~ ZHPDiag v2016.5.21.98 By Nicolas Coolman (2016/05/21)
~ Run by Maan (Administrator) (2016/05/24 17:19:48)
~ Web: http://www.nicolascoolman.com
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version:
~ Mode: Scan
~ Report: C:\Users\Maan\Desktop\ZHPDiag.txt
~ Report: C:\Users\Maan\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Internet Browsers (4) - 0s
GCIE: Google Chrome v50.0.2661.102
MFIE: Mozilla Firefox 42.0 (x86 en-US)
OPIE: Opera 37.0.2178.43
MSIE: Internet Explorer v9.0.8112.16421

---\\ Windows Product Information (4) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ System protection software (2) - 2s
Kaspersky Total Security v16.0.0.614
Malwarebytes Anti-Malware version 1.75.0.1300

---\\ Surveillance software (2) - 2s
Adobe Flash Player 21 NPAPI
Adobe Reader 9.5.5

---\\ Sharing software PeerToPeer (2) - 2s
µTorrent v3.2.0
µTorrent v3.4.2.38913

---\\ Information on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 6233.968 MB (65% free)
System Restore: Activé (Enable)
System drive C: has 434 GB () free of 670 GB

---\\ Connection to the system mode (3) - 0s
~ Computer Name: MAAN-PC
~ User Name: Maan
~ Logged in as Administrator

---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 434 GB free of 670 GB (System)
~ Drive D: has 26 GB free of 29 GB

---\\ State of the Windows Security Center (13) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Search Generic System Files (24) - 1s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - 19/08/2011 - (.Microsoft Corporation - Windows Explorer.) -- C:\windows\Explorer.exe [2871808] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.1BF2BCC7E3C26FD4C8EF0C9EFB0CC25D] - 19/08/2011 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\windows\System32\wininet.dll [1389056] =>.Microsoft Corporation
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - 21/11/2010 - (.Microsoft Corporation - Windows Logon Application.) -- C:\windows\System32\Winlogon.exe [390656] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 19/08/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 19/08/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.D31DC7A16DEA4A9BAF179F3D6FBDB38C] - 21/11/2010 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\windows\System32\drivers\AFD.sys [499712] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.C2B4651001A867FF3F8865863B592991] - 19/08/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\windows\System32\drivers\MRxSmb.sys [158208] =>.Microsoft Corporation
[MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation
[MD5.A2F74975097F52A00745F9637451FDD8] - 19/08/2011 - (.Microsoft Corporation - NT File System Driver.) -- C:\windows\System32\drivers\ntfs.sys [1659776] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - 21/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\windows\System32\drivers\tdx.sys [119296] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®

---\\ Non Microsoft non disabled Windows Services (18) - 1s
O23 - Service: ABBYY FineReader 12 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.12.0) . (.ABBYY Production LLC - ABBYY network license server.) - C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe =>.ABBYY Production LLC®
O23 - Service: Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe =>.Kaspersky Lab®
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe =>.Broadcom Corporation®
O23 - Service: cktSvc (cktSvc) . (.EVANGEL TECHNOLOGY (HK) LIMITED - Uncheckit Service.) - C:\Program Files (x86)\Uncheckit\cktSvc.exe {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HiSuiteOuc64.exe (HiSuiteOuc64.exe) . (.Copyright (C) 2008 - HiSuite Update Service.) - C:\ProgramData\HiSuiteOuc\HiSuiteOuc64.exe =>.Huawei Software Technologies Co., LTD.®
O23 - Service: HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (.Copyright (C) 2008 - HuaweiHiSuiteService.) - C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe =>.Huawei Software Technologies Co., LTD.®
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 268.4.) - C:\Windows\System32\nvvsvc.exe =>.NVIDIA Corporation®
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe =>.NVIDIA Corporation®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
O23 - Service: TeamViewer 11 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 11.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®
O23 - Service: UncheckitSvc (UncheckitSvc) . (.EVANGEL TECHNOLOGY (HK) LIMITED - Uncheckit Service.) - C:\Program Files (x86)\Uncheckit\UncheckitSvc.exe {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
O23 - Service: WFini WdMan Service (WdMan) . (.WFini LIMITED - WFini.) - C:\ProgramData\DwinpD\WFini.exe {1121BC726E8679E7468D2281BCB930057DFD} =>PUP.Optional.WdsManPro

