Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2016.2.16.51 By Nicolas Coolman (2016/02/16)
~ Run by HuzaifaAldakkak (Administrator) (2016/02/18 01:03:25)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\HuzaifaAldakkak\Desktop\ZHPDiag.txt
~ Report: C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)
---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v40.0.2214.94
MFIE: Mozilla Firefox 44.0.2 (x86 en-US)
MSIE: Internet Explorer v11.0.10240.16683
---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ System protection software (3) - 8s
360 Total Security v8.0.0.1072
Kaspersky Anti-Virus v16.0.0.614
Windows Defender (Activate)
---\\ System optimization software (1) - 9s
CCleaner v2.29
---\\ Surveillance software (1) - 9s
Adobe Flash Player 20 NPAPI
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8260.968 MB (52% free)
System Restore: Activé (Enable)
System drive C: has 125 GB () free of 235 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: HD90
~ User Name: HuzaifaAldakkak
~ Logged in as Administrator
---\\ Enumeration of the disk units (5) - 0s
~ Drive C: has 125 GB free of 235 GB (System)
~ Drive D: has 7 GB free of 51 GB
~ Drive F: has 235 GB free of 256 GB
~ Drive G: has 31 GB free of 153 GB
~ Drive H: has 152 GB free of 234 GB
---\\ State of the Windows Security Center (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Search Generic System Files (24) - 1s
[MD5.D2EAEC106F183572317AF7D68E381063] - 25/11/2015 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [4532304] =>.Microsoft Windows®
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 18/07/2015 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [290312] =>.Microsoft Windows Publisher®
[MD5.71EF55BA035CD459D8230501D067D2F8] - 31/01/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [2849792] =>.Microsoft Corporation
[MD5.DA32F9BFA7851AD4247353EA03755DE6] - 05/01/2016 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [578560] =>.Microsoft Corporation
[MD5.ECB1943967424DFB96E03F6A098434EF] - 19/07/2015 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [680256] =>.Microsoft Windows®
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] =>.Microsoft Windows®
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] =>.Microsoft Windows®
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] =>.Microsoft Corporation
[MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] =>.Microsoft Corporation
[MD5.27E248CD861AFED4DF0C48F4C853E7F0] - 25/11/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] =>.Microsoft Corporation
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] =>.Microsoft Corporation
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] =>.Microsoft Corporation
[MD5.BA8DC96D1DD7785EB0589CB1777208B7] - 01/12/2015 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2115936] =>.Microsoft Windows®
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] =>.Microsoft Corporation
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] =>.Microsoft Windows®
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (21) - 7s
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
O23 - Service: @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Ma (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe =>.Broadcom Corporation®
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc. - BlueStacks Service.) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.Bluestack Systems, Inc.®
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.Bluestack Systems, Inc.®
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.Bluestack Systems, Inc.®
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2 (chromoting) . (.Google Inc. - Host Process.) - C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe =>.Google Inc®
O23 - Service: Connectify (Connectify) . (.Connectify - .) - C:\Program Files (x86)\Connectify\ConnectifyService.exe =>.Connectify (Connectify, Inc.)®
O23 - Service: CxUtilSvc (CxUtilSvc) . (.Conexant Systems, Inc. - Utility Service.) - C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe =>.Conexant Systems, Inc.®
O23 - Service: Dell Update Service (DellUpdate) . (.Dell Inc. - Dell Update Windows Service.) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\SysWOW64\nlssrv32.exe =>.Nalpeiron Ltd.
O23 - Service: 360 Total Security (QHActiveDefense) . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) - C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
O23 - Service: Service KMSELDI (Service KMSELDI) . (.@ByELDI - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O23 - Service: Splashtop® Remote Service (SplashtopRemoteService) . (.Splashtop Inc. - Splashtop® Streamer Service.) - C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe {32671ADE7C0DD879AA0EF5FA5F9883F6}
O23 - Service: Splashtop Software Updater Service (SSUService) . (.Splashtop Inc. - Splashtop Software Updater Service.) - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe =>.Splashtop Inc.®
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: WdsManPro Service (WdsManPro) . (...) - C:\ProgramData\7WMiniPro7\WMiniPro.exe (.not file.) =>PUP.Optional.WdsManPro
O23 - Service: WIBU-KEY Server (WkSvW32.exe) . (.WIBU-SYSTEMS AG - WibuKey Network server management.) - C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe =>.WIBU-SYSTEMS AG®
---\\ Services not Microsoft (SR=Run, SS=Stop) (37) - 33s
SS - Demand [29/12/2015] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Demand [01/09/2015] [ 265776] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe =>.AMD
SR - Auto [02/11/2015] [ 194000] Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
SR - Auto [04/09/2013] [ 2252504] @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Ma (BcmBtRSupport) . (.Broadcom Corporation..) - C:\WINDOWS\system32\BtwRSupportService.exe =>.Broadcom Corporation.
SS - Auto [03/02/2015] [ 409304] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.Bluestack Systems, Inc.®
SS - Auto [03/02/2015] [ 388824] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.Bluestack Systems, Inc.®
SS - Auto [03/02/2015] [ 794328] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.Bluestack Systems, Inc.®
SR - Auto [14/10/2015] [ 69448] @C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2 (chromoting) . (.Google Inc..) - C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe =>.Google Inc®
SR - Auto [30/11/2015] [ 256568] Connectify (Connectify) . (.Connectify.) - C:\Program Files (x86)\Connectify\ConnectifyService.exe =>.Connectify (Connectify, Inc.)®
SS - Demand [07/12/2015] [ 291744] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Auto [21/12/2014] [ 109184] CxUtilSvc (CxUtilSvc) . (.Conexant Systems, Inc..) - C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe =>.Conexant Systems, Inc.®
SS - Demand [09/04/2015] [ 145288] Dell Customer Connect (Dell Customer Connect) . (.Dell Inc..) - C:\Program Files (x86)\Dell Customer Connect\OTBSurvey.exe =>.Dell Inc.®
SR - Auto [27/08/2015] [ 237272] Dell Update Service (DellUpdate) . (.Dell Inc..) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.®
SS - Demand [31/01/2015] [ 107912] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [31/01/2015] [ 107912] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [07/08/2013] [ 15720] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
SS - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation®
SR - Auto [07/12/2015] [ 330136] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
SR - Auto [20/04/2012] [ 635104] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
SR - Auto [17/07/2012] [ 165760] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
SS - Demand [24/04/2015] [ 625640] Lenovo EasyPlus Hotspot (Lenovo EasyPlus Hotspot) . (.Lenovo.) - C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe =>.LENOVO®
SS - Demand [10/12/2014] [ 2631456] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe =>.IObit Information Technology®
SR - Demand [17/07/2012] [ 276864] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SS - Demand [13/02/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [31/01/2012] [ 66560] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\nlssrv32.exe =>.Nalpeiron Ltd.
SR - Auto [11/12/2015] [ 903288] 360 Total Security (QHActiveDefense) . (.QIHU 360 SOFTWARE CO. LIMITED.) - C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
SS - Auto [22/07/2015] [ 985280] Service KMSELDI (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
SS - Demand [11/12/2014] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [10/06/2015] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe =>.Sony Mobile Communications AB®
SR - Auto [26/01/2015] [ 695648] Splashtop® Remote Service (SplashtopRemoteService) . (.Splashtop Inc..) - C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe {32671ADE7C0DD879AA0EF5FA5F9883F6}
SR - Auto [09/10/2013] [ 609056] Splashtop Software Updater Service (SSUService) . (.Splashtop Inc..) - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe =>.Splashtop Inc.®
SS - Demand [19/02/2010] [ 517096] SwitchBoard (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
SS - Demand [30/05/2012] [ 149544] Intel(R) Turbo Boost Technology Monitor 2.6 (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe =>.Intel(R) Software®
SR - Auto [17/07/2012] [ 364416] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SS - Demand [08/07/2015] [ 144640] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab®
SR - Auto [23/07/2014] [ 668552] WIBU-KEY Server (WkSvW32.exe) . (.WIBU-SYSTEMS AG.) - C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe =>.WIBU-SYSTEMS AG®
---\\ Task Planned Automatically (25) - 4s
[MD5.C3E7E1F3C85A6788F3BA078BA214341E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.7486DEF5CC9334F58871D6D18B73C562] [APT] [AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936] =>.Adobe Systems Incorporated®
[MD5.1F90E252F9C21C0B90578DAA42F16765] [APT] [AutoPico Daily Restart] (.@ByELDI.) -- C:\Program Files\KMSpico\AutoPico.exe [985792] =>HackTool.KMSpico
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc®
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc®
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core] (.Google Inc..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc®
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA] (.Google Inc..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc®
[MD5.D1A010CBBB86DDC11E047B74DE70627E] [APT] [Uninstaller_SkipUac_HuzaifaAldakkak] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9616672] =>.IObit Information Technology®
[MD5.D1A010CBBB86DDC11E047B74DE70627E] [APT] [Uninstaller_SkipUac_noto] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9616672] =>.IObit Information Technology®
[MD5.00000000000000000000000000000000] [APT] [WordShark Auto Updater 1.10.0.20 Core] (...) -- C:\Program Files (x86)\WordShark_1.10.0.20\Update\WordSharkAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.WordShark
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] =>.Apple Inc.®
[MD5.E3238CA9101C670556B636C8F4FCE358] [APT] [Lenovo\Lenovo Customer Feedback Program 64 35] (.Lenovo.) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184] =>.LENOVO®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core.job [906] =>.Google Inc®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA.job [958] =>.Google Inc®
O39 - APT: Uninstaller_SkipUac_HuzaifaAldakkak - (.IObit.) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_HuzaifaAldakkak.job [308] =>.IObit Information Technology®
O39 - APT: Uninstaller_SkipUac_noto - (.IObit.) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_noto.job [308] =>.IObit Information Technology®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3818] =>.Adobe Systems Incorporated®
O39 - APT: AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak [3624] =>.Adobe Systems Incorporated®
O39 - APT: AutoPico Daily Restart - (.@ByELDI.) -- C:\WINDOWS\System32\Tasks\AutoPico Daily Restart [3474] =>HackTool.KMSpico
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3754] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3990] =>.Google Inc®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core [3718] =>.Google Inc®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA [4094] =>.Google Inc®
O39 - APT: Uninstaller_SkipUac_HuzaifaAldakkak - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_HuzaifaAldakkak [2538] =>.IObit Information Technology®
O39 - APT: Uninstaller_SkipUac_noto - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_noto [2512] =>.IObit Information Technology®
---\\ Process running (47) - 3s
[MD5.75909533EECD0CD9D5974B59474AA6C0] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [330136] [PID.1488] =>.Intel Corporation - pGFX®
[MD5.A89E87A213BB785C50A0C985F0265E50] - (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [903288] [PID.1680] =>.QIHU 360 SOFTWARE CO. LIMITED®
[MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000] [PID.2408] =>.Kaspersky Lab®
[MD5.18B186BCC56EC611DE519CBA7D4F65B0] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) -- C:\Windows\System32\BtwRSupportService.exe [2252504] [PID.2424] =>.Broadcom Corporation®
[MD5.2FA3A0FD81DA7F49867E7A37E68BDE1A] - (.Google Inc. - Host Process.) -- C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448] [PID.2504] =>.Google Inc®
[MD5.507D25509F566E33B88D7D07CF48E394] - (.Connectify - .) -- C:\Program Files (x86)\Connectify\ConnectifyService.exe [256568] [PID.2556] =>.Connectify (Connectify, Inc.)®
[MD5.3C4002D339491AF73D663FFC7F6E5ECB] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760] [PID.2564] =>.Intel Corporation®
[MD5.9A59DF2CA690019FEA3B265D5A7EB619] - (.Conexant Systems, Inc. - Utility Service.) -- C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe [109184] [PID.2572] =>.Conexant Systems, Inc.®
[MD5.C99F8E90DE4B8F0C7FE15BB1CBCD29DC] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [635104] [PID.2580] =>.Intel® Upgrade Service®
[MD5.B1EF4686961986DFFB7FE8F18E6FCB5B] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\Windows\SysWOW64\nlssrv32.exe [66560] [PID.2772] =>.Nalpeiron Ltd.
[MD5.F01B19E4225872533F27E591B3FF5B69] - (.Splashtop Inc. - Splashtop® Streamer Service.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [695648] [PID.2892] {32671ADE7C0DD879AA0EF5FA5F9883F6}
[MD5.504C33FE3B4E2AF11FE5875DDCA8EBEA] - (.Splashtop Inc. - Splashtop Software Updater Service.) -- C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [609056] [PID.3020] =>.Splashtop Inc.®
[MD5.7E32B569CFC549F3816D454D6E8C8D22] - (.WIBU-SYSTEMS AG - WibuKey Network server management.) -- C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe [668552] [PID.1832] =>.WIBU-SYSTEMS AG®
[MD5.4AC13DC0A79E90D736E41AD7DC678969] - (.Connectify - Connectify Daemon Service.) -- C:\Program Files (x86)\Connectify\ConnectifyD.exe [3816504] [PID.1208] =>.Connectify (Connectify, Inc.)®
[MD5.2FA3A0FD81DA7F49867E7A37E68BDE1A] - (.Google Inc. - Host Process.) -- C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448] [PID.3556] =>.Google Inc®
[MD5.E08BF6E26FC0CB49540DF291D48629F0] - (.Qihu Software Co. Limited - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe [124536] [PID.3116] =>.QIHU 360 SOFTWARE CO. LIMITED®
[MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe [211712] [PID.5392] =>.Kaspersky Lab®
[MD5.EBDEC4149FAAE1C633FA9B33D55B3EA1] - (.Splashtop Inc. - Splashtop® Streamer.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe [4221792] [PID.5972] {32671ADE7C0DD879AA0EF5FA5F9883F6}
[MD5.44C694C2B542DB3CDAEBDB1FF3233F4D] - (.Dell Inc. - Dell Update Windows Service.) -- C:\Program Files (x86)\Dell Update\DellUpService.exe [237272] [PID.1920] =>.Dell Inc.®
[MD5.04ACE629A2853C12C648632AF1678925] - (.Splashtop Inc. - Splashtop® Streamer Feature.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe [7618344] [PID.6284] {32671ADE7C0DD879AA0EF5FA5F9883F6}
[MD5.9221F67A8FC9EF9629E8E5CF0C5931B0] - (.Dell Inc. - Dell Update.) -- C:\Program Files (x86)\Dell Update\DellUpTray.exe [707800] [PID.6396] =>.Dell Inc.®
[MD5.80A11F070E9EEFCB48B357E9E0E2C7D1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [541600] [PID.7132] =>.Intel Corporation - pGFX®
[MD5.B6C52FADECE225339D02B6923E930B5C] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [258456] [PID.7180] =>.Intel Corporation - pGFX®
[MD5.5689C5A911D3B91BD1CB281510FBE0D4] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [2878728] [PID.7312] =>.ELAN Microelectronics Corporation®
[MD5.E366C61EAB64491781FB338D7CF0D112] - (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe [5762408] [PID.7428] =>.Compal Electronics, Inc.®
[MD5.E9AC314ED94022AAF3EDBCC55FC4A575] - (.WIBU-SYSTEMS AG - WkSvMgr.) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe [9028976] [PID.7476] =>.WIBU-SYSTEMS AG®
[MD5.20E83F4632E15A5E9E716FF2E8AC7FAE] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.5884] =>.Intel Corporation - Intel® Rapid Storage Technology®
[MD5.4269D44BB47A6DA5D80B11F4C8536458] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [276864] [PID.6268] =>.Intel Corporation®
[MD5.DBE2E6388379D5CC78099650541E9566] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [364416] [PID.3068] =>.Intel Corporation®
[MD5.4234E76A1B12C5F76B264C99540FD736] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392136] [PID.9048] =>.Mozilla Corporation®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.6568] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.5468] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.4712] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.7376] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.6832] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.8512] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.5276] =>.Google Inc®
[MD5.871365E60564C6B531F21B0397B37FEE] - (.Connectify - Connectify Hotspot.) -- C:\Program Files (x86)\Connectify\Connectify.exe [4160568] [PID.7388] =>.Connectify (Connectify, Inc.)®
[MD5.1A55E8B13E80F7ECEC5FF1B4820E78AD] - (.Telegram Messenger LLP - .) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe [31919456] [PID.5004] {4098401CAB91A429} =>.Telegram Messenger LLP
[MD5.30F69462C39ABC9B5674B9D5DFE126B4] - (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe [51657424] [PID.1360] =>.Viber Media S.a.r.l®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.4724] =>.Google Inc®
[MD5.550BF90B194FD01FCB76199AC52A99FF] - (.Connectify - .) -- C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe [411192] [PID.11400] =>.Connectify (Connectify, Inc.)®
[MD5.0209103C184767731EDA4FF634038C24] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [15872] [PID.8088] =>.Copyright Microsoft Corporation
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.3688] =>.Google Inc®
[MD5.6C4B88203FFE721C18B041DE1312C67A] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3825232] [PID.11148] =>.Tonec Inc.
[MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.1672] =>.Tonec Inc.®
[MD5.5AE930CBDC0E46B3FBFCE1F00A7A9B13] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\HuzaifaAldakkak\Downloads\Programs\ZHPDiag3.exe [2122752] [PID.12096] =>.Nicolas Coolman
---\\ Google Chrome, Start,Search,Extensions (19) - 1s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [bepbmhgboaologfdajaanbcjmnhjmhfn] Google Voice Search Hotword (Beta)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [clabbeiafnokkpfmkabbfkndocdjcobe] Hyperlator Facebook Utility
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eahebamiopdhefndnmappcihfajigkka] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [fjnbnpbmkenffdnngjfgmeleoegfcffe] Stylish
G2 - GCE: Preference [User Data\Default] [gbchcmhmhahfdphkhkmpfmihenigjmpp] __MSG_PRODUCT_NAME__
G2 - GCE: Preference [User Data\Default] [hocegonoebjokljiejnkjejlgdnhkglo] Assassin's Creed 2 - Light
G2 - GCE: Preference [User Data\Default] [inmmhkeajgflmokoaaoadgkhhmibjbpj] Facebook Invite All
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [lkifjigoeilijkcnpfdjbpdjgnbfibec] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pabfempgigicdjjlccdgnbmeggkbjdhd] Stylist
G2 - GCE: Preference [User Data\Default] [phejagnmddcjhjblnacgmejghffmhjfp] Facebook Themes (Facebook Theme Gallery)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (8) - 1s
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT FILE: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\firefox@mega.co.nz.xpi
P2 - EXT FILE: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - EXT: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\staged
P2 - EXT: (.iMacros Team, iOpus Software GmbH - iMacros for Firefox.) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [adobe.com/AdobeExManDetect] - (...) -- F:\Program files (D)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
---\\ Internet Explorer Extensions, Start, Search (21) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKEY_USERS\S-1-5-21-3599766761-982674122-2959987469-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer, Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (6) - 0s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: SafeMon Class [64Bits] - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} . (.Qihu 360 Software Co., Ltd. - 360 Internet Security Internet Protection.) -- C:\Program Files (x86)\360\Total Security\safemon\safemon.dll =>.Qihoo 360 Software (Beijing) Company Limited®
O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll =>.Oracle America, Inc.®
---\\ Auto loading programs from Registry and folders (23) - 1s
O4 - HKLM\..\Run: [ETDCtrl] . (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe =>.ELAN Microelectronics Corporation®
O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe =>.Compal Electronics, Inc.®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Viber] . (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\Run: [Viber] . (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
---\\ Global shortcuts Startup (180) - 17s
O4 - GS\Desktop [Administrator]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [Administrator]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Administrator]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [Administrator]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrator]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrator]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrator]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrator]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [Administrator]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [Administrator]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [Administrator]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [Administrator]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [Administrator]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [Administrator]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [Administrator]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrator]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [Guest]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [Guest]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Guest]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [Guest]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Guest]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [Guest]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [Guest]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [Guest]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [Guest]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [Guest]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [Guest]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [Guest]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Guest]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [HuzaifaAldakkak]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [HuzaifaAldakkak]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [HuzaifaAldakkak]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [HuzaifaAldakkak]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [HuzaifaAldakkak]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [HuzaifaAldakkak]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [HuzaifaAldakkak]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [HuzaifaAldakkak]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [HuzaifaAldakkak]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [HuzaifaAldakkak]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [HuzaifaAldakkak]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [HuzaifaAldakkak]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [HuzaifaAldakkak]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [HuzaifaAldakkak]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [HuzaifaAldakkak]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [HuzaifaAldakkak]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [noto]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [noto]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [noto]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [noto]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [noto]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [noto]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [noto]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [noto]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [noto]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [noto]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [noto]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [noto]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [noto]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [noto]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [noto]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [noto]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [noto]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [noto]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [noto]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [noto]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [noto]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [noto]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [noto]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [noto]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\CommonDesktop [Public]: 360 Total Security.lnk . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) C:\Program Files (x86)\360\Total Security\QHSafeMain.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
O4 - GS\CommonDesktop [Public]: Adobe Acrobat X Pro.lnk . (.Adobe Systems Incorporated - Adobe Acrobat.) F:\Program files (D)\Adobecs6\Acrobat 10.0\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: AKVIS Chameleon.lnk . (.AKVIS - Chameleon Application.) C:\Program Files (x86)\AKVIS\Chameleon\Chameleon.exe {4036679835556E3C93EFEDCAAA7D1F79} =>.AKVIS
O4 - GS\CommonDesktop [Public]: Al-Manara 2.0.lnk . (...) C:\WINDOWS\Installer\{E668B437-4C35-43AF-8F51-0F411723120C}\IconE668B4375.exe
O4 - GS\CommonDesktop [Public]: Apps.lnk . (...) C:\Users\Public\Libraries\Apps.library-ms
O4 - GS\CommonDesktop [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\CommonDesktop [Public]: AV Easy DJ.lnk . (.AVSoft Corp. (VN) - AV Easy DJ 1.0.) C:\Program Files (x86)\AV Music Morpher Gold\AV Easy DJ.exe {27F1A35940CA6E5585F0B25F43765D1E}
O4 - GS\CommonDesktop [Public]: AV Music Morpher Gold.lnk . (.AVSoft Corp. (VN) - AV Music Morpher Gold 5.0.) C:\Program Files (x86)\AV Music Morpher Gold\AV Music Morpher.exe {27F1A35940CA6E5585F0B25F43765D1E}
O4 - GS\CommonDesktop [Public]: CardRecoveryPro.lnk . (...) C:\Program Files (x86)\CardRecoveryPro\CardRecoveryPro.exe {288A6842C331C5443D747BDABF31E2A3}
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Intel(R) Driver Update Utility 2.0.lnk . (.Intel - Intel Driver Update Utility.) C:\Program Files (x86)\Intel Driver Update Utility\DriverUpdateUI.exe =>.Intel(R) Driver Update Utility®
O4 - GS\CommonDesktop [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation - pGFX®
O4 - GS\CommonDesktop [Public]: Intel(R) Turbo Boost Technology Monitor 2.6.lnk . (.Intel® Corporation - .) C:\Program Files (x86)\Intel\TurboBoost\SignalIslandUi.exe =>.Intel® Corporation
O4 - GS\CommonDesktop [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.) C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe =>.IObit Information Technology®
O4 - GS\CommonDesktop [Public]: Kaspersky Anti-Virus.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe =>.Kaspersky Lab®
O4 - GS\CommonDesktop [Public]: KeyFinder.lnk . (.ONE UP LTD. - Magical Jelly Bean Keyfinder.) C:\Program Files (x86)\Magical Jelly Bean\keyfinder.exe {041ABD63CA5DA9}
O4 - GS\CommonDesktop [Public]: Kingo ROOT.lnk . (.Kingosoft - Kingo Root.) C:\Program Files (x86)\Kingo ROOT\Kingo Root.exe =>.ZJMedia Digital Technology Ltd.®
O4 - GS\CommonDesktop [Public]: Login Plexis POS.lnk . (.PLEXIS SOFTWARE - BT.) C:\Program Files (x86)\POS 30\Bt.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Photo to Cartoon.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{2302FD51-7033-48DE-A302-039649DE4AE8}\NewShortcut1_24C52DF75CFA44538BE6B761A088240F.exe {2F3394A95A52FD4B6967ADBE5FB484B8} =>.Flexera Software LLC
O4 - GS\CommonDesktop [Public]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe =>.Apple Inc.®
O4 - GS\CommonDesktop [Public]: SambaPOS4.lnk . (.Copyright © 2010 - Samba POS.) C:\Program Files (x86)\SambaPOS4\Samba.Presentation.exe
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.Lenovo - SHAREit.) C:\Program Files (x86)\Lenovo\SHAREit\Shareit.exe =>.LENOVO®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Sony PC Companion 2.1.lnk . (.Sony - Sony PC Companion.) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe =>.Sony Mobile Communications AB®
O4 - GS\CommonDesktop [Public]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\CommonDesktop [Public]: SsdReady.lnk . (.Copyright (C) 2013 - SsdReady - SSD life measurement tool.) C:\Program Files\CEZEO software\SsdReady\SsdReady.exe {3C2C57985C7A9FA89B39C73FE4707BAE}
O4 - GS\CommonDesktop [Public]: Start BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks StartLauncher.) C:\Program Files (x86)\BlueStacks\HD-StartLauncher.exe =>.Bluestack Systems, Inc.®
O4 - GS\CommonDesktop [Public]: uniCenta oPOS.lnk . (...) C:\Program Files (x86)\unicentaopos-3.91.3\start.bat
O4 - GS\CommonDesktop [Public]: Zello.lnk . (.Zello Inc - Zello.) C:\Program Files (x86)\Zello\Zello.exe {2B5F20C3C1D162}
O4 - GS\Startup [Public]: Network Server.lnk . (.WIBU-SYSTEMS AG - WkSvMgr.) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe =>.WIBU-SYSTEMS AG®
O4 - GS\Programs [Public]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Public]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_77354CBFA2CD44F60FBFED.exe
O4 - GS\Programs [Public]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Programs [Public]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
---\\ Lop.com/Domain Hijackers (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{151762b9-0840-4a8d-b83d-41193cefbb62}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9113986f-2115-4214-96e1-b9999ac7e2de}: DhcpNameServer = 192.168.1.1
---\\ Extra protocols (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (147) - 30s
O42 - Logiciel: 360 Total Security - (.360 Security Center.) [HKLM][64Bits] -- 360TotalSecurity =>.QIHU 360 SOFTWARE CO. LIMITED®
O42 - Logiciel: 3D Maker by Lokas Software - (...) [HKLM][64Bits] -- 3D Maker by Lokas Software
O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-F400-7760-000000000005} =>.Adobe Systems
O42 - Logiciel: Adobe After Effects CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {147EC100-14BE-45EF-AB42-35BAEE7D02F0} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Creative Suite 6 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Lightroom - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Media Encoder CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0FAC7130-BEC5-47A5-8813-1D339B8326ED} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Touch App Plugins - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1EC083EE-5B76-4A2A-B95A-CAF460AA29D6} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} =>.Adobe Systems Incorporated.
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser =>.Adobe Systems Incorporated.
O42 - Logiciel: AKVIS Chameleon - (.AKVIS.) [HKLM][64Bits] -- {74FD25CB-C6BD-46C5-BA5C-1D74DB730717} =>.AKVIS
O42 - Logiciel: Al-Manara Accounting System 2.0 - (.Al-ManaraSoft®.) [HKLM][64Bits] -- {E668B437-4C35-43AF-8F51-0F411723120C}
O42 - Logiciel: AMD Catalyst Control Center - (...) [HKLM][64Bits] -- {8B1A559A-FB9D-42F5-A8A7-2F132CF28414}
O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp =>.Advanced Micro Devices, Inc.®
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc.
O42 - Logiciel: Ashampoo Snap 5 v.5.1.2 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- Ashampoo Snap 5_is1 =>.ashampoo GmbH & Co. KG®
O42 - Logiciel: Audacity 2.0.6 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 =>.Audacity Team
O42 - Logiciel: AV Bros. Page Curl 2.0 (Remove Only) - (...) [HKLM][64Bits] -- AV Bros. Page Curl 2.0
O42 - Logiciel: AV Music Morpher Gold - (...) [HKLM][64Bits] -- AV Music Morpher Gold
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>.BitTorrent Inc®
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0} =>.Your Company Name
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player =>.Bluestack Systems, Inc.®
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {E78B4959-B348-4913-874B-FF982378E035} =>.BlueStack Systems, Inc.
O42 - Logiciel: CardRecoveryPro 2.6.5 - (.LionSea Software co., ltd.) [HKLM][64Bits] -- {D9E1CADA-D103-47AE-B3F8-0C0CD0E5856E}_is1 =>.LionSea Software co., ltd
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Chrome Remote Desktop Host - (.Google Inc..) [HKLM][64Bits] -- {CDF9E1C8-4B97-4F8B-A848-7DD0E8BEB89F} =>.Google Inc.
O42 - Logiciel: Color Efex Pro 4 - (.Nik Software, Inc..) [HKLM][64Bits] -- Color Efex Pro 4 {2F2CE8C1EFE6FCA2BFDAEA44220C7708} =>.Nik Software, Inc.
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- {F0A37341-D692-11D4-A984-009027EC0A9C} =>.Macrovision Corporation®
O42 - Logiciel: Conexant SmartAudio HD - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA =>.Conexant Systems, Inc.®
O42 - Logiciel: Connectify 2016 - (.Connectify.) [HKLM][64Bits] -- Connectify =>.Connectify
O42 - Logiciel: Dell Customer Connect - (.Dell Inc..) [HKLM][64Bits] -- {FEFDCDCF-C49C-45D0-AAF8-5345858ADEC7} =>.Dell Inc.
O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM][64Bits] -- {BC8233D8-59BA-4D40-92B9-4FDE7452AA8B} =>.Dell Products, LP
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 73f463568823ebbe {5749F0670170872B6AC321FE67A8445DF2233000} =>.Dell
O42 - Logiciel: Dell Touchpad - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation®
O42 - Logiciel: Dell Update - (.Dell Inc..) [HKLM][64Bits] -- {DB82968B-57A4-4397-81A5-ECAB21B5DFCD} =>.Dell Inc.
O42 - Logiciel: Eye Candy 4000 - (...) [HKLM][64Bits] -- Eye Candy 4000
O42 - Logiciel: GDR 3077 for SQL Server Database Services 2005 ENU (KB960089) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB960089_SQL9 =>.Microsoft Corporation®
O42 - Logiciel: GDR 3077 for SQL Server Tools and Workstation Components 2005 ENU (KB960089 - (.Microsoft Corporation.) [HKLM][64Bits] -- KB960089_SQLTools9 =>.Microsoft Corporation®
O42 - Logiciel: GoldWave v5.70 - (.GoldWave Inc..) [HKLM][64Bits] -- GoldWave v5.70 =>.GoldWave Inc.
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Chrome Canary - (.Google Inc..) [HKCU][64Bits] -- Google Chrome SxS =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: install4j 6.0.4 - (.ej-technologies GmbH.) [HKLM][64Bits] -- 6187-37938-2029-3898 {124BDD56D220B9F7CD64A661501AEFC3}
O42 - Logiciel: Intel(R) Driver Update Utility 2.0 - (.Intel.) [HKLM][64Bits] -- {59DB38EB-F864-4E10-841D-38CFBCF864B0} =>.Intel
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {93F692D4-0C4D-4EED-9BFE-657C1D5959FE} =>.Intel Corporation
O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor 2.6 - (.Intel.) [HKLM][64Bits] -- {6C9365EB-1F9E-4893-9196-3EC77C88D0C5} =>.Intel
O42 - Logiciel: Intel(R) WiDi - (.Intel Corporation.) [HKLM][64Bits] -- {6097158B-0184-4140-BEC3-7885794D2571} =>.Intel Corporation
O42 - Logiciel: Intel® Driver Update Utility - (.Intel.) [HKLM][64Bits] -- {8409c4f7-2340-4933-a304-5d37db4fb48b} =>.Intel(R) Driver Update Utility®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B} =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall =>.IObit Information Technology®
O42 - Logiciel: Java 7 Update 67 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F06417067FF} =>.Oracle
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Karaoke CD+G Creator Pro - (.Doblon.) [HKLM][64Bits] -- {AA77219C-0A77-4FF3-8CC5-2DC08469E6FF}_is1 =>.Doblon
O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kingo ROOT version 1.3.4.2252 - (.Kingosoft Technology Ltd..) [HKLM][64Bits] -- {AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1 =>.Kingosoft Technology Ltd.
O42 - Logiciel: K-Lite Mega Codec Pack 7.5.0 - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: KMSpico - (...) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
O42 - Logiciel: KMSpico v9.1.0.20131125 (Beta) - (...) [HKLM][64Bits] -- KMSpico_is1 =>HackTool.KMSpico
O42 - Logiciel: Light for Adobe Photoshop (64 Bit) - (.Digital Film Tools.) [HKLM][64Bits] -- {952DF0BE-D914-44B5-AAFE-3014ABFBCD4B}
O42 - Logiciel: Light for Adobe Photoshop (64 Bit) - (.Digital Film Tools.) [HKLM][64Bits] -- Light for Adobe Photoshop (64 Bit)
O42 - Logiciel: Magical Jelly Bean KeyFinder - (.Magical Jelly Bean.) [HKLM][64Bits] -- KeyFinder_is1 {041ABD63CA5DA9} =>.Magical Jelly Bean
O42 - Logiciel: Make ID 1.2 version 1.2 - (.alibasil.com @20015.) [HKLM][64Bits] -- {0326271F-3A66-4CEB-97D4-4B8A1BA09C4A}_is1
O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196} =>.Lenovo Group Limited
O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 44.0.2 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 44.0.2 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {6B00F0E1-2680-11E3-95F5-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {A528BDDE-9C9F-11E2-9F0C-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {C2B8CBDE-5232-11E3-B494-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D10D0851-CCC6-11E3-9ED2-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D81C035E-D0A5-11DF-9450-0013D3D69929} =>.Sony Creative Software Inc.
