~ ZHPDiag v2016.2.16.51 By Nicolas Coolman (2016/02/16) ~ Run by HuzaifaAldakkak (Administrator) (2016/02/18 01:03:25) ~ Web: http://www.nicolascoolman.com ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: Version OK ~ Mode: Scan ~ Report: C:\Users\HuzaifaAldakkak\Desktop\ZHPDiag.txt ~ Report: C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 10 Pro, 64-bit (Build 10240) ---\\ Internet Browsers (3) - 0s GCIE: Google Chrome v40.0.2214.94 MFIE: Mozilla Firefox 44.0.2 (x86 en-US) MSIE: Internet Explorer v11.0.10240.16683 ---\\ Windows Product Information (3) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK ---\\ System protection software (3) - 8s 360 Total Security v8.0.0.1072 Kaspersky Anti-Virus v16.0.0.614 Windows Defender (Activate) ---\\ System optimization software (1) - 9s CCleaner v2.29 ---\\ Surveillance software (1) - 9s Adobe Flash Player 20 NPAPI ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 8260.968 MB (52% free) System Restore: Activé (Enable) System drive C: has 125 GB () free of 235 GB ---\\ Connection to the system mode (3) - 0s ~ Computer Name: HD90 ~ User Name: HuzaifaAldakkak ~ Logged in as Administrator ---\\ Enumeration of the disk units (5) - 0s ~ Drive C: has 125 GB free of 235 GB (System) ~ Drive D: has 7 GB free of 51 GB ~ Drive F: has 235 GB free of 256 GB ~ Drive G: has 31 GB free of 153 GB ~ Drive H: has 152 GB free of 234 GB ---\\ State of the Windows Security Center (7) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Search Generic System Files (24) - 1s [MD5.D2EAEC106F183572317AF7D68E381063] - 25/11/2015 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [4532304] =>.Microsoft Windows® [MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation [MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - 18/07/2015 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [290312] =>.Microsoft Windows Publisher® [MD5.71EF55BA035CD459D8230501D067D2F8] - 31/01/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [2849792] =>.Microsoft Corporation [MD5.DA32F9BFA7851AD4247353EA03755DE6] - 05/01/2016 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [578560] =>.Microsoft Corporation [MD5.ECB1943967424DFB96E03F6A098434EF] - 19/07/2015 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation [MD5.C287D0E32771E3222A444DC527A29477] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [680256] =>.Microsoft Windows® [MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - 10/07/2015 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] =>.Microsoft Windows® [MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [577888] =>.Microsoft Windows® [MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows® [MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation [MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] =>.Microsoft Corporation [MD5.25435407D97419627F4B10653433BF2B] - 10/07/2015 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] =>.Microsoft Corporation [MD5.27E248CD861AFED4DF0C48F4C853E7F0] - 25/11/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] =>.Microsoft Corporation [MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation [MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation [MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - 10/07/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] =>.Microsoft Corporation [MD5.F0D791348AD254360CC3C3E501CCB745] - 10/07/2015 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [273408] =>.Microsoft Corporation [MD5.BA8DC96D1DD7785EB0589CB1777208B7] - 01/12/2015 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2115936] =>.Microsoft Windows® [MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation [MD5.CA60F6C03611AF1710BC903ED9F566FB] - 10/07/2015 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation [MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] =>.Microsoft Corporation [MD5.D42AC03ACF9CA67693D1D9BB4D2A0BC8] - 05/11/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [116064] =>.Microsoft Windows® [MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] =>.Microsoft Windows® ---\\ Non Microsoft non disabled Windows Services (21) - 7s O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab® O23 - Service: @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Ma (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe =>.Broadcom Corporation® O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc. - BlueStacks Service.) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.Bluestack Systems, Inc.® O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.Bluestack Systems, Inc.® O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.Bluestack Systems, Inc.® O23 - Service: @C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2 (chromoting) . (.Google Inc. - Host Process.) - C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe =>.Google Inc® O23 - Service: Connectify (Connectify) . (.Connectify - .) - C:\Program Files (x86)\Connectify\ConnectifyService.exe =>.Connectify (Connectify, Inc.)® O23 - Service: CxUtilSvc (CxUtilSvc) . (.Conexant Systems, Inc. - Utility Service.) - C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe =>.Conexant Systems, Inc.® O23 - Service: Dell Update Service (DellUpdate) . (.Dell Inc. - Dell Update Windows Service.) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.® O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology® O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX® O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service® O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation® O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\Windows\SysWOW64\nlssrv32.exe =>.Nalpeiron Ltd. O23 - Service: 360 Total Security (QHActiveDefense) . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) - C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe =>.QIHU 360 SOFTWARE CO. LIMITED® O23 - Service: Service KMSELDI (Service KMSELDI) . (.@ByELDI - Service_KMS.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico O23 - Service: Splashtop® Remote Service (SplashtopRemoteService) . (.Splashtop Inc. - Splashtop® Streamer Service.) - C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe {32671ADE7C0DD879AA0EF5FA5F9883F6} O23 - Service: Splashtop Software Updater Service (SSUService) . (.Splashtop Inc. - Splashtop Software Updater Service.) - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe =>.Splashtop Inc.® O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® O23 - Service: WdsManPro Service (WdsManPro) . (...) - C:\ProgramData\7WMiniPro7\WMiniPro.exe (.not file.) =>PUP.Optional.WdsManPro O23 - Service: WIBU-KEY Server (WkSvW32.exe) . (.WIBU-SYSTEMS AG - WibuKey Network server management.) - C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe =>.WIBU-SYSTEMS AG® ---\\ Services not Microsoft (SR=Run, SS=Stop) (37) - 33s SS - Demand [29/12/2015] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SS - Demand [01/09/2015] [ 265776] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe =>.AMD SR - Auto [02/11/2015] [ 194000] Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe =>.Kaspersky Lab® SR - Auto [04/09/2013] [ 2252504] @oem121.inf,%BlueBcmBtRSupport.SVCNAME%;Bluetooth Driver Ma (BcmBtRSupport) . (.Broadcom Corporation..) - C:\WINDOWS\system32\BtwRSupportService.exe =>.Broadcom Corporation. SS - Auto [03/02/2015] [ 409304] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe =>.Bluestack Systems, Inc.® SS - Auto [03/02/2015] [ 388824] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe =>.Bluestack Systems, Inc.® SS - Auto [03/02/2015] [ 794328] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe =>.Bluestack Systems, Inc.® SR - Auto [14/10/2015] [ 69448] @C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2 (chromoting) . (.Google Inc..) - C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe =>.Google Inc® SR - Auto [30/11/2015] [ 256568] Connectify (Connectify) . (.Connectify.) - C:\Program Files (x86)\Connectify\ConnectifyService.exe =>.Connectify (Connectify, Inc.)® SS - Demand [07/12/2015] [ 291744] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX® SR - Auto [21/12/2014] [ 109184] CxUtilSvc (CxUtilSvc) . (.Conexant Systems, Inc..) - C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe =>.Conexant Systems, Inc.® SS - Demand [09/04/2015] [ 145288] Dell Customer Connect (Dell Customer Connect) . (.Dell Inc..) - C:\Program Files (x86)\Dell Customer Connect\OTBSurvey.exe =>.Dell Inc.® SR - Auto [27/08/2015] [ 237272] Dell Update Service (DellUpdate) . (.Dell Inc..) - C:\Program Files (x86)\Dell Update\DellUpService.exe =>.Dell Inc.® SS - Demand [31/01/2015] [ 107912] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [31/01/2015] [ 107912] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SR - Auto [07/08/2013] [ 15720] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology® SS - Demand [24/04/2012] [ 169752] Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe =>.Intel Corporation® SR - Auto [07/12/2015] [ 330136] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation SR - Auto [20/04/2012] [ 635104] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service® SR - Auto [17/07/2012] [ 165760] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation® SS - Demand [24/04/2015] [ 625640] Lenovo EasyPlus Hotspot (Lenovo EasyPlus Hotspot) . (.Lenovo.) - C:\Program Files (x86)\Common Files\LENOVO\easyplussdk\bin\EPHotspot64.exe =>.LENOVO® SS - Demand [10/12/2014] [ 2631456] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe =>.IObit Information Technology® SR - Demand [17/07/2012] [ 276864] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation® SS - Demand [13/02/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [31/01/2012] [ 66560] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\Windows\SysWOW64\nlssrv32.exe =>.Nalpeiron Ltd. SR - Auto [11/12/2015] [ 903288] 360 Total Security (QHActiveDefense) . (.QIHU 360 SOFTWARE CO. LIMITED.) - C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe =>.QIHU 360 SOFTWARE CO. LIMITED® SS - Auto [22/07/2015] [ 985280] Service KMSELDI (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico SS - Demand [11/12/2014] [ 315496] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl® SS - Demand [10/06/2015] [ 155520] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe =>.Sony Mobile Communications AB® SR - Auto [26/01/2015] [ 695648] Splashtop® Remote Service (SplashtopRemoteService) . (.Splashtop Inc..) - C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe {32671ADE7C0DD879AA0EF5FA5F9883F6} SR - Auto [09/10/2013] [ 609056] Splashtop Software Updater Service (SSUService) . (.Splashtop Inc..) - C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe =>.Splashtop Inc.® SS - Demand [19/02/2010] [ 517096] SwitchBoard (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated SS - Demand [30/05/2012] [ 149544] Intel(R) Turbo Boost Technology Monitor 2.6 (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe =>.Intel(R) Software® SR - Auto [17/07/2012] [ 364416] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® SS - Demand [08/07/2015] [ 144640] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab® SR - Auto [23/07/2014] [ 668552] WIBU-KEY Server (WkSvW32.exe) . (.WIBU-SYSTEMS AG.) - C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe =>.WIBU-SYSTEMS AG® ---\\ Task Planned Automatically (25) - 4s [MD5.C3E7E1F3C85A6788F3BA078BA214341E] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated® [MD5.7486DEF5CC9334F58871D6D18B73C562] [APT] [AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936] =>.Adobe Systems Incorporated® [MD5.1F90E252F9C21C0B90578DAA42F16765] [APT] [AutoPico Daily Restart] (.@ByELDI.) -- C:\Program Files\KMSpico\AutoPico.exe [985792] =>HackTool.KMSpico [MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc® [MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] =>.Google Inc® [MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core] (.Google Inc..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc® [MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA] (.Google Inc..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Update\GoogleUpdate.exe [107848] =>.Google Inc® [MD5.D1A010CBBB86DDC11E047B74DE70627E] [APT] [Uninstaller_SkipUac_HuzaifaAldakkak] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9616672] =>.IObit Information Technology® [MD5.D1A010CBBB86DDC11E047B74DE70627E] [APT] [Uninstaller_SkipUac_noto] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [9616672] =>.IObit Information Technology® [MD5.00000000000000000000000000000000] [APT] [WordShark Auto Updater 1.10.0.20 Core] (...) -- C:\Program Files (x86)\WordShark_1.10.0.20\Update\WordSharkAutoUpdateClient.exe (.not file.) [0] =>PUP.Optional.WordShark [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] =>.Apple Inc.