---\\ Services not Microsoft (SR=Run, SS=Stop) (32) - 14s

SR - Auto [23/01/2014] [ 925904] ABBYY FineReader 12 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.12.0) . (.ABBYY Production LLC.) - C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe =>.ABBYY Production LLC®
SS - Demand [13/05/2016] [ 269504] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [05/12/2015] [ 194000] Kaspersky Anti-Virus Service 16.0.0 (AVP16.0.0) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe =>.Kaspersky Lab®
SR - Demand [25/01/2010] [ 245760] BrYNSvc (BrYNSvc) . (.Brother Industries, Ltd..) - C:\Program Files (x86)\Browny02\BrYNSvc.exe =>.Brother Industries, Ltd.
SR - Auto [12/05/2011] [ 970016] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe =>.Broadcom Corporation®
SS - Disabl [18/05/2016] [ 984232] Ckigtsakile Community (ckgCommunityService) . (...) - C:\Program Files (x86)\Ckigtsakile\ckgCommunityService.exe {58F4AD6EE06F77A31B50FD391937E47D}
SR - Auto [24/05/2016] [ 282864] cktSvc (cktSvc) . (.EVANGEL TECHNOLOGY (HK) LIMITED.) - C:\Program Files (x86)\Uncheckit\cktSvc.exe {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
SS - Demand [17/08/2013] [ 1431888] FLEXnet Licensing Service 64 (FLEXnet Licensing Service 64) . (.Flexera Software, Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe =>.Flexera Software, Inc. ®
SS - Auto [28/08/2015] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [28/08/2015] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [20/05/2015] [ 138544] HiSuiteOuc64.exe (HiSuiteOuc64.exe) . (.Copyright (C) 2008.) - C:\ProgramData\HiSuiteOuc\HiSuiteOuc64.exe =>.Huawei Software Technologies Co., LTD.®
SR - Auto [20/05/2015] [ 192304] HuaweiHiSuiteService64.exe (HuaweiHiSuiteService64.exe) . (.Copyright (C) 2008.) - C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe =>.Huawei Software Technologies Co., LTD.®
SR - Auto [12/01/2011] [ 13336] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation®
SR - Auto [21/12/2010] [ 325656] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation®
SR - Auto [04/04/2013] [ 418376] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe =>.Malwarebytes Corporation®
SR - Auto [04/04/2013] [ 701512] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SS - Demand [11/11/2015] [ 147624] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [02/05/2011] [ 993896] NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation.) - C:\windows\system32\nvvsvc.exe =>.NVIDIA Corporation
SR - Auto [10/05/2011] [ 2009704] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe =>.NVIDIA Corporation®
SS - Demand [01/03/2013] [ 118520] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.Riverbed Technology, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe =>.Riverbed Technology, Inc.®
SS - Demand [01/08/2012] [ 724888] ServiceLayer (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe =>.Nokia®
SS - Auto [09/07/2015] [ 327296] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [19/02/2010] [ 517096] (SwitchBoard) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
SR - Auto [14/12/2015] [ 6889232] TeamViewer 11 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®
SS - Demand [30/05/2012] [ 149544] Intel(R) Turbo Boost Technology Monitor 2.6 (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe =>.Intel(R) Software®
SS - Auto [24/05/2016] [ 247536] UncheckitSvc (UncheckitSvc) . (.EVANGEL TECHNOLOGY (HK) LIMITED.) - C:\Program Files (x86)\Uncheckit\UncheckitSvc.exe {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
SR - Auto [21/12/2010] [ 2656280] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation®
SS - Demand [09/07/2015] [ 144640] vssbrigde64 (vssbrigde64) . (.AO Kaspersky Lab.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\x64\vssbridge64.exe =>.Kaspersky Lab®
SS - Demand [01/05/2014] [ 24576] wampapache64 (wampapache64) . (.Apache Software Foundation.) - c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe =>.Apache Software Foundation
SS - Disabl [01/05/2014] [12942848] wampmysqld64 (wampmysqld64) . (...) - c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe
SR - Auto [24/05/2016] [ 216760] WFini WdMan Service (WdMan) . (.WFini LIMITED.) - C:\ProgramData\DwinpD\WFini.exe {1121BC726E8679E7468D2281BCB930057DFD} =>PUP.Optional.WdsManPro

