~ ZHPDiag v2016.6.25.107 By Nicolas Coolman (2016/06/25) ~ Run by DELL (Administrator) (2016/06/29 07:30:59) ~ Web: http://www.nicolascoolman.com ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: Version OK ~ Mode: Scan ~ Report: C:\Users\DELL\Desktop\ZHPDiag.txt ~ Report: C:\Users\DELL\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 10 Home Single Language, 64-bit (Build 10586) ---\\ Internet Browsers (2) - 0s MFIE: Mozilla Firefox 47.0.1 (x64 en-US) MSIE: Internet Explorer v11.420.10586.0 ---\\ Windows Product Information (3) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK ---\\ System protection software (3) - 1s Kaspersky Internet Security v16.0.0.614 Malwarebytes Anti-Malware version 2.2.0.1024 Windows Defender (Deactivate) ---\\ Surveillance software (2) - 2s Adobe Flash Player 22 PPAPI Adobe Acrobat Reader DC ---\\ Sharing software PeerToPeer (1) - 2s µTorrent v3.4.5.41202 ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 8267.032 MB (70% free) System Restore: Activé (Enable) System drive C: has 189 GB () free of 322 GB ---\\ Connection to the system mode (3) - 0s ~ Computer Name: DELL-PC ~ User Name: DELL ~ Logged in as Administrator ---\\ Enumeration of the disk units (2) - 0s ~ Drive C: has 189 GB free of 322 GB (System) ~ Drive E: has 300 GB free of 614 GB ---\\ State of the Windows Security Center (7) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Search Generic System Files (24) - 1s [MD5.E15BEB03592BA12C5C99E2BA46146BDD] - 28/05/2016 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [4515264] =>.Microsoft Windows® [MD5.0DCB89B1F3689BC6262FF30BBD603171] - 30/10/2015 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [59392] =>.Microsoft Corporation [MD5.C1C81AAF533552B3C4D9F11A5FF97700] - 23/04/2016 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\WINDOWS\System32\Wininit.exe [291360] =>.Microsoft Windows Publisher® [MD5.75CC21C976BFF286E706AA2D133EB9D4] - 28/05/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [2755584] =>.Microsoft Corporation [MD5.5C156EC4E44E30331BCC865A3B61D839] - 23/04/2016 - (.Microsoft Corporation - Windows Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [585728] =>.Microsoft Corporation [MD5.9EEAA1B69DC3FD620AE576CC8F4147DC] - 30/10/2015 - (.Microsoft Corporation - Software Licensing Library.) -- C:\WINDOWS\System32\sppcomapi.dll [430592] =>.Microsoft Corporation [MD5.9A3E17CDB177913C2A111C80F3D0DBB4] - 29/03/2016 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [686976] =>.Microsoft Windows® [MD5.6A7ACABAE92C837F5C1330188EAE36AE] - 29/03/2016 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\Syswow64\dnsapi.dll [535080] =>.Microsoft Windows® [MD5.70148EFA9A562E7185B75BBE7D376BF7] - 11/12/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [578912] =>.Microsoft Windows® [MD5.492B99D2E3D5D7BFD5F0AE1BE7BD37DD] - 30/10/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows® [MD5.7F9C7226D743B232907ED2537B8A574F] - 30/10/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] =>.Microsoft Corporation [MD5.82D97776BF982AA143BDC7DFB5054EA8] - 30/10/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173568] =>.Microsoft Corporation [MD5.935823F79CBEDB91637B63D37E3A5A36] - 29/03/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [148480] =>.Microsoft Corporation [MD5.84BC034B6BB763733C1949B7B9BAF976] - 30/10/2015 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [79872] =>.Microsoft Corporation [MD5.53FDD9E69189E546DE4740F8C4D8AB2F] - 30/10/2015 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] =>.Microsoft Corporation [MD5.9E5E8F2A1996F23B7E9687846AA81B01] - 30/10/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] =>.Microsoft Corporation [MD5.0B3B0C1D86050355676640488FA897D3] - 23/02/2016 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [430944] =>.Microsoft Windows® [MD5.C03E926B0E7D66D68994067231DC3246] - 28/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [278528] =>.Microsoft Corporation [MD5.19BD8A88AAC580592668B070AC0727D9] - 29/03/2016 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2152280] =>.Microsoft Windows® [MD5.7D0FC96264C0F8F2C1321E33E8EB646C] - 30/10/2015 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation [MD5.E3C82823B22463BC38AA4F8ADA852624] - 23/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation [MD5.1DC2CC74B51E4DC4CD5A20C1021E4010] - 30/10/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [173056] =>.Microsoft Corporation [MD5.91D3F2A6253EF83EFBD7903028F58C4D] - 11/12/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118624] =>.Microsoft Windows® [MD5.E1F91A727A04C9F8199D04FF3BBBF63C] - 30/10/2015 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [414560] =>.Microsoft Windows® ---\\ Non Microsoft non disabled Windows Services (17) - 1s O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) . (.Autodesk Inc. - Autodesk Application Manager.) - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe =>.Autodesk, Inc® O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe =>.Microsoft Windows Hardware Compatibility Publisher® O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® O23 - Service: Autodesk Content Service (Autodesk Content Service) . (.Autodesk, Inc. - Content Service.) - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe =>.Autodesk, Inc.® O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe =>.Kaspersky Lab® O23 - Service: Bonjour Service (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) . (.Dell Products, LP. - Dell Digital Delivery Windows Service.) - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe =>.Dell Inc.® O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology® O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation - pGFX® O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - c:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service® O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation® O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation® O23 - Service: MBAMService (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation® O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004 - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe =>.CyberLink® O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® ---\\ Services not Microsoft (SR=Run, SS=Stop) (26) - 16s SR - Auto [23/03/2016] [ 1231376] Autodesk Application Manager Service (AdAppMgrSvc) . (.Autodesk Inc..) - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe =>.Autodesk, Inc® SR - Auto [22/04/2016] [ 82128] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® SS - Demand [25/06/2016] [ 270528] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SR - Auto [26/08/2015] [ 263200] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe =>.AMD SR - Auto [02/03/2016] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® SR - Auto [09/02/2012] [ 18720] Autodesk Content Service (Autodesk Content Service) . (.Autodesk, Inc..) - C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe =>.Autodesk, Inc.® SR - Auto [05/09/2015] [ 194000] Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe =>.Kaspersky Lab® SR - Demand [18/01/2013] [ 577536] BlackBerry Device Manager (Blackberry Device Manager) . (.Research In Motion Limited.) - C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe =>.Research In Motion Limited SR - Auto [12/08/2015] [ 462096] Bonjour Service (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® SR - Demand [14/10/2015] [ 291744] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel Corporation - pGFX® SS - Auto [14/03/2013] [ 187912] Dell Digital Delivery Service (DellDigitalDelivery) . (.Dell Products, LP..) - c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe =>.Dell Inc.® SS - Demand [02/12/2015] [ 1369856] FlexNet Licensing Service 64 (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe =>.Flexera Software LLC® SR - Auto [19/11/2012] [ 14904] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation - Intel® Rapid Storage Technology® SR - Auto [14/10/2015] [ 330136] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel Corporation SR - Auto [21/04/2012] [ 635104] Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - c:\Program Files\Intel\iCLS Client\HeciServer.exe =>.Intel® Upgrade Service® SR - Demand [01/06/2016] [ 651576] iPod Service (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.® SR - Auto [18/07/2012] [ 165760] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation® SR - Auto [18/07/2012] [ 276864] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation® SS - Auto [05/10/2015] [ 1135416] MBAMService (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation® SS - Demand [29/06/2016] [ 167880] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [25/04/2012] [ 254512] Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Copyright 2004.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe =>.CyberLink® SR - Auto [11/12/2015] [ 312056] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® SS - Demand [30/05/2012] [ 149544] Intel(R) Turbo Boost Technology Monitor 2.6 (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe =>.Intel(R) Software® SR - Auto [18/07/2012] [ 364416] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® SS - Demand [09/07/2015] [ 144640] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab® ---\\ Task Planned Automatically (34) - 6s [MD5.00000000000000000000000000000000] [APT] [TaskName] (...) -- Task To Run (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.DE7BC28EAE6A62BC35754D1DCA4ECF38] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1107672] (.Activate.) =>.Adobe Systems, Incorporated® [MD5.42DA1F4EF723F4B6D1691C74072EDF8D] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [270528] (.Activate.) =>.Adobe Systems Incorporated® [MD5.F419E9A607B79DAB0AC93119016E8342] [APT] [CLMLSvc_P2G8] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136] (.Activate.) =>.CyberLink Corp.® [MD5.2FC635380608BD0D1BF3FB4986676D05] [APT] [CLVDLauncher] (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [340000] (.Activate.) =>.CyberLink Corp.® [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001Core] (...) -- C:\Users\DELL\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001UA] (...) -- C:\Users\DELL\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.CEC2EE3F2D7D9E14E1E1BAF0D740D860] [APT] [HPCustParticipation HP Deskjet 1510 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [5642272] (.Activate.) =>.Hewlett Packard® [MD5.57A2664E14863B90056E0DE510D05AA8] [APT] [HPCustParticipation HP Deskjet 2540 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [5745672] (.Activate.) =>.Hewlett Packard® [MD5.CACD279EAC04E8C829FA2C529EA80B02] [APT] [iToolsDaemon] (.Copyright (C) 2015.) -- C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe [485240] (.Activate.) =>.Shenzhen Thinksky Technology Co.,Ltd® [MD5.2A5C656B0A364580E578B26EAE2EE889] [APT] [klcp_update] (...) -- C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1173504] (.Activate.) [MD5.00000000000000000000000000000000] [APT] [psv_Softplus] (...) -- C:\ProgramData\Spanplus\Faxapcom.reg & del C:\ProgramData\Spanplus\Faxapcom.reg & SCHTASKS /Delete /TN psv_Softplus /F (.not file.) [0] (.Activate.) =>PUP.Optional.SpanPlus [MD5.2584A5BACB8F7CEC323EA92A9EC401D2] [APT] [Synaptics TouchPad Enhancements] (.Synaptics Incorporated.) -- \Program Files\Synaptics\SynTP\SynTPEnh.exe [3010952] (.Activate.) =>.Synaptics Incorporated® [MD5.00000000000000000000000000000000] [APT] [{54BB04EA-4FF7-4470-B042-64374C9F8A0B}] (...) -- C:\Program Files (x86)\MyBrowser\MyBrowser\Application\39.5.2171.95\Installer\setup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.00000000000000000000000000000000] [APT] [{B80C963C-BCC8-4255-AC0C-D68D398F1CAE}] (...) -- C:\Program Files (x86)\ASP\unins000.