O42 - Logiciel: MySQL Workbench 6.3 CE - (.Oracle Corporation.) [HKLM][64Bits] -- {8E6D8BF8-828A-4F7B-A332-F7CEB8CB75AA} =>.Oracle Corporation
O42 - Logiciel: Openmiracle - (.Openmiracle.) [HKLM][64Bits] -- {4FB2C258-FCC8-4059-8221-E01AB9FEB561}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} =>.Adobe Systems Incorporated
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A} =>.Your Company Name
O42 - Logiciel: Photo to Cartoon - (.Caricature Software Inc..) [HKLM][64Bits] -- {2302FD51-7033-48DE-A302-039649DE4AE8}
O42 - Logiciel: Plexis POS 3.0 Release 09/23/2015 - (.Plexis Software Systems.) [HKLM][64Bits] -- Plexis Point of Sale_is1
O42 - Logiciel: Power CD+G to Video Karaoke Converter - (.Doblon.) [HKLM][64Bits] -- {B2F83792-DA53-487F-B2F8-84A98E51B7FD}_is1 =>.Doblon
O42 - Logiciel: PX Profile Update - (.AMD.) [HKLM][64Bits] -- {873CCF4A-6FC2-69A5-9AD4-FD37D7FCE6B9} =>.AMD
O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} =>.Dell Inc.
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} =>.Apple Inc.
O42 - Logiciel: Raptr - (...) [HKLM][64Bits] -- Raptr
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} =>.Realtek Semiconductor Corp®
O42 - Logiciel: SambaPOS4 - (.SAMBAPOS.) [HKLM][64Bits] -- {9447659F-1795-44B2-B8A2-E0FA049A5F6E}_is1
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.®
O42 - Logiciel: SAP Crystal Reports runtime engine for .NET Framework 4 (32-bit) - (.SAP.) [HKLM][64Bits] -- {083988D7-BDA9-4244-983B-409A634BBC09} =>.SAP
O42 - Logiciel: Service Pack 2 for SQL Server 2008 (KB2285068) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2285068 =>.Microsoft Corporation®
O42 - Logiciel: SHAREit - (.Lenovo Group Limited.) [HKLM][64Bits] -- SHAREit_is1 =>.LENOVO®
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} =>.Skype Technologies S.A.
O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM][64Bits] -- Update Engine =>.Sony Mobile Communications®
O42 - Logiciel: Sony PC Companion 2.10.281 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} =>.Sony Mobile Communications AB®
O42 - Logiciel: Sothink Logo Maker Professional - (.SourceTec Software Co., LTD.) [HKLM][64Bits] -- {574FFDC9-AB09-4C4A-B7BE-C6066502181A}_is1
O42 - Logiciel: Splashtop Personal - (.Splashtop Inc..) [HKLM][64Bits] -- {E7CF0F14-8C1D-41F3-85ED-579C108262C7}
O42 - Logiciel: Splashtop Software Updater - (.Splashtop Inc..) [HKLM][64Bits] -- Splashtop Software Updater
O42 - Logiciel: Splashtop Streamer - (.Splashtop Inc..) [HKLM][64Bits] -- {B7C5EA94-B96A-41F5-BE95-25D78B486678}
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF} =>.Microsoft Corporation
O42 - Logiciel: SsdReady - (.CEZEO software Ltd..) [HKLM][64Bits] -- SsdReady_is1
O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: Telegram Desktop version 0.9.24 - (.Telegram Messenger LLP.) [HKCU][64Bits] -- {53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1 =>.Telegram Messenger LLP
O42 - Logiciel: Topaz Vivacity - (.Topaz Labs LLC.) [HKLM][64Bits] -- {C13A8E73-7E98-4295-BA94-6931701CD1F9}
O42 - Logiciel: uniCenta oPOS - (.uniCenta.) [HKLM][64Bits] -- uniCenta oPOS 3.91.3
O42 - Logiciel: Update for Skype for Business 2015 (KB3039776) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation®
O42 - Logiciel: VASST Cinema Looks Vol.1 - (.VASST Software.) [HKLM][64Bits] -- VASST Cinema Looks Vol.1
O42 - Logiciel: VASST Cinema Looks Vol.13 - (.VASST Software.) [HKLM][64Bits] -- VASST Cinema Looks Vol.13
O42 - Logiciel: VASST EventTools 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST EventTools
O42 - Logiciel: VASST Render Assistant 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST Render Assistant
O42 - Logiciel: VASST StillMotion 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST StillMotion
O42 - Logiciel: VASST StutterFrame 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST StutterFrame
O42 - Logiciel: VASST TimeWarp 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST TimeWarp
O42 - Logiciel: VASST TitleStrip Vol.4 - (.VASST Software.) [HKLM][64Bits] -- VASST TitleStrip Vol.4
O42 - Logiciel: VASST VoiceAssistant 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST VoiceAssistant
O42 - Logiciel: Vector Magic - (.Vector Magic, Inc..) [HKLM][64Bits] -- Vector Magic =>.Vector Magic, Inc.
O42 - Logiciel: Vegas Pro 12.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {64A98EF1-2680-11E3-A909-F04DA23A5C58} =>.Sony
O42 - Logiciel: Vegas Pro 13.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {D0360940-CCC6-11E3-B9C6-F04DA23A5C58} =>.Sony
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber =>.Viber Media S.a.r.l®
O42 - Logiciel: WibuKey Setup (WibuKey Remove) - (.WIBU-SYSTEMS AG.) [HKLM][64Bits] -- {00060000-0000-1004-8002-0000C06B5161} =>.WIBU-SYSTEMS AG®
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: XAMPP - (.Bitnami.) [HKLM][64Bits] -- xampp =>.BitNami
O42 - Logiciel: Zello 1.40.0.0 - (.Zello Inc.) [HKLM][64Bits] -- Zello
O42 - Logiciel: دعم تطبيق Apple - (.Apple Inc..) [HKLM][64Bits] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} =>.Apple Inc.
---\\ HKCU & HKLM Software Keys (196) - 30s
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\360softmgr
HKLM\SOFTWARE\Wow6432Node\360TotalSecurity
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\ADSRemoval
HKLM\SOFTWARE\Wow6432Node\Advanced Micro Devices, Inc.
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AKVIS
HKLM\SOFTWARE\Wow6432Node\Alien Skin
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Ashampoo
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Avnex
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\Borland
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CCleaner
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Chromis
HKLM\SOFTWARE\Wow6432Node\Conexant
HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\HadaraSoft
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Innovative Solutions
HKLM\SOFTWARE\Wow6432Node\Insyde
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\IO3O
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\K5
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LiveUpdate360
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Lokas Ltd
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Minnetonka Audio Software
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nalpeiron
HKLM\SOFTWARE\Wow6432Node\Nik Software
HKLM\SOFTWARE\Wow6432Node\Nord Trading Network
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Openbravo
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\Raptr
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SAP BusinessObjects
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\Sony Mobile
HKLM\SOFTWARE\Wow6432Node\SourceTec
HKLM\SOFTWARE\Wow6432Node\Splashtop Inc.
HKLM\SOFTWARE\Wow6432Node\Topaz Labs LLC
HKLM\SOFTWARE\Wow6432Node\TrueSoftware
HKLM\SOFTWARE\Wow6432Node\uniCenta
HKLM\SOFTWARE\Wow6432Node\VASST
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\VVK
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WIBU-SYSTEMS
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\xampp
HKLM\SOFTWARE\Wow6432Node\XinYi Network
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\360
HKCU\SOFTWARE\360TotalSecurity
HKCU\SOFTWARE\4shared
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Adobe Lightroom
HKCU\SOFTWARE\Akeo Consulting
HKCU\SOFTWARE\AKVIS
HKCU\SOFTWARE\AlManaraSoft
HKCU\SOFTWARE\AntiCrash
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\Atheros
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\Avnex
HKCU\SOFTWARE\BcmSetup
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Borland
HKCU\SOFTWARE\Cameyo
HKCU\SOFTWARE\CardRecoveryPro
HKCU\SOFTWARE\CardRecoveryPro_Init
HKCU\SOFTWARE\Caricature Software
HKCU\SOFTWARE\CEZEO software
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Class
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\Dell Computer Corporation
HKCU\SOFTWARE\Digimarc
HKCU\SOFTWARE\Digital Film Tools
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\Doblon
HKCU\SOFTWARE\DoctorPCConfig
HKCU\SOFTWARE\DoctorPCLanguage
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DSP-worx
HKCU\SOFTWARE\DXTransform
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\Fast Reports
HKCU\SOFTWARE\Faux
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GoldWave
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HadaraSoft
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\iMacros
HKCU\SOFTWARE\Innovative Solutions
HKCU\SOFTWARE\Integrator
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\ksdev
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Lenovo
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LiveUpdate360
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\MC4D
HKCU\SOFTWARE\MechCAD
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mercury32
HKCU\SOFTWARE\MONOGRAM
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MySQL AB
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nik Software
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OneClickRoot
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\PACE Anti-Piracy
HKCU\SOFTWARE\PhotoInstrument
HKCU\SOFTWARE\Pictures
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Raptr
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SAP BusinessObjects
HKCU\SOFTWARE\Skyhook Wireless
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\SourceTec
HKCU\SOFTWARE\Splashtop Inc.
HKCU\SOFTWARE\SYNCJM
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\vanBasco
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Vector Magic
HKCU\SOFTWARE\VectorMagic
HKCU\SOFTWARE\VertusTech
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\VOS
HKCU\SOFTWARE\Waves Audio
HKCU\SOFTWARE\WIBU-SYSTEMS
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\XinYi Network
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (357) - 55s
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\100 =>.Microsoft Corporation®
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files (x86)\360 =>.Qihoo 360 Software (Beijing) Company Limited®
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\80 =>Heuristique.Suspect
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\90 =>.Microsoft Corporation®
O43 - CFD: 27/07/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 17/05/2015 - [] D -- C:\Program Files (x86)\AKVIS {4036679835556E3C93EFEDCAAA7D1F79}
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Al-Manara Accounting =>.SafeNet, Inc.®
O43 - CFD: 31/10/2015 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.®
O43 - CFD: 31/05/2015 - [] D -- C:\Program Files (x86)\Ashampoo =>.Ashampoo GmbH & Co. KG®
O43 - CFD: 25/02/2015 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 20/02/2015 - [] D -- C:\Program Files (x86)\AV Music Morpher Gold {27F1A35940CA6E5585F0B25F43765D1E}
O43 - CFD: 12/02/2015 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 28/02/2015 - [] D -- C:\Program Files (x86)\CardRecoveryPro {288A6842C331C5443D747BDABF31E2A3}
O43 - CFD: 30/05/2015 - [] D -- C:\Program Files (x86)\Caricature Software Inc
O43 - CFD: 04/04/2015 - [] D -- C:\Program Files (x86)\CCleaner =>.Piriform Ltd®
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Connectify =>.Connectify (Connectify, Inc.)®
O43 - CFD: 29/01/2015 - [0] D -- C:\Program Files (x86)\Dachshund Software
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Dell Customer Connect =>.Dell Inc.®
O43 - CFD: 03/06/2015 - [] D -- C:\Program Files (x86)\Dell Digital Delivery
O43 - CFD: 30/08/2015 - [] D -- C:\Program Files (x86)\Dell Update =>.Dell Inc.®
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Doblon
O43 - CFD: 05/11/2015 - [0] D -- C:\Program Files (x86)\DoubleEntrySoftware
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\FastReports
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\GoldWave
O43 - CFD: 28/12/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\HadaraSoft
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\hi51
O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\Hide My IP
O43 - CFD: 10/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - pGFX®
O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Intel Driver Update Utility =>.Intel(R) Driver Update Utility®
O43 - CFD: 18/02/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 12/01/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 29/01/2015 - [] D -- C:\Program Files (x86)\IObit =>.IObit Information Technology®
O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 11/11/2015 - [] D -- C:\Program Files (x86)\Jolimark
O43 - CFD: 04/04/2015 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab®
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Kingo ROOT =>.ZJMedia Digital Technology Ltd.®
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Lenovo =>.LENOVO®
O43 - CFD: 01/06/2015 - [] D -- C:\Program Files (x86)\Lokas
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Magical Jelly Bean {041ABD63CA5DA9}
O43 - CFD: 24/09/2015 - [] D -- C:\Program Files (x86)\Make ID 1.2
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation®
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation®
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\MSSQL.1 =>.Microsoft Corporation®
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\NewSoftware's
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Openmiracle
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\POS 30
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Programsshop
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Raptr =>.Raptr, Inc®
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 02/01/2016 - [] D -- C:\Program Files (x86)\SambaPOS4
O43 - CFD: 22/12/2014 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 13/04/2015 - [] D -- C:\Program Files (x86)\Sony =>.Sony Mobile Communications AB®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Sony Mobile =>.Sony Mobile Communications®
O43 - CFD: 18/02/2015 - [] D -- C:\Program Files (x86)\SourceTec {2B82ABA86D863021CD8B799A9D366BE1}
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\Splashtop =>.Splashtop Inc.®
O43 - CFD: 17/02/2015 - [] D -- C:\Program Files (x86)\Topaz Labs LLC
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\unicentaopos-3.91.3
O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\UPCleaner
O43 - CFD: 17/05/2015 - [] D -- C:\Program Files (x86)\VASST
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\Vector Magic
O43 - CFD: 22/09/2015 - [] D -- C:\Program Files (x86)\WIBU-SYSTEMS
O43 - CFD: 22/09/2015 - [] D -- C:\Program Files (x86)\WIBUKEY =>.WIBU-SYSTEMS AG®
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 10/07/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 31/03/2015 - [] D -- C:\Program Files (x86)\Zello
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
O43 - CFD: 02/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AKVIS
O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Al-Manara Accounting
O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Bros. Page Curl 2.0
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Music Morpher Gold
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecoveryPro
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CEZEO software
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connectify 2016
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dachshund Software
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digital Film Tools
O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 28/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 21/12/2014 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke 5
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke CD+G Creator Pro
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT
O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 24/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Make ID 1.2
O43 - CFD: 15/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005
O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
O43 - CFD: 08/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 17/05/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\POS 30
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Power CD+G to Video Converter
O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 02/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SambaPOS4
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Splashtop Remote
O43 - CFD: 28/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniCenta oPOS
O43 - CFD: 22/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WibuKey
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\1450316473_00000000_base
O43 - CFD: 18/02/2016 - [] SHD -- C:\ProgramData\360Quarant
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\360safe
O43 - CFD: 20/07/2015 - [0] D -- C:\ProgramData\360SD
O43 - CFD: 16/04/2015 - [] D -- C:\ProgramData\360TotalSecurity
O43 - CFD: 13/11/2015 - [0] D -- C:\ProgramData\7WMiniPro7 =>PUP.Optional.WdsManPro
O43 - CFD: 23/07/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\AKVIS
O43 - CFD: 01/02/2015 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 16/08/2015 - [0] D -- C:\ProgramData\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\ProgramData\Apple
O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\ATI
O43 - CFD: 20/02/2015 - [] D -- C:\ProgramData\Avnex
O43 - CFD: 12/02/2015 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 12/02/2015 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 06/02/2016 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 10/11/2015 - [] D -- C:\ProgramData\Conexant
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Connectify
O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Dell
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Google
O43 - CFD: 22/09/2015 - [] D -- C:\ProgramData\Hadarasoft
O43 - CFD: 22/12/2014 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 23/12/2014 - [] D -- C:\ProgramData\IObit
O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 16/09/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 16/09/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\Nik Software
O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 24/12/2014 - [] D -- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 21/02/2015 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 16/09/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 02/01/2016 - [] D -- C:\ProgramData\SAMBAPOS
O43 - CFD: 19/02/2015 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/10/2015 - [] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Sony
O43 - CFD: 13/04/2015 - [] D -- C:\ProgramData\Sony Mobile
O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Splashtop
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\Sun
O43 - CFD: 05/11/2015 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 17/05/2015 - [] HDC -- C:\ProgramData\{3864EB19-CBE0-4FD1-962A-F464C0960D46}
O43 - CFD: 22/12/2014 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 19/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 23/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 24/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 27/07/2015 - [] D -- C:\Program Files (x86)\Common Files\AV
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Common Files\Doblon
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Common Files\LENOVO
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 01/02/2015 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\{F0A37341-D692-11D4-A984-009027EC0A9C}
O43 - CFD: 07/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\360safe
O43 - CFD: 07/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\360TotalSecurity
O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\8ootLogoChanger
O43 - CFD: 15/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Adobe
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Apple Computer
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ATI
O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Audacity
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent
O43 - CFD: 30/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\CEZEO software
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Digital Film Tools
O43 - CFD: 07/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\dlg
O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\DMCache
O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Doblon
O43 - CFD: 30/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Enigma Software Group
O43 - CFD: 28/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Identities
O43 - CFD: 30/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\IDM
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\InstallShield
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Intel Corporation
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Intel WiDi
O43 - CFD: 23/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\IObit
O43 - CFD: 19/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Kingosoft
O43 - CFD: 27/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\library_dir
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Macromedia
O43 - CFD: 14/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MAXON
O43 - CFD: 10/11/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MechCAD
O43 - CFD: 04/04/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Media Player Classic
O43 - CFD: 12/03/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\mgyun
O43 - CFD: 06/11/2015 - [] SD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla
O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\mxnitro
O43 - CFD: 08/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MySQL
O43 - CFD: 07/01/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Opera Software
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\PACE Anti-Piracy
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\PDAppFlex
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ProductData
O43 - CFD: 22/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Publish Providers
O43 - CFD: 15/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Raptr
O43 - CFD: 02/01/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\SambaPOS
O43 - CFD: 25/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Skype
O43 - CFD: 01/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Sony
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 18/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\SourceTec
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop
O43 - CFD: 30/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\UG
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\VASST