® [MD5.E3238CA9101C670556B636C8F4FCE358] [APT] [Lenovo\Lenovo Customer Feedback Program 64 35] (.Lenovo.) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184] =>.LENOVO® O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core.job [906] =>.Google Inc® O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA.job [958] =>.Google Inc® O39 - APT: Uninstaller_SkipUac_HuzaifaAldakkak - (.IObit.) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_HuzaifaAldakkak.job [308] =>.IObit Information Technology® O39 - APT: Uninstaller_SkipUac_noto - (.IObit.) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_noto.job [308] =>.IObit Information Technology® O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3818] =>.Adobe Systems Incorporated® O39 - APT: AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-HD90-HuzaifaAldakkak [3624] =>.Adobe Systems Incorporated® O39 - APT: AutoPico Daily Restart - (.@ByELDI.) -- C:\WINDOWS\System32\Tasks\AutoPico Daily Restart [3474] =>HackTool.KMSpico O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3754] =>.Google Inc® O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [3990] =>.Google Inc® O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001Core [3718] =>.Google Inc® O39 - APT: GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3599766761-982674122-2959987469-1001UA [4094] =>.Google Inc® O39 - APT: Uninstaller_SkipUac_HuzaifaAldakkak - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_HuzaifaAldakkak [2538] =>.IObit Information Technology® O39 - APT: Uninstaller_SkipUac_noto - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_noto [2512] =>.IObit Information Technology® ---\\ Process running (47) - 3s [MD5.75909533EECD0CD9D5974B59474AA6C0] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [330136] [PID.1488] =>.Intel Corporation - pGFX® [MD5.A89E87A213BB785C50A0C985F0265E50] - (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [903288] [PID.1680] =>.QIHU 360 SOFTWARE CO. LIMITED® [MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe [194000] [PID.2408] =>.Kaspersky Lab® [MD5.18B186BCC56EC611DE519CBA7D4F65B0] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) -- C:\Windows\System32\BtwRSupportService.exe [2252504] [PID.2424] =>.Broadcom Corporation® [MD5.2FA3A0FD81DA7F49867E7A37E68BDE1A] - (.Google Inc. - Host Process.) -- C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448] [PID.2504] =>.Google Inc® [MD5.507D25509F566E33B88D7D07CF48E394] - (.Connectify - .) -- C:\Program Files (x86)\Connectify\ConnectifyService.exe [256568] [PID.2556] =>.Connectify (Connectify, Inc.)® [MD5.3C4002D339491AF73D663FFC7F6E5ECB] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760] [PID.2564] =>.Intel Corporation® [MD5.9A59DF2CA690019FEA3B265D5A7EB619] - (.Conexant Systems, Inc. - Utility Service.) -- C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe [109184] [PID.2572] =>.Conexant Systems, Inc.® [MD5.C99F8E90DE4B8F0C7FE15BB1CBCD29DC] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe [635104] [PID.2580] =>.Intel® Upgrade Service® [MD5.B1EF4686961986DFFB7FE8F18E6FCB5B] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\Windows\SysWOW64\nlssrv32.exe [66560] [PID.2772] =>.Nalpeiron Ltd. [MD5.F01B19E4225872533F27E591B3FF5B69] - (.Splashtop Inc. - Splashtop® Streamer Service.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe [695648] [PID.2892] {32671ADE7C0DD879AA0EF5FA5F9883F6} [MD5.504C33FE3B4E2AF11FE5875DDCA8EBEA] - (.Splashtop Inc. - Splashtop Software Updater Service.) -- C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe [609056] [PID.3020] =>.Splashtop Inc.® [MD5.7E32B569CFC549F3816D454D6E8C8D22] - (.WIBU-SYSTEMS AG - WibuKey Network server management.) -- C:\PROGRAM FILES (X86)\WIBUKEY\Server\WkSvW32.exe [668552] [PID.1832] =>.WIBU-SYSTEMS AG® [MD5.4AC13DC0A79E90D736E41AD7DC678969] - (.Connectify - Connectify Daemon Service.) -- C:\Program Files (x86)\Connectify\ConnectifyD.exe [3816504] [PID.1208] =>.Connectify (Connectify, Inc.)® [MD5.2FA3A0FD81DA7F49867E7A37E68BDE1A] - (.Google Inc. - Host Process.) -- C:\Program Files (x86)\Google\Chrome Remote Desktop\47.0.2526.18\remoting_host.exe [69448] [PID.3556] =>.Google Inc® [MD5.E08BF6E26FC0CB49540DF291D48629F0] - (.Qihu Software Co. Limited - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe [124536] [PID.3116] =>.QIHU 360 SOFTWARE CO. LIMITED® [MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe [211712] [PID.5392] =>.Kaspersky Lab® [MD5.EBDEC4149FAAE1C633FA9B33D55B3EA1] - (.Splashtop Inc. - Splashtop® Streamer.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe [4221792] [PID.5972] {32671ADE7C0DD879AA0EF5FA5F9883F6} [MD5.44C694C2B542DB3CDAEBDB1FF3233F4D] - (.Dell Inc. - Dell Update Windows Service.) -- C:\Program Files (x86)\Dell Update\DellUpService.exe [237272] [PID.1920] =>.Dell Inc.® [MD5.04ACE629A2853C12C648632AF1678925] - (.Splashtop Inc. - Splashtop® Streamer Feature.) -- C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe [7618344] [PID.6284] {32671ADE7C0DD879AA0EF5FA5F9883F6} [MD5.9221F67A8FC9EF9629E8E5CF0C5931B0] - (.Dell Inc. - Dell Update.) -- C:\Program Files (x86)\Dell Update\DellUpTray.exe [707800] [PID.6396] =>.Dell Inc.® [MD5.80A11F070E9EEFCB48B357E9E0E2C7D1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [541600] [PID.7132] =>.Intel Corporation - pGFX® [MD5.B6C52FADECE225339D02B6923E930B5C] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [258456] [PID.7180] =>.Intel Corporation - pGFX® [MD5.5689C5A911D3B91BD1CB281510FBE0D4] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [2878728] [PID.7312] =>.ELAN Microelectronics Corporation® [MD5.E366C61EAB64491781FB338D7CF0D112] - (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe [5762408] [PID.7428] =>.Compal Electronics, Inc.® [MD5.E9AC314ED94022AAF3EDBCC55FC4A575] - (.WIBU-SYSTEMS AG - WkSvMgr.) -- C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe [9028976] [PID.7476] =>.WIBU-SYSTEMS AG® [MD5.20E83F4632E15A5E9E716FF2E8AC7FAE] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.5884] =>.Intel Corporation - Intel® Rapid Storage Technology® [MD5.4269D44BB47A6DA5D80B11F4C8536458] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [276864] [PID.6268] =>.Intel Corporation® [MD5.DBE2E6388379D5CC78099650541E9566] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [364416] [PID.3068] =>.Intel Corporation® [MD5.4234E76A1B12C5F76B264C99540FD736] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [392136] [PID.9048] =>.Mozilla Corporation® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.6568] =>.Google Inc® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.5468] =>.Google Inc® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.4712] =>.Google Inc® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.7376] =>.Google Inc® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.6832] =>.Google Inc® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.8512] =>.Google Inc® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.5276] =>.Google Inc® [MD5.871365E60564C6B531F21B0397B37FEE] - (.Connectify - Connectify Hotspot.) -- C:\Program Files (x86)\Connectify\Connectify.exe [4160568] [PID.7388] =>.Connectify (Connectify, Inc.)® [MD5.1A55E8B13E80F7ECEC5FF1B4820E78AD] - (.Telegram Messenger LLP - .) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe [31919456] [PID.5004] {4098401CAB91A429} =>.Telegram Messenger LLP [MD5.30F69462C39ABC9B5674B9D5DFE126B4] - (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe [51657424] [PID.1360] =>.Viber Media S.a.r.l® [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.4724] =>.Google Inc® [MD5.550BF90B194FD01FCB76199AC52A99FF] - (.Connectify - .) -- C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe [411192] [PID.11400] =>.Connectify (Connectify, Inc.)® [MD5.0209103C184767731EDA4FF634038C24] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.201.11370.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [15872] [PID.8088] =>.Copyright Microsoft Corporation [MD5.749E4BF1FA6DB8C3F9C2B7F29A544F95] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592] [PID.3688] =>.Google Inc® [MD5.6C4B88203FFE721C18B041DE1312C67A] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3825232] [PID.11148] =>.Tonec Inc. [MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [269848] [PID.1672] =>.Tonec Inc.® [MD5.5AE930CBDC0E46B3FBFCE1F00A7A9B13] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\HuzaifaAldakkak\Downloads\Programs\ZHPDiag3.exe [2122752] [PID.12096] =>.Nicolas Coolman ---\\ Google Chrome, Start,Search,Extensions (19) - 1s G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [bepbmhgboaologfdajaanbcjmnhjmhfn] Google Voice Search Hotword (Beta) G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [clabbeiafnokkpfmkabbfkndocdjcobe] Hyperlator Facebook Utility G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [eahebamiopdhefndnmappcihfajigkka] __MSG_ExtensionName__ G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [fjnbnpbmkenffdnngjfgmeleoegfcffe] Stylish G2 - GCE: Preference [User Data\Default] [gbchcmhmhahfdphkhkmpfmihenigjmpp] __MSG_PRODUCT_NAME__ G2 - GCE: Preference [User Data\Default] [hocegonoebjokljiejnkjejlgdnhkglo] Assassin's Creed 2 - Light G2 - GCE: Preference [User Data\Default] [inmmhkeajgflmokoaaoadgkhhmibjbpj] Facebook Invite All G2 - GCE: Preference [User Data\Default] [jeaohhlajejodfjadcponpnjgkiikocn] IDM Integration Module G2 - GCE: Preference [User Data\Default] [lkifjigoeilijkcnpfdjbpdjgnbfibec] __MSG_extName__ G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pabfempgigicdjjlccdgnbmeggkbjdhd] Stylist G2 - GCE: Preference [User Data\Default] [phejagnmddcjhjblnacgmejghffmhjfp] Facebook Themes (Facebook Theme Gallery) G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (8) - 1s P2 - EXT: (...) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\QuickTimePlugin.class P2 - EXT FILE: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\firefox@mega.co.nz.xpi P2 - EXT FILE: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla P2 - EXT: (...) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\staged P2 - EXT: (.iMacros Team, iOpus Software GmbH - iMacros for Firefox.) -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla\Firefox\Profiles\nfeomxwi.default-1424343349654\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll =>.Adobe Systems Incorporated P2 - FPN: [HKLM] [adobe.com/AdobeExManDetect] - (...) -- F:\Program files (D)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll ---\\ Internet Explorer Extensions, Start, Search (21) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKEY_USERS\S-1-5-21-3599766761-982674122-2959987469-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit= F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object (BHO) (6) - 0s O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Orphean) O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll =>.Oracle America, Inc.® O2 - BHO: SafeMon Class [64Bits] - {B69F34DD-F0F9-42DC-9EDD-957187DA688D} . (.Qihu 360 Software Co., Ltd. - 360 Internet Security Internet Protection.) -- C:\Program Files (x86)\360\Total Security\safemon\safemon.dll =>.Qihoo 360 Software (Beijing) Company Limited® O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\IEExt\ie_plugin.dll =>.Kaspersky Lab® O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll =>.Oracle America, Inc.® ---\\ Auto loading programs from Registry and folders (23) - 1s O4 - HKLM\..\Run: [ETDCtrl] . (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe =>.ELAN Microelectronics Corporation® O4 - HKLM\..\Run: [QuickSet] . (.Dell Inc. - QuickSet.) -- C:\Program Files\Dell\QuickSet\quickset.exe =>.Compal Electronics, Inc.® O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated® O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - HKCU\..\Run: [Viber] . (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKCU\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe =>.Apple Inc.® O4 - HKLM\..\Wow6432Node\Run: [QHSafeTray] . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) -- C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe =>.QIHU 360 SOFTWARE CO. LIMITED® O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\Run: [Viber] . (. - Viber.