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.23985274780D27117C470AA259B79B30] [APT] [Apple] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416] (.Activate.) =>.Apple Inc.® [MD5.FEE1D045E9B728A23C6046C1AFFF3CD0] [APT] [HardDiskSentinel] (.H.D.S. Hungary.) -- C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [4137112] (.Activate.) {6A09166723E6A14775CCAC332E9E02C9} O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated® O39 - APT: GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001Core - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001Core.job [868] (.Orphan.) =>.Superfluous.Orphan O39 - APT: GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001UA - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001UA.job [920] (.Orphan.) =>.Superfluous.Orphan O39 - APT: iToolsDaemon - (.Copyright (C) 2015.) -- C:\WINDOWS\Tasks\iToolsDaemon.job [332] =>.Shenzhen Thinksky Technology Co.,Ltd® O39 - APT: Synaptics TouchPad Enhancements - (.Synaptics Incorporated.) -- C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job [264] =>.Synaptics Incorporated® O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3972] =>.Adobe Systems, Incorporated® O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3816] =>.Adobe Systems Incorporated® O39 - APT: CLMLSvc_P2G8 - (.CyberLink.) -- C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8 [2534] =>.CyberLink Corp.® O39 - APT: CLVDLauncher - (.CyberLink Corp..) -- C:\WINDOWS\System32\Tasks\CLVDLauncher [2534] =>.CyberLink Corp.® O39 - APT: GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001Core - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001Core [3326] (.Orphan.) =>.Superfluous.Orphan O39 - APT: GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001UA - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-616811682-2499254475-3198381026-1001UA [3594] (.Orphan.) =>.Superfluous.Orphan O39 - APT: HPCustParticipation HP Deskjet 1510 series - (.Hewlett-Packard Co..) -- C:\WINDOWS\System32\Tasks\HPCustParticipation HP Deskjet 1510 series [2688] =>.Hewlett Packard® O39 - APT: HPCustParticipation HP Deskjet 2540 series - (.Hewlett-Packard Co..) -- C:\WINDOWS\System32\Tasks\HPCustParticipation HP Deskjet 2540 series [2688] =>.Hewlett Packard® O39 - APT: iToolsDaemon - (.Copyright (C) 2015.) -- C:\WINDOWS\System32\Tasks\iToolsDaemon [3326] =>.Shenzhen Thinksky Technology Co.,Ltd® O39 - APT: klcp_update - (...) -- C:\WINDOWS\System32\Tasks\klcp_update [3006] O39 - APT: psv_Softplus - (...) -- C:\WINDOWS\System32\Tasks\psv_Softplus [2264] (.Orphan.) =>PUP.Optional.SpanPlus O39 - APT: Synaptics TouchPad Enhancements - (.Synaptics Incorporated.) -- C:\WINDOWS\System32\Tasks\Synaptics TouchPad Enhancements [2246] =>.Synaptics Incorporated® ---\\ Process running (50) - 2s [MD5.361AF7F2908DE1AD1EAC14C39AC8C55C] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [263200] [PID.1208] =>.Microsoft Windows Hardware Compatibility Publisher® [MD5.75909533EECD0CD9D5974B59474AA6C0] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [330136] [PID.1660] =>.Intel Corporation - pGFX® [MD5.DBE1ADA144291F8E0F29ECC40AE14562] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [312056] [PID.1792] =>.Realtek Semiconductor Corp® [MD5.BB812787B838A74943DEF209350C3883] - (.Intel Corporation - IntelCpHeciSvc Executable.) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe [291744] [PID.2016] =>.Intel Corporation - pGFX® [MD5.3B3774C868868257533EC7E715BB6D53] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.2300] =>.Apple Inc.® [MD5.36114214BF8D7C464D1E92E4EB6B2DD3] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2352] =>.Adobe Systems, Incorporated® [MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.2360] =>.Apple Inc.® [MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avp.exe [194000] [PID.2384] =>.Kaspersky Lab® [MD5.3C4002D339491AF73D663FFC7F6E5ECB] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760] [PID.2400] =>.Intel Corporation® [MD5.35A85429EC0A09EF4CF53F5BB1F5C2C5] - (.Autodesk, Inc. - Content Service.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [18720] [PID.2460] =>.Autodesk, Inc.® [MD5.4089CA9E3DE5D9B722F9E27AB872D697] - (.Autodesk Inc. - Autodesk Application Manager.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1231376] [PID.2540] =>.Autodesk, Inc® [MD5.C99F8E90DE4B8F0C7FE15BB1CBCD29DC] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) -- c:\Program Files\Intel\iCLS Client\HeciServer.exe [635104] [PID.2592] =>.Intel® Upgrade Service® [MD5.41DDCF1ADD1FB7DE23DCF671740DDBE6] - (.Copyright 2004 - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512] [PID.2656] =>.CyberLink® [MD5.2BFF13AC46A5850161317D0F924B5B42] - (.Apple Inc. - iPodService Module (64-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [651576] [PID.6284] =>.Apple Inc.® [MD5.686045905787B68D829CE647A6DFAD2B] - (.Research In Motion Limited - BlackBerry Device Manager.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536] [PID.6460] =>.Research In Motion Limited [MD5.777788D9B63CCEEEF2DB353BA4EDD454] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [14904] [PID.7860] =>.Intel Corporation - Intel® Rapid Storage Technology® [MD5.4269D44BB47A6DA5D80B11F4C8536458] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [276864] [PID.2480] =>.Intel Corporation® [MD5.DBE2E6388379D5CC78099650541E9566] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [364416] [PID.9652] =>.Intel Corporation® [MD5.15750A78DBCD4BC33BEA35646F5DFAD0] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [688160] [PID.724] =>.Microsoft Windows Hardware Compatibility Publisher® [MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe [211712] [PID.7804] =>.Kaspersky Lab® [MD5.2584A5BACB8F7CEC323EA92A9EC401D2] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3010952] [PID.6652] =>.Synaptics Incorporated® [MD5.BC5A40AEAC1CF7708D07CBC2F577F90B] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320] [PID.8936] =>.Realtek Semiconductor Corp® [MD5.FEE1D045E9B728A23C6046C1AFFF3CD0] - (.H.D.S. Hungary - Hard Disk Sentinel Engine.) -- C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [4137112] [PID.8356] {6A09166723E6A14775CCAC332E9E02C9} [MD5.BC5A40AEAC1CF7708D07CBC2F577F90B] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320] [PID.9532] =>.Realtek Semiconductor Corp® [MD5.CACD279EAC04E8C829FA2C529EA80B02] - (.Copyright (C) 2015 - .) -- C:\Program Files (x86)\ThinkSky\iTools 3\iToolsDaemon.exe [485240] [PID.10176] =>.Shenzhen Thinksky Technology Co.,Ltd® [MD5.80A11F070E9EEFCB48B357E9E0E2C7D1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\System32\igfxEM.exe [541600] [PID.4880] =>.Intel Corporation - pGFX® [MD5.B6C52FADECE225339D02B6923E930B5C] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\System32\igfxHK.exe [258456] [PID.9932] =>.Intel Corporation - pGFX® [MD5.8D2A1935AE10BE1E11A8C58B2F473560] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxTray.exe [395168] [PID.8612] =>.Intel Corporation - pGFX® [MD5.641B19018CB32619ADBD0AED4964E1D9] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8512760] [PID.8340] =>.Realtek Semiconductor Corp® [MD5.BC5A40AEAC1CF7708D07CBC2F577F90B] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1411320] [PID.5332] =>.Realtek Semiconductor Corp® [MD5.747CEF68DA0B3BABD64B74C0E06C050E] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [176952] [PID.4796] =>.Apple Inc.® [MD5.B69627958B406D5F0E8747F3381B59D0] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3961968] [PID.5588] =>.Tonec Inc. [MD5.F2AD1B265908797F8A5E21E0312F2F25] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\DELL\AppData\Local\Akamai\netsession_win.exe [4691384] [PID.4716] =>.Superfluous.AkamaiHD [MD5.BAC15D03EFC8249216D1D610F3B1E67F] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe [695528] [PID.8324] =>.Lanzhou Itanium Software Technology Co., Ltd.® [MD5.80DD073CBC9F1352AEE119D824063682] - (.TechSmith Corporation - Snagit.) -- C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe [9519544] [PID.7648] =>.TechSmith Corporation® [MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [96056] [PID.8568] =>.Hewlett-Packard Company® [MD5.F7D25DF43C089285BF402E7B08DB4280] - (.Autodesk, Inc. - Autodesk Desktop App.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [716224] [PID.5248] =>.Autodesk, Inc® [MD5.B289C20C10B241F6016FECD92B267098] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [275512] [PID.1308] =>.Tonec Inc.® [MD5.F2AD1B265908797F8A5E21E0312F2F25] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\DELL\AppData\Local\Akamai\netsession_win.exe [4691384] [PID.9056] =>.Superfluous.AkamaiHD [MD5.BED38B0ADFF5F5CC6E988A6491017E83] - (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792] [PID.5848] =>.Research In Motion® [MD5.10253557DE20EFA35AB06C8F57D8C538] - (.Autodesk - Chromium host executable.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe [485672] [PID.5656] =>.Autodesk, Inc® [MD5.0A1810F3CF866F67856C8A4E98194493] - (.TechSmith Corporation - TechSmith HTML Help Helper.) -- C:\Program Files (x86)\TechSmith\Snagit 11\TscHelp.exe [46080] [PID.9852] =>.TechSmith Corporation [MD5.056E23AFCE4665A3F6C0895F72C5EA0A] - (.TechSmith Corporation - Snagit RPC Helper.) -- C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe [103864] [PID.4060] =>.TechSmith Corporation® [MD5.021228664C4F8EFDCF10EB528B9240F6] - (.TechSmith Corporation - Snagit Editor.) -- C:\Program Files (x86)\TechSmith\Snagit 11\snagiteditor.exe [8845240] [PID.7532] =>.TechSmith Corporation® [MD5.10253557DE20EFA35AB06C8F57D8C538] - (.Autodesk - Chromium host executable.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe [485672] [PID.10196] =>.Autodesk, Inc® [MD5.10253557DE20EFA35AB06C8F57D8C538] - (.Autodesk - Chromium host executable.) -- C:\Program Files (x86)\Autodesk\Autodesk Desktop App\acwebbrowser\acwebbrowser.exe [485672] [PID.3192] =>.Autodesk, Inc® [MD5.F2C26D1E79FEC5EE558B5D3998DCF1A6] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [126856] [PID.9868] =>.Synaptics Incorporated® [MD5.F419E9A607B79DAB0AC93119016E8342] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111136] [PID.4632] =>.CyberLink Corp.® [MD5.61BAC510D29A8B0D2DF7E3C383593621] - (.Copyright Microsoft Corporation - Microsoft Photos.) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [17920] [PID.4164] =>.Copyright Microsoft Corporation [MD5.1F0FD5F97808913DCE17D91E84052308] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\DELL\AppData\Roaming\ZHP\ZHPDiag3.exe [2221568] [PID.8548] =>.Nicolas Coolman ---\\ Google Chrome, Start,Search,Extensions (12) - 0s G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [eahebamiopdhefndnmappcihfajigkka] __MSG_ExtensionName__ G2 - GCE: Preference [User Data\Default] [fcfenmboojpjinhpgggodefccipikbpd] __MSG_ExtnName__ G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (6) - 0s P2 - EXT FILE: (...) -- C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\zralk848.default-1463923571180\extensions\firefox@mega.co.nz.xpi P2 - EXT FILE: (...) -- C:\Users\DELL\AppData\Roaming\Mozilla\Firefox\Profiles\zralk848.default-1463923571180\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_192.dll =>.Adobe Systems Incorporated P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll =>.Apple Inc. P2 - FPN: [HKLM] [@itools.hk/npiTools, version=1.0.0] - (.itools.hk Copyright (C) 2012.) -- C:\Program Files (x86)\ThinkSky\iTools 3\Extensions\npiTools.dll P2 - FPN: [HKLM] [@RIM.com/WebSLLauncher,version=1.0] - (.Research In Motion.) -- C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll =>.Research In Motion ---\\ Internet Explorer Extensions, Start, Search (24) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKEY_USERS\S-1-5-21-616811682-2499254475-3198381026-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/ R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local; R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\SysWOW64\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet= ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object (BHO) (5) - 1s O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.