O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ViberPC
O43 - CFD: 16/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\VOS
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\WinRAR
O43 - CFD: 30/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\WOW
O43 - CFD: 18/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP
O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Adobe
O43 - CFD: 24/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apple
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apple Computer
O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\Application Data
O43 - CFD: 29/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apps
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\ATI
O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\AVSoft_Corp._(VN)
O43 - CFD: 12/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Bluestacks
O43 - CFD: 31/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Comms
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Conexant
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\DefaultDomain_Path_evwo4rmihh1l5n3k3nvrk3er0orp4lvt
O43 - CFD: 30/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\DellUI
O43 - CFD: 28/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Deployment
O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Diagnostics
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Downloaded Installations
O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\ElevatedDiagnostics
O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieBrowserModeList
O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieSiteList
O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieUserList
O43 - CFD: 07/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Google
O43 - CFD: 22/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Hadarasoft
O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\History
O43 - CFD: 28/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel
O43 - CFD: 22/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel WiDi
O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel_Corporation
O43 - CFD: 04/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Inverse_Karma
O43 - CFD: 19/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Kingosoft
O43 - CFD: 04/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Lenovo
O43 - CFD: 01/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Macromedia
O43 - CFD: 10/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft
O43 - CFD: 29/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft Help
O43 - CFD: 15/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\MicrosoftEdge
O43 - CFD: 29/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft_Corporation
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Mozilla
O43 - CFD: 15/08/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\NetworkTiles
O43 - CFD: 01/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Nik Software
O43 - CFD: 24/12/2014 - [] HD -- C:\Users\HuzaifaAldakkak\AppData\Local\od1NOdS48
O43 - CFD: 07/01/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Opera Software
O43 - CFD: 24/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\PACE Anti-Piracy
O43 - CFD: 14/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Packages
O43 - CFD: 15/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\PeerDistRepub
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Programs
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Publishers
O43 - CFD: 02/01/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Samba
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Skype
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Sony
O43 - CFD: 09/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\StickyNotes
O43 - CFD: 18/02/2016 - [] AD -- C:\Users\HuzaifaAldakkak\AppData\Local\Temp
O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\Temporary Internet Files
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\TileDataLayer
O43 - CFD: 08/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber
O43 - CFD: 14/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\VirtualStore
O43 - CFD: 08/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Waow
O43 - CFD: 31/03/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Zello
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 14/08/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 24/10/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/06/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AV Bros. Page Curl 2.0
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary Apps
O43 - CFD: 30/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 05/11/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DoubleEntrySoftware
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoldWave
O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 29/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary
O43 - CFD: 14/06/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Inventory v5.1
O43 - CFD: 05/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\install4j 6
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 10/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/05/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
O43 - CFD: 27/04/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneClickRoot
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
O43 - CFD: 05/11/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 11/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Topaz Labs
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASST
O43 - CFD: 05/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vector Magic
O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ System Drivers List (104) - 15s
O58 - SDL:2015/12/11 04:07:28 A . (.360.cn - 360安全卫士 网络防黑模块.) -- C:\WINDOWS\System32\drivers\360AntiHacker64.sys [137808] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/12/11 04:07:27 A . (.360.cn - 360杀毒 文件监控驱动.) -- C:\WINDOWS\System32\drivers\360AvFlt.sys [77904] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/12/11 04:07:28 A . (.360.cn - 360Box64.) -- C:\WINDOWS\System32\drivers\360Box64.sys [319568] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2014/12/24 10:11:46 A . (.360.cn - 360安全卫士 木马防火墙模块.) -- C:\WINDOWS\System32\drivers\360Camera64.sys [40520] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/12/11 04:07:26 A . (.360.cn - 360 Total Security.) -- C:\WINDOWS\System32\drivers\360fsflt.sys [367696] =>.QIHU 360 SOFTWARE CO. LIMITED®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2015/10/12 20:13:02 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\WINDOWS\System32\drivers\amdacpksd.sys [297672] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2013/05/23 00:38:50 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [36096] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2015/09/01 09:01:10 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [21655080] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/09/01 09:01:08 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [686120] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/12/11 04:07:26 A . (.360.cn - BAPIDRV.) -- C:\WINDOWS\System32\drivers\BAPIDRV64.SYS [181328] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2013/09/04 17:12:38 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\WINDOWS\System32\drivers\bcbtums.sys [170712] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2015/09/22 11:40:20 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\WINDOWS\System32\drivers\bcmwl63a.sys [11143200] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2013/09/04 17:12:52 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\WINDOWS\System32\drivers\btwampfl.sys [166104] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2011/10/17 02:00:00 A . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [10224] =>.Sonic Solutions®
O58 - SDL:2011/10/17 02:00:00 A . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [10224] =>.Sonic Solutions®
O58 - SDL:2015/12/20 19:22:53 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2014/12/21 21:45:06 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\WINDOWS\System32\drivers\CHDRT64.sys [1607328] =>.Conexant Systems, Inc.®
O58 - SDL:2015/07/05 23:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\WINDOWS\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab®
O58 - SDL:2015/05/23 15:23:55 A . (.Connectify - NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy3.sys [35352] =>.Connectify®
O58 - SDL:2015/12/20 19:22:52 A . (.Connectify - CNNCTFY helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2014/12/24 10:11:45 A . (.360安全中心 - 360Efimon Driver.) -- C:\WINDOWS\System32\drivers\efimon.sys [23752] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/01/30 14:56:23 A . (...) -- C:\WINDOWS\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC®
O58 - SDL:2014/04/14 22:07:44 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\WINDOWS\System32\drivers\ETD.sys [359688] =>.ELAN Microelectronics Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2015/04/13 20:16:53 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\WINDOWS\System32\drivers\ggflt.sys [16088] =>.Sony Mobile Communications AB®
O58 - SDL:2015/04/13 20:16:53 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\WINDOWS\System32\drivers\ggsomc.sys [30424] =>.Sony Mobile Communications AB®
O58 - SDL:2015/01/06 16:38:26 A . (.Splashtop Inc. - Filter Driver for HID-KMDF Interface.) -- C:\WINDOWS\System32\drivers\hidkmdf.sys [15072] =>.Splashtop Inc.®
O58 - SDL:2013/06/19 16:26:04 A . (.Hide My IP - WFP driver.) -- C:\WINDOWS\System32\drivers\hmip64.sys [38760] {2752899AEB201F1B27B859C996521D15}
O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group®
O58 - SDL:2013/08/07 13:23:46 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [644968] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2014/11/29 02:37:06 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [180648] =>.Tonec Inc.®
O58 - SDL:2015/12/07 23:12:01 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3797424] =>.Intel Corporation - pGFX®
O58 - SDL:2012/08/23 12:37:42 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdpmd64.sys [9000256] =>.Intel Corporation
O58 - SDL:2015/08/21 10:50:48 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/20 21:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [50240] =>.Intel(R) Wireless Display®
O58 - SDL:2015/07/20 21:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [38976] =>.Intel(R) Wireless Display®
O58 - SDL:2008/05/15 02:28:52 A . (.Atheros Communications, Inc. - Atheros Security NDIS 6.0 Filter Driver.) -- C:\WINDOWS\System32\drivers\jswpslwfx.sys [26624] =>.Atheros Communications, Inc.
O58 - SDL:2015/06/22 19:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab®
O58 - SDL:2015/06/27 00:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [70512] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:51:00 A . (.Kaspersky Lab ZAO - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [68280] =>.Kaspersky Lab®
O58 - SDL:2015/06/24 00:28:32 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klelam.sys [30328] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2015/11/02 10:39:36 A . (.AO Kaspersky Lab - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab®
O58 - SDL:2015/11/02 10:38:03 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [227512] =>.Kaspersky Lab®
O58 - SDL:2015/12/02 11:15:17 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [934272] =>.Kaspersky Lab®
O58 - SDL:2015/06/11 18:35:38 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver [.) -- C:\WINDOWS\System32\drivers\klim6.sys [39608] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/06/07 00:52:56 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/11/02 10:39:37 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab®
O58 - SDL:2015/11/02 10:39:37 A . (.Kaspersky Lab ZAO - Network filtering component [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [87944] =>.Kaspersky Lab®
O58 - SDL:2015/06/16 20:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [102584] =>.Kaspersky Lab®
O58 - SDL:2015/06/23 17:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2012/12/07 09:28:06 A . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\WINDOWS\System32\drivers\ndiskhaz.sys [30536] {112143B4795DF5D1366AD8607B2770CC1649}
O58 - SDL:2013/03/01 03:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2011/11/03 02:01:00 A . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\WINDOWS\System32\drivers\PxHlpa64.sys [56208] =>.Sonic Solutions®
O58 - SDL:2012/06/12 08:11:22 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [683664] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/07/10 12:59:39 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [587264] =>.Realtek
O58 - SDL:2015/05/14 11:10:30 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [402960] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [108800] =>.DEVGURU CO LTD®
O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] =>.DEVGURU CO LTD®
O58 - SDL:2015/01/06 16:38:18 A . (.Splashtop Inc. - Splashtop DPMS Driver.) -- C:\WINDOWS\System32\drivers\stdpms.sys [28904] {32671ADE7C0DD879AA0EF5FA5F9883F6}
O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/01/06 16:38:26 A . (.Splashtop Inc. - Splashtop HID mini driver.) -- C:\WINDOWS\System32\drivers\sthid.sys [21216] =>.Splashtop Inc.®
O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2014/12/23 14:25:18 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverx64.sys [118272] =>.Intel Corporation - Intel® Management Engine Firmware®
O58 - SDL:2012/05/30 12:10:50 A . (.Intel(R) Corporation - TurboB Device Driver.) -- C:\WINDOWS\System32\drivers\TurboB.sys [16168] {416EC9A1000100005B7D} =>.Intel(R) Corporation
O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2012/10/09 17:48:48 A . (.Windows (R) Win 7 DDK provider - usb3hub.sys.) -- C:\WINDOWS\System32\drivers\usb3Hub.sys [47072] =>.Intel Wireless Display®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2012/10/09 17:49:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\WDKMD.sys [42392] =>.Wireless Display®
O58 - SDL:2014/07/23 19:04:00 A . (.WIBU-SYSTEMS AG - WIBU-KEY Plug&Play Driver for Windows.) -- C:\WINDOWS\System32\drivers\Wibukey2_64.sys [22320] =>.WIBU-SYSTEMS AG®
O58 - SDL:2014/07/23 19:04:00 A . (.WIBU-SYSTEMS AG - WibuKey Windows NT Kernel Driver.) -- C:\WINDOWS\System32\drivers\WibuKey64.sys [106760] =>.WIBU-SYSTEMS AG®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®
O58 - SDL:2012/10/09 17:48:48 A . (.Windows (R) Win 7 DDK provider - xHCIport.sys.) -- C:\WINDOWS\System32\drivers\xHCIPort.sys [188896] =>.Intel Wireless Display®
---\\ Last modified or created user files (5) - 107s
O61 - LFC: 2016/02/17 14:42:36 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2016/02/17 08:07:28 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2653.0\natives_blob.bin [410279]
O61 - LFC: 2016/02/17 08:07:28 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2653.0\snapshot_blob.bin [625156]
O61 - LFC: 2016/02/16 08:06:10 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2652.0\natives_blob.bin [410441]
O61 - LFC: 2016/02/16 08:06:10 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2652.0\snapshot_blob.bin [626404]
---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt>[HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
---\\ Search Browser Infection (4) - 5s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Search Svchost Services (42) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1335296] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [954368] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [93696] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [1008640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324096] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [371200] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [95744] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\WINDOWS\System32\NetSetupSvc.dll [187392] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [680448] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [497152] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2237952] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [1168896] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [593920] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [343040] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [712704] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1015808] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [359936] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [58368] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation
---\\ Firewall Active Exception List (3) - 2s
O87 - FAEL: "{1FE81AB4-C55D-426E-96C2-35E684A7BEA6}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (.not file.)
O87 - FAEL: "{AD80EBF7-A543-44EE-98F9-51BFF5539232}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (.not file.)
O87 - FAEL: "{C51092FD-15BB-40A7-9BD1-36B0DDFA5B5D}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (.not file.)
---\\ Additional Scan (O88) (16) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WdsManPro
C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart =>HackTool.KMSpico
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1 =>HackTool.KMSpico
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark
C:\Program Files (x86)\80 =>Heuristique.Suspect
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\ProgramData\7WMiniPro7 =>PUP.Optional.WdsManPro
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
---\\ Summary of the elements found (7) - 0s
http://www.nicolascoolman.fr/?p=989 =>HackTool.KMSpico
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/pup-wordshark/ =>PUP.Optional.WordShark
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=4664 =>Heuristique.Suspect
http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS
~ End of the scan, 68638 items in 00h05mn50s (1428)(0)
~ Run by HuzaifaAldakkak (Administrator) (2016/02/18 01:03:25)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\HuzaifaAldakkak\Desktop\ZHPDiag.txt
~ Report: C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240)
---\\ Internet Browsers (3) - 0s
GCIE: Google Chrome v40.0.2214.94
MFIE: Mozilla Firefox 44.0.2 (x86 en-US)
MSIE: Internet Explorer v11.0.10240.16683
---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
---\\ System protection software (3) - 8s
360 Total Security v8.0.0.1072
Kaspersky Anti-Virus v16.0.0.614
Windows Defender (Activate)
---\\ System optimization software (1) - 9s
CCleaner v2.29
---\\ Surveillance software (1) - 9s
Adobe Flash Player 20 NPAPI
---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8260.968 MB (52% free)
System Restore: Activé (Enable)
System drive C: has 125 GB () free of 235 GB
---\\ Connection to the system mode (3) - 0s
~ Computer Name: HD90
~ User Name: HuzaifaAldakkak
~ Logged in as Administrator
---\\ Enumeration of the disk units (5) - 0s
~ Drive C: has 125 GB free of 235 GB (System)
~ Drive D: has 7 GB free of 51 GB
~ Drive F: has 235 GB free of 256 GB
~ Drive G: has 31 GB free of 153 GB
~ Drive H: has 152 GB free of 234 GB
---\\ State of the Windows Security Center (7) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\\ Search Generic System Files (24) - 1s
[MD5.D2EAEC106F183572317AF7D68E381063] - 25/11/2015 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [4532304] =>.Microsoft Windows®
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation
[MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 18/07/2015 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [290312] =>.Microsoft Windows Publisher®
[MD5.71EF55BA035CD459D8230501D067D2F8] - 31/01/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [2849792] =>.Microsoft Corporation
[MD5.DA32F9BFA7851AD4247353EA03755DE6] - 05/01/2016 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [578560] =>.Microsoft Corporation
[MD5.ECB1943967424DFB96E03F6A098434EF] - 19/07/2015 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation
[MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [680256] =>.Microsoft Windows®
[MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] =>.Microsoft Windows®
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] =>.Microsoft Windows®
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows®
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] =>.Microsoft Corporation
[MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] =>.Microsoft Corporation
[MD5.27E248CD861AFED4DF0C48F4C853E7F0] - 25/11/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] =>.Microsoft Corporation
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation
[MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] =>.Microsoft Corporation
[MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] =>.Microsoft Corporation
[MD5.BA8DC96D1DD7785EB0589CB1777208B7] - 01/12/2015 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2115936] =>.Microsoft Windows®
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation
[MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] =>.Microsoft Corporation
[MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] =>.Microsoft Windows®
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] =>.Microsoft Windows®
---\\ Non Microsoft non disabled Windows Services (21) - 7s
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
O23 - Service: @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Ma (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe =>.Broadcom Corporation®
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc. - BlueStacks Service.) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.Bluestack Systems, Inc.®
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.Bluestack Systems, Inc.®
O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.Bluestack Systems, Inc.®
O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2 (chromoting) . (.Google Inc. - Host Process.) - C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe =>.Google Inc®
O23 - Service: Connectify (Connectify) . (.Connectify - .) - C:\Program Files (x86)\Connectify\ConnectifyService.exe =>.Connectify (Connectify, Inc.)®
O23 - Service: CxUtilSvc (CxUtilSvc) . (.Conexant Systems, Inc. - Utility Service.) - C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe =>.Conexant Systems, Inc.®
O23 - Service: Dell Update Service (DellUpdate) . (.Dell Inc. - Dell Update Windows Service.) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\SysWOW64\nlssrv32.exe =>.Nalpeiron Ltd.