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5907.0716] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-3599766761-982674122-2959987469-1001\..\RunOnce: [Uninstall C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5930.0814] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\System32\cmd.exe =>.Microsoft Corporation ---\\ Global shortcuts Startup (180) - 17s O4 - GS\Desktop [Administrator]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems O4 - GS\Desktop [Administrator]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc® O4 - GS\Desktop [Administrator]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd® O4 - GS\Desktop [Administrator]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Administrator]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Administrator]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc. O4 - GS\Desktop [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Administrator]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [Administrator]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe O4 - GS\Desktop [Administrator]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe O4 - GS\Desktop [Administrator]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon O4 - GS\Desktop [Administrator]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP O4 - GS\Desktop [Administrator]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Desktop [Administrator]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc. O4 - GS\Desktop [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Administrator]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec O4 - GS\Quicklaunch [Administrator]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Quicklaunch [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Quicklaunch [Administrator]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl® O4 - GS\TaskBar [Administrator]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Administrator]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\TaskBar [Administrator]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc. O4 - GS\TaskBar [Administrator]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Desktop [Guest]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems O4 - GS\Desktop [Guest]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc® O4 - GS\Desktop [Guest]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd® O4 - GS\Desktop [Guest]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Guest]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Guest]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc. O4 - GS\Desktop [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Guest]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [Guest]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe O4 - GS\Desktop [Guest]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe O4 - GS\Desktop [Guest]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon O4 - GS\Desktop [Guest]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP O4 - GS\Desktop [Guest]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Desktop [Guest]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc. O4 - GS\Desktop [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Guest]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec O4 - GS\Quicklaunch [Guest]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Quicklaunch [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Quicklaunch [Guest]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl® O4 - GS\TaskBar [Guest]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [Guest]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\TaskBar [Guest]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc. O4 - GS\TaskBar [Guest]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Desktop [HuzaifaAldakkak]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems O4 - GS\Desktop [HuzaifaAldakkak]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc® O4 - GS\Desktop [HuzaifaAldakkak]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd® O4 - GS\Desktop [HuzaifaAldakkak]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [HuzaifaAldakkak]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [HuzaifaAldakkak]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc. O4 - GS\Desktop [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [HuzaifaAldakkak]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe O4 - GS\Desktop [HuzaifaAldakkak]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [HuzaifaAldakkak]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe O4 - GS\Desktop [HuzaifaAldakkak]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe O4 - GS\Desktop [HuzaifaAldakkak]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon O4 - GS\Desktop [HuzaifaAldakkak]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP O4 - GS\Desktop [HuzaifaAldakkak]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Desktop [HuzaifaAldakkak]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc. O4 - GS\Desktop [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Desktop [HuzaifaAldakkak]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [HuzaifaAldakkak]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [HuzaifaAldakkak]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec O4 - GS\Quicklaunch [HuzaifaAldakkak]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Quicklaunch [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Quicklaunch [HuzaifaAldakkak]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\sendTo [HuzaifaAldakkak]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl® O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [HuzaifaAldakkak]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [HuzaifaAldakkak]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [HuzaifaAldakkak]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [HuzaifaAldakkak]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\TaskBar [HuzaifaAldakkak]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc. O4 - GS\TaskBar [HuzaifaAldakkak]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Desktop [noto]: Adobe Lightroom.lnk . (.Adobe Systems - .) C:\Program Files (x86)\Adobe\Adobe Lightroom\lightroom.exe =>.Adobe Systems O4 - GS\Desktop [noto]: BitTorrent.lnk . (.BitTorrent Inc. - BitTorrent.) C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent\BitTorrent.exe =>.BitTorrent Inc® O4 - GS\Desktop [noto]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) C:\Program Files (x86)\CCleaner\CCleaner.exe =>.Piriform Ltd® O4 - GS\Desktop [noto]: Chrome App Launcher Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [noto]: Chrome App Launcher.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [noto]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc. O4 - GS\Desktop [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [noto]: install4j.lnk . (.ej-technologies GmbH - .) C:\Program Files (x86)\install4j6\bin\install4j.exe O4 - GS\Desktop [noto]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [noto]: Karaoke CD+G Creator Pro.lnk . (.Copyright (C) 2006-2013 Doblon - Karaoke CD+G Creator Pro.) C:\Program Files (x86)\Doblon\Karaoke CD+G Creator Pro\KaraokeCDGCreatorPro.exe O4 - GS\Desktop [noto]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_7B03D73E9E1813681D89AC.exe O4 - GS\Desktop [noto]: Power CD+G to Video Karaoke Converter.lnk . (.Doblon - Power CD+G to Video Karaoke Converter.) C:\Program Files (x86)\Doblon\Power CD+G to Video Converter\PowerCDGtoVideoConverter.exe =>.Doblon O4 - GS\Desktop [noto]: Telegram.lnk . (.Telegram Messenger LLP - .) C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop\Telegram.exe {4098401CAB91A429} =>.Telegram Messenger LLP O4 - GS\Desktop [noto]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Desktop [noto]: vegas120 - Shortcut.lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe =>.Sony Creative Software Inc. O4 - GS\Desktop [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Desktop [noto]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Quicklaunch [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [noto]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [noto]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec O4 - GS\Quicklaunch [noto]: Vector Magic.lnk . (...) C:\Program Files (x86)\Vector Magic\vmde.exe O4 - GS\Quicklaunch [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Quicklaunch [noto]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\sendTo [noto]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl® O4 - GS\TaskBar [noto]: Adobe After Effects CC 2015.lnk . (.Adobe Systems Incorporated - Adobe After Effects CC 2015.0.) C:\Program Files\Adobe\Adobe After Effects CC 2015\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [noto]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) F:\Program files (D)\Adobecs6\Adobe After Effects CS6\Support Files\AfterFX.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [noto]: Adobe Audition CS6.lnk . (.Adobe Systems Incorporated - Adobe Audition CS6.) F:\Program files (D)\Adobecs6\Adobe Audition CS6\Adobe Audition CS6.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [noto]: Adobe Character Animator (Preview).lnk . (.Adobe Systems Incorporated - Character Animator Preview 1.) C:\Program Files\Adobe\Adobe Character Animator (Preview)\Support Files\Character Animator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [noto]: Adobe Illustrator CS6.lnk . (.Adobe Systems Inc. - Adobe Illustrator CS6.) F:\Program files (D)\Adobecs6\Adobe Illustrator CS6\Support Files\Contents\Windows\Illustrator.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [noto]: Adobe Photoshop CS6 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) F:\Program files (D)\Adobecs6\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [noto]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) F:\Program files (D)\Adobecs6\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe =>.Adobe Systems Incorporated® O4 - GS\TaskBar [noto]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [noto]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\TaskBar [noto]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\TaskBar [noto]: Vegas Pro 13.0 (64-bit).lnk . (.Sony Creative Software Inc. - .) C:\Program Files (x86)\Sony\Vegas Pro 13.0\vegas130.exe =>.Sony Creative Software Inc. O4 - GS\TaskBar [noto]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\CommonDesktop [Public]: 360 Total Security.lnk . (.QIHU 360 SOFTWARE CO. LIMITED - 360 Total Security.) C:\Program Files (x86)\360\Total Security\QHSafeMain.exe =>.QIHU 360 SOFTWARE CO. LIMITED® O4 - GS\CommonDesktop [Public]: Adobe Acrobat X Pro.lnk . (.Adobe Systems Incorporated - Adobe Acrobat.) F:\Program files (D)\Adobecs6\Acrobat 10.0\Acrobat\Acrobat.exe =>.Adobe Systems, Incorporated® O4 - GS\CommonDesktop [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe =>.Adobe Systems Incorporated® O4 - GS\CommonDesktop [Public]: AKVIS Chameleon.lnk . (.AKVIS - Chameleon Application.) C:\Program Files (x86)\AKVIS\Chameleon\Chameleon.exe {4036679835556E3C93EFEDCAAA7D1F79} =>.AKVIS O4 - GS\CommonDesktop [Public]: Al-Manara 2.0.lnk . (...) C:\WINDOWS\Installer\{E668B437-4C35-43AF-8F51-0F411723120C}\IconE668B4375.exe O4 - GS\CommonDesktop [Public]: Apps.lnk . (...) C:\Users\Public\Libraries\Apps.library-ms O4 - GS\CommonDesktop [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe O4 - GS\CommonDesktop [Public]: AV Easy DJ.lnk . (.AVSoft Corp. (VN) - AV Easy DJ 1.0.) C:\Program Files (x86)\AV Music Morpher Gold\AV Easy DJ.exe {27F1A35940CA6E5585F0B25F43765D1E} O4 - GS\CommonDesktop [Public]: AV Music Morpher Gold.lnk . (.AVSoft Corp. (VN) - AV Music Morpher Gold 5.0.) C:\Program Files (x86)\AV Music Morpher Gold\AV Music Morpher.exe {27F1A35940CA6E5585F0B25F43765D1E} O4 - GS\CommonDesktop [Public]: CardRecoveryPro.lnk . (...) C:\Program Files (x86)\CardRecoveryPro\CardRecoveryPro.exe {288A6842C331C5443D747BDABF31E2A3} O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\CommonDesktop [Public]: Intel(R) Driver Update Utility 2.0.lnk . (.Intel - Intel Driver Update Utility.) C:\Program Files (x86)\Intel Driver Update Utility\DriverUpdateUI.exe =>.Intel(R) Driver Update Utility® O4 - GS\CommonDesktop [Public]: Intel(R) HD Graphics Control Panel.lnk . (.Intel Corporation - GFXUIEX Module.) C:\WINDOWS\system32\GfxUIEx.exe =>.Intel Corporation - pGFX® O4 - GS\CommonDesktop [Public]: Intel(R) Turbo Boost Technology Monitor 2.6.lnk . (.Intel® Corporation - .) C:\Program Files (x86)\Intel\TurboBoost\SignalIslandUi.exe =>.Intel® Corporation O4 - GS\CommonDesktop [Public]: IObit Uninstaller.lnk . (.IObit - Uninstall Programs.) C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe =>.IObit Information Technology® O4 - GS\CommonDesktop [Public]: Kaspersky Anti-Virus.