---\\ Task Planned Automatically (37) - 6s
[MD5.00000000000000000000000000000000] [APT] [TaskName] (...) -- Task To Run (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.6A050671F2C76FB48131F12786802807] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269504] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.5BCE955CF12AF3417F055DADC0212920] [APT] [Browser Updater Task(Core)] (.Tencent.) -- C:\Program Files (x86)\QQBrowser\Update\0EB0F4C4C22E4900ACAA4C535365B5B3\Update\BrowserUpdate.exe [690144] (.Activate.) =>.Superfluous.Tencent
[MD5.6E8A4256CEC328029C0D923EADA47F04] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3075936] (.Activate.) =>.Piriform Ltd®
[MD5.7A94E4BFB0CA8C370C566C0E790DC78E] [APT] [Ckigtsakile Community] (...) -- C:\Program Files (x86)\Ckigtsakile\ckgCommunityTask.exe [326312] (.Activate.) {58F4AD6EE06F77A31B50FD391937E47D}
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001Core] (.Facebook Inc..) -- C:\Users\Maan\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] (.Activate.) =>.Facebook, Inc.®
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001UA] (.Facebook Inc..) -- C:\Users\Maan\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] (.Activate.) =>.Facebook, Inc.®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] (.Activate.) =>.Google Inc®
[MD5.00000000000000000000000000000000] [APT] [iolo Process Governor] (...) -- C:\Program Files (x86)\iolo\System Mechanic\iologovernor64.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
[MD5.B00F98FF6FE8682FF941BEB2559BF191] [APT] [MirageAgent] (.CyberLink.) -- C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488] (.Activate.) =>.CyberLink®
[MD5.29F4B4BE2D33C2A01C4F232C54544B40] [APT] [Opera scheduled Autoupdate 1452037679] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [705064] (.Activate.) =>.Opera Software ASA®
[MD5.50DF044B7A5F6030CFCF0E37A8E15E95] [APT] [UncheckitTaskMN] (.EVANGEL TECHNOLOGY (HK) LIMITED.) -- C:\Program Files (x86)\Uncheckit\cktSvc.exe [282864] (.Activate.) {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
[MD5.0F47AFF0E82A93C42B24615448EC7201] [APT] [UncheckitUpdateTaskC] (.EVANGEL TECHNOLOGY (HK) LIMITED.) -- C:\Program Files (x86)\Uncheckit\UncheckitUpdate.exe [202480] (.Activate.) {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
[MD5.0F47AFF0E82A93C42B24615448EC7201] [APT] [UncheckitUpdateTaskDB] (.EVANGEL TECHNOLOGY (HK) LIMITED.) -- C:\Program Files (x86)\Uncheckit\UncheckitUpdate.exe [202480] (.Activate.) {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
[MD5.455927608C21945849E1A3E35E36671F] [APT] [{3CD5FC37-629A-45A7-823E-6E17DCB230CD}] (.Google Inc..) -- c:\program files (x86)\Google\Chrome\application\chrome.exe [881304] (.Activate.) =>.Google Inc®
[MD5.455927608C21945849E1A3E35E36671F] [APT] [{98A966C0-9D9F-4830-9C9C-57F1502543DC}] (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [881304] (.Activate.) =>.Google Inc®
[MD5.00000000000000000000000000000000] [APT] [{DF3A359B-53D9-4F74-AA82-B9976E937703}] (...) -- C:\Program Files (x86)\Ubisoft\Driver San Francisco\Driver.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\windows\Tasks\Adobe Flash Player Updater.job [830] =>.Adobe Systems Incorporated®
O39 - APT: FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001Core - (.Facebook Inc..) -- C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001Core.job [902] =>.Facebook, Inc.®
O39 - APT: FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001UA - (.Facebook Inc..) -- C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001UA.job [924] =>.Facebook, Inc.®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\windows\Tasks\GoogleUpdateTaskMachineCore.job [894] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\windows\Tasks\GoogleUpdateTaskMachineUA.job [898] =>.Google Inc®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\windows\System32\Tasks\Adobe Flash Player Updater [3768] =>.Adobe Systems Incorporated®
O39 - APT: Browser Updater Task(Core) - (.Tencent.) -- C:\windows\System32\Tasks\Browser Updater Task(Core) [9426] =>.Superfluous.Tencent
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\windows\System32\Tasks\CCleanerSkipUAC [2770] =>.Piriform Ltd®
O39 - APT: Ckigtsakile Community - (...) -- C:\windows\System32\Tasks\Ckigtsakile Community [8960] {58F4AD6EE06F77A31B50FD391937E47D}
O39 - APT: FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001Core - (.Facebook Inc..) -- C:\windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001Core [3530] =>.Facebook, Inc.®
O39 - APT: FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001UA - (.Facebook Inc..) -- C:\windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-415331443-2726235929-3758944537-1001UA [3898] =>.Facebook, Inc.®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore [3642] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA [3894] =>.Google Inc®
O39 - APT: iolo Process Governor - (...) -- C:\windows\System32\Tasks\iolo Process Governor [3118] (.Orphean.) =>.Superfluous.Orphean
O39 - APT: MirageAgent - (.CyberLink.) -- C:\windows\System32\Tasks\MirageAgent [3142] =>.CyberLink®
O39 - APT: Opera scheduled Autoupdate 1452037679 - (.Opera Software.) -- C:\windows\System32\Tasks\Opera scheduled Autoupdate 1452037679 [3844] =>.Opera Software ASA®
O39 - APT: UncheckitTaskMN - (.EVANGEL TECHNOLOGY (HK) LIMITED.) -- C:\windows\System32\Tasks\UncheckitTaskMN [3872] {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
O39 - APT: UncheckitUpdateTaskC - (.EVANGEL TECHNOLOGY (HK) LIMITED.) -- C:\windows\System32\Tasks\UncheckitUpdateTaskC [3888] {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
O39 - APT: UncheckitUpdateTaskDB - (.EVANGEL TECHNOLOGY (HK) LIMITED.) -- C:\windows\System32\Tasks\UncheckitUpdateTaskDB [3890] {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED

---\\ Process running (40) - 1s
[MD5.DD9AC38BD31D8ADBC3138BD868B52289] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 268.4.) -- C:\Windows\System32\nvvsvc.exe [993896] [PID.792] =>.NVIDIA Corporation®
[MD5.B33267EF4E01E83D4EDB014E255A16D2] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe [1206888] [PID.1512] =>.NVIDIA Corporation®
[MD5.DD9AC38BD31D8ADBC3138BD868B52289] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 268.4.) -- C:\Windows\System32\nvvsvc.exe [993896] [PID.1524] =>.NVIDIA Corporation®
[MD5.8425B01C7B7BCBCF0B11ACD25FE35CAE] - (.ABBYY Production LLC - ABBYY network license server.) -- C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [925904] [PID.1856] =>.ABBYY Production LLC®
[MD5.50C3C62FFE6337E6E4F2F01CB07DF63C] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe [194000] [PID.2120] =>.Kaspersky Lab®
[MD5.E1C1BCC8211E3AE2B524DEEF071FAF2A] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [970016] [PID.2296] =>.Broadcom Corporation®
[MD5.50DF044B7A5F6030CFCF0E37A8E15E95] - (.EVANGEL TECHNOLOGY (HK) LIMITED - Uncheckit Service.) -- C:\Program Files (x86)\Uncheckit\cktSvc.exe [282864] [PID.2328] {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
[MD5.05794A89D86F1461F293E5B5CA2BCF49] - (.Copyright (C) 2008 - HiSuite Update Service.) -- C:\ProgramData\HiSuiteOuc\HiSuiteOuc64.exe [138544] [PID.2536] =>.Huawei Software Technologies Co., LTD.®
[MD5.2BA04F29B844F3757D1E73B2637BBA9F] - (.Copyright (C) 2008 - HuaweiHiSuiteService.) -- C:\ProgramData\HandSetService\HuaweiHiSuiteService64.exe [192304] [PID.2568] =>.Huawei Software Technologies Co., LTD.®
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376] [PID.2812] =>.Malwarebytes Corporation®
[MD5.E0D7732F2D2E24B2DB3F67B6750295B8] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512] [PID.2932] =>.Malwarebytes Corporation®
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.3008] =>.Malwarebytes Corporation®
[MD5.B00F98FF6FE8682FF941BEB2559BF191] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488] [PID.3408] =>.CyberLink®
[MD5.E72B44F86082DFE649CD991E3CD2F8B6] - (.TeamViewer GmbH - TeamViewer 11.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232] [PID.3452] =>.TeamViewer®
[MD5.364EE28F279BDB459149052E0CD8CAE7] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [167960] [PID.3736] =>.Intel Corporation®
[MD5.B9A81F313AAEF663BA88912977289D85] - (.WFini LIMITED - WFini.) -- C:\ProgramData\DwinpD\WFini.exe [216760] [PID.3764] {1121BC726E8679E7468D2281BCB930057DFD}
[MD5.A09D2FD3420339CE532D7F671163FB50] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [391704] [PID.3872] =>.Intel Corporation®
[MD5.1387EB032E1A67C5FAC3AFEA9F4A3C9E] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [418840] [PID.4020] =>.Intel Corporation®
[MD5.2D0838648D185E0B475E83AB1864F403] - (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11786344] [PID.3628] =>.Realtek Semiconductor Corp®
[MD5.88F3E16B15B82AB7ECB9B62AB4905A4C] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2712360] [PID.3956] =>.Synaptics Incorporated®
[MD5.7F29CEE9BCDE3210DB0FDD6E1B1076A9] - (.Lenovo - Lenovo Onekey Theater Application.) -- C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe [789920] [PID.3696] =>.Lenovo (Beijing) Limited®
[MD5.5464183DE5B496390DE92C1D92009FB1] - (.Lenovo (Beijing) Limited - Lenovo Energy Management Software 6.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9753024] [PID.3064] =>.Lenovo (Beijing) Limited®
[MD5.F43AB67D41349AD8BB1FE045C5C49832] - (.Lenovo(beijing) Limited - Lenovo Battery Management Software Ver 6.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [5908928] [PID.3844] =>.Lenovo (Beijing) Limited®
[MD5.06FC7F17156A8F05F107C5202BE5B760] - (...) -- C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe [100256] [PID.4896] =>.Lenovo (Beijing) Limited®
[MD5.FD3549D0B2D318A7646F48B152E26C71] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe [1211168] [PID.4420] =>.Broadcom Corporation®
[MD5.41D1214B86A06FD29423A797EBDA17E4] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160] [PID.4524] =>.Intel Corporation®
[MD5.9D51EA92A612B37E76E5E4621650C50A] - (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288] [PID.4608] =>.Renesas Electronics Corporation®
[MD5.14C9432B5D0C82296A768C9F04FEA95B] - (.Lenovo - VeriFace Tray Icon Manager.) -- C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe [329056] [PID.5008] =>.Lenovo (Beijing) Limited®
[MD5.640609646D2E6F805E89238F0ADD3A1A] - (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440] [PID.4556] =>.Brother Industries, Ltd.
[MD5.36E5CA5DCE72A831A3F7C7ED8AEA83AE] - (.Brother Industries, Ltd. - Control Center 3 Main Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe [872448] [PID.5280] =>.Brother Industries, Ltd.
[MD5.EA7E57F87D6FEE5FD6C5F813C04E8CD2] - (.Brother Industries, Ltd. - BrYNCSvc.) -- C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760] [PID.5744] =>.Brother Industries, Ltd.
[MD5.815DFE53A8EF983FC23932BBFA72EB2E] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [121640] [PID.5544] =>.Synaptics Incorporated®
[MD5.932A21CF0DA4E951C7C4A62D27E6D8FB] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\avpui.exe [211712] [PID.4724] =>.Kaspersky Lab®
[MD5.983FC69644DDF0486C8DFEA262948D1A] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13336] [PID.6676] =>.Intel Corporation®
[MD5.2ED1786B7542CDA261029F6B526EDF44] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.6852] =>.Intel Corporation®
[MD5.7C804B02415A58B0C01E79DA44BE2E32] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2009704] [PID.5332] =>.NVIDIA Corporation®
[MD5.7E47C328FC4768CB8BEAFBCFAFA70362] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2286976] [PID.6148] =>.Microsoft Corporation®
[MD5.70A176BF2ED362862944C371838262F8] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [222592] [PID.1724] =>.Microsoft Corporation®
[MD5.7E5E1603D0FF2D240AE70295C5C3FEFC] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.6656] =>.Intel Corporation®
[MD5.388DE3C872874C49EF5E7B18EC36047A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Maan\AppData\Roaming\ZHP\ZHPDiag3.exe [2208768] [PID.4508] =>.Nicolas Coolman

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (4) - 3s
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] - (...) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] - (...) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

---\\ Internet Explorer Extensions, Start, Search (18) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer, Proxy Management (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object (BHO) (3) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll =>.Tonec Inc.®
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®
O2 - BHO: ScriptInjectionPluginBrowserHelperObject [64Bits] - {C66D064F-82FE-4E1A-B06A-B2490BA48B18} . (.AO Kaspersky Lab - Kaspersky Protection plugins.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll =>.Kaspersky Lab®

---\\ Internet Explorer Toolbars (1) - 1s
O3 - Toolbar: 0xB1C218236549D4119B18009027A5CD4F - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} . (...) -- (.not file.)