O23 - Service: 360 Total Security (QHActiveDefense) . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) - C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
O23 - Service: Service KMSELDI (Service KMSELDI) . (.@ByELDI - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
O23 - Service: Splashtop® Remote Service (SplashtopRemoteService) . (.Splashtop Inc. - Splashtop® Streamer Service.) - C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe {32671ADE7C0DD879AA0EF5FA5F9883F6}
O23 - Service: Splashtop Software Updater Service (SSUService) . (.Splashtop Inc. - Splashtop Software Updater Service.) - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe =>.Splashtop Inc.®
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: WdsManPro Service (WdsManPro) . (...) - C:\ProgramData\7WMiniPro7\WMiniPro.exe (.not file.) =>PUP.Optional.WdsManPro
O23 - Service: WIBU-KEY Server (WkSvW32.exe) . (.WIBU-SYSTEMS AG - WibuKey Network server management.) - C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe =>.WIBU-SYSTEMS AG®
---\\ Services not Microsoft (SR=Run, SS=Stop) (37) - 33s
SS - Demand [29/12/2015] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Demand [01/09/2015] [ 265776] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe =>.AMD
SR - Auto [02/11/2015] [ 194000] Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab®
SR - Auto [04/09/2013] [ 2252504] @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Ma (BcmBtRSupport) . (.Broadcom Corporation..) - C:\WINDOWS\system32\BtwRSupportService.exe =>.Broadcom Corporation.
SS - Auto [03/02/2015] [ 409304] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.Bluestack Systems, Inc.®
SS - Auto [03/02/2015] [ 388824] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.Bluestack Systems, Inc.®
SS - Auto [03/02/2015] [ 794328] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.Bluestack Systems, Inc.®
SR - Auto [14/10/2015] [ 69448] @C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2 (chromoting) . (.Google Inc..) - C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe =>.Google Inc®
SR - Auto [30/11/2015] [ 256568] Connectify (Connectify) . (.Connectify.) - C:\Program Files (x86)\Connectify\ConnectifyService.exe =>.Connectify (Connectify, Inc.)®
SS - Demand [07/12/2015] [ 291744] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Auto [21/12/2014] [ 109184] CxUtilSvc (CxUtilSvc) . (.Conexant Systems, Inc..) - C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe =>.Conexant Systems, Inc.®
SS - Demand [09/04/2015] [ 145288] Dell Customer Connect (Dell Customer Connect) . (.Dell Inc..) - C:\Program Files (x86)\Dell Customer Connect\OTBSurvey.exe =>.Dell Inc.®
SR - Auto [27/08/2015] [ 237272] Dell Update Service (DellUpdate) . (.Dell Inc..) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.®
SS - Demand [31/01/2015] [ 107912] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [31/01/2015] [ 107912] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [07/08/2013] [ 15720] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology®
SS - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation®
SR - Auto [07/12/2015] [ 330136] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
SR - Auto [20/04/2012] [ 635104] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service®
SR - Auto [17/07/2012] [ 165760] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation®
SS - Demand [24/04/2015] [ 625640] Lenovo EasyPlus Hotspot (Lenovo EasyPlus Hotspot) . (.Lenovo.) - C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe =>.LENOVO®
SS - Demand [10/12/2014] [ 2631456] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe =>.IObit Information Technology®
SR - Demand [17/07/2012] [ 276864] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SS - Demand [13/02/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [31/01/2012] [ 66560] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\nlssrv32.exe =>.Nalpeiron Ltd.
SR - Auto [11/12/2015] [ 903288] 360 Total Security (QHActiveDefense) . (.QIHU 360 SOFTWARE CO. LIMITED.) - C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
SS - Auto [22/07/2015] [ 985280] Service KMSELDI (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
SS - Demand [11/12/2014] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [10/06/2015] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe =>.Sony Mobile Communications AB®
SR - Auto [26/01/2015] [ 695648] Splashtop® Remote Service (SplashtopRemoteService) . (.Splashtop Inc..) - C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe {32671ADE7C0DD879AA0EF5FA5F9883F6}
SR - Auto [09/10/2013] [ 609056] Splashtop Software Updater Service (SSUService) . (.Splashtop Inc..) - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe =>.Splashtop Inc.®
SS - Demand [19/02/2010] [ 517096] SwitchBoard (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
SS - Demand [30/05/2012] [ 149544] Intel(R) Turbo Boost Technology Monitor 2.6 (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe =>.Intel(R) Software®
SR - Auto [17/07/2012] [ 364416] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SS - Demand [08/07/2015] [ 144640] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab®
SR - Auto [23/07/2014] [ 668552] WIBU-KEY Server (WkSvW32.exe) . (.WIBU-SYSTEMS AG.) - C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe =>.WIBU-SYSTEMS AG®
---\\ Task Planned Automatically (25) - 4s
[MD5.C3E7E1F3C85A6788F3BA078BA214341E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.7486DEF5CC9334F58871D6D18B73C562] [APT] [AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936] =>.Adobe Systems Incorporated®
[MD5.1F90E252F9C21C0B90578DAA42F16765] [APT] [AutoPico Daily Restart] (.@ByELDI.) -- C:\Program Files\KMSpico\AutoPico.exe [985792] =>HackTool.KMSpico
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc®
[MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc®
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core] (.Google Inc..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc®
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA] (.Google Inc..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc®
[MD5.D1A010CBBB86DDC11E047B74DE70627E] [APT] [Uninstaller_SkipUac_HuzaifaAldakkak] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9616672] =>.IObit Information Technology®
[MD5.D1A010CBBB86DDC11E047B74DE70627E] [APT] [Uninstaller_SkipUac_noto] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9616672] =>.IObit Information Technology®
[MD5.00000000000000000000000000000000] [APT] [WordShark Auto Updater 1.10.0.20 Core] (...) -- C:\Program Files (x86)\WordShark_1.10.0.20\Update\WordSharkAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.WordShark
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] =>.Apple Inc.®
[MD5.E3238CA9101C670556B636C8F4FCE358] [APT] [Lenovo\Lenovo Customer Feedback Program 64 35] (.Lenovo.) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184] =>.LENOVO®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core.job [906] =>.Google Inc®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA.job [958] =>.Google Inc®
O39 - APT: Uninstaller_SkipUac_HuzaifaAldakkak - (.IObit.) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_HuzaifaAldakkak.job [308] =>.IObit Information Technology®
O39 - APT: Uninstaller_SkipUac_noto - (.IObit.) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_noto.job [308] =>.IObit Information Technology®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3818] =>.Adobe Systems Incorporated®
O39 - APT: AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak [3624] =>.Adobe Systems Incorporated®
O39 - APT: AutoPico Daily Restart - (.@ByELDI.) -- C:\WINDOWS\System32\Tasks\AutoPico Daily Restart [3474] =>HackTool.KMSpico
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3754] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3990] =>.Google Inc®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core [3718] =>.Google Inc®
O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA [4094] =>.Google Inc®
O39 - APT: Uninstaller_SkipUac_HuzaifaAldakkak - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_HuzaifaAldakkak [2538] =>.IObit Information Technology®
O39 - APT: Uninstaller_SkipUac_noto - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_noto [2512] =>.IObit Information Technology®
---\\ Process running (47) - 3s
[MD5.75909533EECD0CD9D5974B59474AA6C0] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [330136] [PID.1488] =>.Intel Corporation - pGFX®
[MD5.A89E87A213BB785C50A0C985F0265E50] - (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [903288] [PID.1680] =>.QIHU 360 SOFTWARE CO. LIMITED®
[MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000] [PID.2408] =>.Kaspersky Lab®
[MD5.18B186BCC56EC611DE519CBA7D4F65B0] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) -- C:\Windows\System32\BtwRSupportService.exe [2252504] [PID.2424] =>.Broadcom Corporation®
[MD5.2FA3A0FD81DA7F49867E7A37E68BDE1A] - (.Google Inc. - Host Process.) -- C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448] [PID.2504] =>.Google Inc®
[MD5.507D25509F566E33B88D7D07CF48E394] - (.Connectify - .) -- C:\Program Files (x86)\Connectify\ConnectifyService.exe [256568] [PID.2556] =>.Connectify (Connectify, Inc.)®
[MD5.3C4002D339491AF73D663FFC7F6E5ECB] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760] [PID.2564] =>.Intel Corporation®
[MD5.9A59DF2CA690019FEA3B265D5A7EB619] - (.Conexant Systems, Inc. - Utility Service.) -- C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe [109184] [PID.2572] =>.Conexant Systems, Inc.®
[MD5.C99F8E90DE4B8F0C7FE15BB1CBCD29DC] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [635104] [PID.2580] =>.Intel® Upgrade Service®
[MD5.B1EF4686961986DFFB7FE8F18E6FCB5B] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\Windows\SysWOW64\nlssrv32.exe [66560] [PID.2772] =>.Nalpeiron Ltd.
[MD5.F01B19E4225872533F27E591B3FF5B69] - (.Splashtop Inc. - Splashtop® Streamer Service.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [695648] [PID.2892] {32671ADE7C0DD879AA0EF5FA5F9883F6}
[MD5.504C33FE3B4E2AF11FE5875DDCA8EBEA] - (.Splashtop Inc. - Splashtop Software Updater Service.) -- C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [609056] [PID.3020] =>.Splashtop Inc.®
[MD5.7E32B569CFC549F3816D454D6E8C8D22] - (.WIBU-SYSTEMS AG - WibuKey Network server management.) -- C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe [668552] [PID.1832] =>.WIBU-SYSTEMS AG®
[MD5.4AC13DC0A79E90D736E41AD7DC678969] - (.Connectify - Connectify Daemon Service.) -- C:\Program Files (x86)\Connectify\ConnectifyD.exe [3816504] [PID.1208] =>.Connectify (Connectify, Inc.)®
[MD5.2FA3A0FD81DA7F49867E7A37E68BDE1A] - (.Google Inc. - Host Process.) -- C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448] [PID.3556] =>.Google Inc®
[MD5.E08BF6E26FC0CB49540DF291D48629F0] - (.Qihu Software Co. Limited - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe [124536] [PID.3116] =>.QIHU 360 SOFTWARE CO. LIMITED®
[MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe [211712] [PID.5392] =>.Kaspersky Lab®
[MD5.EBDEC4149FAAE1C633FA9B33D55B3EA1] - (.Splashtop Inc. - Splashtop® Streamer.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe [4221792] [PID.5972] {32671ADE7C0DD879AA0EF5FA5F9883F6}
[MD5.44C694C2B542DB3CDAEBDB1FF3233F4D] - (.Dell Inc. - Dell Update Windows Service.) -- C:\Program Files (x86)\Dell Update\DellUpService.exe [237272] [PID.1920] =>.Dell Inc.®
[MD5.04ACE629A2853C12C648632AF1678925] - (.Splashtop Inc. - Splashtop® Streamer Feature.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe [7618344] [PID.6284] {32671ADE7C0DD879AA0EF5FA5F9883F6}
[MD5.9221F67A8FC9EF9629E8E5CF0C5931B0] - (.Dell Inc. - Dell Update.) -- C:\Program Files (x86)\Dell Update\DellUpTray.exe [707800] [PID.6396] =>.Dell Inc.®
[MD5.80A11F070E9EEFCB48B357E9E0E2C7D1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [541600] [PID.7132] =>.Intel Corporation - pGFX®
[MD5.B6C52FADECE225339D02B6923E930B5C] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [258456] [PID.7180] =>.Intel Corporation - pGFX®
[MD5.5689C5A911D3B91BD1CB281510FBE0D4] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [2878728] [PID.7312] =>.ELAN Microelectronics Corporation®
[MD5.E366C61EAB64491781FB338D7CF0D112] - (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe [5762408] [PID.7428] =>.Compal Electronics, Inc.®
[MD5.E9AC314ED94022AAF3EDBCC55FC4A575] - (.WIBU-SYSTEMS AG - WkSvMgr.) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe [9028976] [PID.7476] =>.WIBU-SYSTEMS AG®
[MD5.20E83F4632E15A5E9E716FF2E8AC7FAE] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.5884] =>.Intel Corporation - Intel® Rapid Storage Technology®
[MD5.4269D44BB47A6DA5D80B11F4C8536458] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [276864] [PID.6268] =>.Intel Corporation®
[MD5.DBE2E6388379D5CC78099650541E9566] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [364416] [PID.3068] =>.Intel Corporation®
[MD5.4234E76A1B12C5F76B264C99540FD736] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392136] [PID.9048] =>.Mozilla Corporation®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.6568] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.5468] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.4712] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.7376] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.6832] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.8512] =>.Google Inc®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.5276] =>.Google Inc®
[MD5.871365E60564C6B531F21B0397B37FEE] - (.Connectify - Connectify Hotspot.) -- C:\Program Files (x86)\Connectify\Connectify.exe [4160568] [PID.7388] =>.Connectify (Connectify, Inc.)®
[MD5.1A55E8B13E80F7ECEC5FF1B4820E78AD] - (.Telegram Messenger LLP - .) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe [31919456] [PID.5004] {4098401CAB91A429} =>.Telegram Messenger LLP
[MD5.30F69462C39ABC9B5674B9D5DFE126B4] - (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe [51657424] [PID.1360] =>.Viber Media S.a.r.l®
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.4724] =>.Google Inc®
[MD5.550BF90B194FD01FCB76199AC52A99FF] - (.Connectify - .) -- C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe [411192] [PID.11400] =>.Connectify (Connectify, Inc.)®
[MD5.0209103C184767731EDA4FF634038C24] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [15872] [PID.8088] =>.Copyright Microsoft Corporation
[MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.3688] =>.Google Inc®
[MD5.6C4B88203FFE721C18B041DE1312C67A] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3825232] [PID.11148] =>.Tonec Inc.
[MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.1672] =>.Tonec Inc.®
[MD5.5AE930CBDC0E46B3FBFCE1F00A7A9B13] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\HuzaifaAldakkak\Downloads\Programs\ZHPDiag3.exe [2122752] [PID.12096] =>.Nicolas Coolman
---\\ Google Chrome, Start,Search,Extensions (19) - 1s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [bepbmhgboaologfdajaanbcjmnhjmhfn] Google Voice Search Hotword (Beta)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [clabbeiafnokkpfmkabbfkndocdjcobe] Hyperlator Facebook Utility
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eahebamiopdhefndnmappcihfajigkka] __MSG_ExtensionName__
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [fjnbnpbmkenffdnngjfgmeleoegfcffe] Stylish
G2 - GCE: Preference [User Data\Default] [gbchcmhmhahfdphkhkmpfmihenigjmpp] __MSG_PRODUCT_NAME__
G2 - GCE: Preference [User Data\Default] [hocegonoebjokljiejnkjejlgdnhkglo] Assassin's Creed 2 - Light
G2 - GCE: Preference [User Data\Default] [inmmhkeajgflmokoaaoadgkhhmibjbpj] Facebook Invite All
G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module
G2 - GCE: Preference [User Data\Default] [lkifjigoeilijkcnpfdjbpdjgnbfibec] __MSG_extName__
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pabfempgigicdjjlccdgnbmeggkbjdhd] Stylist
G2 - GCE: Preference [User Data\Default] [phejagnmddcjhjblnacgmejghffmhjfp] Facebook Themes (Facebook Theme Gallery)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (8) - 1s
P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT FILE: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\firefox@mega.co.nz.xpi
P2 - EXT FILE: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - EXT: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\staged
P2 - EXT: (.iMacros Team, iOpus Software GmbH - iMacros for Firefox.) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [adobe.com/AdobeExManDetect] - (...) -- F:\Program files (D)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
---\\ Internet Explorer Extensions, Start, Search (21) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKEY_USERS\S-1-5-21-3599766761-982674122-2959987469-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1
---\\ Internet Explorer, Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Browser Helper Object (BHO) (6) - 0s
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean)
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll =>.Oracle America, Inc.®
O2 - BHO: SafeMon Class [64Bits] - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} . (.Qihu 360 Software Co., Ltd. - 360 Internet Security Internet Protection.) -- C:\Program Files (x86)\360\Total Security\safemon\safemon.dll =>.Qihoo 360 Software (Beijing) Company Limited®
O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll =>.Kaspersky Lab®
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll =>.Oracle America, Inc.®
---\\ Auto loading programs from Registry and folders (23) - 1s
O4 - HKLM\..\Run: [ETDCtrl] . (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe =>.ELAN Microelectronics Corporation®
O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe =>.Compal Electronics, Inc.®
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [Viber] . (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.®
O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\Run: [Viber] . (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation
---\\ Global shortcuts Startup (180) - 17s
O4 - GS\Desktop [Administrator]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [Administrator]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Administrator]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [Administrator]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrator]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrator]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Administrator]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Administrator]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [Administrator]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [Administrator]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [Administrator]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [Administrator]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [Administrator]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [Administrator]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [Administrator]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Administrator]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Administrator]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [Guest]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [Guest]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [Guest]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [Guest]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [Guest]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [Guest]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [Guest]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [Guest]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [Guest]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [Guest]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [Guest]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [Guest]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [Guest]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [Guest]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [Guest]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [HuzaifaAldakkak]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [HuzaifaAldakkak]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [HuzaifaAldakkak]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [HuzaifaAldakkak]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [HuzaifaAldakkak]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [HuzaifaAldakkak]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [HuzaifaAldakkak]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [HuzaifaAldakkak]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [HuzaifaAldakkak]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [HuzaifaAldakkak]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [HuzaifaAldakkak]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [HuzaifaAldakkak]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [HuzaifaAldakkak]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [HuzaifaAldakkak]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [HuzaifaAldakkak]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [HuzaifaAldakkak]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [HuzaifaAldakkak]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [noto]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems
O4 - GS\Desktop [noto]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc®
O4 - GS\Desktop [noto]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd®
O4 - GS\Desktop [noto]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [noto]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [noto]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Desktop [noto]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe
O4 - GS\Desktop [noto]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O4 - GS\Desktop [noto]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe
O4 - GS\Desktop [noto]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe
O4 - GS\Desktop [noto]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon
O4 - GS\Desktop [noto]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP
O4 - GS\Desktop [noto]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Desktop [noto]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc.
O4 - GS\Desktop [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Desktop [noto]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [noto]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [noto]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\Quicklaunch [noto]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe
O4 - GS\Quicklaunch [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Quicklaunch [noto]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [noto]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\TaskBar [noto]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [noto]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [noto]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\TaskBar [noto]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc.
O4 - GS\TaskBar [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\CommonDesktop [Public]: 360 Total Security.lnk . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) C:\Program Files (x86)\360\Total Security\QHSafeMain.exe =>.QIHU 360 SOFTWARE CO. LIMITED®
O4 - GS\CommonDesktop [Public]: Adobe Acrobat X Pro.lnk . (.Adobe Systems Incorporated - Adobe Acrobat.) F:\Program files (D)\Adobecs6\Acrobat 10.0\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated®
O4 - GS\CommonDesktop [Public]: AKVIS Chameleon.lnk . (.AKVIS - Chameleon Application.) C:\Program Files (x86)\AKVIS\Chameleon\Chameleon.exe {4036679835556E3C93EFEDCAAA7D1F79} =>.AKVIS
O4 - GS\CommonDesktop [Public]: Al-Manara 2.0.lnk . (...) C:\WINDOWS\Installer\{E668B437-4C35-43AF-8F51-0F411723120C}\IconE668B4375.exe
O4 - GS\CommonDesktop [Public]: Apps.lnk . (...) C:\Users\Public\Libraries\Apps.library-ms
O4 - GS\CommonDesktop [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe
O4 - GS\CommonDesktop [Public]: AV Easy DJ.lnk . (.AVSoft Corp. (VN) - AV Easy DJ 1.0.) C:\Program Files (x86)\AV Music Morpher Gold\AV Easy DJ.exe {27F1A35940CA6E5585F0B25F43765D1E}
O4 - GS\CommonDesktop [Public]: AV Music Morpher Gold.lnk . (.AVSoft Corp. (VN) - AV Music Morpher Gold 5.0.) C:\Program Files (x86)\AV Music Morpher Gold\AV Music Morpher.exe {27F1A35940CA6E5585F0B25F43765D1E}
O4 - GS\CommonDesktop [Public]: CardRecoveryPro.lnk . (...) C:\Program Files (x86)\CardRecoveryPro\CardRecoveryPro.exe {288A6842C331C5443D747BDABF31E2A3}
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Intel(R) Driver Update Utility 2.0.lnk . (.Intel - Intel Driver Update Utility.) C:\Program Files (x86)\Intel Driver Update Utility\DriverUpdateUI.exe =>.Intel(R) Driver Update Utility®
O4 - GS\CommonDesktop [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation - pGFX®
O4 - GS\CommonDesktop [Public]: Intel(R) Turbo Boost Technology Monitor 2.6.lnk . (.Intel® Corporation - .) C:\Program Files (x86)\Intel\TurboBoost\SignalIslandUi.exe =>.Intel® Corporation
O4 - GS\CommonDesktop [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.) C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe =>.IObit Information Technology®
O4 - GS\CommonDesktop [Public]: Kaspersky Anti-Virus.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe =>.Kaspersky Lab®
O4 - GS\CommonDesktop [Public]: KeyFinder.lnk . (.ONE UP LTD. - Magical Jelly Bean Keyfinder.) C:\Program Files (x86)\Magical Jelly Bean\keyfinder.exe {041ABD63CA5DA9}
O4 - GS\CommonDesktop [Public]: Kingo ROOT.lnk . (.Kingosoft - Kingo Root.) C:\Program Files (x86)\Kingo ROOT\Kingo Root.exe =>.ZJMedia Digital Technology Ltd.®
O4 - GS\CommonDesktop [Public]: Login Plexis POS.lnk . (.PLEXIS SOFTWARE - BT.) C:\Program Files (x86)\POS 30\Bt.exe
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Photo to Cartoon.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{2302FD51-7033-48DE-A302-039649DE4AE8}\NewShortcut1_24C52DF75CFA44538BE6B761A088240F.exe {2F3394A95A52FD4B6967ADBE5FB484B8} =>.Flexera Software LLC
O4 - GS\CommonDesktop [Public]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe =>.Apple Inc.®
O4 - GS\CommonDesktop [Public]: SambaPOS4.lnk . (.Copyright © 2010 - Samba POS.) C:\Program Files (x86)\SambaPOS4\Samba.Presentation.exe
O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.Lenovo - SHAREit.) C:\Program Files (x86)\Lenovo\SHAREit\Shareit.exe =>.LENOVO®
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: Sony PC Companion 2.1.lnk . (.Sony - Sony PC Companion.) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe =>.Sony Mobile Communications AB®
O4 - GS\CommonDesktop [Public]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec
O4 - GS\CommonDesktop [Public]: SsdReady.lnk . (.Copyright (C) 2013 - SsdReady - SSD life measurement tool.) C:\Program Files\CEZEO software\SsdReady\SsdReady.exe {3C2C57985C7A9FA89B39C73FE4707BAE}
O4 - GS\CommonDesktop [Public]: Start BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks StartLauncher.) C:\Program Files (x86)\BlueStacks\HD-StartLauncher.exe =>.Bluestack Systems, Inc.®
O4 - GS\CommonDesktop [Public]: uniCenta oPOS.lnk . (...) C:\Program Files (x86)\unicentaopos-3.91.3\start.bat
O4 - GS\CommonDesktop [Public]: Zello.lnk . (.Zello Inc - Zello.) C:\Program Files (x86)\Zello\Zello.exe {2B5F20C3C1D162}
O4 - GS\Startup [Public]: Network Server.lnk . (.WIBU-SYSTEMS AG - WkSvMgr.) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe =>.WIBU-SYSTEMS AG®
O4 - GS\Programs [Public]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc®
O4 - GS\Programs [Public]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_77354CBFA2CD44F60FBFED.exe
O4 - GS\Programs [Public]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l®
O4 - GS\Programs [Public]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
---\\ Lop.com/Domain Hijackers (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{151762b9-0840-4a8d-b83d-41193cefbb62}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9113986f-2115-4214-96e1-b9999ac7e2de}: DhcpNameServer = 192.168.1.1
---\\ Extra protocols (23) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (147) - 30s
O42 - Logiciel: 360 Total Security - (.360 Security Center.) [HKLM][64Bits] -- 360TotalSecurity =>.QIHU 360 SOFTWARE CO. LIMITED®
O42 - Logiciel: 3D Maker by Lokas Software - (...) [HKLM][64Bits] -- 3D Maker by Lokas Software
O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-F400-7760-000000000005} =>.Adobe Systems
O42 - Logiciel: Adobe After Effects CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {147EC100-14BE-45EF-AB42-35BAEE7D02F0} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Creative Suite 6 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Lightroom - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Media Encoder CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0FAC7130-BEC5-47A5-8813-1D339B8326ED} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Touch App Plugins - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1EC083EE-5B76-4A2A-B95A-CAF460AA29D6} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} =>.Adobe Systems Incorporated.
O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser =>.Adobe Systems Incorporated.
O42 - Logiciel: AKVIS Chameleon - (.AKVIS.) [HKLM][64Bits] -- {74FD25CB-C6BD-46C5-BA5C-1D74DB730717} =>.AKVIS
O42 - Logiciel: Al-Manara Accounting System 2.0 - (.Al-ManaraSoft®.) [HKLM][64Bits] -- {E668B437-4C35-43AF-8F51-0F411723120C}
O42 - Logiciel: AMD Catalyst Control Center - (...) [HKLM][64Bits] -- {8B1A559A-FB9D-42F5-A8A7-2F132CF28414}
O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp =>.Advanced Micro Devices, Inc.®
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc.
O42 - Logiciel: Ashampoo Snap 5 v.5.1.2 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- Ashampoo Snap 5_is1 =>.ashampoo GmbH & Co. KG®
O42 - Logiciel: Audacity 2.0.6 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 =>.Audacity Team
O42 - Logiciel: AV Bros. Page Curl 2.0 (Remove Only) - (...) [HKLM][64Bits] -- AV Bros. Page Curl 2.0
O42 - Logiciel: AV Music Morpher Gold - (...) [HKLM][64Bits] -- AV Music Morpher Gold
O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>.BitTorrent Inc®
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0} =>.Your Company Name
O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player =>.Bluestack Systems, Inc.®
O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {E78B4959-B348-4913-874B-FF982378E035} =>.BlueStack Systems, Inc.
O42 - Logiciel: CardRecoveryPro 2.6.5 - (.LionSea Software co., ltd.) [HKLM][64Bits] -- {D9E1CADA-D103-47AE-B3F8-0C0CD0E5856E}_is1 =>.LionSea Software co., ltd
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: Chrome Remote Desktop Host - (.Google Inc..) [HKLM][64Bits] -- {CDF9E1C8-4B97-4F8B-A848-7DD0E8BEB89F} =>.Google Inc.
O42 - Logiciel: Color Efex Pro 4 - (.Nik Software, Inc..) [HKLM][64Bits] -- Color Efex Pro 4 {2F2CE8C1EFE6FCA2BFDAEA44220C7708} =>.Nik Software, Inc.
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- {F0A37341-D692-11D4-A984-009027EC0A9C} =>.Macrovision Corporation®
O42 - Logiciel: Conexant SmartAudio HD - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA =>.Conexant Systems, Inc.®
O42 - Logiciel: Connectify 2016 - (.Connectify.) [HKLM][64Bits] -- Connectify =>.Connectify
O42 - Logiciel: Dell Customer Connect - (.Dell Inc..) [HKLM][64Bits] -- {FEFDCDCF-C49C-45D0-AAF8-5345858ADEC7} =>.Dell Inc.
O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM][64Bits] -- {BC8233D8-59BA-4D40-92B9-4FDE7452AA8B} =>.Dell Products, LP
O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 73f463568823ebbe {5749F0670170872B6AC321FE67A8445DF2233000} =>.Dell
O42 - Logiciel: Dell Touchpad - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation®
O42 - Logiciel: Dell Update - (.Dell Inc..) [HKLM][64Bits] -- {DB82968B-57A4-4397-81A5-ECAB21B5DFCD} =>.Dell Inc.
O42 - Logiciel: Eye Candy 4000 - (...) [HKLM][64Bits] -- Eye Candy 4000
O42 - Logiciel: GDR 3077 for SQL Server Database Services 2005 ENU (KB960089) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB960089_SQL9 =>.Microsoft Corporation®
O42 - Logiciel: GDR 3077 for SQL Server Tools and Workstation Components 2005 ENU (KB960089 - (.Microsoft Corporation.) [HKLM][64Bits] -- KB960089_SQLTools9 =>.Microsoft Corporation®
O42 - Logiciel: GoldWave v5.70 - (.GoldWave Inc..) [HKLM][64Bits] -- GoldWave v5.70 =>.GoldWave Inc.
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Chrome Canary - (.Google Inc..) [HKCU][64Bits] -- Google Chrome SxS =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc.
O42 - Logiciel: install4j 6.0.4 - (.ej-technologies GmbH.) [HKLM][64Bits] -- 6187-37938-2029-3898 {124BDD56D220B9F7CD64A661501AEFC3}
O42 - Logiciel: Intel(R) Driver Update Utility 2.0 - (.Intel.) [HKLM][64Bits] -- {59DB38EB-F864-4E10-841D-38CFBCF864B0} =>.Intel
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {93F692D4-0C4D-4EED-9BFE-657C1D5959FE} =>.Intel Corporation
O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor 2.6 - (.Intel.) [HKLM][64Bits] -- {6C9365EB-1F9E-4893-9196-3EC77C88D0C5} =>.Intel
O42 - Logiciel: Intel(R) WiDi - (.Intel Corporation.) [HKLM][64Bits] -- {6097158B-0184-4140-BEC3-7885794D2571} =>.Intel Corporation
O42 - Logiciel: Intel® Driver Update Utility - (.Intel.) [HKLM][64Bits] -- {8409c4f7-2340-4933-a304-5d37db4fb48b} =>.Intel(R) Driver Update Utility®
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B} =>.Intel Corporation
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall =>.IObit Information Technology®
O42 - Logiciel: Java 7 Update 67 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F06417067FF} =>.Oracle
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: Karaoke CD+G Creator Pro - (.Doblon.) [HKLM][64Bits] -- {AA77219C-0A77-4FF3-8CC5-2DC08469E6FF}_is1 =>.Doblon
O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kingo ROOT version 1.3.4.2252 - (.Kingosoft Technology Ltd..) [HKLM][64Bits] -- {AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1 =>.Kingosoft Technology Ltd.
O42 - Logiciel: K-Lite Mega Codec Pack 7.5.0 - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: KMSpico - (...) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
O42 - Logiciel: KMSpico v9.1.0.20131125 (Beta) - (...) [HKLM][64Bits] -- KMSpico_is1 =>HackTool.KMSpico
O42 - Logiciel: Light for Adobe Photoshop (64 Bit) - (.Digital Film Tools.) [HKLM][64Bits] -- {952DF0BE-D914-44B5-AAFE-3014ABFBCD4B}
O42 - Logiciel: Light for Adobe Photoshop (64 Bit) - (.Digital Film Tools.) [HKLM][64Bits] -- Light for Adobe Photoshop (64 Bit)
O42 - Logiciel: Magical Jelly Bean KeyFinder - (.Magical Jelly Bean.) [HKLM][64Bits] -- KeyFinder_is1 {041ABD63CA5DA9} =>.Magical Jelly Bean
O42 - Logiciel: Make ID 1.2 version 1.2 - (.alibasil.com @20015.) [HKLM][64Bits] -- {0326271F-3A66-4CEB-97D4-4B8A1BA09C4A}_is1
O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196} =>.Lenovo Group Limited
O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Mozilla Firefox 44.0.2 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 44.0.2 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {6B00F0E1-2680-11E3-95F5-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {A528BDDE-9C9F-11E2-9F0C-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {C2B8CBDE-5232-11E3-B494-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D10D0851-CCC6-11E3-9ED2-F04DA23A5C58} =>.Sony Creative Software Inc.
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D81C035E-D0A5-11DF-9450-0013D3D69929} =>.Sony Creative Software Inc.