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avpui.exe =>.Kaspersky Lab® O4 - GS\CommonDesktop [Public]: KeyFinder.lnk . (.ONE UP LTD. - Magical Jelly Bean Keyfinder.) C:\Program Files (x86)\Magical Jelly Bean\keyfinder.exe {041ABD63CA5DA9} O4 - GS\CommonDesktop [Public]: Kingo ROOT.lnk . (.Kingosoft - Kingo Root.) C:\Program Files (x86)\Kingo ROOT\Kingo Root.exe =>.ZJMedia Digital Technology Ltd.® O4 - GS\CommonDesktop [Public]: Login Plexis POS.lnk . (.PLEXIS SOFTWARE - BT.) C:\Program Files (x86)\POS 30\Bt.exe O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: Photo to Cartoon.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{2302FD51-7033-48DE-A302-039649DE4AE8}\NewShortcut1_24C52DF75CFA44538BE6B761A088240F.exe {2F3394A95A52FD4B6967ADBE5FB484B8} =>.Flexera Software LLC O4 - GS\CommonDesktop [Public]: QuickTime Player.lnk . (.Apple Inc. - QuickTime Player.) C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe =>.Apple Inc.® O4 - GS\CommonDesktop [Public]: SambaPOS4.lnk . (.Copyright © 2010 - Samba POS.) C:\Program Files (x86)\SambaPOS4\Samba.Presentation.exe O4 - GS\CommonDesktop [Public]: SHAREit.lnk . (.Lenovo - SHAREit.) C:\Program Files (x86)\Lenovo\SHAREit\Shareit.exe =>.LENOVO® O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe O4 - GS\CommonDesktop [Public]: Sony PC Companion 2.1.lnk . (.Sony - Sony PC Companion.) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe =>.Sony Mobile Communications AB® O4 - GS\CommonDesktop [Public]: Sothink Logo Maker Professional.lnk . (.SourceTec - Logo Maker Professional.) C:\Program Files (x86)\SourceTec\Sothink Logo Maker Professional\LogoMakerPro.exe {2B82ABA86D863021CD8B799A9D366BE1} =>.SourceTec O4 - GS\CommonDesktop [Public]: SsdReady.lnk . (.Copyright (C) 2013 - SsdReady - SSD life measurement tool.) C:\Program Files\CEZEO software\SsdReady\SsdReady.exe {3C2C57985C7A9FA89B39C73FE4707BAE} O4 - GS\CommonDesktop [Public]: Start BlueStacks.lnk . (.BlueStack Systems, Inc. - BlueStacks StartLauncher.) C:\Program Files (x86)\BlueStacks\HD-StartLauncher.exe =>.Bluestack Systems, Inc.® O4 - GS\CommonDesktop [Public]: uniCenta oPOS.lnk . (...) C:\Program Files (x86)\unicentaopos-3.91.3\start.bat O4 - GS\CommonDesktop [Public]: Zello.lnk . (.Zello Inc - Zello.) C:\Program Files (x86)\Zello\Zello.exe {2B5F20C3C1D162} O4 - GS\Startup [Public]: Network Server.lnk . (.WIBU-SYSTEMS AG - WkSvMgr.) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe =>.WIBU-SYSTEMS AG® O4 - GS\Programs [Public]: Google Chrome Canary.lnk . (.Google Inc. - Google Chrome.) C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\chrome.exe =>.Google Inc® O4 - GS\Programs [Public]: Openmiracle.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Installer\{4FB2C258-FCC8-4059-8221-E01AB9FEB561}\_77354CBFA2CD44F60FBFED.exe O4 - GS\Programs [Public]: Viber.lnk . (...) C:\Users\HuzaifaAldakkak\AppData\Local\Viber\Viber.exe =>.Viber Media S.a.r.l® O4 - GS\Programs [Public]: WorldofWarships.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® ---\\ Lop.com/Domain Hijackers (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{151762b9-0840-4a8d-b83d-41193cefbb62}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9113986f-2115-4214-96e1-b9999ac7e2de}: DhcpNameServer = 192.168.1.1 ---\\ Extra protocols (23) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation® ---\\ Software installed (147) - 30s O42 - Logiciel: 360 Total Security - (.360 Security Center.) [HKLM][64Bits] -- 360TotalSecurity =>.QIHU 360 SOFTWARE CO. LIMITED® O42 - Logiciel: 3D Maker by Lokas Software - (...) [HKLM][64Bits] -- 3D Maker by Lokas Software O42 - Logiciel: Adobe Acrobat X Pro - English, Français, Deutsch - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-F400-7760-000000000005} =>.Adobe Systems O42 - Logiciel: Adobe After Effects CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {147EC100-14BE-45EF-AB42-35BAEE7D02F0} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7BBAEC47-1CC0-4CB8-ADB4-531B78DBD1DD} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Creative Suite 6 Master Collection - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Flash Player 20 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Lightroom - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Media Encoder CC 2015 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0FAC7130-BEC5-47A5-8813-1D339B8326ED} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Touch App Plugins - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {1EC083EE-5B76-4A2A-B95A-CAF460AA29D6} =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- {EFBE6DD5-B224-96E5-72B9-68D328CB12A6} =>.Adobe Systems Incorporated. O42 - Logiciel: Adobe Widget Browser - (.Adobe Systems Incorporated..) [HKLM][64Bits] -- com.adobe.WidgetBrowser =>.Adobe Systems Incorporated. O42 - Logiciel: AKVIS Chameleon - (.AKVIS.) [HKLM][64Bits] -- {74FD25CB-C6BD-46C5-BA5C-1D74DB730717} =>.AKVIS O42 - Logiciel: Al-Manara Accounting System 2.0 - (.Al-ManaraSoft®.) [HKLM][64Bits] -- {E668B437-4C35-43AF-8F51-0F411723120C} O42 - Logiciel: AMD Catalyst Control Center - (...) [HKLM][64Bits] -- {8B1A559A-FB9D-42F5-A8A7-2F132CF28414} O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp =>.Advanced Micro Devices, Inc.® O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc. O42 - Logiciel: Ashampoo Snap 5 v.5.1.2 - (.Ashampoo GmbH & Co. KG.) [HKLM][64Bits] -- Ashampoo Snap 5_is1 =>.ashampoo GmbH & Co. KG® O42 - Logiciel: Audacity 2.0.6 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 =>.Audacity Team O42 - Logiciel: AV Bros. Page Curl 2.0 (Remove Only) - (...) [HKLM][64Bits] -- AV Bros. Page Curl 2.0 O42 - Logiciel: AV Music Morpher Gold - (...) [HKLM][64Bits] -- AV Music Morpher Gold O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent =>.BitTorrent Inc® O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0} =>.Your Company Name O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player =>.Bluestack Systems, Inc.® O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {E78B4959-B348-4913-874B-FF982378E035} =>.BlueStack Systems, Inc. O42 - Logiciel: CardRecoveryPro 2.6.5 - (.LionSea Software co., ltd.) [HKLM][64Bits] -- {D9E1CADA-D103-47AE-B3F8-0C0CD0E5856E}_is1 =>.LionSea Software co., ltd O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd® O42 - Logiciel: Chrome Remote Desktop Host - (.Google Inc..) [HKLM][64Bits] -- {CDF9E1C8-4B97-4F8B-A848-7DD0E8BEB89F} =>.Google Inc. O42 - Logiciel: Color Efex Pro 4 - (.Nik Software, Inc..) [HKLM][64Bits] -- Color Efex Pro 4 {2F2CE8C1EFE6FCA2BFDAEA44220C7708} =>.Nik Software, Inc. O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- {F0A37341-D692-11D4-A984-009027EC0A9C} =>.Macrovision Corporation® O42 - Logiciel: Conexant SmartAudio HD - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA =>.Conexant Systems, Inc.® O42 - Logiciel: Connectify 2016 - (.Connectify.) [HKLM][64Bits] -- Connectify =>.Connectify O42 - Logiciel: Dell Customer Connect - (.Dell Inc..) [HKLM][64Bits] -- {FEFDCDCF-C49C-45D0-AAF8-5345858ADEC7} =>.Dell Inc. O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM][64Bits] -- {BC8233D8-59BA-4D40-92B9-4FDE7452AA8B} =>.Dell Products, LP O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 73f463568823ebbe {5749F0670170872B6AC321FE67A8445DF2233000} =>.Dell O42 - Logiciel: Dell Touchpad - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation® O42 - Logiciel: Dell Update - (.Dell Inc..) [HKLM][64Bits] -- {DB82968B-57A4-4397-81A5-ECAB21B5DFCD} =>.Dell Inc. O42 - Logiciel: Eye Candy 4000 - (...) [HKLM][64Bits] -- Eye Candy 4000 O42 - Logiciel: GDR 3077 for SQL Server Database Services 2005 ENU (KB960089) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB960089_SQL9 =>.Microsoft Corporation® O42 - Logiciel: GDR 3077 for SQL Server Tools and Workstation Components 2005 ENU (KB960089 - (.Microsoft Corporation.) [HKLM][64Bits] -- KB960089_SQLTools9 =>.Microsoft Corporation® O42 - Logiciel: GoldWave v5.70 - (.GoldWave Inc..) [HKLM][64Bits] -- GoldWave v5.70 =>.GoldWave Inc. O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc® O42 - Logiciel: Google Chrome Canary - (.Google Inc..) [HKCU][64Bits] -- Google Chrome SxS =>.Google Inc® O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>.Google Inc. O42 - Logiciel: install4j 6.0.4 - (.ej-technologies GmbH.) [HKLM][64Bits] -- 6187-37938-2029-3898 {124BDD56D220B9F7CD64A661501AEFC3} O42 - Logiciel: Intel(R) Driver Update Utility 2.0 - (.Intel.) [HKLM][64Bits] -- {59DB38EB-F864-4E10-841D-38CFBCF864B0} =>.Intel O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation® O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX® O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140} =>.Intel Corporation O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {93F692D4-0C4D-4EED-9BFE-657C1D5959FE} =>.Intel Corporation O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor 2.6 - (.Intel.) [HKLM][64Bits] -- {6C9365EB-1F9E-4893-9196-3EC77C88D0C5} =>.Intel O42 - Logiciel: Intel(R) WiDi - (.Intel Corporation.) [HKLM][64Bits] -- {6097158B-0184-4140-BEC3-7885794D2571} =>.Intel Corporation O42 - Logiciel: Intel® Driver Update Utility - (.Intel.) [HKLM][64Bits] -- {8409c4f7-2340-4933-a304-5d37db4fb48b} =>.Intel(R) Driver Update Utility® O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B} =>.Intel Corporation O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.® O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall =>.IObit Information Technology® O42 - Logiciel: Java 7 Update 67 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F06417067FF} =>.Oracle O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} =>.Oracle Corporation O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation O42 - Logiciel: Karaoke CD+G Creator Pro - (.Doblon.) [HKLM][64Bits] -- {AA77219C-0A77-4FF3-8CC5-2DC08469E6FF}_is1 =>.Doblon O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab O42 - Logiciel: Kaspersky Anti-Virus - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab O42 - Logiciel: Kingo ROOT version 1.3.4.2252 - (.Kingosoft Technology Ltd..) [HKLM][64Bits] -- {AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1 =>.Kingosoft Technology Ltd. O42 - Logiciel: K-Lite Mega Codec Pack 7.5.0 - (...) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: KMSpico - (...) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico O42 - Logiciel: KMSpico v9.1.0.20131125 (Beta) - (...) [HKLM][64Bits] -- KMSpico_is1 =>HackTool.KMSpico O42 - Logiciel: Light for Adobe Photoshop (64 Bit) - (.Digital Film Tools.) [HKLM][64Bits] -- {952DF0BE-D914-44B5-AAFE-3014ABFBCD4B} O42 - Logiciel: Light for Adobe Photoshop (64 Bit) - (.Digital Film Tools.) [HKLM][64Bits] -- Light for Adobe Photoshop (64 Bit) O42 - Logiciel: Magical Jelly Bean KeyFinder - (.Magical Jelly Bean.) [HKLM][64Bits] -- KeyFinder_is1 {041ABD63CA5DA9} =>.Magical Jelly Bean O42 - Logiciel: Make ID 1.2 version 1.2 - (.alibasil.com @20015.) [HKLM][64Bits] -- {0326271F-3A66-4CEB-97D4-4B8A1BA09C4A}_is1 O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196} =>.Lenovo Group Limited O42 - Logiciel: Microsoft Access MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Access Setup Metadata MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0117-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft DCF MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Excel MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Groove MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft InfoPath MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Lync MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft OneNote MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Outlook MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft PowerPoint MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Publisher MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Word MUI (English) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Mozilla Firefox 44.0.2 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 44.0.2 (x86 en-US) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {6B00F0E1-2680-11E3-95F5-F04DA23A5C58} =>.Sony Creative Software Inc. O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {A528BDDE-9C9F-11E2-9F0C-F04DA23A5C58} =>.Sony Creative Software Inc. O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {C2B8CBDE-5232-11E3-B494-F04DA23A5C58} =>.Sony Creative Software Inc. O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D10D0851-CCC6-11E3-9ED2-F04DA23A5C58} =>.Sony Creative Software Inc. O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM][64Bits] -- {D81C035E-D0A5-11DF-9450-0013D3D69929} =>.Sony Creative Software Inc. O42 - Logiciel: MySQL Workbench 6.3 CE - (.Oracle Corporation.) [HKLM][64Bits] -- {8E6D8BF8-828A-4F7B-A332-F7CEB8CB75AA} =>.Oracle Corporation O42 - Logiciel: Openmiracle - (.Openmiracle.) [HKLM][64Bits] -- {4FB2C258-FCC8-4059-8221-E01AB9FEB561} O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} =>.Adobe Systems Incorporated O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A} =>.Your Company Name O42 - Logiciel: Photo to Cartoon - (.Caricature Software Inc..) [HKLM][64Bits] -- {2302FD51-7033-48DE-A302-039649DE4AE8} O42 - Logiciel: Plexis POS 3.0 Release 09/23/2015 - (.Plexis Software Systems.) [HKLM][64Bits] -- Plexis Point of Sale_is1 O42 - Logiciel: Power CD+G to Video Karaoke Converter - (.Doblon.) [HKLM][64Bits] -- {B2F83792-DA53-487F-B2F8-84A98E51B7FD}_is1 =>.Doblon O42 - Logiciel: PX Profile Update - (.AMD.) [HKLM][64Bits] -- {873CCF4A-6FC2-69A5-9AD4-FD37D7FCE6B9} =>.AMD O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} =>.Dell Inc. O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC} =>.Apple Inc. O42 - Logiciel: Raptr - (...) [HKLM][64Bits] -- Raptr O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} =>.Realtek Semiconductor Corp® O42 - Logiciel: SambaPOS4 - (.SAMBAPOS.) [HKLM][64Bits] -- {9447659F-1795-44B2-B8A2-E0FA049A5F6E}_is1 O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM][64Bits] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44} =>.Samsung Electronics CO., LTD.® O42 - Logiciel: SAP Crystal Reports runtime engine for .NET Framework 4 (32-bit) - (.SAP.) [HKLM][64Bits] -- {083988D7-BDA9-4244-983B-409A634BBC09} =>.SAP O42 - Logiciel: Service Pack 2 for SQL Server 2008 (KB2285068) (64-bit) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB2285068 =>.Microsoft Corporation® O42 - Logiciel: SHAREit - (.Lenovo Group Limited.) [HKLM][64Bits] -- SHAREit_is1 =>.LENOVO® O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} =>.Skype Technologies S.A. O42 - Logiciel: Sony Mobile Update Engine - (.Sony Mobile Communications Inc..) [HKLM][64Bits] -- Update Engine =>.Sony Mobile Communications® O42 - Logiciel: Sony PC Companion 2.10.281 - (.Sony.) [HKLM][64Bits] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3} =>.Sony Mobile Communications AB® O42 - Logiciel: Sothink Logo Maker Professional - (.SourceTec Software Co., LTD.) [HKLM][64Bits] -- {574FFDC9-AB09-4C4A-B7BE-C6066502181A}_is1 O42 - Logiciel: Splashtop Personal - (.Splashtop Inc..) [HKLM][64Bits] -- {E7CF0F14-8C1D-41F3-85ED-579C108262C7} O42 - Logiciel: Splashtop Software Updater - (.Splashtop Inc..) [HKLM][64Bits] -- Splashtop Software Updater O42 - Logiciel: Splashtop Streamer - (.Splashtop Inc..) [HKLM][64Bits] -- {B7C5EA94-B96A-41F5-BE95-25D78B486678} O42 - Logiciel: Sql Server Customer Experience Improvement Program - (.Microsoft Corporation.) [HKLM][64Bits] -- {2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF} =>.Microsoft Corporation O42 - Logiciel: SsdReady - (.CEZEO software Ltd..) [HKLM][64Bits] -- SsdReady_is1 O42 - Logiciel: TAP-Windows 9.9.2 - (...) [HKLM][64Bits] -- TAP-Windows O42 - Logiciel: Telegram Desktop version 0.9.24 - (.Telegram Messenger LLP.) [HKCU][64Bits] -- {53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1 =>.Telegram Messenger LLP O42 - Logiciel: Topaz Vivacity - (.Topaz Labs LLC.) [HKLM][64Bits] -- {C13A8E73-7E98-4295-BA94-6931701CD1F9} O42 - Logiciel: uniCenta oPOS - (.uniCenta.) [HKLM][64Bits] -- uniCenta oPOS 3.91.3 O42 - Logiciel: Update for Skype for Business 2015 (KB3039776) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{0FA8AE0C-69AE-4F60-A1AB-F79C6BA5A999} =>.Microsoft Corporation® O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation® O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation® O42 - Logiciel: Update for Skype for Business 2015 (KB3114732) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84} =>.Microsoft Corporation® O42 - Logiciel: VASST Cinema Looks Vol.1 - (.VASST Software.) [HKLM][64Bits] -- VASST Cinema Looks Vol.1 O42 - Logiciel: VASST Cinema Looks Vol.13 - (.VASST Software.) [HKLM][64Bits] -- VASST Cinema Looks Vol.13 O42 - Logiciel: VASST EventTools 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST EventTools O42 - Logiciel: VASST Render Assistant 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST Render Assistant O42 - Logiciel: VASST StillMotion 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST StillMotion O42 - Logiciel: VASST StutterFrame 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST StutterFrame O42 - Logiciel: VASST TimeWarp 1.0.2 - (.VASST Software.) [HKLM][64Bits] -- VASST TimeWarp O42 - Logiciel: VASST TitleStrip Vol.4 - (.VASST Software.) [HKLM][64Bits] -- VASST TitleStrip Vol.4 O42 - Logiciel: VASST VoiceAssistant 1.0.1 - (.VASST Software.) [HKLM][64Bits] -- VASST VoiceAssistant O42 - Logiciel: Vector Magic - (.Vector Magic, Inc..) [HKLM][64Bits] -- Vector Magic =>.Vector Magic, Inc. O42 - Logiciel: Vegas Pro 12.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {64A98EF1-2680-11E3-A909-F04DA23A5C58} =>.Sony O42 - Logiciel: Vegas Pro 13.0 (64-bit) - (.Sony.) [HKLM][64Bits] -- {D0360940-CCC6-11E3-B9C6-F04DA23A5C58} =>.Sony O42 - Logiciel: Viber - (.Viber Media Inc.) [HKCU][64Bits] -- Viber =>.Viber Media S.a.r.l® O42 - Logiciel: WibuKey Setup (WibuKey Remove) - (.WIBU-SYSTEMS AG.) [HKLM][64Bits] -- {00060000-0000-1004-8002-0000C06B5161} =>.WIBU-SYSTEMS AG® O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: XAMPP - (.Bitnami.) [HKLM][64Bits] -- xampp =>.BitNami O42 - Logiciel: Zello 1.40.0.0 - (.Zello Inc.) [HKLM][64Bits] -- Zello O42 - Logiciel: دعم تطبيق Apple - (.Apple Inc..) [HKLM][64Bits] -- {46F044A5-CE8B-4196-984E-5BD6525E361D} =>.Apple Inc. ---\\ HKCU & HKLM Software Keys (196) - 30s HKLM\SOFTWARE\Wow6432Node\360Safe HKLM\SOFTWARE\Wow6432Node\360softmgr HKLM\SOFTWARE\Wow6432Node\360TotalSecurity HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\ADSRemoval HKLM\SOFTWARE\Wow6432Node\Advanced Micro Devices, Inc. HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\AKVIS HKLM\SOFTWARE\Wow6432Node\Alien Skin HKLM\SOFTWARE\Wow6432Node\AppDataLow HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\Ashampoo HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\ATI Technologies HKLM\SOFTWARE\Wow6432Node\Avnex HKLM\SOFTWARE\Wow6432Node\BlueStacks HKLM\SOFTWARE\Wow6432Node\Borland HKLM\SOFTWARE\Wow6432Node\Caphyon HKLM\SOFTWARE\Wow6432Node\CCleaner HKLM\SOFTWARE\Wow6432Node\CDDB HKLM\SOFTWARE\Wow6432Node\Chromis HKLM\SOFTWARE\Wow6432Node\Conexant HKLM\SOFTWARE\Wow6432Node\Cygnus Solutions HKLM\SOFTWARE\Wow6432Node\Dell HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch HKLM\SOFTWARE\Wow6432Node\GNU HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\HaaliMkx HKLM\SOFTWARE\Wow6432Node\HadaraSoft HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\Innovative Solutions HKLM\SOFTWARE\Wow6432Node\Insyde HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Internet Download Manager HKLM\SOFTWARE\Wow6432Node\IO3O HKLM\SOFTWARE\Wow6432Node\IObit HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\K5 HKLM\SOFTWARE\Wow6432Node\KasperskyLab HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\KLCodecPack HKLM\SOFTWARE\Wow6432Node\Lenovo HKLM\SOFTWARE\Wow6432Node\Licenses HKLM\SOFTWARE\Wow6432Node\LiveUpdate360 HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard HKLM\SOFTWARE\Wow6432Node\Lokas Ltd HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Minnetonka Audio Software HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\Nalpeiron HKLM\SOFTWARE\Wow6432Node\Nik Software HKLM\SOFTWARE\Wow6432Node\Nord Trading Network HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Openbravo HKLM\SOFTWARE\Wow6432Node\Opera Software HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic HKLM\SOFTWARE\Wow6432Node\PowerPivot HKLM\SOFTWARE\Wow6432Node\Raptr HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\SAP BusinessObjects HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Sony HKLM\SOFTWARE\Wow6432Node\Sony Creative Software HKLM\SOFTWARE\Wow6432Node\Sony Mobile HKLM\SOFTWARE\Wow6432Node\SourceTec HKLM\SOFTWARE\Wow6432Node\Splashtop Inc. HKLM\SOFTWARE\Wow6432Node\Topaz Labs LLC HKLM\SOFTWARE\Wow6432Node\TrueSoftware HKLM\SOFTWARE\Wow6432Node\uniCenta HKLM\SOFTWARE\Wow6432Node\VASST HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\VVK HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro HKLM\SOFTWARE\Wow6432Node\WIBU-SYSTEMS HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark HKLM\SOFTWARE\Wow6432Node\Wow6432Node HKLM\SOFTWARE\Wow6432Node\xampp HKLM\SOFTWARE\Wow6432Node\XinYi Network HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\360 HKCU\SOFTWARE\360TotalSecurity HKCU\SOFTWARE\4shared HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\Adobe Lightroom HKCU\SOFTWARE\Akeo Consulting HKCU\SOFTWARE\AKVIS HKCU\SOFTWARE\AlManaraSoft HKCU\SOFTWARE\AntiCrash HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\Ashampoo HKCU\SOFTWARE\Atheros HKCU\SOFTWARE\ATI HKCU\SOFTWARE\Audacity HKCU\SOFTWARE\Avnex HKCU\SOFTWARE\BcmSetup HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Borland HKCU\SOFTWARE\Cameyo HKCU\SOFTWARE\CardRecoveryPro HKCU\SOFTWARE\CardRecoveryPro_Init HKCU\SOFTWARE\Caricature Software HKCU\SOFTWARE\CEZEO software HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\Class HKCU\SOFTWARE\Cygnus Solutions HKCU\SOFTWARE\Dell Computer Corporation HKCU\SOFTWARE\Digimarc HKCU\SOFTWARE\Digital Film Tools HKCU\SOFTWARE\DirectShow HKCU\SOFTWARE\Doblon HKCU\SOFTWARE\DoctorPCConfig HKCU\SOFTWARE\DoctorPCLanguage HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\DSP-worx HKCU\SOFTWARE\DXTransform HKCU\SOFTWARE\ej-technologies HKCU\SOFTWARE\Elantech HKCU\SOFTWARE\Fast Reports HKCU\SOFTWARE\Faux HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\GNU HKCU\SOFTWARE\GoldWave HKCU\SOFTWARE\Google HKCU\SOFTWARE\Haali HKCU\SOFTWARE\HadaraSoft HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\iMacros HKCU\SOFTWARE\Innovative Solutions HKCU\SOFTWARE\Integrator HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\KasperskyLab HKCU\SOFTWARE\ksdev HKCU\SOFTWARE\LAV HKCU\SOFTWARE\Lenovo HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\LiveUpdate360 HKCU\SOFTWARE\LogMeInRescueCallingCard HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\madFlac HKCU\SOFTWARE\MC4D HKCU\SOFTWARE\MechCAD HKCU\SOFTWARE\MediaInfo HKCU\SOFTWARE\Mercury32 HKCU\SOFTWARE\MONOGRAM HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\MySQL AB HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\Nik Software HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\OneClickRoot HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\Oracle HKCU\SOFTWARE\PACE Anti-Piracy HKCU\SOFTWARE\PhotoInstrument HKCU\SOFTWARE\Pictures HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\Raptr HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\SAP BusinessObjects HKCU\SOFTWARE\Skyhook Wireless HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Sony HKCU\SOFTWARE\Sony Creative Software HKCU\SOFTWARE\SourceTec HKCU\SOFTWARE\Splashtop Inc. HKCU\SOFTWARE\SYNCJM HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\vanBasco HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\Vector Magic HKCU\SOFTWARE\VectorMagic HKCU\SOFTWARE\VertusTech HKCU\SOFTWARE\Viber HKCU\SOFTWARE\VOS HKCU\SOFTWARE\Waves Audio HKCU\SOFTWARE\WIBU-SYSTEMS HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\XinYi Network HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Contents of the Common Files folders (357) - 55s O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\100 =>.Microsoft Corporation® O43 - CFD: 30/01/2015 - [] D -- C:\Program Files (x86)\360 =>.Qihoo 360 Software (Beijing) Company Limited® O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\80 =>Heuristique.Suspect O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\90 =>.Microsoft Corporation® O43 - CFD: 27/07/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated® O43 - CFD: 17/05/2015 - [] D -- C:\Program Files (x86)\AKVIS {4036679835556E3C93EFEDCAAA7D1F79} O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Al-Manara Accounting =>.SafeNet, Inc.