® O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll =>.Microsoft Corporation® O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\IEExt\ie_plugin.dll =>.Kaspersky Lab® O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O2 - BHO: iToolsBHO [64Bits] - {E1499FE7-129D-4B6E-B681-DDF21E14172C} . (.iTools.hk - .) -- C:\Program Files (x86)\ThinkSky\iTools 3\Extensions\iToolsBHO.dll ---\\ Auto loading programs from Registry and folders (13) - 0s O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated® O4 - HKLM\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - Autodesk Sync.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe =>.Autodesk, Inc® O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.® O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\DELL\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD O4 - HKLM\..\Wow6432Node\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files (x86)\USB Disk Security\USBGuard.exe =>.Lanzhou Itanium Software Technology Co., Ltd.® O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Company® O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-616811682-2499254475-3198381026-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - HKUS\S-1-5-21-616811682-2499254475-3198381026-1001\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\DELL\AppData\Local\Akamai\netsession_win.exe =>.Superfluous.AkamaiHD ---\\ Global shortcuts Startup (100) - 7s O4 - GS\Desktop [Administrator]: Adobe Photoshop CS5 ME.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS5 ME\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\Desktop [Administrator]: ARWizard3.lnk . (.NowSmart Studio - .) C:\Program Files (x86)\Sound Rec\ARWizard3.exe O4 - GS\Desktop [Administrator]: FairStars Audio Converter.lnk . (.FairStars Soft - FairStars Audio Converter.) C:\Program Files (x86)\FairStars Audio Converter\AudioConverter.exe =>.FairStars Soft O4 - GS\Desktop [Administrator]: Golden Al-Wafi Translator.lnk . (.ATA Software Technology Ltd - Golden Al-Wafi Translation Software.) C:\Program Files (x86)\Golden Al-Wafi Translator\Golden Al-Wafi Translator.exe O4 - GS\Desktop [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\DELL\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Administrator]: Hard Disk Low Level Format Tool.lnk . (...) C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE O4 - GS\Desktop [Administrator]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {6A09166723E6A14775CCAC332E9E02C9} O4 - GS\Desktop [Administrator]: ImageReady.lnk . (.Adobe Systems Incorporated - ImageReady Middle East Version.) C:\Program Files (x86)\PhotoshopMe\ImageReady.exe =>.Adobe Systems Incorporated O4 - GS\Desktop [Administrator]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [Administrator]: KMPlayer.lnk . (.PandoraTV - The KMPlayer.) C:\KMPlayer\KMPlayer.exe {106CB8E1A76002B367F8EC4EAD341212} =>.PandoraTV O4 - GS\Desktop [Administrator]: mp3DirectCut.lnk . (.Martin Pesch - mp3DirectCut - Direct MP3 editor and record.) C:\Program Files (x86)\MP3 Cut\mp3DirectCut.exe O4 - GS\Desktop [Administrator]: Nero Express.lnk . (.Nero AG - Nero Express.) C:\Program Files (x86)\Nero\Nero 9\Nero Express\NeroExpress.exe =>.Nero AG® O4 - GS\Desktop [Administrator]: photoshop8.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS Middle East Version.) C:\Program Files (x86)\PhotoshopMe\Photoshop.exe =>.Adobe Systems, Incorporated O4 - GS\Desktop [Administrator]: Safe Money.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe =>.Kaspersky Lab® O4 - GS\Desktop [Administrator]: Stremio.lnk . (.Smart Code Ltd. - Stremio.) C:\Users\DELL\AppData\Local\Programs\LNV\Stremio\Stremio.exe =>.Smart Code Ltd. O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\DELL\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Desktop [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\DELL\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - GS\Quicklaunch [Administrator]: FlashDevelop.lnk . (.FlashDevelop.org - FlashDevelop 4.) C:\Program Files (x86)\FlashDevelop\FlashDevelop.exe =>.FlashDevelop.org O4 - GS\Quicklaunch [Administrator]: GOM Player.lnk . (.Gretech Corp. - GOM Player.) C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE {78A2255D0AB283A4DC76EF94B250B7ED} =>.Gretech Corp. O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\DELL\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Administrator]: Hard Disk Low Level Format Tool.lnk . (...) C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE O4 - GS\Quicklaunch [Administrator]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {6A09166723E6A14775CCAC332E9E02C9} O4 - GS\Quicklaunch [Administrator]: iTools 3.lnk . (.深圳创想天空科技有限公司 - iTools 3.) C:\Program Files (x86)\ThinkSky\iTools 3\iTools.exe =>.Shenzhen Thinksky Technology Co.,Ltd® O4 - GS\Quicklaunch [Administrator]: Revo Uninstaller Pro.lnk . (.VS Revo Group - Revo Uninstaller Pro.) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe =>.VS Revo Group® O4 - GS\Quicklaunch [Administrator]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\DELL\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - GS\TaskBar [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\Desktop [DELL]: Adobe Photoshop CS5 ME.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS5 ME\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\Desktop [DELL]: ARWizard3.lnk . (.NowSmart Studio - .) C:\Program Files (x86)\Sound Rec\ARWizard3.exe O4 - GS\Desktop [DELL]: FairStars Audio Converter.lnk . (.FairStars Soft - FairStars Audio Converter.) C:\Program Files (x86)\FairStars Audio Converter\AudioConverter.exe =>.FairStars Soft O4 - GS\Desktop [DELL]: Golden Al-Wafi Translator.lnk . (.ATA Software Technology Ltd - Golden Al-Wafi Translation Software.) C:\Program Files (x86)\Golden Al-Wafi Translator\Golden Al-Wafi Translator.exe O4 - GS\Desktop [DELL]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\DELL\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [DELL]: Hard Disk Low Level Format Tool.lnk . (...) C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE O4 - GS\Desktop [DELL]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {6A09166723E6A14775CCAC332E9E02C9} O4 - GS\Desktop [DELL]: ImageReady.lnk . (.Adobe Systems Incorporated - ImageReady Middle East Version.) C:\Program Files (x86)\PhotoshopMe\ImageReady.exe =>.Adobe Systems Incorporated O4 - GS\Desktop [DELL]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [DELL]: KMPlayer.lnk . (.PandoraTV - The KMPlayer.) C:\KMPlayer\KMPlayer.exe {106CB8E1A76002B367F8EC4EAD341212} =>.PandoraTV O4 - GS\Desktop [DELL]: mp3DirectCut.lnk . (.Martin Pesch - mp3DirectCut - Direct MP3 editor and record.) C:\Program Files (x86)\MP3 Cut\mp3DirectCut.exe O4 - GS\Desktop [DELL]: Nero Express.lnk . (.Nero AG - Nero Express.) C:\Program Files (x86)\Nero\Nero 9\Nero Express\NeroExpress.exe =>.Nero AG® O4 - GS\Desktop [DELL]: photoshop8.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS Middle East Version.) C:\Program Files (x86)\PhotoshopMe\Photoshop.exe =>.Adobe Systems, Incorporated O4 - GS\Desktop [DELL]: Safe Money.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe =>.Kaspersky Lab® O4 - GS\Desktop [DELL]: Stremio.lnk . (.Smart Code Ltd. - Stremio.) C:\Users\DELL\AppData\Local\Programs\LNV\Stremio\Stremio.exe =>.Smart Code Ltd. O4 - GS\Desktop [DELL]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\DELL\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Desktop [DELL]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\DELL\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - GS\Quicklaunch [DELL]: FlashDevelop.lnk . (.FlashDevelop.org - FlashDevelop 4.) C:\Program Files (x86)\FlashDevelop\FlashDevelop.exe =>.FlashDevelop.org O4 - GS\Quicklaunch [DELL]: GOM Player.lnk . (.Gretech Corp. - GOM Player.) C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE {78A2255D0AB283A4DC76EF94B250B7ED} =>.Gretech Corp. O4 - GS\Quicklaunch [DELL]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\DELL\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [DELL]: Hard Disk Low Level Format Tool.lnk . (...) C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE O4 - GS\Quicklaunch [DELL]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {6A09166723E6A14775CCAC332E9E02C9} O4 - GS\Quicklaunch [DELL]: iTools 3.lnk . (.深圳创想天空科技有限公司 - iTools 3.) C:\Program Files (x86)\ThinkSky\iTools 3\iTools.exe =>.Shenzhen Thinksky Technology Co.,Ltd® O4 - GS\Quicklaunch [DELL]: Revo Uninstaller Pro.lnk . (.VS Revo Group - Revo Uninstaller Pro.) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe =>.VS Revo Group® O4 - GS\Quicklaunch [DELL]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\DELL\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - GS\TaskBar [DELL]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\Desktop [Guest]: Adobe Photoshop CS5 ME.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files (x86)\Adobe\Adobe Photoshop CS5 ME\Photoshop.exe =>.Adobe Systems Incorporated® O4 - GS\Desktop [Guest]: ARWizard3.lnk . (.NowSmart Studio - .) C:\Program Files (x86)\Sound Rec\ARWizard3.exe O4 - GS\Desktop [Guest]: FairStars Audio Converter.lnk . (.FairStars Soft - FairStars Audio Converter.) C:\Program Files (x86)\FairStars Audio Converter\AudioConverter.exe =>.FairStars Soft O4 - GS\Desktop [Guest]: Golden Al-Wafi Translator.lnk . (.ATA Software Technology Ltd - Golden Al-Wafi Translation Software.) C:\Program Files (x86)\Golden Al-Wafi Translator\Golden Al-Wafi Translator.exe O4 - GS\Desktop [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\DELL\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Desktop [Guest]: Hard Disk Low Level Format Tool.lnk . (...) C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE O4 - GS\Desktop [Guest]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {6A09166723E6A14775CCAC332E9E02C9} O4 - GS\Desktop [Guest]: ImageReady.lnk . (.Adobe Systems Incorporated - ImageReady Middle East Version.) C:\Program Files (x86)\PhotoshopMe\ImageReady.exe =>.Adobe Systems Incorporated O4 - GS\Desktop [Guest]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc. O4 - GS\Desktop [Guest]: KMPlayer.lnk . (.PandoraTV - The KMPlayer.) C:\KMPlayer\KMPlayer.exe {106CB8E1A76002B367F8EC4EAD341212} =>.PandoraTV O4 - GS\Desktop [Guest]: mp3DirectCut.lnk . (.Martin Pesch - mp3DirectCut - Direct MP3 editor and record.) C:\Program Files (x86)\MP3 Cut\mp3DirectCut.exe O4 - GS\Desktop [Guest]: Nero Express.lnk . (.Nero AG - Nero Express.) C:\Program Files (x86)\Nero\Nero 9\Nero Express\NeroExpress.exe =>.Nero AG® O4 - GS\Desktop [Guest]: photoshop8.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS Middle East Version.) C:\Program Files (x86)\PhotoshopMe\Photoshop.exe =>.Adobe Systems, Incorporated O4 - GS\Desktop [Guest]: Safe Money.