---\\ Auto loading programs from Registry and folders (31) - 0s
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\windows\system32\igfxtray.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation®
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated®
O4 - HKLM\..\Run: [OnekeyStudio] . (.Lenovo - Lenovo Onekey Theater Application.) -- C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe =>.Lenovo (Beijing) Limited®
O4 - HKLM\..\Run: [Lenovo EE Boot Optimizer] . (.Lenovo - Lenovo EE Boot Optimizer Software.) -- C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe =>.Lenovo (Beijing) Limited®
O4 - HKLM\..\Run: [Energy Management] . (.Lenovo (Beijing) Limited - Lenovo Energy Management Software 6.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe =>.Lenovo (Beijing) Limited®
O4 - HKLM\..\Run: [EnergyUtility] . (.Lenovo(beijing) Limited - Lenovo Battery Management Software Ver 6.0.) -- C:\Program Files (x86)\Lenovo\Energy Management\utility.exe =>.Lenovo (Beijing) Limited®
O4 - HKLM\..\Run: [IntelTBRunOnce] . (...) -- C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated®
O4 - HKCU\..\Run: [OpAgent] OpAgent.exe
O4 - HKCU\..\Run: [AdobeBridge] (Orphean)
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe =>.Intel Corporation®
O4 - HKLM\..\Wow6432Node\Run: [NUSB3MON] . (.Renesas Electronics Corporation - USB 3.0 Monitor.) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe =>.Renesas Electronics Corporation®
O4 - HKLM\..\Wow6432Node\Run: [UpdateP2GShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe =>.CyberLink®
O4 - HKLM\..\Wow6432Node\Run: [YouCam Mirage] . (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe =>.CyberLink®
O4 - HKLM\..\Wow6432Node\Run: [YouCam Tray] . (.CyberLink Corp. - YouCam.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe =>.CyberLink Corp.
O4 - HKLM\..\Wow6432Node\Run: [VeriFaceManager] . (.Lenovo - VeriFace Tray Icon Manager.) -- C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe =>.Lenovo (Beijing) Limited®
O4 - HKLM\..\Wow6432Node\Run: [UpdatePRCShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe =>.CyberLink®
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS5ServiceManager] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [ControlCenter3] . (.Brother Industries, Ltd. - ControlCenter Program.) -- C:\Program Files (x86)\Brother\ControlCenter3\BrCtrCen.exe =>.Brother Industries, Ltd.
O4 - HKLM\..\Wow6432Node\Run: [BrStsMon00] . (.Brother Industries, Ltd. - Brother Status Monitor Application.) -- C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe =>.Brother Industries, Ltd.
O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe =>.Microsoft Corporation®
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe =>.Adobe Systems Incorporated®
O4 - HKLM\..\Wow6432Node\Run: [Bonus.SSR.FR12] . (.ABBYY Production LLC. - ABBYY ScreenshotReader.) -- C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe
O4 - HKUS\S-1-5-21-415331443-2726235929-3758944537-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-415331443-2726235929-3758944537-1000\..\Run: [Power2GoExpress] NA
O4 - HKUS\S-1-5-21-415331443-2726235929-3758944537-1000\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation

---\\ Global shortcuts Startup (106) - 14s
O4 - GS\Desktop [Administrator]: Cambridge TOEFL(R) Prep.lnk . (.Macromedia, Inc. - Macromedia Projector.) C:\Program Files (x86)\Cambridge TOEFL(R) Prep\Cambridge TOEFL(R) Prep.exe =>.Macromedia, Inc.
O4 - GS\Desktop [Administrator]: Cyberlink Power2Go.lnk . (.Cyberlink - Power2Go.) C:\Program Files (x86)\Lenovo\Power2Go\Power2Go.exe =>.CyberLink®
O4 - GS\Desktop [Administrator]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\Desktop [Administrator]: Golden Al-Wafi Translator.LNK . (.ATA Software Technology Ltd - Golden Al-Wafi Translation Software.) C:\Program Files (x86)\Golden Al-Wafi Translator\Golden Al-Wafi Translator.exe
O4 - GS\Desktop [Administrator]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [Administrator]: Handbrake.lnk . (.HandBrake - .) C:\Program Files (x86)\Handbrake\Handbrake.exe
O4 - GS\Desktop [Administrator]: matlab.lnk . (.The MathWorks Inc. - MATLAB Starter Application.) C:\Program Files\MATLAB\R2011a\bin\matlab.exe =>.The MathWorks Inc.
O4 - GS\Desktop [Administrator]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files (x86)\Notepad++\notepad++.exe =>.Don HO don.h@free.fr
O4 - GS\Desktop [Administrator]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Administrator]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Maan\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Maan\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: المكتبة الشاملة.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Maan\ShamelaLibrary-3\shamela-r1\_shamela.exe
O4 - GS\Desktop [Administrator]: قاموس صخر الجديد.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Dic32 قاموس صخر 5 مليون كلمة عربي انجليزي و العكس\Dictionary\DIC32.EXE
O4 - GS\Quicklaunch [Administrator]: BusinessCardsMX.lnk . (.mojosoft - .) C:\Program Files (x86)\MOJOSOFT\BusinessCardsMX3\BusinessCardsMX3.exe =>.MOJOSOFT
O4 - GS\Quicklaunch [Administrator]: Fotosizer.lnk . (.Fotosizer.com - Fotosizer Batch Image Resizer.) C:\Program Files (x86)\Fotosizer\Fotosizer.exe =>.Fotosizer.com
O4 - GS\Quicklaunch [Administrator]: Foxit Reader.lnk . (...) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe =>.Foxit Corporation®
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Image to PDF Converter Free.lnk . (.PDFArea - .) C:\Program Files (x86)\PDFArea\Image to PDF Converter Free\Image2PDF.exe =>.PDFArea
O4 - GS\Quicklaunch [Administrator]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Quicklaunch [Administrator]: Wireshark Legacy.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark-gtk.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [Administrator]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\sendTo [Administrator]: gcc.lnk . (...) C:\Program Files\gcc\bin\SciTE.exe
O4 - GS\sendTo [Administrator]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\sendTo [Administrator]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 11.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH
O4 - GS\TaskBar [Administrator]: Adobe Photoshop CS5 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files\Adobe\Adobe Photoshop CS5 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrator]: Longman Dictionary of Contemporary English 5th Edition.lnk . (.mozilla.org - ldoce5.) C:\Program Files (x86)\Longman\LDOCE5\ldoce5.exe =>.mozilla.org
O4 - GS\TaskBar [Administrator]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\TaskBar [Administrator]: قاموس صخر الجديد.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Dic32 قاموس صخر 5 مليون كلمة عربي انجليزي و العكس\Dictionary\DIC32.EXE
O4 - GS\Desktop [Guest]: Cambridge TOEFL(R) Prep.lnk . (.Macromedia, Inc. - Macromedia Projector.) C:\Program Files (x86)\Cambridge TOEFL(R) Prep\Cambridge TOEFL(R) Prep.exe =>.Macromedia, Inc.
O4 - GS\Desktop [Guest]: Cyberlink Power2Go.lnk . (.Cyberlink - Power2Go.) C:\Program Files (x86)\Lenovo\Power2Go\Power2Go.exe =>.CyberLink®
O4 - GS\Desktop [Guest]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\Desktop [Guest]: Golden Al-Wafi Translator.LNK . (.ATA Software Technology Ltd - Golden Al-Wafi Translation Software.) C:\Program Files (x86)\Golden Al-Wafi Translator\Golden Al-Wafi Translator.exe
O4 - GS\Desktop [Guest]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [Guest]: Handbrake.lnk . (.HandBrake - .) C:\Program Files (x86)\Handbrake\Handbrake.exe
O4 - GS\Desktop [Guest]: matlab.lnk . (.The MathWorks Inc. - MATLAB Starter Application.) C:\Program Files\MATLAB\R2011a\bin\matlab.exe =>.The MathWorks Inc.
O4 - GS\Desktop [Guest]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files (x86)\Notepad++\notepad++.exe =>.Don HO don.h@free.fr
O4 - GS\Desktop [Guest]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Guest]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Maan\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Maan\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: المكتبة الشاملة.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Maan\ShamelaLibrary-3\shamela-r1\_shamela.exe
O4 - GS\Desktop [Guest]: قاموس صخر الجديد.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Dic32 قاموس صخر 5 مليون كلمة عربي انجليزي و العكس\Dictionary\DIC32.EXE
O4 - GS\Quicklaunch [Guest]: BusinessCardsMX.lnk . (.mojosoft - .) C:\Program Files (x86)\MOJOSOFT\BusinessCardsMX3\BusinessCardsMX3.exe =>.MOJOSOFT
O4 - GS\Quicklaunch [Guest]: Fotosizer.lnk . (.Fotosizer.com - Fotosizer Batch Image Resizer.) C:\Program Files (x86)\Fotosizer\Fotosizer.exe =>.Fotosizer.com
O4 - GS\Quicklaunch [Guest]: Foxit Reader.lnk . (...) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe =>.Foxit Corporation®
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Image to PDF Converter Free.lnk . (.PDFArea - .) C:\Program Files (x86)\PDFArea\Image to PDF Converter Free\Image2PDF.exe =>.PDFArea
O4 - GS\Quicklaunch [Guest]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Quicklaunch [Guest]: Wireshark Legacy.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark-gtk.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [Guest]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\sendTo [Guest]: gcc.lnk . (...) C:\Program Files\gcc\bin\SciTE.exe
O4 - GS\sendTo [Guest]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\sendTo [Guest]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 11.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH
O4 - GS\TaskBar [Guest]: Adobe Photoshop CS5 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files\Adobe\Adobe Photoshop CS5 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Guest]: Longman Dictionary of Contemporary English 5th Edition.lnk . (.mozilla.org - ldoce5.) C:\Program Files (x86)\Longman\LDOCE5\ldoce5.exe =>.mozilla.org
O4 - GS\TaskBar [Guest]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\TaskBar [Guest]: قاموس صخر الجديد.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Dic32 قاموس صخر 5 مليون كلمة عربي انجليزي و العكس\Dictionary\DIC32.EXE