® O43 - CFD: 31/10/2015 - [] D -- C:\Program Files (x86)\AMD O43 - CFD: 24/12/2014 - [] D -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.® O43 - CFD: 31/05/2015 - [] D -- C:\Program Files (x86)\Ashampoo =>.Ashampoo GmbH & Co. KG® O43 - CFD: 25/02/2015 - [] D -- C:\Program Files (x86)\Audacity O43 - CFD: 20/02/2015 - [] D -- C:\Program Files (x86)\AV Music Morpher Gold {27F1A35940CA6E5585F0B25F43765D1E} O43 - CFD: 12/02/2015 - [] D -- C:\Program Files (x86)\BlueStacks O43 - CFD: 28/02/2015 - [] D -- C:\Program Files (x86)\CardRecoveryPro {288A6842C331C5443D747BDABF31E2A3} O43 - CFD: 30/05/2015 - [] D -- C:\Program Files (x86)\Caricature Software Inc O43 - CFD: 04/04/2015 - [] D -- C:\Program Files (x86)\CCleaner =>.Piriform Ltd® O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 20/12/2015 - [] D -- C:\Program Files (x86)\Connectify =>.Connectify (Connectify, Inc.)® O43 - CFD: 29/01/2015 - [0] D -- C:\Program Files (x86)\Dachshund Software O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Dell Customer Connect =>.Dell Inc.® O43 - CFD: 03/06/2015 - [] D -- C:\Program Files (x86)\Dell Digital Delivery O43 - CFD: 30/08/2015 - [] D -- C:\Program Files (x86)\Dell Update =>.Dell Inc.® O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Doblon O43 - CFD: 05/11/2015 - [0] D -- C:\Program Files (x86)\DoubleEntrySoftware O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\FastReports O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\GoldWave O43 - CFD: 28/12/2015 - [] D -- C:\Program Files (x86)\Google =>.Google Inc® O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\HadaraSoft O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\hi51 O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\Hide My IP O43 - CFD: 10/11/2015 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation® O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - pGFX® O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Intel Driver Update Utility =>.Intel(R) Driver Update Utility® O43 - CFD: 18/02/2015 - [] D -- C:\Program Files (x86)\Internet Download Manager O43 - CFD: 12/01/2016 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 29/01/2015 - [] D -- C:\Program Files (x86)\IObit =>.IObit Information Technology® O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.® O43 - CFD: 11/11/2015 - [] D -- C:\Program Files (x86)\Jolimark O43 - CFD: 04/04/2015 - [] D -- C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 02/11/2015 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab® O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Kingo ROOT =>.ZJMedia Digital Technology Ltd.® O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Lenovo =>.LENOVO® O43 - CFD: 01/06/2015 - [] D -- C:\Program Files (x86)\Lokas O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Magical Jelly Bean {041ABD63CA5DA9} O43 - CFD: 24/09/2015 - [] D -- C:\Program Files (x86)\Make ID 1.2 O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation® O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation® O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Microsoft SQL Server =>.Microsoft Corporation® O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0 O43 - CFD: 16/09/2015 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation® O43 - CFD: 14/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation® O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\MSSQL.1 =>.Microsoft Corporation® O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\My Company Name O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\NewSoftware's O43 - CFD: 29/12/2015 - [] D -- C:\Program Files (x86)\Openmiracle O43 - CFD: 09/11/2015 - [] D -- C:\Program Files (x86)\POS 30 O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Programsshop O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\QuickTime O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\Raptr =>.Raptr, Inc® O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp® O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 02/01/2016 - [] D -- C:\Program Files (x86)\SambaPOS4 O43 - CFD: 22/12/2014 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl® O43 - CFD: 13/04/2015 - [] D -- C:\Program Files (x86)\Sony =>.Sony Mobile Communications AB® O43 - CFD: 26/09/2015 - [] D -- C:\Program Files (x86)\Sony Mobile =>.Sony Mobile Communications® O43 - CFD: 18/02/2015 - [] D -- C:\Program Files (x86)\SourceTec {2B82ABA86D863021CD8B799A9D366BE1} O43 - CFD: 15/02/2015 - [] D -- C:\Program Files (x86)\Splashtop =>.Splashtop Inc.® O43 - CFD: 17/02/2015 - [] D -- C:\Program Files (x86)\Topaz Labs LLC O43 - CFD: 14/11/2015 - [] D -- C:\Program Files (x86)\unicentaopos-3.91.3 O43 - CFD: 30/09/2015 - [0] D -- C:\Program Files (x86)\UPCleaner O43 - CFD: 17/05/2015 - [] D -- C:\Program Files (x86)\VASST O43 - CFD: 06/10/2015 - [] D -- C:\Program Files (x86)\Vector Magic O43 - CFD: 22/09/2015 - [] D -- C:\Program Files (x86)\WIBU-SYSTEMS O43 - CFD: 22/09/2015 - [] D -- C:\Program Files (x86)\WIBUKEY =>.WIBU-SYSTEMS AG® O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 14/08/2015 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 10/07/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 31/03/2015 - [] D -- C:\Program Files (x86)\Zello O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center O43 - CFD: 02/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle ES2 O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6 O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AKVIS O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Al-Manara Accounting O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Bros. Page Curl 2.0 O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AV Music Morpher Gold O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecoveryPro O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CEZEO software O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connectify 2016 O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dachshund Software O43 - CFD: 30/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Digital Film Tools O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverMax O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 28/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel O43 - CFD: 21/12/2014 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke 5 O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Karaoke CD+G Creator Pro O43 - CFD: 02/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyFinder O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 24/09/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Make ID 1.2 O43 - CFD: 15/02/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 O43 - CFD: 30/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005 O43 - CFD: 29/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2008 O43 - CFD: 08/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL O43 - CFD: 17/05/2015 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted O43 - CFD: 01/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\POS 30 O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Power CD+G to Video Converter O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime O43 - CFD: 02/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SambaPOS4 O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 26/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SourceTec O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Splashtop Remote O43 - CFD: 28/09/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 10/07/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 14/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniCenta oPOS O43 - CFD: 22/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WibuKey O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 19/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP O43 - CFD: 17/12/2015 - [] D -- C:\ProgramData\1450316473_00000000_base O43 - CFD: 18/02/2016 - [] SHD -- C:\ProgramData\360Quarant O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\360safe O43 - CFD: 20/07/2015 - [0] D -- C:\ProgramData\360SD O43 - CFD: 16/04/2015 - [] D -- C:\ProgramData\360TotalSecurity O43 - CFD: 13/11/2015 - [0] D -- C:\ProgramData\7WMiniPro7 =>PUP.Optional.WdsManPro O43 - CFD: 23/07/2015 - [] D -- C:\ProgramData\Adobe O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\AKVIS O43 - CFD: 01/02/2015 - [0] D -- C:\ProgramData\ALM O43 - CFD: 16/08/2015 - [0] D -- C:\ProgramData\AMD O43 - CFD: 24/12/2014 - [] D -- C:\ProgramData\Apple O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Atheros O43 - CFD: 27/10/2015 - [] D -- C:\ProgramData\ATI O43 - CFD: 20/02/2015 - [] D -- C:\ProgramData\Avnex O43 - CFD: 12/02/2015 - [] D -- C:\ProgramData\BlueStacks O43 - CFD: 12/02/2015 - [] D -- C:\ProgramData\BlueStacksSetup O43 - CFD: 06/02/2016 - [] D -- C:\ProgramData\boost_interprocess O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms O43 - CFD: 10/11/2015 - [] D -- C:\ProgramData\Conexant O43 - CFD: 20/12/2015 - [] D -- C:\ProgramData\Connectify O43 - CFD: 15/08/2015 - [] D -- C:\ProgramData\Dell O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Google O43 - CFD: 22/09/2015 - [] D -- C:\ProgramData\Hadarasoft O43 - CFD: 22/12/2014 - [0] D -- C:\ProgramData\IDM O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Intel O43 - CFD: 23/12/2014 - [] D -- C:\ProgramData\IObit O43 - CFD: 17/02/2016 - [] D -- C:\ProgramData\Kaspersky Lab O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 16/09/2015 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 15/02/2016 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 16/09/2015 - [] D -- C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS O43 - CFD: 21/12/2014 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 01/06/2015 - [] D -- C:\ProgramData\Nik Software O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\Oracle O43 - CFD: 24/12/2014 - [] D -- C:\ProgramData\PACE Anti-Piracy O43 - CFD: 14/01/2016 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 21/02/2015 - [] D -- C:\ProgramData\ProductData O43 - CFD: 14/08/2015 - [] D -- C:\ProgramData\regid.1986-12.com.adobe O43 - CFD: 16/09/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 02/01/2016 - [] D -- C:\ProgramData\SAMBAPOS O43 - CFD: 19/02/2015 - [] D -- C:\ProgramData\Samsung O43 - CFD: 30/01/2015 - [] D -- C:\ProgramData\Skype O43 - CFD: 14/10/2015 - [] D -- C:\ProgramData\SoftwareDistribution O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Sony O43 - CFD: 13/04/2015 - [] D -- C:\ProgramData\Sony Mobile O43 - CFD: 28/12/2015 - [] D -- C:\ProgramData\Splashtop O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 28/05/2015 - [] D -- C:\ProgramData\Sun O43 - CFD: 05/11/2015 - [0] AD -- C:\ProgramData\TEMP O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared O43 - CFD: 17/05/2015 - [] HDC -- C:\ProgramData\{3864EB19-CBE0-4FD1-962A-F464C0960D46} O43 - CFD: 22/12/2014 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic O43 - CFD: 19/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 23/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 24/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 27/07/2015 - [] D -- C:\Program Files (x86)\Common Files\AV O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared O43 - CFD: 21/06/2015 - [] D -- C:\Program Files (x86)\Common Files\Doblon O43 - CFD: 16/08/2015 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\IObit O43 - CFD: 28/05/2015 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 04/06/2015 - [] D -- C:\Program Files (x86)\Common Files\LENOVO O43 - CFD: 30/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 01/02/2015 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 22/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared O43 - CFD: 15/08/2015 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 21/12/2014 - [] D -- C:\Program Files (x86)\Common Files\{F0A37341-D692-11D4-A984-009027EC0A9C} O43 - CFD: 07/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\360safe O43 - CFD: 07/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\360TotalSecurity