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe =>.Kaspersky Lab® O4 - GS\Desktop [Guest]: Stremio.lnk . (.Smart Code Ltd. - Stremio.) C:\Users\DELL\AppData\Local\Programs\LNV\Stremio\Stremio.exe =>.Smart Code Ltd. O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\DELL\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\Desktop [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\DELL\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - GS\Quicklaunch [Guest]: FlashDevelop.lnk . (.FlashDevelop.org - FlashDevelop 4.) C:\Program Files (x86)\FlashDevelop\FlashDevelop.exe =>.FlashDevelop.org O4 - GS\Quicklaunch [Guest]: GOM Player.lnk . (.Gretech Corp. - GOM Player.) C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE {78A2255D0AB283A4DC76EF94B250B7ED} =>.Gretech Corp. O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Users\DELL\AppData\Local\Google\Chrome\Application\chrome.exe =>.Google Inc® O4 - GS\Quicklaunch [Guest]: Hard Disk Low Level Format Tool.lnk . (...) C:\Program Files (x86)\HDDGURU LLF Tool\LLFTOOL.EXE O4 - GS\Quicklaunch [Guest]: Hard Disk Sentinel.lnk . (.H.D.S. Hungary - Hard Disk Sentinel Engine.) C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe {6A09166723E6A14775CCAC332E9E02C9} O4 - GS\Quicklaunch [Guest]: iTools 3.lnk . (.深圳创想天空科技有限公司 - iTools 3.) C:\Program Files (x86)\ThinkSky\iTools 3\iTools.exe =>.Shenzhen Thinksky Technology Co.,Ltd® O4 - GS\Quicklaunch [Guest]: Revo Uninstaller Pro.lnk . (.VS Revo Group - Revo Uninstaller Pro.) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe =>.VS Revo Group® O4 - GS\Quicklaunch [Guest]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) C:\Users\DELL\AppData\Roaming\uTorrent\uTorrent.exe =>.BitTorrent Inc® O4 - GS\TaskBar [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated® O4 - GS\CommonDesktop [Public]: AutoCAD 2013 - English.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\AutoCAD 2013\acad.exe =>.Autodesk, Inc. O4 - GS\CommonDesktop [Public]: Autodesk Desktop App.lnk . (.Autodesk, Inc. - Autodesk Desktop App.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe =>.Autodesk, Inc® O4 - GS\CommonDesktop [Public]: Autodesk Robot Structural Analysis Professional 2016.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\Autodesk Robot Structural Analysis Professional 2016\System\Exe\robot.EXE =>.Autodesk, Inc. O4 - GS\CommonDesktop [Public]: BlackBerry Desktop Software.lnk . (.Research In Motion - BlackBerry Desktop Software.) C:\Program Files (x86)\Research In Motion\BlackBerry Desktop\Rim.Desktop.exe =>.Research In Motion® O4 - GS\CommonDesktop [Public]: ETABS 2015.lnk . (.Computers and Structures, Inc. - .) C:\Program Files (x86)\Computers and Structures\ETABS 2015\ETABS.exe O4 - GS\CommonDesktop [Public]: FlashDevelop.lnk . (.FlashDevelop.org - FlashDevelop 4.) C:\Program Files (x86)\FlashDevelop\FlashDevelop.exe =>.FlashDevelop.org O4 - GS\CommonDesktop [Public]: GOM Player.lnk . (.Gretech Corp. - GOM Player.) C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE {78A2255D0AB283A4DC76EF94B250B7ED} =>.Gretech Corp. O4 - GS\CommonDesktop [Public]: HP Deskjet 2540 series.lnk . (.Hewlett-Packard Co. - .) C:\Program Files (x86)\HP\HP Deskjet 2540 series\Bin\HP Deskjet 2540 series.exe =>.Hewlett-Packard Co. O4 - GS\CommonDesktop [Public]: HP Photo Creations.lnk . (.Visan / RocketLife - PhotoProduct.exe.) C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe =>.Visan Industries® O4 - GS\CommonDesktop [Public]: Inventor Fusion 2013.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\Inventor Fusion 2013\Inventor Fusion.exe =>.Autodesk, Inc. O4 - GS\CommonDesktop [Public]: iTools 3.lnk . (.深圳创想天空科技有限公司 - iTools 3.) C:\Program Files (x86)\ThinkSky\iTools 3\iTools.exe =>.Shenzhen Thinksky Technology Co.,Ltd® O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe =>.Apple Inc. O4 - GS\CommonDesktop [Public]: Kaspersky Internet Security.lnk . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\avpui.exe =>.Kaspersky Lab® O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe =>.Malwarebytes Corporation® O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O4 - GS\CommonDesktop [Public]: Revo Uninstaller Pro.lnk . (.VS Revo Group - Revo Uninstaller Pro.) C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe =>.VS Revo Group® O4 - GS\CommonDesktop [Public]: Shop for Supplies - HP Deskjet 2540 series.lnk . (.Hewlett-Packard Co. - .) C:\Program Files (x86)\HP\HP Deskjet 2540 series\Bin\hpqDTSS.exe =>.Hewlett-Packard Co. O4 - GS\CommonDesktop [Public]: USB Disk Security.lnk . (.Zbshareware Lab - USB Disk Security.) C:\Program Files (x86)\USB Disk Security\USBGuard.exe =>.Lanzhou Itanium Software Technology Co., Ltd.® O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - .) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN O4 - GS\CommonDesktop [Public]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) C:\Program Files (x86)\ZHPFix\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Startup [Public]: Snagit 11.lnk . (.TechSmith Corporation - Snagit.) C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe =>.TechSmith Corporation® ---\\ Lop.com/Domain Hijackers (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{5c85cd06-165b-4e8c-8eeb-0027b1a374a8}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{b463e1ec-7fd6-4390-abb1-1ade9beba4b3}: DhcpNameServer = 192.168.15.1 ---\\ Extra protocols (27) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll =>.Microsoft Corporation O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll =>.Microsoft Corporation O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation® O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll =>.Microsoft Corporation ---\\ Software installed (123) - 9s O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc® O42 - Logiciel: 12.0.0.0 - (.Adobe Photoshop CS5 ME by Magic-M.) [HKLM][64Bits] -- {FECB3E96-76A8-45A9-B73C-D7304DE02190}_is1 O42 - Logiciel: Adobe Acrobat Reader DC - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AC0F074E4100} =>.Adobe Systems Incorporated O42 - Logiciel: Adobe Flash Player 22 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Flash Player 22 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Photoshop CS - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {EFB21DE7-8C19-4A88-BB28-A766E16493BC} =>.Adobe Systems, Inc. O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824184103} =>.Adobe Systems Incorporated O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM][64Bits] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d} =>.Nero AG O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai =>.Superfluous.AkamaiHD O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} =>.Advanced Micro Devices Inc. O42 - Logiciel: Apple Application Support (32-bit) - (.Apple Inc..) [HKLM][64Bits] -- {26356515-5821-40FA-9C3D-9785052A1062} =>.Apple Inc. O42 - Logiciel: Apple Application Support (64-bit) - (.Apple Inc..) [HKLM][64Bits] -- {C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2} =>.Apple Inc. O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2E4AF2A6-50EA-4260-9BA4-5E582D11879A} =>.Apple Inc. O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {56EC47AA-5813-4FF6-8E75-544026FBEA83} =>.Apple Inc. O42 - Logiciel: AutoCAD 2013 - English - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B001-0000-0102-0060B0CE6BBA} =>.Autodesk, Inc® O42 - Logiciel: AutoCAD 2013 - English - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B001-0409-2102-0060B0CE6BBA} =>.Autodesk O42 - Logiciel: AutoCAD 2013 - English - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2013 - English =>.Autodesk, Inc® O42 - Logiciel: AutoCAD 2013 - English SP1.1 - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2013 - English SP1.1 =>.Autodesk O42 - Logiciel: AutoCAD 2013 Help - English - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B034-0409-0100-0060B0CE6BBA} =>.Autodesk, Inc® O42 - Logiciel: AutoCAD 2013 Help - English - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2013 Help - English =>.Autodesk, Inc® O42 - Logiciel: AutoCAD 2013 Language Pack - English - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-B001-0409-1102-0060B0CE6BBA} =>.Autodesk O42 - Logiciel: AutoCAD 2013 VBA Enabler - (.Autodesk.) [HKLM][64Bits] -- {19D00409-7664-446C-01A9-D5B36EB516BE} =>.Autodesk O42 - Logiciel: Autodesk Content Service - (.Autodesk.) [HKLM][64Bits] -- {62F029AB-85F2-0000-866A-9FC0DD99DDBC} =>.Autodesk O42 - Logiciel: Autodesk Content Service - (.Autodesk.) [HKLM][64Bits] -- Autodesk Content Service =>.Autodesk, Inc® O42 - Logiciel: Autodesk Content Service Language Pack - (.Autodesk.) [HKLM][64Bits] -- {62F029AB-85F2-0001-866A-9FC0DD99DDBC} =>.Autodesk O42 - Logiciel: Autodesk Desktop App - (.Autodesk.) [HKLM][64Bits] -- Autodesk Desktop App =>.Autodesk, Inc® O42 - Logiciel: Autodesk Inventor Fusion 2013 - (.Autodesk, Inc..) [HKLM][64Bits] -- {FFF5619F-2013-0064-A85E-9994F70A9E5D} =>.Autodesk, Inc. O42 - Logiciel: Autodesk Inventor Fusion 2013 - (.Autodesk, Inc..) [HKLM][64Bits] -- Autodesk Inventor Fusion 2013 =>.Autodesk, Inc. O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2013 - (.Autodesk.) [HKLM][64Bits] -- {82C1E6E4-6718-4EFD-9DCC-E276D690EF46} =>.Autodesk O42 - Logiciel: Autodesk Inventor Fusion plug-in for AutoCAD 2013 - (.Autodesk.) [HKLM][64Bits] -- Autodesk Inventor Fusion plug-in for AutoCAD 2013 =>.Autodesk, Inc® O42 - Logiciel: Autodesk Inventor Fusion plug-in language pack for AutoCAD 2013 - (.Autodesk.) [HKLM][64Bits] -- {FE2F4875-095C-427C-9A97-4F8DE05ACF22} =>.Autodesk O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD} =>.Autodesk O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {606E12B9-641F-4644-A22A-FF38AE980AFD} =>.Autodesk O42 - Logiciel: Autodesk Robot Structural Analysis Professional 2016 - (.Autodesk, Inc..) [HKLM][64Bits] -- {0F263C60-52CE-46AE-BDAE-299AC6B324B3} =>.Autodesk, Inc. O42 - Logiciel: Autodesk Robot Structural Analysis Professional 2016 - (.Autodesk, Inc..) [HKLM][64Bits] -- Autodesk Robot Structural Analysis Professional 2016 =>.Autodesk, Inc® O42 - Logiciel: Autodesk Robot Structural Analysis Professional 2016 - English regional set - (.Autodesk.) [HKLM][64Bits] -- {E6BB7F0D-5D19-4509-A817-E7A08EBE00A8} =>.Autodesk O42 - Logiciel: Autodesk Sync - (.Autodesk, Inc..) [HKLM][64Bits] -- {EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F} =>.Autodesk, Inc. O42 - Logiciel: BlackBerry Desktop Software 7.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- {BE5B0450-DCCB-4FE9-93E2-3B38D88A745B} =>.Research In Motion Ltd. O42 - Logiciel: BlackBerry Desktop Software 7.1 - (.Research In Motion Ltd..) [HKLM][64Bits] -- BlackBerry_Desktop =>.Research In Motion® O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F} =>.Apple Inc. O42 - Logiciel: CyberLink LabelPrint 2.5 - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} =>.CyberLink® O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} =>.CyberLink Corp.® O42 - Logiciel: CyberLink Media Suite Essentials - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7} =>.CyberLink® O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} =>.CyberLink Corp.® O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {B0B4F6D2-F2AE-451A-9496-6F2F6A897B32} =>.CyberLink Corp.® O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B} =>.CyberLink Corp.