporary file not necessary O87 - FAEL: "UDP Query User{EC4872E9-8B67-4DC5-AAFE-F02F2EA1C84B}C:\users\antonin\appdata\local\temp\yummyinteractiveinc\yummy.installer.exe" [In-None-P17-TRUE] .(...) -- C:\users\antonin\appdata\local\temp\yummyinteractiveinc\yummy.installer.exe (.not file.) =>.Temporary file not necessary O87 - FAEL: "{9761E056-9E1E-4732-9A96-49928BABABA8}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Battlefield 1942\BF1942.exe (.not file.) O87 - FAEL: "{131FFAC1-1E86-4468-91CA-5855B9B16724}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Origin Games\Battlefield 1942\BF1942.exe (.not file.) O87 - FAEL: "TCP Query User{8CECA52F-7097-49B9-A9FC-2401EA8BCEF4}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe (.not file.) =>.Steam Games O87 - FAEL: "UDP Query User{4AE417F6-EE66-4864-A0F9-D90FFA9C327B}C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\planetside 2\planetside2.exe (.not file.) =>.Steam Games O87 - FAEL: "TCP Query User{295A34AF-090E-47C1-94CE-001503D71E25}C:\program files\java\jre6\bin\java.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre6\bin\java.exe (.not file.) O87 - FAEL: "UDP Query User{16D4D0B7-9EE4-4E0C-A9D4-7B8D95BE382B}C:\program files\java\jre6\bin\java.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre6\bin\java.exe (.not file.) O87 - FAEL: "TCP Query User{BED8DD05-DEFE-4FB0-AFC6-1D1874BAA965}C:\program files (x86)\voobly\voobly.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\voobly\voobly.exe (.not file.) O87 - FAEL: "UDP Query User{21F8EB59-B03B-4EFE-AFDE-4D880CE0E1DC}C:\program files (x86)\voobly\voobly.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\voobly\voobly.exe (.not file.) O87 - FAEL: "{8760ADE2-5552-4ADF-AF8A-B4239CFCF4E3}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe (.not file.) O87 - FAEL: "{A3873CB4-1B70-4FFF-9E4E-E08FCE5B9044}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe (.not file.) O87 - FAEL: "{202C00B0-54EF-4E36-BD9D-F1401881D9CF}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe (.not file.) O87 - FAEL: "{7E13E2FC-DE36-4AF7-843E-DFEE31DE7868}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe (.not file.) O87 - FAEL: "{BB17F257-C1CD-473F-80FF-87FA82D8FB59}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe (.not file.) O87 - FAEL: "{8F42A519-7692-4C50-8ED2-F270D154D364}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3.exe (.not file.) O87 - FAEL: "{1DA138C5-75A5-4E5D-9AFA-C9A26D13DA49}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe (.not file.) O87 - FAEL: "{738FACB6-67A0-49DC-8E92-493B55B51082}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\farcry3_d3d11.exe (.not file.) O87 - FAEL: "{483C1641-2206-42FD-8529-EF58C2B84BC2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe (.not file.) O87 - FAEL: "{0D93B86D-285F-4C17-846B-999F3ADC755B}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Updater.exe (.not file.) O87 - FAEL: "{52576471-7DA8-4BC2-8BFB-E239952F27B0}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe (.not file.) O87 - FAEL: "{E2BC1BBB-1E7F-4DD1-BE04-B5358319EDB9}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Ubisoft\FarCry 3\bin\FC3Editor.exe (.not file.) O87 - FAEL: "{7E894BBE-400E-411F-8198-0DCE4B1AD53D}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe (.not file.) O87 - FAEL: "{42AD880B-8808-4071-9941-53D6BBB72603}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe (.not file.) O87 - FAEL: "TCP Query User{51C2FCF0-ECA9-434D-A4B4-A9B708528037}C:\program files (x86)\steam\steamapps\common\medieval ii total war\kingdoms.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\medieval ii total war\kingdoms.exe (.not file.) =>.Steam Games O87 - FAEL: "UDP Query User{5C702116-0B41-470F-8538-4E80D7F2CDDE}C:\program files (x86)\steam\steamapps\common\medieval ii total war\kingdoms.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\steam\steamapps\common\medieval ii total war\kingdoms.exe (.not file.) =>.Steam Games O87 - FAEL: "TCP Query User{F42FAA21-2AEA-4EF6-B8C7-93471E811CCD}C:\program files\java\jre6\bin\javaw.exe" [In-None-P6-TRUE] .(...) -- C:\program files\java\jre6\bin\javaw.exe (.not file.) O87 - FAEL: "UDP Query User{7E95AFEE-4A5B-434B-A9AD-761655DF249A}C:\program files\java\jre6\bin\javaw.exe" [In-None-P17-TRUE] .