cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.7.14.114 By Nicolas Coolman (2016/07/14)
~ Run by user (Administrator) (2016/07/16 11:52:47)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\user\Desktop\ZHPDiag.txt
~ Report: C:\Users\user\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Enterprise, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (2) - 0s
GCIE: Google Chrome v51.0.2704.106
MSIE: Internet Explorer v9.0.8112.16421

---\\ Windows Product Information (4) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Surveillance software (2) - 2s
Adobe Flash Player 22 PPAPI
Adobe Acrobat Reader DC

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8179.532 MB (79% free)
System Restore: Activé (Enable)
System drive C: has 37 GB () free of 199 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: AHMAD
~ User Name: user
~ Logged in as Administrator

---\\ Enumeration of the disk units (3) - 0s
~ Drive C: has 37 GB free of 199 GB (System)
~ Drive D: has 276 GB free of 276 GB
~ Drive E: has 0 GB free of 0 GB

---\\ State of the Windows Security Center (12) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Search Generic System Files (26) - 1s
[MD5.9DA3B83F80E205B6C601EEE1312FD0A0] - 09/04/2016 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [3231232] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.F084DB6BF35E104F46BE5B355E048D08] - 16/12/2015 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [1392128] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 17/07/2014 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 20/11/2010 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.CF1F6326AC44C42F4615D4BD53188AC5] - 07/01/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [105984] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.10112D850C844606419C79EE24EE6016] - 12/05/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.E47D571FEC2C76E867935109AB2A770C] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262144] =>.Microsoft Corporation
[MD5.47B2D0B31BDC3EBE6090228E2BA3764D] - 11/01/2016 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1684416] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (14) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Certiport Exam Service (CPExamService) . (.Certiport, Inc. - Certiport Desktop Exam Service.) - C:\Program Files (x86)\Certiport\Certiport Exam Service\CPExamSvc.exe
O23 - Service: (FreemakeVideoCapture) . (.Ellora Assets Corp. - CaptureLibService.) - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe =>.Ellora Assets Corp.
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Sentinel LDK License Manager (hasplms) . (.SafeNet Inc. - Sentinel LDK License Manager Service.) - C:\Windows\System32\hasplms.exe =>.SafeNet, Inc.®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX®
O23 - Service: Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation - Intel® PROSet Monitoring Service.) - C:\Windows\System32\IProsetMonitor.exe =>.Intel Corporation®
O23 - Service: Lenovo LBA Event Service (LBAEvent) . (.Lenovo - Lenovo Desktop BIOS Event Utility.) - C:\Program Files (x86)\Lenovo\LBAI\LBAEvent.exe =>.Lenovo
O23 - Service: HVDC License Manager (lmgrd-hvdc) . (.HVDC - Lmgrd-hvdc.) - C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
O23 - Service: MATLAB License Server (MATLAB License Server) . (.Flexera Software LLC - Flexera Software LLC.) - C:\Program Files\MATLAB\R2014a\etc\win64\lmgrd.exe =>.Flexera Software LLC®
O23 - Service: SEB Windows Service (SebWindowsServiceWCF) . (.ETH Zürich - SEB Windows Service with WCF.) - C:\Program Files (x86)\SafeExamBrowser\SebWindowsServiceWCF\SebWindowsServiceWCF.exe
O23 - Service: Sentinel Keys Server (SentinelKeysServer) . (.SafeNet, Inc. - .) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe =>.SafeNet, Inc.®
O23 - Service: Sentinel Protection Server (SentinelProtectionServer) . (.SafeNet, Inc - Sentinel Protection Server for SuperPro and.) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe =>.SafeNet, Inc.®
O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe =>.TeamViewer®

---\\ Services not Microsoft (SR=Run, SS=Stop) (19) - 11s

SR - Auto [25/06/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SS - Demand [15/07/2016] [ 270016] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [28/08/2012] [ 32256] Certiport Exam Service (CPExamService) . (.Certiport, Inc..) - C:\Program Files (x86)\Certiport\Certiport Exam Service\CPExamSvc.exe
SS - Demand [01/10/2014] [ 281488] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX®
SR - Auto [17/04/2014] [ 9216] (FreemakeVideoCapture) . (.Ellora Assets Corp..) - C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe =>.Ellora Assets Corp.
SS - Auto [10/07/2016] [ 154440] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [10/07/2016] [ 154440] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [01/08/2013] [ 4609928] Sentinel LDK License Manager (hasplms) . (.SafeNet Inc..) - C:\Windows\system32\hasplms.exe =>.SafeNet Inc.
SR - Auto [01/10/2014] [ 319376] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation
SR - Auto [09/11/2011] [ 189608] Intel(R) PROSet Monitoring Service (Intel(R) PROSet Monitoring Service) . (.Intel Corporation.) - C:\Windows\system32\IProsetMonitor.exe =>.Intel Corporation
SR - Auto [23/03/2012] [ 15520] Lenovo LBA Event Service (LBAEvent) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\LBAI\LBAEvent.exe =>.Lenovo
SR - Auto [13/12/2012] [ 541184] HVDC License Manager (lmgrd-hvdc) . (.HVDC.) - C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
SS - Auto [27/12/2013] [ 1918768] MATLAB License Server (MATLAB License Server) . (.Flexera Software LLC.) - C:\Program Files\MATLAB\R2014a\etc\win64\lmgrd.exe =>.Flexera Software LLC®
SS - Demand [09/11/2012] [ 87200] (MeDplSvc) . (.Netop Business Solutions A/S.) - C:\Windows\MeDplSvc.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
SR - Auto [21/08/2014] [ 388608] SEB Windows Service (SebWindowsServiceWCF) . (.ETH Zürich.) - C:\Program Files (x86)\SafeExamBrowser\SebWindowsServiceWCF\SebWindowsServiceWCF.exe
SR - Auto [27/04/2007] [ 316992] Sentinel Keys Server (SentinelKeysServer) . (.SafeNet, Inc..) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe =>.SafeNet, Inc.®
SR - Auto [27/04/2007] [ 206400] Sentinel Protection Server (SentinelProtectionServer) . (.SafeNet, Inc.) - C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe =>.SafeNet, Inc.®
SR - Auto [09/04/2015] [ 5261584] TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe =>.TeamViewer®

---\\ Process running (23) - 3s
[MD5.C814D4A0B7B91E936B2DC0828C69ACAB] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [319376] [PID.1212] =>.Intel Corporation - pGFX®
[MD5.68E7DEA59FDEF410BAF29FDB5B7A6EEF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1656] =>.Adobe Systems, Incorporated®
[MD5.D4311168F3AF6FFFE224D75400ACC8B1] - (.Certiport, Inc. - Certiport Desktop Exam Service.) -- C:\Program Files (x86)\Certiport\Certiport Exam Service\CPExamSvc.exe [32256] [PID.1708]
[MD5.073DC9232FEDFC513D4C16E1EC999719] - (.Ellora Assets Corp. - CaptureLibService.) -- C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216] [PID.1900] =>.Ellora Assets Corp.
[MD5.F9BD48630768BD3413972F2AEB49974F] - (.SafeNet Inc. - Sentinel LDK License Manager Service.) -- C:\Windows\System32\hasplms.exe [4609928] [PID.1992] =>.SafeNet, Inc.®
[MD5.4A9EB8AC8959C580ADCADDBDBBEBE033] - (.Intel Corporation - Intel® PROSet Monitoring Service.) -- C:\Windows\System32\IProsetMonitor.exe [189608] [PID.2028] =>.Intel Corporation®
[MD5.97786341DF6562235202D7037AF62D2C] - (.Lenovo - Lenovo Desktop BIOS Event Utility.) -- C:\Program Files (x86)\Lenovo\LBAI\LBAEvent.exe [15520] [PID.1196] =>.Lenovo
[MD5.A924A826E7765BFAA5C265E9F9BA1EAD] - (.HVDC - Lmgrd-hvdc.) -- C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe [541184] [PID.1324]
[MD5.35EDF59C318F6BABDEAA8A35AA357F21] - (.ETH Zürich - SEB Windows Service with WCF.) -- C:\Program Files (x86)\SafeExamBrowser\SebWindowsServiceWCF\SebWindowsServiceWCF.exe [388608] [PID.2068]
[MD5.731D9B3DE4BC0A3E0830B9BF9DBCE2A5] - (.SafeNet, Inc. - .) -- C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [316992] [PID.2116] =>.SafeNet, Inc.®
[MD5.925E88D7C5A51E25769D9CEB4F7F2E85] - (.SafeNet, Inc - Sentinel Protection Server for SuperPro and.) -- C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [206400] [PID.2144] =>.SafeNet, Inc.®
[MD5.E99CD4524662A2DA7C73372C626669D8] - (.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [5261584] [PID.2364] =>.TeamViewer®
[MD5.CC436BB2A26391F3DEBE316F6FB0474F] - (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\user\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008] [PID.2324] =>.Microsoft Corporation®
[MD5.5A77E2A4DD76B0733CF30AAD21AB3587] - (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048] [PID.3288] =>.Renesas Electronics Corporation®
[MD5.6BA8D86746935498D64CB5CF6286F2EB] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.3744] =>.Intel Corporation®
[MD5.4CDD077FC8B0F5051AF6E1BCDC3198A9] - (.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\Program Files (x86)\Print Manager Plus - Client\CheckPages.exe [634880] [PID.3784]
[MD5.FF402950220A952E45A18AC84382918B] - (.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe [14453520] [PID.4636] =>.TeamViewer®
[MD5.F47EA916B980B5F519382E016B4F4D61] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\user\AppData\Roaming\ZHP\ZHPDiag3.exe [2228224] [PID.1484] =>.Nicolas Coolman
[MD5.F736D121FF053AF9E860B91912E4D6F1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [504208] [PID.432] =>.Intel Corporation - pGFX®
[MD5.A923F9AA853AFB3E1C779C6696E344D2] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [246672] [PID.3676] =>.Intel Corporation - pGFX®
[MD5.8EC9EF60E24E88DC5DC74D305925E2CF] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxTray.exe [448912] [PID.2792] =>.Intel Corporation - pGFX®
[MD5.BB2A2652A8B78628E155B0D7A22D7598] - (.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe [229648] [PID.3912] =>.TeamViewer®
[MD5.C4E32635D51CB9CCAE5E960ACAF19344] - (.TeamViewer GmbH - TeamViewer 9.) -- C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe [264464] [PID.3928] =>.TeamViewer®