® O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft O42 - Logiciel: Dell Backup and Recovery - (.Dell Inc..) [HKLM][64Bits] -- {0ED7EE95-6A97-47AA-AD73-152C08A15B04} =>.Dell Inc. O42 - Logiciel: Dell Backup and Recovery - Support Software - (.Dell Inc..) [HKLM][64Bits] -- {A9668246-FB70-4103-A1E3-66C9BC2EFB49} =>.Dell Inc. O42 - Logiciel: Dell Digital Delivery - (.Dell Products, LP.) [HKLM][64Bits] -- {4B3230C5-F069-416B-9169-1B84A216ED6A} =>.Dell Products, LP O42 - Logiciel: Dell Support Center - (.PC-Doctor, Inc..) [HKLM][64Bits] -- PC-Doctor for Windows =>.Dell Inc® O42 - Logiciel: Dell System Detect - (.Dell.) [HKCU][64Bits] -- 73f463568823ebbe =>.Dell O42 - Logiciel: Dell Touchpad - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated O42 - Logiciel: Dell Update - (.Dell Inc..) [HKLM][64Bits] -- {713A4123-9417-4FF7-AC14-F000D6C0C7AD} =>.Dell Inc. O42 - Logiciel: DolbyFiles - (.Nero AG.) [HKLM][64Bits] -- {b1adf008-e898-4fe2-8a1f-690d9a06acaf} =>.Nero AG O42 - Logiciel: DSC/AA Factory Installer - (.PC-Doctor, Inc..) [HKLM][64Bits] -- {F7A70D00-F283-45C8-B163-49EC365D7E27} =>.PC-Doctor, Inc. O42 - Logiciel: ETABS 2015 64-bit - (.Computers and Structures.) [HKLM][64Bits] -- {7FEA66CB-CA99-45ED-8E8F-CC985D887D8B} O42 - Logiciel: FairStars Audio Converter 1.81 - (.FairStars Soft.) [HKLM][64Bits] -- FairStars Audio Converter_is1 =>.FairStars Soft O42 - Logiciel: FARO LS 1.1.406.58 - (.FARO Scanner Production.) [HKLM][64Bits] -- {951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C} =>.FARO Scanner Production O42 - Logiciel: FlashDevelop - (.FlashDevelop.org.) [HKLM][64Bits] -- FlashDevelop =>.FlashDevelop.org O42 - Logiciel: Fotoğraf Galerisi - (.Microsoft Corporation.) [HKLM][64Bits] -- {DB7B6508-2AAB-4F26-99D4-74559A2F5E42} =>.Microsoft Corporation O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {446CC8CE-0E90-44F7-ADD0-774B243EF090} =>.Microsoft Corporation O42 - Logiciel: Golden Al-Wafi Translator 1.12 - (.<>.) [HKLM][64Bits] -- Golden Al-Wafi Translator (By DR.Ahmed Saker)_is1 O42 - Logiciel: GOM Player - (.Gretech Corporation.) [HKLM][64Bits] -- GOM Player =>.Gretech Corporation O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome =>.Google Inc® O42 - Logiciel: Hard Disk Low Level Format Tool 4.40 - (.HDDGURU.) [HKLM][64Bits] -- Hard Disk Low Level Format Tool_is1 =>.HDDGURU O42 - Logiciel: Hard Disk Sentinel PRO - (.HDS.) [HKLM][64Bits] -- Hard Disk Sentinel_is1 =>.HDS O42 - Logiciel: HP Deskjet 2540 series Basic Device Software - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {6A79CD11-0C1C-4E24-A8C6-46A02F680346} =>.Hewlett-Packard Co. O42 - Logiciel: HP Deskjet 2540 series Help - (.Hewlett Packard.) [HKLM][64Bits] -- {4539575D-C09D-4E71-B207-0F2D6BD74DA2} =>.Hewlett Packard O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations =>.Visan Industries® O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation® O42 - Logiciel: Intel(R) PRO/Wireless Driver - (.Intel Corporation.) [HKLM][64Bits] -- {1334eac7-d6ef-4177-8780-05c963853cd3} =>.Intel Corporation O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation - pGFX® O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation® O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor 2.6 - (.Intel.) [HKLM][64Bits] -- {6C9365EB-1F9E-4893-9196-3EC77C88D0C5} =>.Intel O42 - Logiciel: Intel(R) WiDi - (.Intel Corporation.) [HKLM][64Bits] -- {6097158B-0184-4140-BEC3-7885794D2571} =>.Intel Corporation O42 - Logiciel: Intel® PROSet/Wireless Software - (.Intel Corporation.) [HKLM][64Bits] -- {c9967fbd-e3c3-4ed0-992a-5b33260f2944} =>.Intel Corporation-Mobile Wireless Group® O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {D61F48DA-627B-404E-9315-32A651B18B64} =>.Intel Corporation O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B} =>.Intel Corporation O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.® O42 - Logiciel: iTools 3 - (.Shenzhen Thinksky Technology Co., Ltd..) [HKLM][64Bits] -- ThinkSky O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {9F4BF859-C3A4-4AB6-BDD1-9C5D58188598} =>.Apple Inc. O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab O42 - Logiciel: K-Lite Codec Pack 11.2.8 Full - (...) [HKLM][64Bits] -- KLiteCodecPack_is1 O42 - Logiciel: KMPlayer (remove only) - (.PandoraTV.) [HKLM][64Bits] -- The KMPlayer =>.PandoraTV O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 =>.Malwarebytes O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft Text-to-Speech Engine 4.0 (English) - (...) [HKLM][64Bits] -- MSTTS O42 - Logiciel: Mozilla Firefox 47.0.1 (x64 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 47.0.1 (x64 en-US) =>.Mozilla Corporation® O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} =>.Microsoft O42 - Logiciel: Nero 9 - (.Nero AG.) [HKLM][64Bits] -- {0d2d0eb2-e24f-4411-a28e-7d9fd4161189} =>.Nero AG® O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {bd5ca0da-71ad-43da-b19e-6eee0c9adc9a} =>.Nero AG O42 - Logiciel: Nero InfoTool - (.Nero AG.) [HKLM][64Bits] -- {fbcdfd61-7dcf-4e71-9226-873ba0053139} =>.Nero AG O42 - Logiciel: Nero Installer - (.Nero AG.) [HKLM][64Bits] -- {e8a80433-302b-4ff1-815d-fcc8eac482ff} =>.Nero AG O42 - Logiciel: NeroBurningROM - (.Nero AG.) [HKLM][64Bits] -- {d025a639-b9c9-417d-8531-208859000af8} =>.Nero AG O42 - Logiciel: NeroExpress - (.Nero AG.) [HKLM][64Bits] -- {595a3116-40bb-4e0f-a2e8-d7951da56270} =>.Nero AG O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0401-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0409-0000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Product Improvement Study for HP Deskjet 1510 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {EC27E742-EB04-4A2C-BA64-20271929528A} =>.Hewlett-Packard Co. O42 - Logiciel: Product Improvement Study for HP Deskjet 2540 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {DF34643B-A745-430C-B27B-A48F853C81E4} =>.Hewlett-Packard Co. O42 - Logiciel: PX Profile Update - (.AMD.) [HKLM][64Bits] -- {6D6F8687-FC21-159E-1A5B-665B5722C6BC} =>.AMD O42 - Logiciel: Quickset64 - (.Dell Inc..) [HKLM][64Bits] -- {87CF757E-C1F1-4D22-865C-00C6950B5258} =>.Dell Inc. O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp® O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} =>.Realtek Semiconductor Corp® O42 - Logiciel: Results Connect - (.Autodesk, Inc..) [HKLM][64Bits] -- {E9100151-C562-4B7C-B25F-1355E9ED9387} =>.Autodesk, Inc. O42 - Logiciel: Revo Uninstaller Pro 3.1.6 - (.VS Revo Group, Ltd..) [HKLM][64Bits] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1 =>.VS Revo Group, Ltd. O42 - Logiciel: Shared C Run-time for x64 - (.McAfee.) [HKLM][64Bits] -- {EF79C448-6946-4D71-8134-03407888C054} =>.McAfee O42 - Logiciel: Snagit 11 - (.TechSmith Corporation.) [HKLM][64Bits] -- {68723B04-57EC-11E1-A6A8-9E2D4824019B} =>.TechSmith Corporation O42 - Logiciel: Stremio - (.Smart Code Ltd..) [HKCU][64Bits] -- Stremio =>.Smart Code Ltd. O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM][64Bits] -- USB Disk Security_is1 =>.Zbshareware Lab O42 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido.) [HKLM][64Bits] -- Usbfix =>.El Desaparecido O42 - Logiciel: VBA - (.Microsoft Corporation.) [HKLM][64Bits] -- {5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6} =>.Microsoft Corporation O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: WinRAR 5.40 beta 1 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH® O42 - Logiciel: ZHPFix 2015 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPFix_is1 =>.Nicolas Coolman O42 - Logiciel: معرض الصور - (.Microsoft Corporation.) [HKLM][64Bits] -- {5006FD66-7E9B-4F92-BD36-275AD7712348} =>.Microsoft Corporation ---\\ HKCU & HKLM Software Keys (123) - 9s HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\AppDataLow HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\Audible HKLM\SOFTWARE\Wow6432Node\Autodesk HKLM\SOFTWARE\Wow6432Node\CyberLink HKLM\SOFTWARE\Wow6432Node\Cygwin HKLM\SOFTWARE\Wow6432Node\Dell HKLM\SOFTWARE\Wow6432Node\Dell Inc. HKLM\SOFTWARE\Wow6432Node\DellBackupandRecovery HKLM\SOFTWARE\Wow6432Node\Extended Systems HKLM\SOFTWARE\Wow6432Node\FlashDevelop HKLM\SOFTWARE\Wow6432Node\Golden Al-Wafi Translator HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\GRETECH HKLM\SOFTWARE\Wow6432Node\HaaliMkx HKLM\SOFTWARE\Wow6432Node\HD Sentinel HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\Icaros HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Insyde HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Internet Download Manager HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\KasperskyLab HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\KLCodecPack HKLM\SOFTWARE\Wow6432Node\KMPlayer HKLM\SOFTWARE\Wow6432Node\Lake HKLM\SOFTWARE\Wow6432Node\LAV HKLM\SOFTWARE\Wow6432Node\Licenses HKLM\SOFTWARE\Wow6432Node\LogMeInRescueCallingCard HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\mtApService =>PUP.Optional.Salus HKLM\SOFTWARE\Wow6432Node\mtSpanplus =>PUP.Optional.SpanPlus HKLM\SOFTWARE\Wow6432Node\Nero HKLM\SOFTWARE\Wow6432Node\Nuance HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\PC-Doctor HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Reg HKLM\SOFTWARE\Wow6432Node\Research In Motion HKLM\SOFTWARE\Wow6432Node\RocketLife HKLM\SOFTWARE\Wow6432Node\Rtp HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\SoftThinks HKLM\SOFTWARE\Wow6432Node\TechSmith HKLM\SOFTWARE\Wow6432Node\Visan HKLM\SOFTWARE\Wow6432Node\Voice HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\Waves Audio HKLM\SOFTWARE\Wow6432Node\Wow6432Node HKLM\SOFTWARE\Wow6432Node\zbshareware HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\Akamai HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\ATI HKCU\SOFTWARE\Autodesk HKCU\SOFTWARE\Autodesk, Inc. HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\CyberLink HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\Extended Systems HKCU\SOFTWARE\Google HKCU\SOFTWARE\GRETECH HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\HP HKCU\SOFTWARE\Icaros HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\InstallPath HKCU\SOFTWARE\Intel HKCU\SOFTWARE\KasperskyLab HKCU\SOFTWARE\KMPlayer HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\LogMeInRescueCallingCard HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\madshi HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\MediaInfo HKCU\SOFTWARE\Mine HKCU\SOFTWARE\Mirage HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\MPC-HC HKCU\SOFTWARE\Nero HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\Opera Software HKCU\SOFTWARE\QtProject HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\redsn0w HKCU\SOFTWARE\Reg HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Research In Motion HKCU\SOFTWARE\Rtp HKCU\SOFTWARE\setting HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\Sysinternals HKCU\SOFTWARE\TechSmith HKCU\SOFTWARE\ThinkSky HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\USB Disk Security HKCU\SOFTWARE\Usbfix HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\Visan HKCU\SOFTWARE\VS Revo Group HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software ---\\ Contents of the Common Files folders (286) - 10s O43 - CFD: 11/12/2015 - [] D -- C:\Program Files\AMD O43 - CFD: 05/06/2013 - [] D -- C:\Program Files\ATI =>.Advanced Micro Devices, Inc.® O43 - CFD: 02/02/2016 - [] D -- C:\Program Files\Autodesk =>.Autodesk, Inc® O43 - CFD: 18/09/2015 - [] AD -- C:\Program Files\Bonjour =>.Apple Inc.® O43 - CFD: 11/12/2015 - [] D -- C:\Program Files\Common Files O43 - CFD: 15/10/2015 - [] D -- C:\Program Files\Computers and Structures {4572627EBE0AF4CD4C1108AD3F9A88F3} O43 - CFD: 05/06/2013 - [] D -- C:\Program Files\Dell =>.Compal Electronics, Inc.® O43 - CFD: 26/08/2015 - [] AD -- C:\Program Files\Dell Support Center {15E43FDB2D440907B8FEF26275D6CACF} O43 - CFD: 22/10/2015 - [] D -- C:\Program Files\HP =>.Hewlett Packard® O43 - CFD: 11/12/2015 - [] D -- C:\Program Files\Intel =>.Intel Corporation-Mobile Wireless Group® O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\Intel Corporation =>.Intel® Services Manager® O43 - CFD: 17/06/2016 - [] D -- C:\Program Files\Internet Explorer O43 - CFD: 25/06/2016 - [] D -- C:\Program Files\iPod =>.Apple Inc.® O43 - CFD: 25/06/2016 - [] AD -- C:\Program Files\iTunes =>.Apple Inc.