O4 - GS\Desktop [Maan]: Cambridge TOEFL(R) Prep.lnk . (.Macromedia, Inc. - Macromedia Projector.) C:\Program Files (x86)\Cambridge TOEFL(R) Prep\Cambridge TOEFL(R) Prep.exe =>.Macromedia, Inc.
O4 - GS\Desktop [Maan]: Cyberlink Power2Go.lnk . (.Cyberlink - Power2Go.) C:\Program Files (x86)\Lenovo\Power2Go\Power2Go.exe =>.CyberLink®
O4 - GS\Desktop [Maan]: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd®
O4 - GS\Desktop [Maan]: Golden Al-Wafi Translator.LNK . (.ATA Software Technology Ltd - Golden Al-Wafi Translation Software.) C:\Program Files (x86)\Golden Al-Wafi Translator\Golden Al-Wafi Translator.exe
O4 - GS\Desktop [Maan]: GoldWave.lnk . (.GoldWave Inc. - GoldWave Digital Audio Editor.) C:\Program Files (x86)\GoldWave\GoldWave.exe =>.GoldWave Inc.
O4 - GS\Desktop [Maan]: Handbrake.lnk . (.HandBrake - .) C:\Program Files (x86)\Handbrake\Handbrake.exe
O4 - GS\Desktop [Maan]: matlab.lnk . (.The MathWorks Inc. - MATLAB Starter Application.) C:\Program Files\MATLAB\R2011a\bin\matlab.exe =>.The MathWorks Inc.
O4 - GS\Desktop [Maan]: Notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) C:\Program Files (x86)\Notepad++\notepad++.exe =>.Don HO don.h@free.fr
O4 - GS\Desktop [Maan]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Desktop [Maan]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleaner.) C:\Users\Maan\AppData\Roaming\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Maan]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Maan\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Desktop [Maan]: المكتبة الشاملة.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Maan\ShamelaLibrary-3\shamela-r1\_shamela.exe
O4 - GS\Desktop [Maan]: قاموس صخر الجديد.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Dic32 قاموس صخر 5 مليون كلمة عربي انجليزي و العكس\Dictionary\DIC32.EXE
O4 - GS\Quicklaunch [Maan]: BusinessCardsMX.lnk . (.mojosoft - .) C:\Program Files (x86)\MOJOSOFT\BusinessCardsMX3\BusinessCardsMX3.exe =>.MOJOSOFT
O4 - GS\Quicklaunch [Maan]: Fotosizer.lnk . (.Fotosizer.com - Fotosizer Batch Image Resizer.) C:\Program Files (x86)\Fotosizer\Fotosizer.exe =>.Fotosizer.com
O4 - GS\Quicklaunch [Maan]: Foxit Reader.lnk . (...) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe =>.Foxit Corporation®
O4 - GS\Quicklaunch [Maan]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Maan]: Image to PDF Converter Free.lnk . (.PDFArea - .) C:\Program Files (x86)\PDFArea\Image to PDF Converter Free\Image2PDF.exe =>.PDFArea
O4 - GS\Quicklaunch [Maan]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\Quicklaunch [Maan]: Wireshark Legacy.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark-gtk.exe =>.Wireshark Foundation, Inc.®
O4 - GS\Quicklaunch [Maan]: Wireshark.lnk . (.The Wireshark developer community, http://www.wiresha - Wireshark.) C:\Program Files\Wireshark\Wireshark.exe =>.Wireshark Foundation, Inc.®
O4 - GS\sendTo [Maan]: gcc.lnk . (...) C:\Program Files\gcc\bin\SciTE.exe
O4 - GS\sendTo [Maan]: Skype.lnk . (.Skype Technologies S.A. - Skype.) C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Software Sarl®
O4 - GS\sendTo [Maan]: TeamViewer.lnk . (.TeamViewer GmbH - TeamViewer 11.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH
O4 - GS\TaskBar [Maan]: Adobe Photoshop CS5 (64 Bit).lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS5.) C:\Program Files\Adobe\Adobe Photoshop CS5 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated®
O4 - GS\TaskBar [Maan]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Maan]: Longman Dictionary of Contemporary English 5th Edition.lnk . (.mozilla.org - ldoce5.) C:\Program Files (x86)\Longman\LDOCE5\ldoce5.exe =>.mozilla.org
O4 - GS\TaskBar [Maan]: Viber.lnk . (...) C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}
O4 - GS\TaskBar [Maan]: قاموس صخر الجديد.lnk . (...) C:\Users\Maan\Desktop\MaanDhia\Dic32 قاموس صخر 5 مليون كلمة عربي انجليزي و العكس\Dictionary\DIC32.EXE
O4 - GS\CommonDesktop [Public]: ABBYY FineReader 12.lnk . (.Acresso Software Inc. - InstallShield.) C:\windows\Installer\{F12000FE-0001-0000-0000-074957833700}\_SHCT_FineReader_1_3E36FF39D91C47F89277D9CEE94684B9.exe =>.Acresso Software Inc.
O4 - GS\CommonDesktop [Public]: AceReader Pro Deluxe Plus.lnk . (.Acresso Software Inc. - InstallShield.) C:\windows\Installer\{70BBB25F-0B2D-4EB5-B867-0D0E7CB5067F}\NewShortcut2_70BBB25F0B2D4EB5B8670D0E7CB5067F.exe {19FE6479F01B55E25FF3B202ADEE9FD1} =>.Acresso Software Inc.
O4 - GS\CommonDesktop [Public]: Batch Image To PDF.lnk . (...) C:\Program Files (x86)\Dreamify Corp\Batch Image To PDF\Starter.exe
O4 - GS\CommonDesktop [Public]: Brother Creative Center.lnk . (...) C:\Program Files (x86)\Brother\CreativeCenter\Brother Creative Center.url
O4 - GS\CommonDesktop [Public]: Cambridge Advanced Learner's Dictionary - 3rd Edition.lnk . (.mozilla.org - cald3.) C:\Program Files (x86)\Cambridge\CALD3\cald3.exe =>.mozilla.org
O4 - GS\CommonDesktop [Public]: Fotosizer.lnk . (.Fotosizer.com - Fotosizer Batch Image Resizer.) C:\Program Files (x86)\Fotosizer\Fotosizer.exe =>.Fotosizer.com
O4 - GS\CommonDesktop [Public]: Google Earth.lnk . (.Google - Google Earth.) C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe =>.Google
O4 - GS\CommonDesktop [Public]: Intel(R) Turbo Boost Technology Monitor 2.6.lnk . (.Intel® Corporation - .) C:\Program Files (x86)\Intel\TurboBoost\SignalIslandUi.exe =>.Intel® Corporation
O4 - GS\CommonDesktop [Public]: Longman Dictionary of Contemporary English 5th Edition.lnk . (.mozilla.org - ldoce5.) C:\Program Files (x86)\Longman\LDOCE5\ldoce5.exe =>.mozilla.org
O4 - GS\CommonDesktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe =>.Malwarebytes Corporation®
O4 - GS\CommonDesktop [Public]: Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O4 - GS\CommonDesktop [Public]: Oxford Advanced Learner's Dictionary - 8th Edition.lnk . (.mozilla.org - oald8.) C:\Program Files (x86)\Oxford\OALD8\oald8.exe =>.mozilla.org
O4 - GS\CommonDesktop [Public]: Skype.lnk . (...) C:\windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
O4 - GS\CommonDesktop [Public]: TeamViewer 11.lnk . (.TeamViewer GmbH - TeamViewer 11.) C:\Program Files (x86)\TeamViewer\TeamViewer.exe =>.TeamViewer GmbH
O4 - GS\CommonDesktop [Public]: Ultimate Reference Suite.lnk . (.Copyright (C) 2001 - starter MFC Application.) C:\Program Files (x86)\Britannica 12.0\Ultimate Reference Suite\starter.exe {65FF34F19F7576334AD1CF359C8ED8D4}
O4 - GS\CommonDesktop [Public]: Vocaboly.lnk . (.Vocaboly Software - .) C:\Program Files (x86)\Vocaboly\Vocaboly.exe
O4 - GS\CommonDesktop [Public]: Youtube Movie Maker.lnk . (.Acresso Software Inc. - InstallShield.) C:\windows\Installer\{E084C471-FA8F-4468-93F1-25B3A13ED942}\YoutubeMovieMaker._1396BF56F31E4060B7BF96A429ECD026.exe =>.Acresso Software Inc.
O4 - GS\Startup [Public]: Bluetooth.lnk . (.Broadcom Corporation. - .) C:\Program Files (x86)\Lenovo\Bluetooth Software\BTTray.exe =>.Broadcom Corporation.
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\windows\system32\taskschd.msc