---\\ Google Chrome, Start,Search,Extensions (14) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://emnikv6fkkb6l1pdpikqd0dhjl15ss1c-a-sites-opensocial.googleusercontent.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://sites.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www-sites-opensocial.googleusercontent.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.jo
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (1) - 0s
M0 - MFSP: prefs.js [user - c01vz6ep.default] http://www.msn.com/?pc=SL5K&ocid=SL5KDHP&osmkt=en-us

---\\ Internet Explorer Extensions, Start, Search (11) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 1s
F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (30)

---\\ Auto loading programs from Registry and folders (15) - 0s
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [NIRegistrationWizard] C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe (.not file.)
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\user\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [{1D8B9681-67B6-447F-902E-2C38ECDE2A95}] . (.Microsoft Corporation - Windows PowerShell.) -- C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [RUSB3MON] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe =>.Renesas Electronics Corporation®
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe =>.Intel Corporation®
O4 - HKLM\..\Wow6432Node\Run: [PrintManagerPlusClient] . (.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\Program Files (x86)\Print Manager Plus - Client\CheckPages.exe
O4 - HKLM\..\Wow6432Node\Run: [MeControl] . (.Netop Business Solutions A/S - Vision Control Manager.) -- C:\Program Files (x86)\Netop\Vision\XL\MeSuAx.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-3767999182-952434696-638456458-1000\..\Run: [NIRegistrationWizard] C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe (.not file.)
O4 - HKUS\S-1-5-21-3767999182-952434696-638456458-1000\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\user\AppData\Local\Microsoft\BingSvc\BingSvc.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-3767999182-952434696-638456458-1000\..\Run: [{1D8B9681-67B6-447F-902E-2C38ECDE2A95}] . (.Microsoft Corporation - Windows PowerShell.) -- C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe =>.Microsoft Corporation

---\\ Global shortcuts Startup (51) - 6s
O4 - GS\Desktop [Administrator]: Electronics Workbench.lnk . (...) C:\Program Files (x86)\EWB512\WEWB32.EXE
O4 - GS\Desktop [Administrator]: Emu8086 v3.05.lnk . (.http://www.emu8086.com - 8086 Assembler and Microprocessor Emulator.) C:\Program Files (x86)\Emu8086v3.05\Emu8086.exe
O4 - GS\Desktop [Administrator]: Qucs.lnk . (...) C:\Program Files (x86)\Qucs\bin\qucs.exe
O4 - GS\Desktop [Administrator]: R-Drive Image.lnk . (.R-Tools Technology - R-Drive Image Application.) C:\Program Files (x86)\R-Drive Image\R-DriveImage.exe {0100000000012057F12DC0} =>.R-Tools Technology
O4 - GS\Desktop [Administrator]: Smarty Uninstaller 4.lnk . (.North American Solutions - .) C:\Program Files (x86)\Smarty Uninstaller 4\SmartyUninstaller.exe
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\user\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Smarty Uninstaller 4.lnk . (.North American Solutions - .) C:\Program Files (x86)\Smarty Uninstaller 4\SmartyUninstaller.exe
O4 - GS\sendTo [Administrator]: Emu8086 v3.05.lnk . (.http://www.emu8086.com - 8086 Assembler and Microprocessor Emulator.) C:\Program Files (x86)\Emu8086v3.05\Emu8086.exe
O4 - GS\sendTo [Administrator]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 9.) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe =>.TeamViewer®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: SSH, Telnet and Rlogin client.lnk . (.Simon Tatham - SSH, Telnet and Rlogin client.) C:\Users\user\Downloads\putty.exe =>.Simon Tatham®
O4 - GS\TaskBar [Administrator]: XLaunch.lnk . (...) C:\Program Files (x86)\Xming\XLaunch.exe
O4 - GS\Desktop [Guest]: Electronics Workbench.lnk . (...) C:\Program Files (x86)\EWB512\WEWB32.EXE
O4 - GS\Desktop [Guest]: Emu8086 v3.05.lnk . (.http://www.emu8086.com - 8086 Assembler and Microprocessor Emulator.) C:\Program Files (x86)\Emu8086v3.05\Emu8086.exe
O4 - GS\Desktop [Guest]: Qucs.lnk . (...) C:\Program Files (x86)\Qucs\bin\qucs.exe
O4 - GS\Desktop [Guest]: R-Drive Image.lnk . (.R-Tools Technology - R-Drive Image Application.) C:\Program Files (x86)\R-Drive Image\R-DriveImage.exe {0100000000012057F12DC0} =>.R-Tools Technology
O4 - GS\Desktop [Guest]: Smarty Uninstaller 4.lnk . (.North American Solutions - .) C:\Program Files (x86)\Smarty Uninstaller 4\SmartyUninstaller.exe
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\user\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Smarty Uninstaller 4.lnk . (.North American Solutions - .) C:\Program Files (x86)\Smarty Uninstaller 4\SmartyUninstaller.exe
O4 - GS\sendTo [Guest]: Emu8086 v3.05.lnk . (.http://www.emu8086.com - 8086 Assembler and Microprocessor Emulator.) C:\Program Files (x86)\Emu8086v3.05\Emu8086.exe
O4 - GS\sendTo [Guest]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 9.) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe =>.TeamViewer®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: SSH, Telnet and Rlogin client.lnk . (.Simon Tatham - SSH, Telnet and Rlogin client.) C:\Users\user\Downloads\putty.exe =>.Simon Tatham®
O4 - GS\TaskBar [Guest]: XLaunch.lnk . (...) C:\Program Files (x86)\Xming\XLaunch.exe
O4 - GS\Desktop [user]: Electronics Workbench.lnk . (...) C:\Program Files (x86)\EWB512\WEWB32.EXE
O4 - GS\Desktop [user]: Emu8086 v3.05.lnk . (.http://www.emu8086.com - 8086 Assembler and Microprocessor Emulator.) C:\Program Files (x86)\Emu8086v3.05\Emu8086.exe
O4 - GS\Desktop [user]: Qucs.lnk . (...) C:\Program Files (x86)\Qucs\bin\qucs.exe
O4 - GS\Desktop [user]: R-Drive Image.lnk . (.R-Tools Technology - R-Drive Image Application.) C:\Program Files (x86)\R-Drive Image\R-DriveImage.exe {0100000000012057F12DC0} =>.R-Tools Technology
O4 - GS\Desktop [user]: Smarty Uninstaller 4.lnk . (.North American Solutions - .) C:\Program Files (x86)\Smarty Uninstaller 4\SmartyUninstaller.exe
O4 - GS\Desktop [user]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\user\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [user]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [user]: Smarty Uninstaller 4.lnk . (.North American Solutions - .) C:\Program Files (x86)\Smarty Uninstaller 4\SmartyUninstaller.exe
O4 - GS\sendTo [user]: Emu8086 v3.05.lnk . (.http://www.emu8086.com - 8086 Assembler and Microprocessor Emulator.) C:\Program Files (x86)\Emu8086v3.05\Emu8086.exe
O4 - GS\sendTo [user]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 9.) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe =>.TeamViewer®
O4 - GS\TaskBar [user]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [user]: SSH, Telnet and Rlogin client.lnk . (.Simon Tatham - SSH, Telnet and Rlogin client.) C:\Users\user\Downloads\putty.exe =>.Simon Tatham®
O4 - GS\TaskBar [user]: XLaunch.lnk . (...) C:\Program Files (x86)\Xming\XLaunch.exe
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Camtasia Studio 8.lnk . (.TechSmith Corporation - Camtasia Studio.) C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe =>.TechSmith Corporation®
O4 - GS\CommonDesktop [Public]: FileZilla Client.lnk . (.FileZilla Project - FileZilla FTP Client.) C:\Program Files (x86)\FileZilla FTP Client\filezilla.exe =>.FileZilla Project
O4 - GS\CommonDesktop [Public]: Freemake Video Downloader.lnk . (.Freemake - Freemake Video Downloader.) C:\Program Files (x86)\Freemake\Freemake Video Downloader\FreemakeVideoDownloader.exe =>.Ellora Assets Corp.®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: LiveWire 2 Unlicensed.lnk . (.Z Systems, Inc. - LiveWire :: The Professional's Data Analysi.) C:\Program Files (x86)\Z Systems Inc\LiveWire 2.3 Unlicensed\LiveWire.exe
O4 - GS\CommonDesktop [Public]: LiveWire 2.lnk . (.Z Systems, Inc. - LiveWire :: The Professional's Data Analysi.) C:\Program Files (x86)\Z Systems Inc\LiveWire 2.3\LiveWire.exe
O4 - GS\CommonDesktop [Public]: Oracle VM VirtualBox.lnk . (.Oracle Corporation - .) C:\Program Files (x86)\Oracle\VirtualBox\VirtualBox.exe =>.Oracle Corporation
O4 - GS\CommonDesktop [Public]: Proteus 8 Professional.lnk . (...) C:\Program Files (x86)\Labcenter Electronics\Proteus 8 Professional\BIN\PDS.EXE
O4 - GS\CommonDesktop [Public]: Safe Exam Browser.lnk . (.Copyright © 2010-2014 ETH Zurich, Educational Develo - Safe Exam Browser.) C:\Program Files (x86)\SafeExamBrowser\SafeExamBrowser.exe
O4 - GS\CommonDesktop [Public]: TeamViewer 9.lnk . (.TeamViewer GmbH - TeamViewer 9.) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe =>.TeamViewer®
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc

---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = Eng.psut.edu.jo
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA28CDCB-25A6-41EC-A92D-8A7788CB18FC}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 =>.Google Public DNS

---\\ Extra protocols (23) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: grooveLocalGWS [64Bits] - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll =>.Microsoft Corporation®
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Software installed (92) - 15s
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FD868C71-6CCF-42E2-B90D-0504AB0036FE} =>.Hewlett-Packard
O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 22 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 22 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824191728} =>.Adobe Systems Incorporated
O42 - Logiciel: Camtasia Studio 8 - (.TechSmith Corporation.) [HKLM][64Bits] -- {BFA04EE0-8240-4667-8D53-45496A901C33} =>.TechSmith Corporation
O42 - Logiciel: Certiport Browser Lockdown 3 - (.Certiport.) [HKLM][64Bits] -- {E4F109B6-9ADB-4B21-BDA8-514423E1B363} =>.Certiport
O42 - Logiciel: Certiport Embedded Browser - (.Certiport.) [HKLM][64Bits] -- {935764B2-B0F4-48EC-912D-A253E31568C0} =>.Certiport
O42 - Logiciel: Certiport Exam Service - (.Certiport.) [HKLM][64Bits] -- {5071E7D5-A846-454B-BD33-885E88F15C88} =>.Certiport
O42 - Logiciel: Cisco Packet Tracer 6.0.1 - (.Cisco Systems, Inc..) [HKLM][64Bits] -- Cisco Packet Tracer 6.0.1_is1 =>.Cisco Systems, Inc.
O42 - Logiciel: Crystal Reports Basic for Visual Studio 2008 - (.Business Objects.) [HKLM][64Bits] -- {AA467959-A1D6-4F45-90CD-11DC57733F32} =>.Business Objects
O42 - Logiciel: Crystal Reports Basic Runtime for Visual Studio 2008 (x64) - (.Business Objects.) [HKLM][64Bits] -- {2BFA9B05-7418-4EDE-A6FC-620427BAAAA3} =>.Business Objects
O42 - Logiciel: DriverIdentifier 4.2 - (.DriverIdentifier.) [HKLM][64Bits] -- {40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1 =>.DriverIdentifier
O42 - Logiciel: Electronics Workbench V5.12 - (...) [HKLM][64Bits] -- Electronics_Workbench_V5
O42 - Logiciel: Emu8086 version 3.05 - (.Emu8086, Inc..) [HKLM][64Bits] -- Emu8086 v3.05_is1
O42 - Logiciel: FileZilla Client 3.8.0 - (.Tim Kosse.) [HKLM][64Bits] -- FileZilla Client =>.Tim Kosse
O42 - Logiciel: FormatFactory 3.2.0.1 - (.Free Time.) [HKLM][64Bits] -- FormatFactory =>.Free Time
O42 - Logiciel: Freemake Video Downloader - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Downloader_is1 =>.Ellora Assets Corporation
O42 - Logiciel: GFortran 4.2.1 - (.Manitoba Hydro International.) [HKLM][64Bits] -- {42100FCC-0409-11D5-8481-0050BAC22C49}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: HI-TECH C51-lite V9.60PL0 - (.HI-TECH Software.) [HKLM][64Bits] -- HC51 9.60PL0 =>.HI-TECH Software
O42 - Logiciel: HI-TECH PICC lite V9.60PL0 - (.HI-TECH Software.) [HKLM][64Bits] -- PICC 9.60PL0 =>.HI-TECH Software
O42 - Logiciel: HyperTerminal Private Edition v7.0 - (...) [HKLM][64Bits] -- HTPE3
O42 - Logiciel: Intel(R) Network Connections 16.8.46.0 - (.Intel.) [HKLM][64Bits] -- {6438A99C-A37E-4758-A0AE-95F8A63AAFF5} =>.Intel
O42 - Logiciel: Intel(R) Network Connections 16.8.46.0 - (.Intel.) [HKLM][64Bits] -- PROSetDX =>.Intel
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX®
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2} =>.Intel Corporation®
O42 - Logiciel: Java 7 Update 71 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF} =>.Oracle
O42 - Logiciel: Java 8 Update 40 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218040F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: LBAI - (.Lenovo.) [HKLM][64Bits] -- {C5C91B7B-38A6-40B7-84D6-E44885E44B13} =>.Lenovo
O42 - Logiciel: LiveWire 2.3 - (...) [HKLM][64Bits] -- {7861715C-6FDC-4FF9-BCBD-2C62A282912F}
O42 - Logiciel: LiveWire 2.3 Unlicensed - (...) [HKLM][64Bits] -- {2063A06C-726F-494A-B8F5-747474EC3901}
O42 - Logiciel: Manitoba HVDC Research Centre Licence Manager - (.Manitoba HVDC Research Centre Inc.) [HKLM][64Bits] -- {103100DC-02BF-4C3E-9BDB-0050BAC22C49}
O42 - Logiciel: MATLAB R2012b - (.The MathWorks, Inc..) [HKLM][64Bits] -- Matlab R2012b {32FAAADB10AD6DC7715ABE17378E7518} =>.The MathWorks, Inc.
O42 - Logiciel: Microsoft .NET Compact Framework 2.0 SP2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A} =>.Microsoft Corporation
O42 - Logiciel: Microsoft .NET Compact Framework 3.5 - (.Microsoft Corporation.) [HKLM][64Bits] -- {291B3A3B-F808-45B8-8113-DF232FCB6C82} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Device Emulator (64 bit) version 3.0 - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {EF8B1A2E-9CCB-3AB2-91E3-4EEDAB1294E1} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Document Explorer 2008 - (.Microsoft Corporation.) [HKLM][64Bits] -- {6753B40C-0FBD-3BED-8A9D-0ACAC2DCD85D} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Document Explorer 2008 - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Document Explorer 2008 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Macro Assembler (MASM) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0D36479-04C5-4011-B2F9-FA23C9700157} =>.Microsoft Corporation
O42 - Logiciel: Microsoft MSDN 2005 Express Edition - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- {23E5C72C-CC08-4EE0-9CC2-D925B232B331} =>.Microsoft Corporation