® O43 - CFD: 04/04/2016 - [] D -- C:\Program Files\Microsoft Office 15 =>.Microsoft Corporation® O43 - CFD: 29/06/2016 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla Corporation® O43 - CFD: 11/12/2015 - [] D -- C:\Program Files\MSBuild O43 - CFD: 11/12/2015 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics® O43 - CFD: 11/12/2015 - [] D -- C:\Program Files\Reference Assemblies O43 - CFD: 11/12/2015 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated® O43 - CFD: 10/07/2015 - [0] HD -- C:\Program Files\Uninstall Information O43 - CFD: 26/08/2015 - [] D -- C:\Program Files\VideoLAN O43 - CFD: 21/05/2016 - [] D -- C:\Program Files\VS Revo Group =>.VS Revo Group® O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Windows Defender O43 - CFD: 13/05/2016 - [] D -- C:\Program Files\Windows Journal O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Windows Mail O43 - CFD: 10/03/2016 - [] D -- C:\Program Files\Windows Media Player O43 - CFD: 10/03/2016 - [] D -- C:\Program Files\Windows Multimedia Platform O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Windows NT O43 - CFD: 30/10/2015 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 10/03/2016 - [] D -- C:\Program Files\Windows Portable Devices O43 - CFD: 30/10/2015 - [] SHD -- C:\Program Files\Windows Sidebar O43 - CFD: 29/06/2016 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation® O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files\WindowsPowerShell O43 - CFD: 14/05/2016 - [] AD -- C:\Program Files\WinRAR =>.win.rar GmbH® O43 - CFD: 01/11/2015 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems Incorporated® O43 - CFD: 15/10/2015 - [] AD -- C:\Program Files (x86)\AMD APP O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\AMD AVT O43 - CFD: 22/04/2016 - [] AD -- C:\Program Files (x86)\Apple Software Update =>.Apple Inc.® O43 - CFD: 26/08/2015 - [] AD -- C:\Program Files (x86)\ATI Technologies O43 - CFD: 07/05/2016 - [] D -- C:\Program Files (x86)\Autodesk =>.Autodesk, Inc.® O43 - CFD: 18/09/2015 - [] AD -- C:\Program Files (x86)\Bonjour =>.Apple Inc.® O43 - CFD: 26/08/2015 - [0] D -- C:\Program Files (x86)\Cisco O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 05/06/2013 - [] AD -- C:\Program Files (x86)\CyberLink =>.CyberLink® O43 - CFD: 26/08/2015 - [] AD -- C:\Program Files (x86)\Dell Backup and Recovery =>.Dell Inc® O43 - CFD: 05/06/2013 - [] AD -- C:\Program Files (x86)\Dell Digital Delivery =>.Dell Inc.® O43 - CFD: 05/09/2015 - [] AD -- C:\Program Files (x86)\Dell Update O43 - CFD: 26/08/2015 - [] AD -- C:\Program Files (x86)\FairStars Audio Converter O43 - CFD: 01/11/2015 - [] AD -- C:\Program Files (x86)\FlashDevelop O43 - CFD: 26/08/2015 - [] AD -- C:\Program Files (x86)\Golden Al-Wafi Translator O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\GRETECH {78A2255D0AB283A4DC76EF94B250B7ED} O43 - CFD: 18/05/2016 - [] AD -- C:\Program Files (x86)\Hard Disk Sentinel {6A09166723E6A14775CCAC332E9E02C9} O43 - CFD: 26/01/2016 - [] AD -- C:\Program Files (x86)\HDDGURU LLF Tool O43 - CFD: 18/09/2015 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company® O43 - CFD: 22/10/2015 - [] AD -- C:\Program Files (x86)\HP =>.Hewlett-Packard Company® O43 - CFD: 18/09/2015 - [] D -- C:\Program Files (x86)\HP Photo Creations =>.Visan Industries® O43 - CFD: 05/06/2013 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.CyberLink Corp.® O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation - Intel® Rapid Storage Technology® O43 - CFD: 25/06/2016 - [] D -- C:\Program Files (x86)\Internet Download Manager O43 - CFD: 17/06/2016 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 25/06/2016 - [] D -- C:\Program Files (x86)\iTunes O43 - CFD: 26/08/2015 - [] AD -- C:\Program Files (x86)\K-Lite Codec Pack O43 - CFD: 05/09/2015 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab® O43 - CFD: 18/10/2015 - [] AD -- C:\Program Files (x86)\Malwarebytes Anti-Malware =>.Malwarebytes Corporation® O43 - CFD: 21/06/2016 - [] AD -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation® O43 - CFD: 05/03/2016 - [] AD -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 04/04/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 09/05/2016 - [0] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 29/06/2016 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation® O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\MP3 Cut O43 - CFD: 05/03/2016 - [] AD -- C:\Program Files (x86)\MSBuild O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\Nero =>.Nero AG® O43 - CFD: 15/10/2015 - [] D -- C:\Program Files (x86)\Opera O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\PhotoshopMe O43 - CFD: 05/06/2013 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp® O43 - CFD: 11/12/2015 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 28/09/2015 - [] D -- C:\Program Files (x86)\ReiBoot O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\Research In Motion =>.Research In Motion® O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\Sound Rec O43 - CFD: 04/09/2015 - [] D -- C:\Program Files (x86)\TechSmith =>.TechSmith Corporation® O43 - CFD: 28/09/2015 - [] D -- C:\Program Files (x86)\ThinkSky =>.Shenzhen Thinksky Technology Co.,Ltd® O43 - CFD: 11/12/2015 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 26/08/2015 - [] AD -- C:\Program Files (x86)\USB Disk Security =>.Lanzhou Itanium Software Technology Co., Ltd.® O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 05/06/2013 - [] AD -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation® O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 10/03/2016 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 10/03/2016 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 30/10/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 30/10/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 23/10/2015 - [] AD -- C:\Program Files (x86)\ZHPFix O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5 ME O43 - CFD: 07/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk O43 - CFD: 24/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlackBerry O43 - CFD: 03/04/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Computers and Structures O43 - CFD: 11/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink Media Suite O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 05/06/2013 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Backup and Recovery O43 - CFD: 11/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell Support Center O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FairStars Audio Converter O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashDevelop O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Golden Al-Wafi Translator O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hard Disk Sentinel O43 - CFD: 26/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Low Level Format Tool O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 11/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel O43 - CFD: 05/06/2013 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTools 3 O43 - CFD: 25/06/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security O43 - CFD: 30/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero O43 - CFD: 21/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro O43 - CFD: 11/12/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 30/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 30/10/2015 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 12/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP O43 - CFD: 22/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\أدوات Microsoft Office 2016 O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Adobe O43 - CFD: 05/06/2013 - [] D -- C:\ProgramData\AMD O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Apple O43 - CFD: 04/09/2015 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 11/12/2015 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 15/10/2015 - [0] D -- C:\ProgramData\ApplicationHosting =>PUP.Optional.ApplicationHosting O43 - CFD: 02/02/2016 - [] AD -- C:\ProgramData\Autodesk O43 - CFD: 05/06/2013 - [] D -- C:\ProgramData\CLSK O43 - CFD: 30/10/2015 - [0] D -- C:\ProgramData\Comms O43 - CFD: 05/06/2013 - [] D -- C:\ProgramData\CyberLink O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Dell O43 - CFD: 11/12/2015 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 11/12/2015 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 02/12/2015 - [] D -- C:\ProgramData\FLEXnet O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\GRETECH O43 - CFD: 22/10/2015 - [] AD -- C:\ProgramData\HP O43 - CFD: 18/09/2015 - [] AD -- C:\ProgramData\HP Photo Creations O43 - CFD: 01/09/2015 - [0] D -- C:\ProgramData\IDM O43 - CFD: 05/06/2013 - [] D -- C:\ProgramData\install_clap O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Intel O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Intel.sav O43 - CFD: 29/06/2016 - [] D -- C:\ProgramData\Kaspersky Lab O43 - CFD: 18/10/2015 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 05/03/2016 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 05/03/2016 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 26/08/2015 - [] AD -- C:\ProgramData\Nero O43 - CFD: 02/12/2015 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 05/06/2013 - [] D -- C:\ProgramData\PC-Doctor for Windows O43 - CFD: 25/08/2015 - [] D -- C:\ProgramData\PCDr O43 - CFD: 26/08/2015 - [] D -- C:\ProgramData\PRICache O43 - CFD: 21/06/2016 - [] AD -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 24/01/2016 - [] D -- C:\ProgramData\Research In Motion O43 - CFD: 05/06/2013 - [] D -- C:\ProgramData\Roaming O43 - CFD: 15/10/2015 - [] D -- C:\ProgramData\SafeNet Sentinel O43 - CFD: 10/10/2015 - [] D -- C:\ProgramData\Skype O43 - CFD: 23/01/2016 - [] D -- C:\ProgramData\SoftwareDistribution O43 - CFD: 11/12/2015 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 04/09/2015 - [] D -- C:\ProgramData\TechSmith O43 - CFD: 02/02/2016 - [] AD -- C:\ProgramData\Temp O43 - CFD: 11/12/2015 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 28/09/2015 - [] D -- C:\ProgramData\ThinkSky O43 - CFD: 11/12/2015 - [] D -- C:\ProgramData\USOPrivate O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared O43 - CFD: 18/09/2015 - [] D -- C:\ProgramData\Visan O43 - CFD: 21/05/2016 - [] D -- C:\ProgramData\VS Revo Group O43 - CFD: 03/04/2016 - [] D -- C:\ProgramData\{8919303A-03E5-4E43-959C-7946F874EB15} O43 - CFD: 15/10/2015 - [] D -- C:\ProgramData\{E025057D-AA5C-4FA1-BD39-C59AF6AD52AB} O43 - CFD: 01/11/2015 - [] AD -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 28/09/2015 - [] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 05/06/2013 - [] D -- C:\Program Files (x86)\Common Files\ATI Technologies O43 - CFD: 02/02/2016 - [] AD -- C:\Program Files (x86)\Common Files\Autodesk Shared O43 - CFD: 05/06/2013 - [] D -- C:\Program Files (x86)\Common Files\CyberLink O43 - CFD: 21/06/2016 - [] AD -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 11/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 05/06/2013 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 21/06/2016 - [] AD -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 26/08/2015 - [] D -- C:\Program Files (x86)\Common Files\Nero O43 - CFD: 05/06/2013 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 24/01/2016 - [] AD -- C:\Program Files (x86)\Common Files\Research In Motion O43 - CFD: 30/10/2015 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 15/11/2015 - [0] D -- C:\Program Files (x86)\Common Files\SingleRemplus O43 - CFD: 05/03/2016 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 05/06/2013 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 24/01/2016 - [] D -- C:\Program Files (x86)\Common Files\XCPCSync.OEM O43 - CFD: 30/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Adobe O43 - CFD: 02/02/2016 - [] D -- C:\Users\DELL\AppData\Roaming\AMD O43 - CFD: 12/09/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Apple Computer O43 - CFD: 25/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\ATI O43 - CFD: 07/05/2016 - [] D -- C:\Users\DELL\AppData\Roaming\Autodesk O43 - CFD: 14/05/2016 - [] D -- C:\Users\DELL\AppData\Roaming\Computers and Structures, Inc O43 - CFD: 29/06/2016 - [] D -- C:\Users\DELL\AppData\Roaming\DMCache O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\GRETECH O43 - CFD: 29/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Hard Disk Sentinel O43 - CFD: 04/02/2016 - [] D -- C:\Users\DELL\AppData\Roaming\HpUpdate O43 - CFD: 25/06/2016 - [] D -- C:\Users\DELL\AppData\Roaming\Identities O43 - CFD: 11/06/2016 - [] D -- C:\Users\DELL\AppData\Roaming\IDM O43 - CFD: 25/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Intel O43 - CFD: 25/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Intel Corporation O43 - CFD: 29/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Macromedia O43 - CFD: 05/03/2016 - [] SD -- C:\Users\DELL\AppData\Roaming\Microsoft O43 - CFD: 21/05/2016 - [] D -- C:\Users\DELL\AppData\Roaming\Mozilla O43 - CFD: 01/09/2015 - [] D -- C:\Users\DELL\AppData\Roaming\MPC-HC O43 - CFD: 28/10/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Nero O43 - CFD: 15/10/2015 - [0] D -- C:\Users\DELL\AppData\Roaming\Opera Software O43 - CFD: 28/09/2015 - [] D -- C:\Users\DELL\AppData\Roaming\redsn0w O43 - CFD: 24/01/2016 - [] D -- C:\Users\DELL\AppData\Roaming\Research In Motion O43 - CFD: 10/10/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Skype O43 - CFD: 05/11/2015 - [] D -- C:\Users\DELL\AppData\Roaming\stremio O43 - CFD: 25/06/2016 - [] D -- C:\Users\DELL\AppData\Roaming\uTorrent O43 - CFD: 05/11/2015 - [] D -- C:\Users\DELL\AppData\Roaming\vlc O43 - CFD: 12/05/2016 - [] D -- C:\Users\DELL\AppData\Roaming\WinRAR O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Zbshareware Lab O43 - CFD: 29/06/2016 - [] D -- C:\Users\DELL\AppData\Roaming\ZHP O43 - CFD: 11/12/2015 - [0] D -- C:\Users\DELL\AppData\Local\ActiveSync O43 - CFD: 04/11/2015 - [] D -- C:\Users\DELL\AppData\Local\Adobe O43 - CFD: 02/12/2015 - [] D -- C:\Users\DELL\AppData\Local\Akamai O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Local\Apple O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Local\Apple Computer O43 - CFD: 11/12/2015 - [0] SHD -- C:\Users\DELL\AppData\Local\Application Data O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Local\Apps O43 - CFD: 12/12/2015 - [] D -- C:\Users\DELL\AppData\Local\assembly O43 - CFD: 25/08/2015 - [] D -- C:\Users\DELL\AppData\Local\ATI O43 - CFD: 07/05/2016 - [] D -- C:\Users\DELL\AppData\Local\Autodesk O43 - CFD: 12/05/2016 - [] D -- C:\Users\DELL\AppData\Local\cache O43 - CFD: 04/11/2015 - [] D -- C:\Users\DELL\AppData\Local\CEF O43 - CFD: 11/09/2015 - [] D -- C:\Users\DELL\AppData\Local\Comms O43 - CFD: 15/10/2015 - [] D -- C:\Users\DELL\AppData\Local\Computers and Structures O43 - CFD: 15/11/2015 - [] D -- C:\Users\DELL\AppData\Local\CrashDumps O43 - CFD: 01/11/2015 - [] D -- C:\Users\DELL\AppData\Local\FlashDevelop O43 - CFD: 01/10/2015 - [] D -- C:\Users\DELL\AppData\Local\Google O43 - CFD: 11/12/2015 - [0] SHD -- C:\Users\DELL\AppData\Local\History O43 - CFD: 22/10/2015 - [] D -- C:\Users\DELL\AppData\Local\HP O43 - CFD: 31/08/2015 - [] D -- C:\Users\DELL\AppData\Local\Macromedia O43 - CFD: 25/06/2016 - [] D -- C:\Users\DELL\AppData\Local\Microsoft O43 - CFD: 27/10/2015 - [] D -- C:\Users\DELL\AppData\Local\Microsoft Help O43 - CFD: 29/08/2015 - [] D -- C:\Users\DELL\AppData\Local\MicrosoftEdge O43 - CFD: 21/05/2016 - [] D -- C:\Users\DELL\AppData\Local\Mozilla O43 - CFD: 26/08/2015 - [0] D -- C:\Users\DELL\AppData\Local\NetworkTiles O43 - CFD: 08/03/2016 - [] D -- C:\Users\DELL\AppData\Local\OfficeBSCache-MyComputer O43 - CFD: 15/10/2015 - [0] D -- C:\Users\DELL\AppData\Local\Opera Software O43 - CFD: 10/06/2016 - [] D -- C:\Users\DELL\AppData\Local\Packages O43 - CFD: 25/08/2015 - [] D -- C:\Users\DELL\AppData\Local\Power2Go8 O43 - CFD: 05/11/2015 - [] D -- C:\Users\DELL\AppData\Local\Programs O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Local\Publishers O43 - CFD: 24/01/2016 - [] D -- C:\Users\DELL\AppData\Local\Research In Motion O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Local\Skype O43 - CFD: 25/08/2015 - [] D -- C:\Users\DELL\AppData\Local\softthinks O43 - CFD: 04/09/2015 - [] D -- C:\Users\DELL\AppData\Local\TechSmith O43 - CFD: 29/06/2016 - [] D -- C:\Users\DELL\AppData\Local\Temp O43 - CFD: 11/12/2015 - [0] SHD -- C:\Users\DELL\AppData\Local\Temporary Internet Files O43 - CFD: 26/08/2015 - [] D -- C:\Users\DELL\AppData\Local\TileDataLayer O43 - CFD: 19/12/2015 - [] D -- C:\Users\DELL\AppData\Local\VirtualStore O43 - CFD: 21/05/2016 - [] D -- C:\Users\DELL\AppData\Local\VS Revo Group O43 - CFD: 26/08/2015 - [0] D -- C:\Users\DELL\AppData\Local\Programs\Common O43 - CFD: 05/11/2015 - [] D -- C:\Users\DELL\AppData\Local\Programs\LNV O43 - CFD: 30/10/2015 - [] RD -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 11/12/2015 - [] RD -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 17/06/2016 - [] RD -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 11/12/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell O43 - CFD: 11/12/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 11/12/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager O43 - CFD: 30/10/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 17/06/2016 - [] RD -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 11/12/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Stremio O43 - CFD: 11/12/2015 - [] RD -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 11/12/2015 - [] D -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer O43 - CFD: 30/10/2015 - [] RSD -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell O43 - CFD: 12/05/2016 - [] D -- C:\Users\DELL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 0 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\DataSharing O43 - CFD: 05/03/2016 - [] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Microsoft O43 - CFD: 0 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\AppData\Local\Packages ---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s O106 - SIOI: ErrorOverlayHandler Class [ OneDrive1] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\DELL\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedOverlayHandler Class [ OneDrive2] - {5AB7172C-9C11-405C-8DD5-AF20F3606282}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\DELL\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SharedSyncingOverlayHandler Class [ OneDrive3] - {A78ED123-AB77-406B-9962-2A5D9D2F7F30}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\DELL\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: UpToDateOverlayHandler Class [ OneDrive4] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\DELL\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: SyncingOverlayHandler Class [ OneDrive5] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\DELL\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileSyncShell.dll =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict) [ SkyDrivePro1 (ErrorConflict)] - {8BA85C75-763B-4103-94EB-9470F12FE0F7}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress) [ SkyDrivePro2 (SyncInProgress)] - {CD55129A-B1A1-438E-A425-CEBC7DC684EE}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation® O106 - SIOI: Microsoft SkyDrive Pro Icon Overlay 3 (InSync) [ SkyDrivePro3 (InSync)] - {E768CD3B-BDDC-436D-9C13-E1B39CA257B1}. (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL =>.Microsoft Corporation® ---\\ System Drivers List (88) - 9s O58 - SDL:2015/10/30 10:17:22 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [107360] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:22 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [1135456] =>.Microsoft Windows® O58 - SDL:2015/08/26 10:31:59 A . (.Advanced Micro Devices, Inc. - AMD PCI Root Bus Lower Filter.) -- C:\WINDOWS\System32\drivers\amdkmpfd.sys [82696] =>.Advanced Micro Devices, Inc.® O58 - SDL:2015/10/30 10:17:22 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [83296] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:22 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:22 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [26976] =>.Microsoft Windows® O58 - SDL:2012/11/13 18:22:16 A . (.Windows (R) Win 7 DDK provider - Intel® Centrino® Wireless Bluetooth® + High.) -- C:\WINDOWS\System32\drivers\amppal.sys [156160] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/10/30 10:17:22 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131936] =>.Microsoft Windows® O58 - SDL:2015/08/26 10:32:09 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [21629472] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2015/08/26 10:32:09 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [680992] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2015/10/30 10:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/10/30 10:17:22 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [9728] =>.Windows (R) Win 7 DDK provider O58 - SDL:2015/10/30 10:17:22 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] =>.Microsoft Windows® O58 - SDL:2012/06/25 20:24:50 A . (.CyberLink - It is a virtual device driver which could c.) -- C:\WINDOWS\System32\drivers\CLVirtualDrive.sys [92536] =>.CyberLink® O58 - SDL:2015/07/06 00:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\WINDOWS\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab® O58 - SDL:2015/10/30 10:17:22 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3436896] =>.Microsoft Windows® O58 - SDL:2012/07/03 02:16:02 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [62784] =>.Intel Corporation® O58 - SDL:2015/10/30 10:17:22 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:18 A . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\WINDOWS\System32\drivers\iai2c.sys [81408] =>.Intel(R) Corporation O58 - SDL:2015/10/30 10:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [165888] =>.Intel Corporation O58 - SDL:2015/10/30 10:17:18 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/10/30 10:17:18 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2012/12/05 02:50:56 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [652344] =>.Intel Corporation - Intel® Rapid Storage Technology® O58 - SDL:2015/10/30 10:17:22 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [673120] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:22 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\WINDOWS\System32\drivers\ibbus.sys [424800] =>.Microsoft Windows® O58 - SDL:2015/12/11 01:28:54 A . (.Intel Corporation - Intel(R) Wireless Bluetooth(R) Driver.) -- C:\WINDOWS\System32\drivers\ibtfltcoex.sys [79632] =>.Intel Corporation-Wireless Connectivity Solutions® O58 - SDL:2016/05/24 17:29:12 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\WINDOWS\System32\drivers\idmwfp.sys [207928] =>.Tonec Inc.® O58 - SDL:2015/10/14 18:11:15 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\igdkmd64.sys [3797424] =>.Intel Corporation - pGFX® O58 - SDL:2015/08/21 11:50:48 N . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\WINDOWS\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group® O58 - SDL:2015/07/20 22:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\intelaud.sys [50240] =>.Intel(R) Wireless Display® O58 - SDL:2015/07/20 22:45:04 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\WINDOWS\System32\drivers\iwdbus.sys [38976] =>.Intel(R) Wireless Display® O58 - SDL:2015/06/22 20:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab® O58 - SDL:2015/06/06 08:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab® O58 - SDL:2015/06/27 01:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klbackupflt.sys [70512] =>.Kaspersky Lab® O58 - SDL:2016/03/05 11:55:45 A . (.AO Kaspersky Lab - Virtual Disk [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kldisk.sys [77728] =>.Kaspersky Lab® O58 - SDL:2015/06/24 01:28:32 A . (.Kaspersky Lab - Klelam Mini-Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klelam.sys [30328] =>.Microsoft Windows Early Launch Anti-malware Publisher® O58 - SDL:2015/10/20 19:17:34 A . (.AO Kaspersky Lab - Filter Core [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab® O58 - SDL:2016/05/24 15:34:14 A . (.AO Kaspersky Lab - klhk [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klhk.sys [238000] =>.Kaspersky Lab® O58 - SDL:2016/05/24 15:35:01 A . (.AO Kaspersky Lab - Core System Interceptors [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klif.sys [933808] =>.Kaspersky Lab® O58 - SDL:2016/05/24 15:35:02 A . (.AO Kaspersky Lab - Kaspersky Lab Intermediate Network Driver [.) -- C:\WINDOWS\System32\drivers\klim6.sys [49240] =>.Kaspersky Lab® O58 - SDL:2015/06/06 08:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [41656] =>.Kaspersky Lab® O58 - SDL:2015/06/07 01:52:56 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [41656] =>.Kaspersky Lab® O58 - SDL:2015/09/26 13:43:27 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab® O58 - SDL:2016/05/24 15:35:02 A . (.AO Kaspersky Lab - WFP Network Filter [fre_win8_x64].) -- C:\WINDOWS\System32\drivers\klwfp.sys [87984] =>.Kaspersky Lab® O58 - SDL:2015/06/16 21:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\WINDOWS\System32\drivers\klwtp.sys [102584] =>.Kaspersky Lab® O58 - SDL:2015/06/23 18:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\WINDOWS\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab® O58 - SDL:2015/10/30 10:17:23 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108888] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] =>.Microsoft Windows® O58 - SDL:2015/10/05 09:50:06 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [25816] =>.Malwarebytes Corporation® O58 - SDL:2015/10/05 09:50:10 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [109272] =>.Malwarebytes Corporation® O58 - SDL:2015/10/18 21:06:12 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [192216] =>.Malwarebytes Corporation® O58 - SDL:2015/10/30 10:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59744] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.Mellanox - MLX4 Bus Driver.) -- C:\WINDOWS\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] =>.Microsoft Windows® O58 - SDL:2015/10/05 09:50:22 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\WINDOWS\System32\drivers\mwac.sys [64216] =>.Malwarebytes Corporation® O58 - SDL:2015/10/30 10:17:23 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [76128] =>.Microsoft Windows® O58 - SDL:2015/01/16 16:22:32 A . (.Apple Inc. - Apple Mobile Device Ethernet.) -- C:\WINDOWS\System32\drivers\netaapl64.sys [23040] =>.Apple Inc. O58 - SDL:2015/10/30 10:17:19 A . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETwew01.sys [3343872] =>.Intel Corporation O58 - SDL:2015/10/30 10:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166240] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas2i.sys [58208] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [58720] =>.Microsoft Windows® O58 - SDL:2015/10/23 01:28:39 A . (.Sysinternals - www.sysinternals.com - Process Explorer.) -- C:\WINDOWS\System32\drivers\PROCEXP152.SYS [34328] =>.Sysinternals® O58 - SDL:2009/12/30 11:21:26 A . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\WINDOWS\System32\drivers\revoflt.sys [31800] =>.VS Revo Group® O58 - SDL:2012/12/10 15:48:02 A . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\WINDOWS\System32\drivers\RimSerial_AMD64.sys [44544] =>.Research in Motion Ltd O58 - SDL:2015/12/11 01:29:12 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.40 64-bit Dr.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [896744] =>.Realtek Semiconductor Corp® O58 - SDL:2015/12/11 01:29:27 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4518136] =>.Realtek Semiconductor Corp® O58 - SDL:2015/12/11 01:28:46 A . (.Realsil Semiconductor Corporation - RTS USB READER Driver.) -- C:\WINDOWS\System32\drivers\RtsUer.sys [402960] =>.Microsoft Windows Hardware Compatibility Publisher® O58 - SDL:2015/10/01 07:58:36 A . (.Realtek Semiconductor Corporation - Realtek WLAN USB NDIS Driver 38599.) -- C:\WINDOWS\System32\drivers\rtwlanu.sys [3870464] =>.Realtek Semiconductor Corp® O58 - SDL:2015/10/30 10:17:23 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] =>.Microsoft Windows® O58 - SDL:2012/12/21 10:24:00 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [28040] =>.Synaptics Incorporated® O58 - SDL:2012/12/21 10:24:02 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [32136] =>.Synaptics Incorporated® O58 - SDL:2015/10/30 10:17:23 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] =>.Microsoft Windows® O58 - SDL:2012/12/21 10:24:02 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\WINDOWS\System32\drivers\SynTP.sys [466824] =>.Synaptics Incorporated® O58 - SDL:2012/05/30 23:10:50 A . (.Intel(R) Corporation - TurboB Device Driver.) -- C:\WINDOWS\System32\drivers\TurboB.sys [16168] {416EC9A1000100005B7D} =>.Intel(R) Corporation O58 - SDL:2012/10/10 04:48:48 A . (.Windows (R) Win 7 DDK provider - usb3hub.sys.) -- C:\WINDOWS\System32\drivers\usb3Hub.sys [47072] =>.Intel Wireless Display® O58 - SDL:2015/06/10 22:08:36 A . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\WINDOWS\System32\drivers\usbaapl64.sys [54784] =>.Apple, Inc. O58 - SDL:2015/10/30 10:17:23 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [166752] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft Windows® O58 - SDL:2015/11/24 21:46:15 A . (.Western Digital Technologies, Inc. - Western Digital SCSI Architecture Model (SA.) -- C:\WINDOWS\System32\drivers\wdcsam64.sys [26880] =>.WDKTestCert wdclab,130885612892544312® O58 - SDL:2015/10/30 10:17:23 A . (.Mellanox - Kernel WinMad.) -- C:\WINDOWS\System32\drivers\winmad.sys [26976] =>.Microsoft Windows® O58 - SDL:2015/10/30 10:17:23 A . (.Mellanox - Kernel WinVerbs.) -- C:\WINDOWS\System32\drivers\winverbs.sys [59232] =>.Microsoft Windows® O58 - SDL:2012/10/10 04:48:48 A . (.Windows (R) Win 7 DDK provider - xHCIport.sys.) -- C:\WINDOWS\System32\drivers\xHCIPort.sys [188896] =>.Intel Wireless Display® ---\\ Last modified or created user files (4) - 20s O61 - LFC: 2016/06/29 04:57:40 A . (..) -- C:\Users\DELL\AppData\Local\TechSmith\Snagit\Tray.bin [5404] O61 - LFC: 2016/06/27 20:33:34 A . (..) -- C:\Users\DELL\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_636026419716901723.bin [114533] O61 - LFC: 2016/06/29 07:26:01 A . (..) -- C:\Users\DELL\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin [16148] O61 - LFC: 2016/06/27 20:31:22 A . (..) -- C:\Users\DELL\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [674082] ---\\ File Associations Shell Spawning (12) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O67 - Shell Spawning: <.scr> [HKCU\..\open\Command] (.Microsoft Corporation - Notepad.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation ---\\ Start Menu Internet (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation® O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Search Browser Infection (4) - 4s O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {663B99D8-C4A5-4F77-87F0-C2D66BAFDE11} - (Bing) - http://www.bing.com/ ---\\ Search Svchost Services (41) - 0s O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\WINDOWS\System32\certprop.dll [192000] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [283136] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\WINDOWS\System32\gpsvc.dll [1339904] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\WINDOWS\System32\ikeext.dll [957952] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\System32\iphlpsvc.dll [963072] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [31232] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\WINDOWS\System32\appinfo.dll [94720] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\WINDOWS\System32\eapsvc.dll [112640] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\WINDOWS\system32\schedsvc.dll [997376] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [225280] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [134656] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [328192] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [372736] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\WINDOWS\System32\wercplsupport.dll [96256] =>.Microsoft Corporation O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\WINDOWS\system32\dcpsvc.dll [186880] =>.Microsoft Corporation O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\WINDOWS\system32\wlidsvc.dll [2057216] =>.Microsoft Corporation O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\WINDOWS\System32\ncasvc.dll [168960] =>.Microsoft Corporation O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\WINDOWS\System32\NetSetupSvc.dll [207360] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\WINDOWS\system32\themeservice.dll [59392] =>.Microsoft Corporation O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\WINDOWS\system32\RDXService.dll [1073152] =>.Microsoft Corporation O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [27136] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [106496] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [696320] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [507904] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\System32\sens.dll [73216] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\System32\ipnathlp.dll [456704] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\WINDOWS\system32\wuaueng.dll [2281472] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\System32\qmgr.dll [1144320] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [608768] =>.Microsoft Corporation O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\WINDOWS\system32\dmwappushsvc.dll [57856] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\WINDOWS\System32\bdesvc.dll [361472] =>.Microsoft Corporation O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\WINDOWS\system32\XboxNetApiSvc.dll [1035776] =>.Microsoft Corporation O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\WINDOWS\system32\usocore.dll [368640] =>.Microsoft Corporation O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\WINDOWS\System32\XblGameSave.dll [1139712] =>.Microsoft Corporation O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [278016] =>.Microsoft Corporation O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [205824] =>.Microsoft Corporation O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\WINDOWS\System32\usermgr.dll [912384] =>.Microsoft Corporation O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\WINDOWS\System32\XblAuthManager.dll [948736] =>.Microsoft Corporation ---\\ Firewall Active Exception List (1) - 1s O87 - FAEL: "{B3BD3392-9422-450E-8497-B15C0E0DF300}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Microsoft Office\Office14\outlook.exe (.not file.) ---\\ Additional Scan (O88) (4) - 0s C:\WINDOWS\System32\Tasks\psv_Softplus =>PUP.Optional.SpanPlus HKLM\SOFTWARE\Wow6432Node\mtApService =>PUP.Optional.Salus HKLM\SOFTWARE\Wow6432Node\mtSpanplus =>PUP.Optional.SpanPlus C:\ProgramData\ApplicationHosting =>PUP.Optional.ApplicationHosting ---\\ Summary of the elements found (4) - 0s http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.SpanPlus http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.AkamaiHD http://www.nicolascoolman.fr/pup-salus/ =>PUP.Optional.Salus http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.ApplicationHosting ~ End of the scan, 80880 items in 00h03mn02s (1123)(0)