O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\8ootLogoChanger O43 - CFD: 15/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Adobe O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\AMD O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Apple Computer O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ATI O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Audacity O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\BitTorrent O43 - CFD: 30/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\CEZEO software O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Digital Film Tools O43 - CFD: 07/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\dlg O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\DMCache O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Doblon O43 - CFD: 30/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Enigma Software Group O43 - CFD: 28/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Identities O43 - CFD: 30/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\IDM O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\InstallShield O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Intel Corporation O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Intel WiDi O43 - CFD: 23/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\IObit O43 - CFD: 19/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Kingosoft O43 - CFD: 27/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\library_dir O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Macromedia O43 - CFD: 14/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MAXON O43 - CFD: 10/11/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MechCAD O43 - CFD: 04/04/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Media Player Classic O43 - CFD: 12/03/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\mgyun O43 - CFD: 06/11/2015 - [] SD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Mozilla O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\mxnitro O43 - CFD: 08/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\MySQL O43 - CFD: 07/01/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Opera Software O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\PACE Anti-Piracy O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\PDAppFlex O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ProductData O43 - CFD: 22/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Publish Providers O43 - CFD: 15/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Raptr O43 - CFD: 02/01/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\SambaPOS O43 - CFD: 25/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Skype O43 - CFD: 01/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Sony O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Sony Creative Software Inc O43 - CFD: 18/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\SourceTec O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Telegram Desktop O43 - CFD: 30/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\UG O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\VASST O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ViberPC O43 - CFD: 16/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\VOS O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\WinRAR O43 - CFD: 30/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\WOW O43 - CFD: 18/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\ZHP O43 - CFD: 17/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Adobe O43 - CFD: 24/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\AMD O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apple O43 - CFD: 24/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apple Computer O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\Application Data O43 - CFD: 29/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Apps O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\ATI O43 - CFD: 20/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\AVSoft_Corp._(VN) O43 - CFD: 12/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Bluestacks O43 - CFD: 31/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Comms O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Conexant O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\DefaultDomain_Path_evwo4rmihh1l5n3k3nvrk3er0orp4lvt O43 - CFD: 30/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\DellUI O43 - CFD: 28/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Deployment O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Diagnostics O43 - CFD: 17/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Downloaded Installations O43 - CFD: 14/02/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\ElevatedDiagnostics O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieBrowserModeList O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieSiteList O43 - CFD: 13/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\EmieUserList O43 - CFD: 07/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Google O43 - CFD: 22/09/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Hadarasoft O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\History O43 - CFD: 28/05/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel O43 - CFD: 22/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel WiDi O43 - CFD: 21/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Intel_Corporation O43 - CFD: 04/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Inverse_Karma O43 - CFD: 19/02/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Kingosoft O43 - CFD: 04/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Lenovo O43 - CFD: 01/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Macromedia O43 - CFD: 10/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft O43 - CFD: 29/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft Help O43 - CFD: 15/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\MicrosoftEdge O43 - CFD: 29/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft_Corporation O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Mozilla O43 - CFD: 15/08/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\NetworkTiles O43 - CFD: 01/06/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Nik Software O43 - CFD: 24/12/2014 - [] HD -- C:\Users\HuzaifaAldakkak\AppData\Local\od1NOdS48 O43 - CFD: 07/01/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Opera Software O43 - CFD: 24/12/2014 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\PACE Anti-Piracy O43 - CFD: 14/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Packages O43 - CFD: 15/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Local\PeerDistRepub O43 - CFD: 21/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Programs O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Publishers O43 - CFD: 02/01/2016 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Samba O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Skype O43 - CFD: 22/12/2014 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Sony O43 - CFD: 09/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\StickyNotes O43 - CFD: 18/02/2016 - [] AD -- C:\Users\HuzaifaAldakkak\AppData\Local\Temp O43 - CFD: 14/08/2015 - [0] SHD -- C:\Users\HuzaifaAldakkak\AppData\Local\Temporary Internet Files O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\TileDataLayer O43 - CFD: 08/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Viber O43 - CFD: 14/01/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\VirtualStore O43 - CFD: 08/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Waow O43 - CFD: 31/03/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Local\Zello O43 - CFD: 10/07/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 14/08/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 24/10/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 01/06/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AV Bros. Page Curl 2.0 O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Canary Apps O43 - CFD: 30/09/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 05/11/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DoubleEntrySoftware O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoldWave O43 - CFD: 28/12/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 29/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary O43 - CFD: 14/06/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Home Inventory v5.1 O43 - CFD: 05/11/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\install4j 6 O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 10/07/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 06/05/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted O43 - CFD: 27/04/2015 - [0] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneClickRoot O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter O43 - CFD: 05/11/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 10/07/2015 - [] RD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 11/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Topaz Labs O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VASST O43 - CFD: 05/10/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vector Magic O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell O43 - CFD: 14/08/2015 - [] D -- C:\Users\HuzaifaAldakkak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\HuzaifaAldakkak\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL =>.Microsoft Corporation® ---\\ System Drivers List (104) - 15s O58 - SDL:2015/12/11 04:07:28 A . (.360.cn - 360安全卫士 网络防黑模块.) -- C:\WINDOWS\System32\drivers\360AntiHacker64.sys [137808] =>.Qihoo 360 Software (Beijing) Company Limited® O58 - SDL:2015/12/11 04:07:27 A . (.360.cn - 360杀毒 文件监控驱动.) -- C:\WINDOWS\System32\drivers\360AvFlt.sys [77904] =>.Qihoo 360 Software (Beijing) Company Limited® O58 - SDL:2015/12/11 04:07:28 A . (.360.cn - 360Box64.) -- C:\WINDOWS\System32\drivers\360Box64.sys [319568] =>.Qihoo 360 Software (Beijing) Company Limited® O58 - SDL:2014/12/24 10:11:46 A . (.360.cn - 360安全卫士 木马防火墙模块.) -- C:\WINDOWS\System32\drivers\360Camera64.sys [40520] =>.Qihoo 360 Software (Beijing) Company Limited® O58 - SDL:2015/12/11 04:07:26 A . (.360.cn - 360 Total Security.) -- C:\WINDOWS\System32\drivers\360fsflt.sys [367696] =>.QIHU 360 SOFTWARE CO. LIMITED® O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows® O58 - SDL:2015/10/12 20:13:02 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\WINDOWS\System32\drivers\amdacpksd.sys [297672] =>.Advanced Micro Devices, Inc.® O58 - SDL:2013/05/23 00:38:50 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [36096] =>.Advanced Micro Devices, Inc.® O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows® O58 - SDL:2015/09/01 09:01:10 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [21655080] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2015/09/01 09:01:08 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [686120] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2015/12/11 04:07:26 A . (.360.cn - BAPIDRV.) -- C:\WINDOWS\System32\drivers\BAPIDRV64.SYS [181328] =>.Qihoo 360 Software (Beijing) Company Limited® O58 - SDL:2013/09/04 17:12:38 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\WINDOWS\System32\drivers\bcbtums.sys [170712] =>.Broadcom Corporation® O58 - SDL:2015/07/10 12:59:38 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation® O58 - SDL:2015/09/22 11:40:20 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\WINDOWS\System32\drivers\bcmwl63a.sys [11143200] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2013/09/04 17:12:52 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\WINDOWS\System32\drivers\btwampfl.sys [166104] =>.Broadcom Corporation® O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows® O58 - SDL:2011/10/17 02:00:00 A . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [10224] =>.Sonic Solutions® O58 - SDL:2011/10/17 02:00:00 A . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [10224] =>.Sonic Solutions® O58 - SDL:2015/12/20 19:22:53 A . (.Connectify - Connectify NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cfywlan2.sys [46088] =>.Connectify (Connectify, Inc.)® O58 - SDL:2014/12/21 21:45:06 A . (.Conexant Systems Inc. - 64-bit High Definition Audio Function Drive.) -- C:\WINDOWS\System32\drivers\CHDRT64.sys [1607328] =>.Conexant Systems, Inc.