O42 - Logiciel: Microsoft MSDN 2005 Express Edition - ENU - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft MSDN 2005 Express Edition - ENU =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {3061DCA5-2D0B-48F9-800F-9D7C1FEB5E78} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Software Update for Web Folders (English) 12 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90120000-0010-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools - enu - (.Microsoft Corporation.) [HKLM][64Bits] -- {29C93182-34F6-3275-A18D-59326851CD57} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DE154DF-A55E-4FA5-BE59-32E78FCACF3E} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and I - (.Microsoft Corporation.) [HKLM][64Bits] -- {9aa5f39c-a8de-46b0-919a-0248f8bc8490} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 SP1 Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {62EED300-E841-4083-A1D6-60B906271804} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 SP1 Win32 Tools - (.Microsoft Corporation.) [HKLM][64Bits] -- {A992BBAA-723D-4574-A07F-983BF8FAA3E1} =>.Microsoft Corporation
O42 - Logiciel: Netop School Student - (.Danware Data A/S.) [HKLM][64Bits] -- {00000028-A220-11DE-8602-0417A1A01290}
O42 - Logiciel: Oracle VM VirtualBox 4.1.22 - (.Oracle Corporation.) [HKLM][64Bits] -- {883F56F3-B9E7-4B07-8F6D-2BEF6291DF16} =>.Oracle Corporation
O42 - Logiciel: Print Manager Plus - Client - (.Software Shelf International, Inc..) [HKLM][64Bits] -- {DA6177B2-FF5D-46EA-8633-359C358307C5}
O42 - Logiciel: Proteus 8 Professional - (.Labcenter Electronics.) [HKLM][64Bits] -- {B8A525DB-6906-4F0C-92D7-33D55345E4E8} =>.Labcenter Electronics
O42 - Logiciel: PSCAD X4 Professional/Educational - (.Manitoba Hydro International.) [HKLM][64Bits] -- {45300F86-B87D-11D8-8496-0050BAC22C49}
O42 - Logiciel: Qcontrol - (.A.N.D. Technologies.) [HKLM][64Bits] -- {F8B65774-E895-48EE-9405-B145869E779D}
O42 - Logiciel: Quite Universal Circuit Simulator 0.0.10 binary package for Win - (.the Qucs team.) [HKLM][64Bits] -- Qucs_is1
O42 - Logiciel: R-Drive Image 4.5 - (.R-Tools Technology Inc..) [HKLM][64Bits] -- R-Drive Image 4.5NSIS =>.R-tools technology Inc.
O42 - Logiciel: Remo Recover 4.0 - (.Remo Software.) [HKLM][64Bits] -- {A573D759-F894-448D-A420-3A9C31879F88}_is1 =>.Remo Software®
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- {17528CE4-C333-48FB-A9E4-D841E795CDCE} =>.Renesas Electronics Corporation
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE} =>.Renesas Electronics Corporation
O42 - Logiciel: SafeExamBrowser - (.ETH Zurich.) [HKLM][64Bits] -- {B230D1C1-00BB-4A64-A86C-A2A0FA8259EF}
O42 - Logiciel: Sentinel Protection Installer 7.4.0 - (.SafeNet, Inc..) [HKLM][64Bits] -- {5A180ED5-0AC1-410A-B790-5E0319CD0A93} =>.SafeNet, Inc.
O42 - Logiciel: Sentinel System Driver Installer 7.5.8 - (.SafeNet, Inc..) [HKLM][64Bits] -- {75BC36E7-AC24-4F35-8AE0-B5885F887744} =>.SafeNet, Inc.
O42 - Logiciel: Smarty Uninstaller 4 - (.North American Solutions.) [HKLM][64Bits] -- {8C93EE3B-3DC3-46A8-92D5-DE0B7F185722}_is1 {00906D32D78DB74FA064E3FC6B494C5F28}
O42 - Logiciel: SQL Server System CLR Types - (.Microsoft Corporation.) [HKLM][64Bits] -- {342D4AD7-EC4C-4EC8-AEA6-E70F5905A490} =>.Microsoft Corporation
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 9 =>.TeamViewer®
O42 - Logiciel: Time Stopper - (.DilSoft.) [HKLM][64Bits] -- Time Stopper3.12
O42 - Logiciel: VC Runtimes MSI - (.Microsoft.) [HKLM][64Bits] -- {FF29527A-44CD-3422-945E-981A13584000} =>.Microsoft
O42 - Logiciel: Vision - (.Netop Business Solutions A/S.) [HKLM][64Bits] -- {1E895E65-0AC5-11DD-97E2-000A94026593}
O42 - Logiciel: Visual C++ 2008 IA64 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM][64Bits] -- {22E23C71-C27A-3F30-8849-BB6129E50679} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 IA64 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM][64Bits] -- {22E23C71-C27A-3F30-8849-BB6129E50679}.vc_i64runtime_30729_01 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x64 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0DF3AE91-E533-3960-8516-B23737F8B7A2} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x64 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM][64Bits] -- {0DF3AE91-E533-3960-8516-B23737F8B7A2}.vc_x64runtime_30729_01 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729.4148) - (.Microsoft Corporation.) [HKLM][64Bits] -- {7B33F480-496D-334A-BAC2-205DEC0CBC2D} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x86 Runtime - (v9.0.30729.6161) - (.Microsoft Corporation.) [HKLM][64Bits] -- {3F8D9A47-9C50-3F46-8F12-B92DD5CA0A2E} =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.01 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.4148 - (.Microsoft Corporation.) [HKLM][64Bits] -- {7B33F480-496D-334A-BAC2-205DEC0CBC2D}.vc_x86runtime_30729_4148 =>.Microsoft Corporation
O42 - Logiciel: Visual C++ 2008 x86 Runtime - v9.0.30729.6161 - (.Microsoft Corporation.) [HKLM][64Bits] -- {3F8D9A47-9C50-3F46-8F12-B92DD5CA0A2E}.vc_x86runtime_30729_6161 =>.Microsoft Corporation
O42 - Logiciel: Visual Studio .NET Prerequisites - English - (.Microsoft Corporation.) [HKLM][64Bits] -- {D3E39E77-0EB4-36FB-B97A-8C8AB21B9A45} =>.Microsoft Corporation
O42 - Logiciel: Visual Studio 2005 Tools for Office Second Edition Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2005 Tools for Office Runtime =>.Microsoft Corporation®
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6} =>.Microsoft Corporation
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- Visual Studio Tools for the Office system 3.0 Runtime =>.Microsoft Corporation®
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949 - (.Microsoft Corporation.) [HKLM][64Bits] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258 =>.Microsoft Corporation
O42 - Logiciel: Windows Mobile 5.0 SDK R2 for Pocket PC - (.Microsoft Corporation.) [HKLM][64Bits] -- {6C9F6D23-E9AD-43C9-B43A-011562AAF876} =>.Microsoft Corporation
O42 - Logiciel: Windows Mobile 5.0 SDK R2 for Smartphone - (.Microsoft Corporation.) [HKLM][64Bits] -- {9656F3AC-6BA9-43F0-ABED-F214B5DAB27B} =>.Microsoft Corporation
O42 - Logiciel: WinRAR 4.20 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH
O42 - Logiciel: Xming 6.9.0.31 - (.Colin Harrison.) [HKLM][64Bits] -- Xming_is1 =>.Colin Harrison