O42 - Logiciel: MySQL Workbench 6.3 CE - (.Oracle Corporation.) [HKLM][64Bits] -- {8E6D8BF8-828A-4F7B-A332-F7CEB8CB75AA} =>.Oracle Corporation
O42 - Logiciel: Openmiracle - (.Openmiracle.) [HKLM][64Bits] -- {4FB2C258-FCC8-4059-8221-E01AB9FEB561}
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} =>.Adobe Systems Incorporated
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A} =>.Your Company Name
O42 - Logiciel: Photo to Cartoon - (.Caricature Software Inc..) [HKLM][64Bits] -- {2302FD51-7033-48DE-A302-039649DE4AE8}
O42 - Logiciel: Plexis POS 3.0 Release 09/23/2015 - (.Plexis Software Systems.) [HKLM][64Bits] -- Plexis Point of Sale_is1
O42 - Logiciel: Power CD+G to Video Karaoke Converter - (.Doblon.) [HKLM][64Bits] -- {B2F83792-DA53-487F-B2F8-84A98E51B7FD}_is1 =>.Doblon
O42 - Logiciel: PX Profile Update - (.AMD.) [HKLM][64Bits] -- {873CCF4A-6FC2-69A5-9AD4-FD37D7FCE6B9} =>.AMD
O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} =>.Dell Inc.
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} =>.Apple Inc.
O42 - Logiciel: Raptr - (...) [HKLM][64Bits] -- Raptr
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} =>.Realtek Semiconductor Corp®
O42 - Logiciel: SambaPOS4 - (.SAMBAPOS.) [HKLM][64Bits] -- {9447659F-1795-44B2-B8A2-E0FA049A5F6E}_is1
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.®
O42 - Logiciel: SAP Crystal Reports runtime engine for .NET Framework 4 (32-bit) - (.SAP.) [HKLM][64Bits] -- {083988D7-BDA9-4244-983B-409A634BBC09} =>.SAP
O42 - Logiciel: Service Pack 2 for SQL Server 2008 (KB2285068) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2285068 =>.Microsoft Corporation®
O42 - Logiciel: SHAREit - (.Lenovo Group Limited.) [HKLM][64Bits] -- SHAREit_is1 =>.LENOVO®
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} =>.Skype Technologies S.A.
O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM][64Bits] -- Update Engine =>.Sony Mobile Communications®
O42 - Logiciel: Sony PC Companion 2.10.281 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} =>.Sony Mobile Communications AB®
O42 - Logiciel: Sothink Logo Maker Professional - (.SourceTec Software Co., LTD.) [HKLM][64Bits] -- {574FFDC9-AB09-4C4A-B7BE-C6066502181A}_is1
O42 - Logiciel: Splashtop Personal - (.Splashtop Inc..) [HKLM][64Bits] -- {E7CF0F14-8C1D-41F3-85ED-579C108262C7}
O42 - Logiciel: Splashtop Software Updater - (.Splashtop Inc..) [HKLM][64Bits] -- Splashtop Software Updater
O42 - Logiciel: Splashtop Streamer - (.Splashtop Inc..) [HKLM][64Bits] -- {B7C5EA94-B96A-41F5-BE95-25D78B486678}
O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF} =>.Microsoft Corporation
O42 - Logiciel: SsdReady - (.CEZEO software Ltd..) [HKLM][64Bits] -- SsdReady_is1
O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM][64Bits] -- TAP-Windows
O42 - Logiciel: Telegram Desktop version 0.9.24 - (.Telegram Messenger LLP.) [HKCU][64Bits] -- {53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1 =>.Telegram Messenger LLP
O42 - Logiciel: Topaz Vivacity - (.Topaz Labs LLC.) [HKLM][64Bits] -- {C13A8E73-7E98-4295-BA94-6931701CD1F9}
O42 - Logiciel: uniCenta oPOS - (.uniCenta.) [HKLM][64Bits] -- uniCenta oPOS 3.91.3
O42 - Logiciel: Update for Skype for Business 2015 (KB3039776) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation®
O42 - Logiciel: VASST Cinema Looks Vol.1 - (.VASST Software.) [HKLM][64Bits] -- VASST Cinema Looks Vol.1
O42 - Logiciel: VASST Cinema Looks Vol.13 - (.VASST Software.) [HKLM][64Bits] -- VASST Cinema Looks Vol.13
O42 - Logiciel: VASST EventTools 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST EventTools
O42 - Logiciel: VASST Render Assistant 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST Render Assistant
O42 - Logiciel: VASST StillMotion 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST StillMotion
O42 - Logiciel: VASST StutterFrame 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST StutterFrame
O42 - Logiciel: VASST TimeWarp 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST TimeWarp
O42 - Logiciel: VASST TitleStrip Vol.4 - (.VASST Software.) [HKLM][64Bits] -- VASST TitleStrip Vol.4
O42 - Logiciel: VASST VoiceAssistant 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST VoiceAssistant
O42 - Logiciel: Vector Magic - (.Vector Magic, Inc..) [HKLM][64Bits] -- Vector Magic =>.Vector Magic, Inc.
O42 - Logiciel: Vegas Pro 12.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {64A98EF1-2680-11E3-A909-F04DA23A5C58} =>.Sony
O42 - Logiciel: Vegas Pro 13.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {D0360940-CCC6-11E3-B9C6-F04DA23A5C58} =>.Sony
O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber =>.Viber Media S.a.r.l®
O42 - Logiciel: WibuKey Setup (WibuKey Remove) - (.WIBU-SYSTEMS AG.) [HKLM][64Bits] -- {00060000-0000-1004-8002-0000C06B5161} =>.WIBU-SYSTEMS AG®
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®
O42 - Logiciel: XAMPP - (.Bitnami.) [HKLM][64Bits] -- xampp =>.BitNami
O42 - Logiciel: Zello 1.40.0.0 - (.Zello Inc.) [HKLM][64Bits] -- Zello
O42 - Logiciel: دعم تطبيق Apple - (.Apple Inc..) [HKLM][64Bits] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} =>.Apple Inc.
---\\ HKCU & HKLM Software Keys (196) - 30s
HKLM\SOFTWARE\Wow6432Node\360Safe
HKLM\SOFTWARE\Wow6432Node\360softmgr
HKLM\SOFTWARE\Wow6432Node\360TotalSecurity
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\ADSRemoval
HKLM\SOFTWARE\Wow6432Node\Advanced Micro Devices, Inc.
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AKVIS
HKLM\SOFTWARE\Wow6432Node\Alien Skin
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc.
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Ashampoo
HKLM\SOFTWARE\Wow6432Node\ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies
HKLM\SOFTWARE\Wow6432Node\Avnex
HKLM\SOFTWARE\Wow6432Node\BlueStacks
HKLM\SOFTWARE\Wow6432Node\Borland
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\CCleaner
HKLM\SOFTWARE\Wow6432Node\CDDB
HKLM\SOFTWARE\Wow6432Node\Chromis
HKLM\SOFTWARE\Wow6432Node\Conexant
HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions
HKLM\SOFTWARE\Wow6432Node\Dell
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\HadaraSoft
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Innovative Solutions
HKLM\SOFTWARE\Wow6432Node\Insyde
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\IO3O
HKLM\SOFTWARE\Wow6432Node\IObit
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\K5
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KLCodecPack
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\LiveUpdate360
HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard
HKLM\SOFTWARE\Wow6432Node\Lokas Ltd
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Minnetonka Audio Software
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nalpeiron
HKLM\SOFTWARE\Wow6432Node\Nik Software
HKLM\SOFTWARE\Wow6432Node\Nord Trading Network
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Openbravo
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\Raptr
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\SAP BusinessObjects
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\Sony
HKLM\SOFTWARE\Wow6432Node\Sony Creative Software
HKLM\SOFTWARE\Wow6432Node\Sony Mobile
HKLM\SOFTWARE\Wow6432Node\SourceTec
HKLM\SOFTWARE\Wow6432Node\Splashtop Inc.
HKLM\SOFTWARE\Wow6432Node\Topaz Labs LLC
HKLM\SOFTWARE\Wow6432Node\TrueSoftware
HKLM\SOFTWARE\Wow6432Node\uniCenta
HKLM\SOFTWARE\Wow6432Node\VASST
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\VVK
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WIBU-SYSTEMS
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark
HKLM\SOFTWARE\Wow6432Node\Wow6432Node
HKLM\SOFTWARE\Wow6432Node\xampp
HKLM\SOFTWARE\Wow6432Node\XinYi Network
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\360
HKCU\SOFTWARE\360TotalSecurity
HKCU\SOFTWARE\4shared
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Adobe Lightroom
HKCU\SOFTWARE\Akeo Consulting
HKCU\SOFTWARE\AKVIS
HKCU\SOFTWARE\AlManaraSoft
HKCU\SOFTWARE\AntiCrash
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\Ashampoo
HKCU\SOFTWARE\Atheros
HKCU\SOFTWARE\ATI
HKCU\SOFTWARE\Audacity
HKCU\SOFTWARE\Avnex
HKCU\SOFTWARE\BcmSetup
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\Borland
HKCU\SOFTWARE\Cameyo
HKCU\SOFTWARE\CardRecoveryPro
HKCU\SOFTWARE\CardRecoveryPro_Init
HKCU\SOFTWARE\Caricature Software
HKCU\SOFTWARE\CEZEO software
HKCU\SOFTWARE\Chromium
HKCU\SOFTWARE\Class
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\Dell Computer Corporation
HKCU\SOFTWARE\Digimarc
HKCU\SOFTWARE\Digital Film Tools
HKCU\SOFTWARE\DirectShow
HKCU\SOFTWARE\Doblon
HKCU\SOFTWARE\DoctorPCConfig
HKCU\SOFTWARE\DoctorPCLanguage
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DSP-worx
HKCU\SOFTWARE\DXTransform
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\Fast Reports
HKCU\SOFTWARE\Faux
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GoldWave
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\HadaraSoft
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\iMacros
HKCU\SOFTWARE\Innovative Solutions
HKCU\SOFTWARE\Integrator
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\ksdev
HKCU\SOFTWARE\LAV
HKCU\SOFTWARE\Lenovo
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\LiveUpdate360
HKCU\SOFTWARE\LogMeInRescueCallingCard
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\MC4D
HKCU\SOFTWARE\MechCAD
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\Mercury32
HKCU\SOFTWARE\MONOGRAM
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MySQL AB
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nik Software
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\OneClickRoot
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\PACE Anti-Piracy
HKCU\SOFTWARE\PhotoInstrument
HKCU\SOFTWARE\Pictures
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Raptr
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SAP BusinessObjects
HKCU\SOFTWARE\Skyhook Wireless
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Sony
HKCU\SOFTWARE\Sony Creative Software
HKCU\SOFTWARE\SourceTec
HKCU\SOFTWARE\Splashtop Inc.
HKCU\SOFTWARE\SYNCJM
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\vanBasco
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Vector Magic
HKCU\SOFTWARE\VectorMagic
HKCU\SOFTWARE\VertusTech
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\VOS
HKCU\SOFTWARE\Waves Audio
HKCU\SOFTWARE\WIBU-SYSTEMS
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\XinYi Network
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
---\\ Contents of the Common Files folders (357) - 55s
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\100 =>.Microsoft Corporation®
O43 - CFD: 30/01/2015 - [] D -- C:\Program Files (x86)\360 =>.Qihoo 360 Software (Beijing) Company Limited®
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\80 =>Heuristique.Suspect
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\90 =>.Microsoft Corporation®
O43 - CFD: 27/07/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 17/05/2015 - [] D -- C:\Program Files (x86)\AKVIS {4036679835556E3C93EFEDCAAA7D1F79}
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Al-Manara Accounting =>.SafeNet, Inc.®
O43 - CFD: 31/10/2015 - [] D -- C:\Program Files (x86)\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.®
O43 - CFD: 31/05/2015 - [] D -- C:\Program Files (x86)\Ashampoo =>.Ashampoo GmbH & Co. KG®
O43 - CFD: 25/02/2015 - [] D -- C:\Program Files (x86)\Audacity
O43 - CFD: 20/02/2015 - [] D -- C:\Program Files (x86)\AV Music Morpher Gold {27F1A35940CA6E5585F0B25F43765D1E}
O43 - CFD: 12/02/2015 - [] D -- C:\Program Files (x86)\BlueStacks
O43 - CFD: 28/02/2015 - [] D -- C:\Program Files (x86)\CardRecoveryPro {288A6842C331C5443D747BDABF31E2A3}
O43 - CFD: 30/05/2015 - [] D -- C:\Program Files (x86)\Caricature Software Inc
O43 - CFD: 04/04/2015 - [] D -- C:\Program Files (x86)\CCleaner =>.Piriform Ltd®
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Connectify =>.Connectify (Connectify, Inc.)®
O43 - CFD: 29/01/2015 - [0] D -- C:\Program Files (x86)\Dachshund Software
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Dell Customer Connect =>.Dell Inc.®
O43 - CFD: 03/06/2015 - [] D -- C:\Program Files (x86)\Dell Digital Delivery
O43 - CFD: 30/08/2015 - [] D -- C:\Program Files (x86)\Dell Update =>.Dell Inc.®
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Doblon
O43 - CFD: 05/11/2015 - [0] D -- C:\Program Files (x86)\DoubleEntrySoftware
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\FastReports
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\GoldWave
O43 - CFD: 28/12/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\HadaraSoft
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\hi51
O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\Hide My IP
O43 - CFD: 10/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - pGFX®
O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Intel Driver Update Utility =>.Intel(R) Driver Update Utility®
O43 - CFD: 18/02/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 12/01/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 29/01/2015 - [] D -- C:\Program Files (x86)\IObit =>.IObit Information Technology®
O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 11/11/2015 - [] D -- C:\Program Files (x86)\Jolimark
O43 - CFD: 04/04/2015 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack
O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab®
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Kingo ROOT =>.ZJMedia Digital Technology Ltd.®
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Lenovo =>.LENOVO®
O43 - CFD: 01/06/2015 - [] D -- C:\Program Files (x86)\Lokas
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Magical Jelly Bean {041ABD63CA5DA9}
O43 - CFD: 24/09/2015 - [] D -- C:\Program Files (x86)\Make ID 1.2
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation®
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation®
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\MSSQL.1 =>.Microsoft Corporation®
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\NewSoftware's
O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Openmiracle
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\POS 30
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Programsshop
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\QuickTime
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Raptr =>.Raptr, Inc®
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp®
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 02/01/2016 - [] D -- C:\Program Files (x86)\SambaPOS4
O43 - CFD: 22/12/2014 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 13/04/2015 - [] D -- C:\Program Files (x86)\Sony =>.Sony Mobile Communications AB®
O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Sony Mobile =>.Sony Mobile Communications®
O43 - CFD: 18/02/2015 - [] D -- C:\Program Files (x86)\SourceTec {2B82ABA86D863021CD8B799A9D366BE1}
O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\Splashtop =>.Splashtop Inc.®
O43 - CFD: 17/02/2015 - [] D -- C:\Program Files (x86)\Topaz Labs LLC
O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\unicentaopos-3.91.3
O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\UPCleaner
O43 - CFD: 17/05/2015 - [] D -- C:\Program Files (x86)\VASST
O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\Vector Magic
O43 - CFD: 22/09/2015 - [] D -- C:\Program Files (x86)\WIBU-SYSTEMS
O43 - CFD: 22/09/2015 - [] D -- C:\Program Files (x86)\WIBUKEY =>.WIBU-SYSTEMS AG®
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 10/07/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 31/03/2015 - [] D -- C:\Program Files (x86)\Zello
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
O43 - CFD: 02/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AKVIS
O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Al-Manara Accounting
O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Bros. Page Curl 2.0
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Music Morpher Gold
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecoveryPro
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CEZEO software
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connectify 2016
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dachshund Software
O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digital Film Tools
O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 28/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 21/12/2014 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke 5
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke CD+G Creator Pro
O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT
O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 24/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Make ID 1.2
O43 - CFD: 15/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005
O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008
O43 - CFD: 08/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
O43 - CFD: 17/05/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\POS 30
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Power CD+G to Video Converter
O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 02/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SambaPOS4
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec
O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Splashtop Remote
O43 - CFD: 28/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 10/07/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniCenta oPOS
O43 - CFD: 22/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WibuKey
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP
O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\1450316473_00000000_base
O43 - CFD: 18/02/2016 - [] SHD -- C:\ProgramData\360Quarant
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\360safe
O43 - CFD: 20/07/2015 - [0] D -- C:\ProgramData\360SD
O43 - CFD: 16/04/2015 - [] D -- C:\ProgramData\360TotalSecurity
O43 - CFD: 13/11/2015 - [0] D -- C:\ProgramData\7WMiniPro7 =>PUP.Optional.WdsManPro
O43 - CFD: 23/07/2015 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\AKVIS
O43 - CFD: 01/02/2015 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 16/08/2015 - [0] D -- C:\ProgramData\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\ProgramData\Apple
O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Atheros
O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\ATI
O43 - CFD: 20/02/2015 - [] D -- C:\ProgramData\Avnex
O43 - CFD: 12/02/2015 - [] D -- C:\ProgramData\BlueStacks
O43 - CFD: 12/02/2015 - [] D -- C:\ProgramData\BlueStacksSetup
O43 - CFD: 06/02/2016 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms
O43 - CFD: 10/11/2015 - [] D -- C:\ProgramData\Conexant
O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Connectify
O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Dell
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Google
O43 - CFD: 22/09/2015 - [] D -- C:\ProgramData\Hadarasoft
O43 - CFD: 22/12/2014 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Intel
O43 - CFD: 23/12/2014 - [] D -- C:\ProgramData\IObit
O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 16/09/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft OneDrive
O43 - CFD: 16/09/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\Nik Software
O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 24/12/2014 - [] D -- C:\ProgramData\PACE Anti-Piracy
O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 21/02/2015 - [] D -- C:\ProgramData\ProductData
O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 16/09/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 02/01/2016 - [] D -- C:\ProgramData\SAMBAPOS
O43 - CFD: 19/02/2015 - [] D -- C:\ProgramData\Samsung
O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/10/2015 - [] D -- C:\ProgramData\SoftwareDistribution
O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Sony
O43 - CFD: 13/04/2015 - [] D -- C:\ProgramData\Sony Mobile
O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Splashtop
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\Sun
O43 - CFD: 05/11/2015 - [0] AD -- C:\ProgramData\TEMP
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared
O43 - CFD: 17/05/2015 - [] HDC -- C:\ProgramData\{3864EB19-CBE0-4FD1-962A-F464C0960D46}
O43 - CFD: 22/12/2014 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
O43 - CFD: 19/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 23/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 24/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 27/07/2015 - [] D -- C:\Program Files (x86)\Common Files\AV
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Common Files\Doblon
O43 - CFD: 16/08/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Common Files\LENOVO
O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 01/02/2015 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\{F0A37341-D692-11D4-A984-009027EC0A9C}
O43 - CFD: 07/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\360safe
O43 - CFD: 07/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\360TotalSecurity
O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\8ootLogoChanger
O43 - CFD: 15/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Adobe
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Apple Computer
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ATI
O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Audacity
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent
O43 - CFD: 30/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\CEZEO software