(...) -- C:\program files\java\jre6\bin\javaw.exe (.not file.) O87 - FAEL: "{3477C3A6-F442-46DD-A238-FFC4393FF94A}" [In-None-P6-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.) O87 - FAEL: "{2BC3E7BE-F822-47AE-A483-EC4529F1FE94}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.) ---\\ List of CD/DVD Emulators (MBR Hook) (4) - 1s HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>.Superfluous.ByteFence HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>.Superfluous.ByteFence HKLM\SOFTWARE\Microsoft\Tracing\PROPCCleaner_RASAPI32 =>.Superfluous.DoctorPC HKLM\SOFTWARE\Microsoft\Tracing\PROPCCleaner_RASMANCS =>.Superfluous.DoctorPC ---\\ Additional Scan (O88) (32) - 3s C:\Windows\System32\Tasks\Yahoo! Powered fomif =>Adware.YahooPowered C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll =>.Superfluous.HappyCloud HKCU\SOFTWARE\MozillaPlugins\thehappycloud.com/HappyCloudPlugin =>.Superfluous.HappyCloud HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PRO PC Cleaner =>.Superfluous.DoctorPC HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{24F8CC38-7478-1DB8-C5F8-6D381578BEB8} =>Adware.YahooPowered HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PRO PC Cleaner =>.Superfluous.DoctorPC HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{24F8CC38-7478-1DB8-C5F8-6D381578BEB8} =>Adware.YahooPowered HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Heuristic.Suspect HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HappyCloud =>.Superfluous.HappyCloud HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Popcorn Time =>.Superfluous.PopcornTime C:\ProgramData\HappyCloud =>.Superfluous.HappyCloud C:\ProgramData\InstallMate =>.Superfluous.Tarma C:\Users\Antonin\AppData\Local\CrashRpt =>.Superfluous.CrashReports C:\Users\Antonin\AppData\Local\messengerdusexe =>.Superfluous.Rentabiliweb C:\Users\Antonin\AppData\Local\Popcorn Time =>.Superfluous.PopcornTime C:\Users\Antonin\AppData\Local\Popcorn-Time =>.Superfluous.PopcornTime C:\Users\Antonin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time =>.Superfluous.PopcornTime [HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:TCP Query User{5ED62DD6-7701-4052-BD8D-17B257A40AC3}C:\program files (x86)\1clickdownload\1clickdownloader.exe =>PUP.Optional.1ClickDownloader [HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:UDP Query User{EAA15F54-F1B1-4C13-81D4-0ED747661E93}C:\program files (x86)\1clickdownload\1clickdownloader.exe =>PUP.Optional.1ClickDownloader HKLM64\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 =>.Superfluous.ByteFence HKLM64\SOFTWARE\Microsoft\Tracing\ByteFence_RASMANCS =>.Superfluous.ByteFence HKLM64\SOFTWARE\Microsoft\Tracing\PROPCCleaner_RASAPI32 =>.Superfluous.DoctorPC HKLM64\SOFTWARE\Microsoft\Tracing\PROPCCleaner_RASMANCS =>.Superfluous.DoctorPC C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage =>.Superfluous.CloudfrontNet C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage-journal =>.Superfluous.CloudfrontNet C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_en.bytefence.com_0.localstorage =>.Superfluous.ByteFence C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_en.bytefence.com_0.localstorage-journal =>.Superfluous.ByteFence C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ol.uk.at.atwola.com_0.localstorage =>.Superfluous.Atwola C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ol.uk.at.atwola.com_0.localstorage-journal =>.Superfluous.Atwola C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage =>PUP.Optional.Chatango C:\Users\Antonin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal =>PUP.Optional.Chatango ---\\ Summary of the elements found (14) - 0s https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>Adware.YahooPowered https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.HappyCloud https://www.nicolascoolman.com/fr/adware-socialskinz/ =>PUP.Optional.SocialSkinz https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.DoctorPC https://nicolascoolman.eu/2017/01/28/heuristic-suspect/ =>Heuristic.Suspect https://nicolascoolman.eu/2017/02/26/superfluous-popcorntime/ =>.Superfluous.PopcornTime https://www.nicolascoolman.com/fr/pup-tarma/ =>.Superfluous.Tarma https://nicolascoolman.eu/2017/01/20/logiciels-superflus/ =>.Superfluous.CrashReports https://www.anti-malware.top/2016/05/02/superfluous-rentabiliweb/ =>.Superfluous.Rentabiliweb https://www.nicolascoolman.com/fr/pup-1clickdownloader/ =>PUP.Optional.1ClickDownloader https://nicolascoolman.eu/2017/03/13/superfluous-bytefence/ =>.Superfluous.ByteFence https://nicolascoolman.eu/2017/02/02/superfluous-cloudfrontnet/ =>.Superfluous.CloudfrontNet https://nicolascoolman.eu/2017/02/04/superfluous-atwola/ =>.Superfluous.Atwola https://nicolascoolman.eu/2017/01/27/repaquetage-et-infection/ =>PUP.Optional.Chatango ~ Unselected Options: O82, ~ End of the scan, 46800 items in 03mn44s (1735)(0)