---\\ HKCU & HKLM Software Keys (108) - 15s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\Aladdin Knowledge Systems
HKLM\SOFTWARE\Wow6432Node\AppDataLow
HKLM\SOFTWARE\Wow6432Node\Autodesk
HKLM\SOFTWARE\Wow6432Node\AVG
HKLM\SOFTWARE\Wow6432Node\AviSynth
HKLM\SOFTWARE\Wow6432Node\Business Objects
HKLM\SOFTWARE\Wow6432Node\Caphyon
HKLM\SOFTWARE\Wow6432Node\Certiport
HKLM\SOFTWARE\Wow6432Node\ChrisPC Proxy
HKLM\SOFTWARE\Wow6432Node\chroomium =>PUP.Optional.Chroomium
HKLM\SOFTWARE\Wow6432Node\CLSID
HKLM\SOFTWARE\Wow6432Node\CLSYSTEM
HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions
HKLM\SOFTWARE\Wow6432Node\Cygwin
HKLM\SOFTWARE\Wow6432Node\EA Games
HKLM\SOFTWARE\Wow6432Node\EnigmaSoftwareGroup
HKLM\SOFTWARE\Wow6432Node\Faronics
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Free YouTube Downloader
HKLM\SOFTWARE\Wow6432Node\Freemake
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard
HKLM\SOFTWARE\Wow6432Node\HI-TECH Software
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\InteractiveImageTechnologiesLtd.
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Kaydara
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\Labcenter Electronics
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Manitoba HVDC Research Centre Inc
HKLM\SOFTWARE\Wow6432Node\MHRC
HKLM\SOFTWARE\Wow6432Node\MicroQuill
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\National Instruments
HKLM\SOFTWARE\Wow6432Node\Netop
HKLM\SOFTWARE\Wow6432Node\Ntpad
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\R-TT
HKLM\SOFTWARE\Wow6432Node\Rainbow Technologies
HKLM\SOFTWARE\Wow6432Node\Remo Software
HKLM\SOFTWARE\Wow6432Node\Safenet Sentinel
HKLM\SOFTWARE\Wow6432Node\Software Shelf International Inc
HKLM\SOFTWARE\Wow6432Node\Symantec
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\TechSmith
HKLM\SOFTWARE\Wow6432Node\TuneUp
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\WafCX
HKLM\SOFTWARE\Wow6432Node\Wondershare
HKLM\SOFTWARE\Wow6432Node\Z Systems Inc
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Autodesk
HKCU\SOFTWARE\Autodesk, Inc.
HKCU\SOFTWARE\AVG
HKCU\SOFTWARE\Beige Bag Software
HKCU\SOFTWARE\chroomium =>PUP.Optional.Chroomium
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\Earth Resource Mapping
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HILGRAEVE INC
HKCU\SOFTWARE\InstallPath
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Labcenter Electronics
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Manitoba HVDC Research Centre
HKCU\SOFTWARE\Manitoba HVDC Research Centre Inc
HKCU\SOFTWARE\MathWorks
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\National Instruments
HKCU\SOFTWARE\Netop
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\Oracle
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\R-TT
HKCU\SOFTWARE\SimonTatham
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Vivio
HKCU\SOFTWARE\VMware, Inc.
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Your Freedom
HKCU\SOFTWARE\Z Systems Inc
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contents of the Common Files folders (265) - 308s
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\Business Objects
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Common Files
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 26/03/2014 - [0] D -- C:\Program Files\Google
O43 - CFD: 02/03/2015 - [] D -- C:\Program Files\Intel =>.Intel Corporation®
O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 21/05/2015 - [] D -- C:\Program Files\MATLAB =>.The MathWorks, Inc.®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\Microsoft Device Emulator
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\Microsoft SDKs =>.Microsoft Corporation®
O43 - CFD: 11/07/2016 - [] D -- C:\Program Files\Microsoft Security Client =>.Microsoft Corporation®
O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Microsoft Silverlight =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\Microsoft SQL Server =>.Microsoft Corporation®
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files\Microsoft Visual Studio 8 =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files\Microsoft Visual Studio 9.0 =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files\Oracle =>.Oracle Corporation®
O43 - CFD: 30/06/2015 - [] D -- C:\Program Files\paint.net
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 28/10/2014 - [] D -- C:\Program Files\Remo Recover 4.0 =>.Remo Software®
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files\Smarty Uninstaller 4
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 03/03/2015 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 13/07/2016 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 12/07/2016 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 10/04/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\ArcGIS
O43 - CFD: 09/09/2012 - [0] D -- C:\Program Files (x86)\AutoCAD 2004
O43 - CFD: 25/09/2012 - [] D -- C:\Program Files (x86)\Autodesk {09542A}
O43 - CFD: 29/07/2015 - [] D -- C:\Program Files (x86)\AVG
O43 - CFD: 11/02/2016 - [0] D -- C:\Program Files (x86)\Avira
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\B2 Spice A_D v4 Lite
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Business Objects {3F8D01A6BC17F0B9679A1FBA0CEDD463}
O43 - CFD: 30/06/2015 - [] D -- C:\Program Files (x86)\CarProKey
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\CE Remote Tools =>.Microsoft Corporation®
O43 - CFD: 19/10/2014 - [] D -- C:\Program Files (x86)\Certiport
O43 - CFD: 06/08/2014 - [] D -- C:\Program Files (x86)\Cisco Packet Tracer 6.0.1
O43 - CFD: 11/07/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 10/09/2012 - [] D -- C:\Program Files (x86)\Driver Identifier
O43 - CFD: 25/11/2012 - [] D -- C:\Program Files (x86)\Emu8086v3.05
O43 - CFD: 11/07/2016 - [] D -- C:\Program Files (x86)\Enigma Software Group
O43 - CFD: 20/09/2012 - [] D -- C:\Program Files (x86)\EWB512
O43 - CFD: 10/09/2012 - [] D -- C:\Program Files (x86)\Faronics
O43 - CFD: 01/04/2014 - [] D -- C:\Program Files (x86)\FileZilla FTP Client
O43 - CFD: 05/05/2014 - [] D -- C:\Program Files (x86)\Freemake =>.Microsoft Corporation®
O43 - CFD: 31/08/2014 - [] D -- C:\Program Files (x86)\FreeTime
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\GFortran =>.SafeNet, Inc.®
O43 - CFD: 10/07/2016 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\HI-TECH Software
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\HTML Help Workshop =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\HVDC Lmgr =>.SafeNet, Inc.®
O43 - CFD: 06/01/2015 - [] D -- C:\Program Files (x86)\HyperTerminal
O43 - CFD: 23/08/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation®
O43 - CFD: 12/07/2016 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 08/03/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 20/08/2014 - [] D -- C:\Program Files (x86)\Labcenter Electronics
O43 - CFD: 10/09/2012 - [] D -- C:\Program Files (x86)\Lenovo {6A5F0C4B9343CA692BEBDF78E1A26409}
O43 - CFD: 12/11/2014 - [] D -- C:\Program Files (x86)\MATLAB
O43 - CFD: 07/12/2014 - [] D -- C:\Program Files (x86)\Microsoft =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Microsoft Device Emulator =>.Microsoft Corporation®
O43 - CFD: 02/03/2015 - [0] D -- C:\Program Files (x86)\Microsoft Lync
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Microsoft SDKs =>.Microsoft Corporation®
O43 - CFD: 11/07/2016 - [] D -- C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 12/07/2016 - [] D -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation®
O43 - CFD: 02/03/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition {610B31F7000000000008}
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0 =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Microsoft Web Designer Tools
O43 - CFD: 02/03/2015 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation®
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation®
O43 - CFD: 22/04/2014 - [] D -- C:\Program Files (x86)\National Instruments
O43 - CFD: 25/09/2012 - [0] D -- C:\Program Files (x86)\NeoSmart Technologies
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files (x86)\Netop {62058D1B4CEFC5A3D0C056EE9133FA19}
O43 - CFD: 11/07/2016 - [] D -- C:\Program Files (x86)\Opera
O43 - CFD: 12/09/2012 - [] D -- C:\Program Files (x86)\Print Manager Plus - Client
O43 - CFD: 17/04/2014 - [] D -- C:\Program Files (x86)\PSCAD45
O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\Qcontrol
O43 - CFD: 03/11/2014 - [] D -- C:\Program Files (x86)\Qucs
O43 - CFD: 03/12/2014 - [] D -- C:\Program Files (x86)\QuickTime =>Riskware.QuickTime
O43 - CFD: 26/03/2014 - [] D -- C:\Program Files (x86)\R-Drive Image
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\Renesas Electronics =>.Renesas Electronics Corporation®
O43 - CFD: 19/11/2014 - [] D -- C:\Program Files (x86)\SafeExamBrowser
O43 - CFD: 29/03/2014 - [] D -- C:\Program Files (x86)\SafeNet Sentinel
O43 - CFD: 24/02/2015 - [] D -- C:\Program Files (x86)\Symantec
O43 - CFD: 10/04/2014 - [] D -- C:\Program Files (x86)\TeamViewer =>.TeamViewer®
O43 - CFD: 03/12/2014 - [] D -- C:\Program Files (x86)\TechSmith =>.TechSmith Corporation®
O43 - CFD: 26/03/2014 - [] D -- C:\Program Files (x86)\Time Stopper
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 03/03/2015 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 12/07/2016 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Windows Mobile 5.0 SDK R2 =>.Microsoft Corporation®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 10/04/2016 - [] D -- C:\Program Files (x86)\Xming
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Z Systems Inc
O43 - CFD: 03/03/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/07/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 06/08/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Packet Tracer