® O58 - SDL:2015/07/05 23:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\WINDOWS\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab® O58 - SDL:2015/05/23 15:23:55 A . (.Connectify - NDISRD helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy3.sys [35352] =>.Connectify® O58 - SDL:2015/12/20 19:22:52 A . (.Connectify - CNNCTFY helper driver.) -- C:\WINDOWS\System32\drivers\cnnctfy4.sys [53216] =>.Connectify (Connectify, Inc.)® O58 - SDL:2014/12/24 10:11:45 A . (.360安全中心 - 360Efimon Driver.) -- C:\WINDOWS\System32\drivers\efimon.sys [23752] =>.Qihoo 360 Software (Beijing) Company Limited® O58 - SDL:2015/01/30 14:56:23 A . (...) -- C:\WINDOWS\System32\drivers\EsgScanner.sys [22704] =>.Enigma Software Group USA, LLC® O58 - SDL:2014/04/14 22:07:44 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\WINDOWS\System32\drivers\ETD.sys [359688] =>.ELAN Microelectronics Corporation® O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows® O58 - SDL:2015/04/13 20:16:53 A . (.Sony Mobile Communications - SOMC USB Flash Driver Filter.) -- C:\WINDOWS\System32\drivers\ggflt.sys [16088] =>.Sony Mobile Communications AB® O58 - SDL:2015/04/13 20:16:53 A . (.Sony Mobile Communications - SOMC USB Flash Driver.) -- C:\WINDOWS\System32\drivers\ggsomc.sys [30424] =>.Sony Mobile Communications AB® O58 - SDL:2015/01/06 16:38:26 A . (.Splashtop Inc. - Filter Driver for HID-KMDF Interface.) -- C:\WINDOWS\System32\drivers\hidkmdf.sys [15072] =>.Splashtop Inc.® O58 - SDL:2013/06/19 16:26:04 A . (.Hide My IP - WFP driver.) -- C:\WINDOWS\System32\drivers\hmip64.sys [38760] {2752899AEB201F1B27B859C996521D15} O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group® O58 - SDL:2013/08/07 13:23:46 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [644968] =>.Intel Corporation - Intel® Rapid Storage Technology® O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows® O58 - SDL:2014/11/29 02:37:06 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [180648] =>.Tonec Inc.® O58 - SDL:2015/12/07 23:12:01 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3797424] =>.Intel Corporation - pGFX® O58 - SDL:2012/08/23 12:37:42 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdpmd64.sys [9000256] =>.Intel Corporation O58 - SDL:2015/08/21 10:50:48 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/07/20 21:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [50240] =>.Intel(R) Wireless Display® O58 - SDL:2015/07/20 21:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [38976] =>.Intel(R) Wireless Display® O58 - SDL:2008/05/15 02:28:52 A . (.Atheros Communications, Inc. - Atheros Security NDIS 6.0 Filter Driver.) -- C:\WINDOWS\System32\drivers\jswpslwfx.sys [26624] =>.Atheros Communications, Inc. O58 - SDL:2015/06/22 19:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab® O58 - SDL:2015/06/06 07:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab® O58 - SDL:2015/06/27 00:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [70512] =>.Kaspersky Lab® O58 - SDL:2015/06/06 07:51:00 A . (.Kaspersky Lab ZAO - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [68280] =>.Kaspersky Lab® O58 - SDL:2015/06/24 00:28:32 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klelam.sys [30328] =>.Microsoft Windows Early Launch Anti-malware Publisher® O58 - SDL:2015/11/02 10:39:36 A . (.AO Kaspersky Lab - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab® O58 - SDL:2015/11/02 10:38:03 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [227512] =>.Kaspersky Lab® O58 - SDL:2015/12/02 11:15:17 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [934272] =>.Kaspersky Lab® O58 - SDL:2015/06/11 18:35:38 A . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver [.) -- C:\WINDOWS\System32\drivers\klim6.sys [39608] =>.Kaspersky Lab® O58 - SDL:2015/06/06 07:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [41656] =>.Kaspersky Lab® O58 - SDL:2015/06/07 00:52:56 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [41656] =>.Kaspersky Lab® O58 - SDL:2015/11/02 10:39:37 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab® O58 - SDL:2015/11/02 10:39:37 A . (.Kaspersky Lab ZAO - Network filtering component [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [87944] =>.Kaspersky Lab® O58 - SDL:2015/06/16 20:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [102584] =>.Kaspersky Lab® O58 - SDL:2015/06/23 17:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab® O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108896] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows® O58 - SDL:2012/12/07 09:28:06 A . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\WINDOWS\System32\drivers\ndiskhaz.sys [30536] {112143B4795DF5D1366AD8607B2770CC1649} O58 - SDL:2013/03/01 03:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.® O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows® O58 - SDL:2011/11/03 02:01:00 A . (.Rovi Corporation - Px Engine Device Driver for 64-bit Windows.) -- C:\WINDOWS\System32\drivers\PxHlpa64.sys [56208] =>.Sonic Solutions® O58 - SDL:2012/06/12 08:11:22 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [683664] =>.Realtek Semiconductor Corp® O58 - SDL:2015/07/10 12:59:39 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [587264] =>.Realtek O58 - SDL:2015/05/14 11:10:30 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [402960] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows® O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [108800] =>.DEVGURU CO LTD® O58 - SDL:2014/01/22 07:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] =>.DEVGURU CO LTD® O58 - SDL:2015/01/06 16:38:18 A . (.Splashtop Inc. - Splashtop DPMS Driver.) -- C:\WINDOWS\System32\drivers\stdpms.sys [28904] {32671ADE7C0DD879AA0EF5FA5F9883F6} O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows® O58 - SDL:2015/01/06 16:38:26 A . (.Splashtop Inc. - Splashtop HID mini driver.) -- C:\WINDOWS\System32\drivers\sthid.sys [21216] =>.Splashtop Inc.® O58 - SDL:2013/08/22 14:40:24 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tap0901.sys [40664] =>.OpenVPN Technologies, Inc.® O58 - SDL:2014/12/23 14:25:18 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverx64.sys [118272] =>.Intel Corporation - Intel® Management Engine Firmware® O58 - SDL:2012/05/30 12:10:50 A . (.Intel(R) Corporation - TurboB Device Driver.) -- C:\WINDOWS\System32\drivers\TurboB.sys [16168] {416EC9A1000100005B7D} =>.Intel(R) Corporation O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\WINDOWS\System32\drivers\Udecx.sys [44032] O58 - SDL:2012/10/09 17:48:48 A . (.Windows (R) Win 7 DDK provider - usb3hub.sys.) -- C:\WINDOWS\System32\drivers\usb3Hub.sys [47072] =>.Intel Wireless Display® O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows® O58 - SDL:2012/10/09 17:49:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\WDKMD.sys [42392] =>.Wireless Display® O58 - SDL:2014/07/23 19:04:00 A . (.WIBU-SYSTEMS AG - WIBU-KEY Plug&Play Driver for Windows.) -- C:\WINDOWS\System32\drivers\Wibukey2_64.sys [22320] =>.WIBU-SYSTEMS AG® O58 - SDL:2014/07/23 19:04:00 A . (.WIBU-SYSTEMS AG - WibuKey Windows NT Kernel Driver.) -- C:\WINDOWS\System32\drivers\WibuKey64.sys [106760] =>.WIBU-SYSTEMS AG® O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows® O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows® O58 - SDL:2012/10/09 17:48:48 A . (.Windows (R) Win 7 DDK provider - xHCIport.sys.) -- C:\WINDOWS\System32\drivers\xHCIPort.sys [188896] =>.Intel Wireless Display® ---\\ Last modified or created user files (5) - 107s O61 - LFC: 2016/02/17 14:42:36 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192] O61 - LFC: 2016/02/17 08:07:28 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2653.0\natives_blob.bin [410279] O61 - LFC: 2016/02/17 08:07:28 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2653.0\snapshot_blob.bin [625156] O61 - LFC: 2016/02/16 08:06:10 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2652.0\natives_blob.bin [410441] O61 - LFC: 2016/02/16 08:06:10 A . (..) -- C:\Users\HuzaifaAldakkak\AppData\Local\Google\Chrome SxS\Application\50.0.2652.0\snapshot_blob.bin [626404] ---\\ File Associations Shell Spawning (11) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® ---\\ Start Menu Internet (12) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Search Browser Infection (4) - 5s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ ---\\ Search Svchost Services (42) - 2s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1335296] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [954368] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [954880] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [93696] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [106496] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [1008640] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [226304] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [133120] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [324096] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [371200] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [95744] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [2093056] =>.Microsoft Corporation O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [196096] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [167424] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\WINDOWS\System32\NetSetupSvc.dll [187392] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [680448] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [497152] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [72192] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2237952] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [1168896] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [593920] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [63488] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1149440] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1019392] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [343040] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [712704] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [918016] =>.Microsoft Corporation O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1015808] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [359936] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [237568] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [58368] =>.Microsoft Corporation O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [200192] =>.Microsoft Corporation ---\\ Firewall Active Exception List (3) - 2s O87 - FAEL: "{1FE81AB4-C55D-426E-96C2-35E684A7BEA6}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (.not file.) O87 - FAEL: "{AD80EBF7-A543-44EE-98F9-51BFF5539232}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\MyPublicWiFi\MyPublicWiFi.exe (.not file.) O87 - FAEL: "{C51092FD-15BB-40A7-9BD1-36B0DDFA5B5D}" [In-None-P6-TRUE] .(...) -- C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe (.not file.) ---\\ Additional Scan (O88) (16) - 0s HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico C:\Program Files\KMSpico\Service_KMS.exe =>HackTool.KMSpico HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro =>PUP.Optional.WdsManPro C:\Program Files\KMSpico\AutoPico.exe =>HackTool.KMSpico C:\WINDOWS\System32\Tasks\AutoPico Daily Restart =>HackTool.KMSpico HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\KMSpico_is1 =>HackTool.KMSpico HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>HackTool.KMSpico HKLM\SOFTWARE\Wow6432Node\FFPluginHp =>PUP.Optional.SweetSearch HKLM\SOFTWARE\Wow6432Node\PhraseProfessor_1.10.0.24 =>PUP.Optional.Generic HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro HKLM\SOFTWARE\Wow6432Node\WordShark_1.10.0.20 =>PUP.Optional.WordShark C:\Program Files (x86)\80 =>Heuristique.Suspect C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico C:\ProgramData\7WMiniPro7 =>PUP.Optional.WdsManPro C:\ProgramData\Microsoft Toolkit =>HackTool.AutoKMS C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} =>PUP.Optional.Generic ---\\ Summary of the elements found (7) - 0s http://www.nicolascoolman.fr/?p=989 =>HackTool.KMSpico http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WdsManPro http://www.nicolascoolman.fr/pup-wordshark/ =>PUP.Optional.WordShark http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SweetSearch http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.Generic http://www.nicolascoolman.fr/?p=4664 =>Heuristique.Suspect http://www.nicolascoolman.fr/?p=1804 =>HackTool.AutoKMS ~ End of the scan, 68638 items in 00h05mn50s (1428)(0)