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Digital Film Tools
O43 - CFD: 07/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\dlg
O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\DMCache
O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Doblon
O43 - CFD: 30/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Enigma Software Group
O43 - CFD: 28/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Identities
O43 - CFD: 30/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\IDM
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\InstallShield
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Intel Corporation
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Intel WiDi
O43 - CFD: 23/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\IObit
O43 - CFD: 19/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Kingosoft
O43 - CFD: 27/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\library_dir
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Macromedia
O43 - CFD: 14/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MAXON
O43 - CFD: 10/11/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MechCAD
O43 - CFD: 04/04/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Media Player Classic
O43 - CFD: 12/03/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\mgyun
O43 - CFD: 06/11/2015 - [] SD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla
O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\mxnitro
O43 - CFD: 08/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MySQL
O43 - CFD: 07/01/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Opera Software
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\PACE Anti-Piracy
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\PDAppFlex
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ProductData
O43 - CFD: 22/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Publish Providers
O43 - CFD: 15/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Raptr
O43 - CFD: 02/01/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\SambaPOS
O43 - CFD: 25/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Skype
O43 - CFD: 01/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Sony
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 18/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\SourceTec
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop
O43 - CFD: 30/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\UG
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\VASST
O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ViberPC
O43 - CFD: 16/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\VOS
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\WinRAR
O43 - CFD: 30/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\WOW
O43 - CFD: 18/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP
O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Adobe
O43 - CFD: 24/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\AMD
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apple
O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apple Computer
O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\Application Data
O43 - CFD: 29/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apps
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\ATI
O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\AVSoft_Corp._(VN)
O43 - CFD: 12/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Bluestacks
O43 - CFD: 31/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Comms
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Conexant
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\DefaultDomain_Path_evwo4rmihh1l5n3k3nvrk3er0orp4lvt
O43 - CFD: 30/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\DellUI
O43 - CFD: 28/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Deployment
O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Diagnostics
O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Downloaded Installations
O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\ElevatedDiagnostics
O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieBrowserModeList
O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieSiteList
O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieUserList
O43 - CFD: 07/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Google
O43 - CFD: 22/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Hadarasoft
O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\History
O43 - CFD: 28/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel
O43 - CFD: 22/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel WiDi
O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel_Corporation
O43 - CFD: 04/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Inverse_Karma
O43 - CFD: 19/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Kingosoft
O43 - CFD: 04/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Lenovo
O43 - CFD: 01/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Macromedia
O43 - CFD: 10/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft
O43 - CFD: 29/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft Help
O43 - CFD: 15/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\MicrosoftEdge
O43 - CFD: 29/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft_Corporation
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Mozilla
O43 - CFD: 15/08/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\NetworkTiles
O43 - CFD: 01/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Nik Software
O43 - CFD: 24/12/2014 - [] HD -- C:\Users\HuzaifaAldakkak\AppData\Local\od1NOdS48
O43 - CFD: 07/01/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Opera Software
O43 - CFD: 24/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\PACE Anti-Piracy
O43 - CFD: 14/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Packages
O43 - CFD: 15/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\PeerDistRepub
O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Programs
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Publishers
O43 - CFD: 02/01/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Samba
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Skype
O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Sony
O43 - CFD: 09/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\StickyNotes
O43 - CFD: 18/02/2016 - [] AD -- C:\Users\HuzaifaAldakkak\AppData\Local\Temp
O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\Temporary Internet Files
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\TileDataLayer
O43 - CFD: 08/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber
O43 - CFD: 14/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\VirtualStore
O43 - CFD: 08/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Waow
O43 - CFD: 31/03/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Zello
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 14/08/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 24/10/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/06/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AV Bros. Page Curl 2.0
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary Apps
O43 - CFD: 30/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
O43 - CFD: 05/11/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DoubleEntrySoftware
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoldWave
O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 29/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary
O43 - CFD: 14/06/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Inventory v5.1
O43 - CFD: 05/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\install4j 6
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 10/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/05/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
O43 - CFD: 27/04/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneClickRoot
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
O43 - CFD: 05/11/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 11/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Topaz Labs
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASST
O43 - CFD: 05/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vector Magic
O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation®
---\\ System Drivers List (104) - 15s
O58 - SDL:2015/12/11 04:07:28 A . (.360.cn - 360安全卫士 网络防黑模块.) -- C:\WINDOWS\System32\drivers\360AntiHacker64.sys [137808] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/12/11 04:07:27 A . (.360.cn - 360杀毒 文件监控驱动.) -- C:\WINDOWS\System32\drivers\360AvFlt.sys [77904] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/12/11 04:07:28 A . (.360.cn - 360Box64.) -- C:\WINDOWS\System32\drivers\360Box64.sys [319568] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2014/12/24 10:11:46 A . (.360.cn - 360安全卫士 木马防火墙模块.) -- C:\WINDOWS\System32\drivers\360Camera64.sys [40520] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/12/11 04:07:26 A . (.360.cn - 360 Total Security.) -- C:\WINDOWS\System32\drivers\360fsflt.sys [367696] =>.QIHU 360 SOFTWARE CO. LIMITED®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows®
O58 - SDL:2015/10/12 20:13:02 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\WINDOWS\System32\drivers\amdacpksd.sys [297672] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2013/05/23 00:38:50 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [36096] =>.Advanced Micro Devices, Inc.®
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows®
O58 - SDL:2015/09/01 09:01:10 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [21655080] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/09/01 09:01:08 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [686120] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/12/11 04:07:26 A . (.360.cn - BAPIDRV.) -- C:\WINDOWS\System32\drivers\BAPIDRV64.SYS [181328] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2013/09/04 17:12:38 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\WINDOWS\System32\drivers\bcbtums.sys [170712] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2015/09/22 11:40:20 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\WINDOWS\System32\drivers\bcmwl63a.sys [11143200] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2013/09/04 17:12:52 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\WINDOWS\System32\drivers\btwampfl.sys [166104] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows®
O58 - SDL:2011/10/17 02:00:00 A . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [10224] =>.Sonic Solutions®
O58 - SDL:2011/10/17 02:00:00 A . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [10224] =>.Sonic Solutions®
O58 - SDL:2015/12/20 19:22:53 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2014/12/21 21:45:06 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\WINDOWS\System32\drivers\CHDRT64.sys [1607328] =>.Conexant Systems, Inc.®
O58 - SDL:2015/07/05 23:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\WINDOWS\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab®
O58 - SDL:2015/05/23 15:23:55 A . (.Connectify - NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy3.sys [35352] =>.Connectify®
O58 - SDL:2015/12/20 19:22:52 A . (.Connectify - CNNCTFY helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)®
O58 - SDL:2014/12/24 10:11:45 A . (.360安全中心 - 360Efimon Driver.) -- C:\WINDOWS\System32\drivers\efimon.sys [23752] =>.Qihoo 360 Software (Beijing) Company Limited®
O58 - SDL:2015/01/30 14:56:23 A . (...) -- C:\WINDOWS\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC®
O58 - SDL:2014/04/14 22:07:44 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\WINDOWS\System32\drivers\ETD.sys [359688] =>.ELAN Microelectronics Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows®
O58 - SDL:2015/04/13 20:16:53 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\WINDOWS\System32\drivers\ggflt.sys [16088] =>.Sony Mobile Communications AB®
O58 - SDL:2015/04/13 20:16:53 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\WINDOWS\System32\drivers\ggsomc.sys [30424] =>.Sony Mobile Communications AB®
O58 - SDL:2015/01/06 16:38:26 A . (.Splashtop Inc. - Filter Driver for HID-KMDF Interface.) -- C:\WINDOWS\System32\drivers\hidkmdf.sys [15072] =>.Splashtop Inc.®
O58 - SDL:2013/06/19 16:26:04 A . (.Hide My IP - WFP driver.) -- C:\WINDOWS\System32\drivers\hmip64.sys [38760] {2752899AEB201F1B27B859C996521D15}
O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group®
O58 - SDL:2013/08/07 13:23:46 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [644968] =>.Intel Corporation - Intel® Rapid Storage Technology®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows®
O58 - SDL:2014/11/29 02:37:06 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [180648] =>.Tonec Inc.®
O58 - SDL:2015/12/07 23:12:01 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3797424] =>.Intel Corporation - pGFX®
O58 - SDL:2012/08/23 12:37:42 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdpmd64.sys [9000256] =>.Intel Corporation
O58 - SDL:2015/08/21 10:50:48 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/20 21:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [50240] =>.Intel(R) Wireless Display®
O58 - SDL:2015/07/20 21:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [38976] =>.Intel(R) Wireless Display®
O58 - SDL:2008/05/15 02:28:52 A . (.Atheros Communications, Inc. - Atheros Security NDIS 6.0 Filter Driver.) -- C:\WINDOWS\System32\drivers\jswpslwfx.sys [26624] =>.Atheros Communications, Inc.
O58 - SDL:2015/06/22 19:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab®
O58 - SDL:2015/06/27 00:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [70512] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:51:00 A . (.Kaspersky Lab ZAO - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [68280] =>.Kaspersky Lab®
O58 - SDL:2015/06/24 00:28:32 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klelam.sys [30328] =>.Microsoft Windows Early Launch Anti-malware Publisher®
O58 - SDL:2015/11/02 10:39:36 A . (.AO Kaspersky Lab - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab®
O58 - SDL:2015/11/02 10:38:03 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [227512] =>.Kaspersky Lab®
O58 - SDL:2015/12/02 11:15:17 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [934272] =>.Kaspersky Lab®
O58 - SDL:2015/06/11 18:35:38 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver [.) -- C:\WINDOWS\System32\drivers\klim6.sys [39608] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 07:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/06/07 00:52:56 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [41656] =>.Kaspersky Lab®
O58 - SDL:2015/11/02 10:39:37 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab®
O58 - SDL:2015/11/02 10:39:37 A . (.Kaspersky Lab ZAO - Network filtering component [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [87944] =>.Kaspersky Lab®
O58 - SDL:2015/06/16 20:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [102584] =>.Kaspersky Lab®
O58 - SDL:2015/06/23 17:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows®
O58 - SDL:2012/12/07 09:28:06 A . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\WINDOWS\System32\drivers\ndiskhaz.sys [30536] {112143B4795DF5D1366AD8607B2770CC1649}
O58 - SDL:2013/03/01 03:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows®
O58 - SDL:2011/11/03 02:01:00 A . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\WINDOWS\System32\drivers\PxHlpa64.sys [56208] =>.Sonic Solutions®
O58 - SDL:2012/06/12 08:11:22 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [683664] =>.Realtek Semiconductor Corp®
O58 - SDL:2015/07/10 12:59:39 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [587264] =>.Realtek
O58 - SDL:2015/05/14 11:10:30 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [402960] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows®
O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [108800] =>.DEVGURU CO LTD®
O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] =>.DEVGURU CO LTD®
O58 - SDL:2015/01/06 16:38:18 A . (.Splashtop Inc. - Splashtop DPMS Driver.) -- C:\WINDOWS\System32\drivers\stdpms.sys [28904] {32671ADE7C0DD879AA0EF5FA5F9883F6}
O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows®
O58 - SDL:2015/01/06 16:38:26 A . (.Splashtop Inc. - Splashtop HID mini driver.) -- C:\WINDOWS\System32\drivers\sthid.sys [21216] =>.Splashtop Inc.®
O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2014/12/23 14:25:18 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverx64.sys [118272] =>.Intel Corporation - Intel® Management Engine Firmware®
O58 - SDL:2012/05/30 12:10:50 A . (.Intel(R) Corporation - TurboB Device Driver.) -- C:\WINDOWS\System32\drivers\TurboB.sys [16168] {416EC9A1000100005B7D} =>.Intel(R) Corporation
O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032]
O58 - SDL:2012/10/09 17:48:48 A . (.Windows (R) Win 7 DDK provider - usb3hub.sys.) -- C:\WINDOWS\System32\drivers\usb3Hub.sys [47072] =>.Intel Wireless Display®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows®
O58 - SDL:2012/10/09 17:49:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\WDKMD.sys [42392] =>.Wireless Display®
O58 - SDL:2014/07/23 19:04:00 A . (.WIBU-SYSTEMS AG - WIBU-KEY Plug&Play Driver for Windows.) -- C:\WINDOWS\System32\drivers\Wibukey2_64.sys [22320] =>.WIBU-SYSTEMS AG®
O58 - SDL:2014/07/23 19:04:00 A . (.WIBU-SYSTEMS AG - WibuKey Windows NT Kernel Driver.) -- C:\WINDOWS\System32\drivers\WibuKey64.sys [106760] =>.WIBU-SYSTEMS AG®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows®
O58 - SDL:2012/10/09 17:48:48 A . (.Windows (R) Win 7 DDK provider - xHCIport.sys.) -- C:\WINDOWS\System32\drivers\xHCIPort.sys [188896] =>.Intel Wireless Display®
---\\ Last modified or created user files (5) - 107s
O61 - LFC: 2016/02/17 14:42:36 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192]
O61 - LFC: 2016/02/17 08:07:28 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2653.0\natives_blob.bin [410279]
O61 - LFC: 2016/02/17 08:07:28 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2653.0\snapshot_blob.bin [625156]
O61 - LFC: 2016/02/16 08:06:10 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2652.0\natives_blob.bin [410441]
O61 - LFC: 2016/02/16 08:06:10 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2652.0\snapshot_blob.bin [626404]
---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.evt>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (4) - 5s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
---\\ Search Svchost Services (42) - 2s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1335296] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [954368] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [93696] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [1008640] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324096] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [371200] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [95744] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\WINDOWS\System32\NetSetupSvc.dll [187392] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [680448] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [497152] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2237952] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [1168896] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [593920] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [343040] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [712704] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1015808] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [359936] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [58368] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation
---\\ Firewall Active Exception List (3) - 2s
O87 - FAEL: "{1FE81AB4-C55D-426E-96C2-35E684A7BEA6}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (.not file.)
O87 - FAEL: "{AD80EBF7-A543-44EE-98F9-51BFF5539232}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (.not file.)
O87 - FAEL: "{C51092FD-15BB-40A7-9BD1-36B0DDFA5B5D}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (.not file.)
---\\ Additional Scan (O88) (16) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico
HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WdsManPro
C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico
C:\WINDOWS\System32\Tasks\AutoPico Daily Restart =>HackTool.KMSpico
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1 =>HackTool.KMSpico
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico
HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch
HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic
HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro
HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark
C:\Program Files (x86)\80 =>Heuristique.Suspect
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\ProgramData\7WMiniPro7 =>PUP.Optional.WdsManPro
C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS
C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic
---\\ Summary of the elements found (7) - 0s
http://www.nicolascoolman.fr/?p=989 =>HackTool.KMSpico
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/pup-wordshark/ =>PUP.Optional.WordShark
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SweetSearch
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic
http://www.nicolascoolman.fr/?p=4664 =>Heuristique.Suspect
http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS
~ End of the scan, 68638 items in 00h05mn50s (1428)(0)