O43 - CFD: 10/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Identifier
O43 - CFD: 09/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronics Workbench
O43 - CFD: 09/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emu8086 version 3.05
O43 - CFD: 01/04/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
O43 - CFD: 05/05/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 21/11/2010 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 06/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HyperTerminal Private Edition
O43 - CFD: 21/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveWire 2
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveWire 2 Unlicensed
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 10/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 12/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005
O43 - CFD: 16/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2005
O43 - CFD: 13/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v6.0A
O43 - CFD: 15/12/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netop School
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Netop Vision
O43 - CFD: 09/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
O43 - CFD: 20/08/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proteus 8 Professional
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSCAD
O43 - CFD: 03/11/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qucs
O43 - CFD: 10/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R-Drive Image
O43 - CFD: 28/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remo Recover
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smarty Uninstaller 4
O43 - CFD: 22/04/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/11/2010 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 03/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
O43 - CFD: 16/07/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual C++ 2005 Express Edition
O43 - CFD: 09/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 10/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xming
O43 - CFD: 10/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Freedom
O43 - CFD: 10/04/2016 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Application Data
O43 - CFD: 25/09/2012 - [] D -- C:\ProgramData\Autodesk
O43 - CFD: 29/07/2015 - [] D -- C:\ProgramData\AVG
O43 - CFD: 05/05/2014 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 29/12/2013 - [0] D -- C:\ProgramData\CTL3D32.DLL
O43 - CFD: 13/11/2013 - [] D -- C:\ProgramData\Danware Data
O43 - CFD: 14/07/2009 - [] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\FNP
O43 - CFD: 05/05/2014 - [] D -- C:\ProgramData\Freemake
O43 - CFD: 13/01/2016 - [] D -- C:\ProgramData\Google
O43 - CFD: 23/02/2016 - [] D -- C:\ProgramData\GroupPolicy
O43 - CFD: 02/01/2013 - [] D -- C:\ProgramData\InstallMate =>.Superfluous.Tarma
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Isolated Storage
O43 - CFD: 20/08/2014 - [] D -- C:\ProgramData\Labcenter Electronics =>PUP.Optional.BundleInstaller
O43 - CFD: 27/10/2014 - [] D -- C:\ProgramData\Licenses
O43 - CFD: 13/07/2016 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 06/03/2013 - [] D -- C:\ProgramData\Manitoba HVDC Research Centre
O43 - CFD: 16/07/2016 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 16/07/2016 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 22/04/2014 - [] D -- C:\ProgramData\National Instruments
O43 - CFD: 16/02/2016 - [] D -- C:\ProgramData\Netop
O43 - CFD: 09/03/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 11/02/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 27/03/2014 - [] D -- C:\ProgramData\PreEmptive Solutions
O43 - CFD: 03/12/2014 - [] D -- C:\ProgramData\regid.1995-08.com.techsmith
O43 - CFD: 19/11/2014 - [0] D -- C:\ProgramData\SafeExamBrowser =>PUP.Optional.SpeedBrowser
O43 - CFD: 31/03/2013 - [] D -- C:\ProgramData\SafeNet Sentinel
O43 - CFD: 23/02/2016 - [] D -- C:\ProgramData\Smarty Uninstaller 4
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 30/03/2014 - [] D -- C:\ProgramData\Sun
O43 - CFD: 30/06/2015 - [] D -- C:\ProgramData\Symantec
O43 - CFD: 03/12/2014 - [] D -- C:\ProgramData\TechSmith
O43 - CFD: 30/10/2014 - [] AD -- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Wondershare
O43 - CFD: 02/01/2013 - [] D -- C:\ProgramData\WoW Worldwide Software LTD
O43 - CFD: 10/04/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Common Files\Aladdin Shared
O43 - CFD: 25/09/2012 - [] D -- C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 16/09/2012 - [] D -- C:\Program Files (x86)\Common Files\Bcgsoft
O43 - CFD: 03/03/2015 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 31/03/2013 - [] D -- C:\Program Files (x86)\Common Files\IBM
O43 - CFD: 27/03/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 02/03/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 08/03/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Merge Modules
O43 - CFD: 16/07/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 16/02/2016 - [] D -- C:\Program Files (x86)\Common Files\Netop
O43 - CFD: 29/03/2014 - [] D -- C:\Program Files (x86)\Common Files\SafeNet Sentinel
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 09/09/2012 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 03/12/2014 - [] D -- C:\Program Files (x86)\Common Files\TechSmith Shared
O43 - CFD: 11/07/2016 - [] D -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\Adobe
O43 - CFD: 25/09/2012 - [] D -- C:\Users\user\AppData\Roaming\Autodesk
O43 - CFD: 11/02/2016 - [] D -- C:\Users\user\AppData\Roaming\AVG
O43 - CFD: 10/09/2012 - [] D -- C:\Users\user\AppData\Roaming\driveridentifier
O43 - CFD: 12/07/2016 - [] D -- C:\Users\user\AppData\Roaming\FileZilla
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\Identities
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\Macromedia
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\MathWorks
O43 - CFD: 21/11/2010 - [0] D -- C:\Users\user\AppData\Roaming\Media Center Programs
O43 - CFD: 16/07/2016 - [] SD -- C:\Users\user\AppData\Roaming\Microsoft
O43 - CFD: 16/02/2016 - [] D -- C:\Users\user\AppData\Roaming\Mozilla
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\National Instruments
O43 - CFD: 11/02/2016 - [] D -- C:\Users\user\AppData\Roaming\Netop
O43 - CFD: 16/02/2016 - [] D -- C:\Users\user\AppData\Roaming\Opera Software
O43 - CFD: 21/02/2016 - [] D -- C:\Users\user\AppData\Roaming\SafeExamBrowser
O43 - CFD: 01/04/2013 - [] D -- C:\Users\user\AppData\Roaming\SPSSInc
O43 - CFD: 05/05/2016 - [] D -- C:\Users\user\AppData\Roaming\Subversion
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\WinRAR
O43 - CFD: 16/07/2016 - [] D -- C:\Users\user\AppData\Roaming\ZHP
O43 - CFD: 10/04/2016 - [] D -- C:\Users\user\AppData\Local\Adobe
O43 - CFD: 09/09/2012 - [0] SHD -- C:\Users\user\AppData\Local\Application Data
O43 - CFD: 21/02/2016 - [] D -- C:\Users\user\AppData\Local\Apps
O43 - CFD: 10/09/2012 - [] D -- C:\Users\user\AppData\Local\Autodesk
O43 - CFD: 11/02/2016 - [] D -- C:\Users\user\AppData\Local\Avg
O43 - CFD: 10/09/2012 - [] D -- C:\Users\user\AppData\Local\cache
O43 - CFD: 10/04/2016 - [] D -- C:\Users\user\AppData\Local\CEF
O43 - CFD: 09/05/2016 - [] D -- C:\Users\user\AppData\Local\CrashDumps
O43 - CFD: 21/02/2016 - [0] D -- C:\Users\user\AppData\Local\Deployment
O43 - CFD: 25/11/2012 - [0] D -- C:\Users\user\AppData\Local\Diagnostics
O43 - CFD: 27/03/2016 - [0] D -- C:\Users\user\AppData\Local\ElevatedDiagnostics
O43 - CFD: 10/07/2016 - [] D -- C:\Users\user\AppData\Local\Google
O43 - CFD: 09/09/2012 - [0] SHD -- C:\Users\user\AppData\Local\History
O43 - CFD: 01/04/2013 - [] D -- C:\Users\user\AppData\Local\IBM
O43 - CFD: 06/03/2013 - [] D -- C:\Users\user\AppData\Local\IsolatedStorage
O43 - CFD: 01/04/2013 - [] D -- C:\Users\user\AppData\Local\javasharedresources
O43 - CFD: 21/02/2016 - [] D -- C:\Users\user\AppData\Local\Labcenter Electronics
O43 - CFD: 06/03/2013 - [] D -- C:\Users\user\AppData\Local\Manitoba HVDC Research Centre
O43 - CFD: 16/07/2016 - [] D -- C:\Users\user\AppData\Local\Microsoft
O43 - CFD: 09/09/2012 - [0] D -- C:\Users\user\AppData\Local\Microsoft Help
O43 - CFD: 16/02/2016 - [] D -- C:\Users\user\AppData\Local\Mozilla
O43 - CFD: 25/09/2012 - [] D -- C:\Users\user\AppData\Local\NeoSmart_Technologies
O43 - CFD: 11/07/2016 - [0] D -- C:\Users\user\AppData\Local\Opera Software
O43 - CFD: 16/02/2016 - [] D -- C:\Users\user\AppData\Local\Programs
O43 - CFD: 21/02/2016 - [] D -- C:\Users\user\AppData\Local\SafeExamBrowser
O43 - CFD: 16/07/2016 - [] D -- C:\Users\user\AppData\Local\Temp
O43 - CFD: 09/09/2012 - [0] SHD -- C:\Users\user\AppData\Local\Temporary Internet Files
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Local\VirtualStore
O43 - CFD: 10/02/2015 - [] D -- C:\Users\user\AppData\Local\Wondershare
O43 - CFD: 16/02/2016 - [0] D -- C:\Users\user\AppData\Local\Programs\Common
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 12/07/2016 - [] RD -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 09/09/2012 - [0] D -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electronics Workbench
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HI-TECH Software
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 10/09/2012 - [0] D -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\R-Drive Image
O43 - CFD: 12/07/2016 - [] RD -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 09/09/2012 - [] D -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 29/07/2015 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Avg
O43 - CFD: 17/12/2012 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft

---\\ ShellIconOverlayIdentifiers (SIOI) (7) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ ShareTools MSconfig StartupReg (4) - 1s
O53 - SMSR:HKLM\...\startupreg\GrooveMonitor [Key] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\HDDefrag [Key] . (...) -- C:\Users\afayez\AppData\Roaming\Adobe\Flash Player\File Cache\file.vbs C:\Users\afayez\AppData\Roaming\Adobe\Flash Player\File Cache\hddef.bat (.not file.)
O53 - SMSR:HKLM\...\startupreg\SisPlugin [Key] . (...) -- C:\Users\afayez\AppData\Roaming\SisPlugin\SisPlugin.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Wondershare Helper Compact.exe [Key] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe =>.Wondershare

---\\ System Drivers List (70) - 7s
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2013/08/01 15:11:56 A . (.SafeNet Inc. - Safenet Inc. Sentinel Data Filter Driver.) -- C:\Windows\System32\drivers\aksdf.sys [91784] =>.SafeNet, Inc.®
O58 - SDL:2013/08/01 15:11:56 A . (.SafeNet Inc. - Ancillary Function Driver.) -- C:\Windows\System32\drivers\aksfridge.sys [140736] =>.SafeNet, Inc.®
O58 - SDL:2009/07/14 04:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2009/06/10 23:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2014/01/24 20:06:48 A . (.Blue Coat Systems, Inc. - K9 Web Protection Driver (WFP).) -- C:\Windows\System32\drivers\bckd.sys [126168] {601E5D574BBD33EE8DF5DD661AB8ADE5} =>.Blue Coat Systems, Inc.
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 04:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2009/07/14 04:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2012/01/11 12:30:58 A . (.Intel Corporation - Intel(R) Gigabit Adapter NDIS 6.x driver.) -- C:\Windows\System32\drivers\e1c62x64.sys [360624] =>.Intel Corporation®
O58 - SDL:2009/07/14 04:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2016/07/11 08:45:21 A . (...) -- C:\Windows\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC®
O58 - SDL:2009/06/10 23:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2009/09/21 20:26:10 A . (.Symantec Corporation - Symantec Corporation Generic Mount.) -- C:\Windows\System32\drivers\GenericMount.sys [54320] =>.Symantec Corporation®
O58 - SDL:2013/08/01 15:11:56 A . (.SafeNet Inc. - Sentinel Hardlock Device Driver for Windows.) -- C:\Windows\System32\drivers\hardlock.sys [331328] =>.SafeNet, Inc.®
O58 - SDL:2009/06/10 23:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2012/07/17 18:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784] =>.Intel Corporation®
O58 - SDL:2010/11/21 06:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2011/09/13 05:39:40 A . (.Intel Corporation - NDIS 6.1 Advanced Networking Services..) -- C:\Windows\System32\drivers\iANSW60e.sys [162152] =>.Intel Corporation®
O58 - SDL:2011/03/11 09:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2014/10/01 19:54:16 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [3828152] =>.Intel Corporation - pGFX®
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2011/11/09 16:27:18 A . (.Intel Corporation - Intel(R) Network Adapter Diagnostic Driver.) -- C:\Windows\System32\drivers\iqvw64e.sys [32936] =>.Intel Corporation®
O58 - SDL:2012/03/27 01:13:18 A . (.Intel Corporation - Intel(R) USB 3.0 Host Controller Switch Dri.) -- C:\Windows\System32\drivers\iusb3hcs.sys [19224] =>.Intel Corporation®
O58 - SDL:2012/03/27 01:13:20 A . (.Intel Corporation - Intel(R) USB 3.0 Hub Driver.) -- C:\Windows\System32\drivers\iusb3hub.sys [356632] =>.Intel Corporation®
O58 - SDL:2012/03/27 01:13:20 A . (.Intel Corporation - Intel(R) USB 3.0 eXtensible Host Controller.) -- C:\Windows\System32\drivers\iusb3xhc.sys [789272] =>.Intel Corporation®
O58 - SDL:2011/12/08 16:18:38 A . (.Lenovo - Lenovo Desktop BIOS Driver.) -- C:\Windows\System32\drivers\LBAI.sys [9600] =>.Lenovo
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2012/11/09 18:26:18 A . (.Netop Business Solutions - Vision ThinShare display miniport mirror dr.) -- C:\Windows\System32\drivers\meddmrr.sys [11384] {62058D1B4CEFC5A3D0C056EE9133FA19}
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2016/02/16 16:46:29 A . (.Netop Business Solutions A/S - Vision Filter Keyboard Driver.) -- C:\Windows\System32\drivers\mekbd.sys [22176] {62058D1B4CEFC5A3D0C056EE9133FA19}
O58 - SDL:2016/02/16 16:46:29 A . (.Netop Business Solutions A/S - Vision Filter Mouse Driver.) -- C:\Windows\System32\drivers\memice.sys [20640] {62058D1B4CEFC5A3D0C056EE9133FA19}
O58 - SDL:2012/11/09 20:28:40 A . (.Netop Business Solutions A/S - Vision Network Driver.) -- C:\Windows\System32\drivers\MeNet.sys [74912] {62058D1B4CEFC5A3D0C056EE9133FA19}
O58 - SDL:2009/07/14 04:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2011/03/11 09:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2009/02/12 15:11:26 A . (.EldoS Corporation - RawDisk Driver. Allows write access to file.) -- C:\Windows\System32\drivers\rsdrvx64.sys [26024] =>.EldoS Corporation®
O58 - SDL:2009/06/10 23:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/09/17 07:05:02 A . (.SafeNet, Inc. - Sentinel System Driver (NT Parallel x64 dri.) -- C:\Windows\System32\drivers\sentinel64.sys [145448] =>.SafeNet, Inc.®
O58 - SDL:2009/07/14 03:00:40 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208] =>.Brother Industries Ltd.
O58 - SDL:2009/07/14 04:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2012/12/11 10:43:42 A . (.SafeNet, Inc. - Sentinel System USB Driver.) -- C:\Windows\System32\drivers\SNTUSB64.SYS [63568] =>.SafeNet, Inc.®
O58 - SDL:2009/07/14 04:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2012/09/20 11:46:26 A . (.TrueCrypt Foundation - TrueCrypt Driver.) -- C:\Windows\System32\drivers\truecrypt.sys [231376] =>.TrueCrypt Foundation®
O58 - SDL:2012/09/07 17:38:18 A . (.Oracle Corporation - VirtualBox Support Driver.) -- C:\Windows\System32\drivers\VBoxDrv.sys [224088] =>.Oracle Corporation®
O58 - SDL:2012/09/07 17:38:22 A . (.Oracle Corporation - VirtualBox Host-Only Network Adapter Driver.) -- C:\Windows\System32\drivers\VBoxNetAdp.sys [147288] =>.Oracle Corporation®
O58 - SDL:2012/09/07 17:38:22 A . (.Oracle Corporation - VirtualBox Bridged Networking Driver.) -- C:\Windows\System32\drivers\VBoxNetFlt.sys [166232] =>.Oracle Corporation®
O58 - SDL:2012/09/07 17:38:20 A . (.Oracle Corporation - VirtualBox USB Driver.) -- C:\Windows\System32\drivers\VBoxUSB.sys [117080] =>.Oracle Corporation®
O58 - SDL:2012/09/07 17:38:20 A . (.Oracle Corporation - VirtualBox USB Monitor Driver.) -- C:\Windows\System32\drivers\VBoxUSBMon.sys [130904] =>.Oracle Corporation®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®

---\\ Last modified or created user files (1) - 15s
O61 - LFC: 2016/07/11 09:42:18 A . (..) -- C:\Users\user\Desktop\anti\spyhunter\SpyHunter 4.1.11.0 Setup.exe [15397208] {6127B01400BEED5731890FC24B5BD4CC}

---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.scr> [HKCU\..\open\Command] (.Microsoft Corporation - Notepad.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation

---\\ Start Menu Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- c:\program files (x86)\internet explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Search Browser Infection (2) - 2s
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/

---\\ Search Svchost Services (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [794624] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [859648] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [683520] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2610688] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70144] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136704] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [193536] =>.Microsoft Corporation

---\\ Firewall Active Exception List (53) - 4s
O87 - FAEL: "TCP Query User{25A6DF49-0F4A-4CDA-929C-F0FA5DD900FF}C:\program files (x86)\print manager plus - client\checkpages.exe" [In-None-P6-TRUE] .(.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\program files (x86)\print manager plus - client\checkpages.exe
O87 - FAEL: "UDP Query User{6AF40E3B-2312-4FB1-BFE0-888FE5E0E4D8}C:\program files (x86)\print manager plus - client\checkpages.exe" [In-None-P17-TRUE] .(.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\program files (x86)\print manager plus - client\checkpages.exe
O87 - FAEL: "{FCEE9912-9AB6-418E-B4B5-1BE8D3DD4236}" [In-None-P17-TRUE] .(.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\program files (x86)\print manager plus - client\checkpages.exe
O87 - FAEL: "{E6C4FF8F-7A37-4970-8576-C17EDAE1C814}" [In-None-P6-TRUE] .(.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\program files (x86)\print manager plus - client\checkpages.exe
O87 - FAEL: "TCP Query User{77DD8993-90AC-4CFB-B8BF-2455F12720A0}C:\program files (x86)\xming\xming.exe" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
O87 - FAEL: "UDP Query User{05E4ABFC-4B81-4040-906A-CC90103A62B8}C:\program files (x86)\xming\xming.exe" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
O87 - FAEL: "{835FCC70-05E4-4C58-95AB-4EA7A1D92302}" [In-None-P17-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
O87 - FAEL: "{1E34128F-C7C9-4F7A-A3B1-80FF96449AD6}" [In-None-P6-TRUE] .(...) -- C:\program files (x86)\xming\xming.exe
O87 - FAEL: "{9AE437E0-1F22-44B5-BD29-C48709A4743A}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - NetOp 32 Student Application..) -- C:\Program Files (x86)\Netop\Netop School\Student\nstdw32.exe {041F9F31A940B1A7AC274C2B328558AF}
O87 - FAEL: "{BA41FCD7-93F3-4009-8EBD-7CC58DE36889}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - NetOp 32 Student Application..) -- C:\Program Files (x86)\Netop\Netop School\Student\nstdw32.exe {041F9F31A940B1A7AC274C2B328558AF}
O87 - FAEL: "{48BD5A18-E3E8-4D61-9EC7-FBE0B9AED03E}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - NetOp 32 Student Application..) -- C:\Program Files (x86)\Netop\Netop School\Student\nstdw32.exe {041F9F31A940B1A7AC274C2B328558AF}
O87 - FAEL: "{6DB1952E-45B7-423F-A471-E4E1572E8379}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - NetOp 32 Student Application..) -- C:\Program Files (x86)\Netop\Netop School\Student\nstdw32.exe {041F9F31A940B1A7AC274C2B328558AF}
O87 - FAEL: "{CCA11152-9F74-4110-AF5F-6FE393D10420}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - NetOp 32 Student Application..) -- C:\Program Files (x86)\Netop\Netop School\Student\nstdw32.exe {041F9F31A940B1A7AC274C2B328558AF}
O87 - FAEL: "{DFB1051C-5E3A-4064-AE90-4586DA1F7D73}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - NetOp 32 Student Application..) -- C:\Program Files (x86)\Netop\Netop School\Student\nstdw32.exe {041F9F31A940B1A7AC274C2B328558AF}
O87 - FAEL: "{9FA0FC82-DFC1-4F7D-90F3-1F8457D32756}" [In-None-P6-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win64\pscad.exe
O87 - FAEL: "{CF882600-1A0B-45B4-A9F8-3AA8839D9AEA}" [In-None-P17-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win64\pscad.exe
O87 - FAEL: "{9E8D5672-00E9-4067-840A-3686D24D21EE}" [In-None-P6-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win\pscad.exe
O87 - FAEL: "{CF2C8DE6-1A50-4609-A611-EC5BDCD9DD7C}" [In-None-P17-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win\pscad.exe
O87 - FAEL: "{4689440B-7B67-45C1-9760-EE61C9073141}" [In-None-P6-TRUE] .(.HVDC - Lmgrd-hvdc.) -- C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
O87 - FAEL: "{47732DA8-550C-4E58-9FAD-B22FA5EA6262}" [In-None-P17-TRUE] .(.HVDC - Lmgrd-hvdc.) -- C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
O87 - FAEL: "{EF4D383A-DDCB-4528-9EAD-A981B1387CB2}" [In-None-P6-TRUE] .(.HVDC - Lmgrd-hvdc.) -- C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
O87 - FAEL: "{FDD4D445-21D1-4A93-950B-87CAA9D75866}" [In-None-P17-TRUE] .(.HVDC - Lmgrd-hvdc.) -- C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
O87 - FAEL: "{D2C0F457-B114-4D45-BDE1-96E5C7C11B77}" [In-None-P6-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win64\pscad.exe
O87 - FAEL: "{CD64058C-2A6D-42AF-ACD9-F23A0AD4EF9F}" [In-None-P17-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win64\pscad.exe
O87 - FAEL: "{CD9A0DFB-C868-4121-B0C6-2DFFB11E1AC5}" [In-None-P6-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win\pscad.exe
O87 - FAEL: "{1B6F87D1-B8A6-4D3A-8F50-F3DA94000ED1}" [In-None-P17-TRUE] .(.Manitoba HVDC Research Centre - Power Systems Simulator.) -- C:\Program Files (x86)\PSCAD45\bin\win\pscad.exe
O87 - FAEL: "{9238FCDD-2E3A-43C7-B127-FDDAE63D49E4}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Labcenter Electronics\Proteus 8 Professional\BIN\PDS.EXE
O87 - FAEL: "{84590E1D-AAAB-4D59-B0D5-002ED44FFFA1}" [Out-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Labcenter Electronics\Proteus 8 Professional\BIN\PDS.EXE
O87 - FAEL: "{C5709FFA-5D66-40AA-BC94-FDB6C0394883}" [In-None-P6-TRUE] .(.HVDC - Lmgrd-hvdc.) -- C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
O87 - FAEL: "{F3A59848-E382-4E2B-9B16-B6ED9A66FD70}" [In-None-P17-TRUE] .(.HVDC - Lmgrd-hvdc.) -- C:\Program Files (x86)\HVDC Lmgr\WinNT\lmgrd-hvdc.exe
O87 - FAEL: "{17D81F24-B893-4AF6-8E92-989BCA3FF35F}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Vision Chat.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Chat\MChat.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{68FF682F-CF7D-48B3-98B3-86CA39F7AF73}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Vision Chat.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Chat\MChat.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{0A5839CD-C984-4DC5-81AE-E6C60580D165}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Pointer Module.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Pointer\MPointer.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{D656EAA5-29A2-426E-A103-1F7FFDA15ECA}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Pointer Module.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Pointer\MPointer.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{623D074A-9E9C-4BAA-9710-830480F5ACE6}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Vision Control Manager.) -- C:\Program Files (x86)\Netop\Vision\XL\MeSuAx.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{5594EA20-BDEA-4398-85D3-F904BAECCC7B}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Vision Control Manager.) -- C:\Program Files (x86)\Netop\Vision\XL\MeSuAx.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "TCP Query User{E59E94B8-43FA-407D-B07F-F2888BDDBAE2}C:\program files (x86)\print manager plus - client\checkpages.exe" [In-None-P6-TRUE] .(.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\program files (x86)\print manager plus - client\checkpages.exe
O87 - FAEL: "UDP Query User{C1C1F15C-1DBC-4ED9-A658-D431F63C9EA0}C:\program files (x86)\print manager plus - client\checkpages.exe" [In-None-P17-TRUE] .(.Copyright (C) 2010 - Print Manager Plus - Authentication.) -- C:\program files (x86)\print manager plus - client\checkpages.exe
O87 - FAEL: "{70977E5D-6307-49EB-AD4F-45F7264D602E}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Vision Chat.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Chat\MChat.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{664347A5-A96C-4057-B798-D7E5A5CF4FF7}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Vision Chat.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Chat\MChat.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{5B139E58-CE51-49DF-A9AE-0C24112642C6}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Pointer Module.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Pointer\MPointer.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{783DFC12-0DDC-49D8-B68F-EC035E59A770}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Pointer Module.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Pointer\MPointer.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{227E6811-61D8-4730-BF74-7234E072CDD0}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Vision Control Manager.) -- C:\Program Files (x86)\Netop\Vision\XL\MeSuAx.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{D5399415-5E3E-4BD0-A7D0-539E3A28C1B0}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Vision Control Manager.) -- C:\Program Files (x86)\Netop\Vision\XL\MeSuAx.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{0CBD2ABE-C747-4B48-B13E-55C744F11135}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\chroomium Browser\chroomium\chrome.exe (.not file.) =>PUP.Optional.Chroomium
O87 - FAEL: "{D2437993-57D7-4BB2-855A-612CDA6FC3B0}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\chroomium Browser\chroomium\bin\browserServer.exe (.not file.) =>PUP.Optional.Chroomium
O87 - FAEL: "{EDAA2D28-0CE9-423F-98F9-EED737813DC9}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Vision Chat.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Chat\MChat.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{9B3C4BF6-B0DF-42DC-8D99-D94E0A3F2431}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Vision Chat.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Chat\MChat.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{9641186F-45B6-4635-87A4-FBB165419E1F}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Pointer Module.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Pointer\MPointer.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{4048CF96-10E6-4261-A777-41149F9B7CA7}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Pointer Module.) -- C:\Program Files (x86)\Netop\Vision\Plugins\Pointer\MPointer.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{1603CD96-3650-4ABA-8F40-E7850494A720}" [In-None-P6-TRUE] .(.Netop Business Solutions A/S - Vision Control Manager.) -- C:\Program Files (x86)\Netop\Vision\XL\MeSuAx.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{0B018DB4-51F7-4B59-9368-21C65C8DCB77}" [In-None-P17-TRUE] .(.Netop Business Solutions A/S - Vision Control Manager.) -- C:\Program Files (x86)\Netop\Vision\XL\MeSuAx.exe {62058D1B4CEFC5A3D0C056EE9133FA19}
O87 - FAEL: "{5D7242EB-F96C-4C92-8729-C4C1A4FC50B0}" [In-None-P17-TRUE] .(...) -- C:\ProgramData\Google\update\GoogleUpdate.exe (.not file.)

---\\ Additional Scan (O88) (6) - 0s
HKLM\SOFTWARE\Wow6432Node\chroomium =>PUP.Optional.Chroomium
HKCU\SOFTWARE\chroomium =>PUP.Optional.Chroomium
C:\Program Files (x86)\QuickTime =>Riskware.QuickTime
C:\ProgramData\InstallMate =>.Superfluous.Tarma
C:\ProgramData\Labcenter Electronics =>PUP.Optional.BundleInstaller
C:\ProgramData\SafeExamBrowser =>PUP.Optional.SpeedBrowser

---\\ Summary of the elements found (5) - 0s
http://www.nicolascoolman.fr/pup-optional-chroomium/ =>PUP.Optional.Chroomium
https://www.nicolascoolman.info/2016/04/21/riskware-quicktime/ =>Riskware.QuickTime
http://www.nicolascoolman.fr/?p=259 =>.Superfluous.Tarma
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.BundleInstaller
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SpeedBrowser

~ End of the scan, 84316 items in 00h06mn41s (939)(0)

Publicité


Signaler le contenu de ce document

Publicité