---\\ Lop.com/Domain Hijackers (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.10.3.25 10.10.3.27
O17 - HKLM\System\CCS\Services\Tcpip\..\{2ACA0ED3-EEAF-4510-87E1-0F2B6DD11BEA}: NameServer = 93.91.200.201 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{341B89AF-DAD9-47A4-A4C3-6B528F9FA396}: NameServer = 93.91.200.201 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{6DC7CA41-4CFF-49C3-9B33-F26C1B6CB4B6}: NameServer = 93.91.200.201 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\..\{A3141D19-A6A3-44F2-B279-B80D68486BBC}: DhcpNameServer = 10.10.3.25 10.10.3.27
O17 - HKLM\System\CCS\Services\Tcpip\..\{D20B5DE4-093B-44D7-9E86-D9033B03C529}: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Extra protocols (25) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: grooveLocalGWS [64Bits] - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll =>.Microsoft Corporation®
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll =>.Microsoft Corporation®
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation®
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ AppInit_DLLs Registry value Autorun (1) - 0s
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA Compatible NVIDIA shim initializatio.) - C:\Windows\System32\nvinitx.dll

---\\ Software installed (157) - 23s
O42 - Logiciel: µTorrent - (...) [HKLM][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>.BitTorrent Inc®
O42 - Logiciel: ABBYY FineReader 12 Professional - (.ABBYY Production LLC.) [HKLM][64Bits] -- {F12000FE-0001-0000-0000-074957833700} =>.ABBYY Production LLC
O42 - Logiciel: AceReader Pro Deluxe Plus - (. StepWare, Inc..) [HKLM][64Bits] -- {70BBB25F-0B2D-4EB5-B867-0D0E7CB5067F}
O42 - Logiciel: Add or Remove Adobe Premiere Pro CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {96F9B265-1367-4E1A-B8B9-F8530EF3AA62} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe After Effects CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4817D846-700B-474E-A31B-80892B3E92E3} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {FE23D063-934D-4829-A0D8-00634CE79B4A} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 21 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 21 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Illustrator CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {9B97EC91-B3FD-4BFF-88FC-5345A26AC2E7} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe InDesign CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {CFB770D7-8D43-1014-922B-CC2715FADE3F} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Media Player - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {DE3A9DC5-9A5D-6485-9662-347162C7E4CA} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Media Player - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Photoshop CS5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {3EB745BA-194F-4475-9164-B20BB2172395} =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader 9.5.5 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-A95000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Android SDK Tools - (.Google Inc..) [HKLM][64Bits] -- Android SDK Tools =>.Google Inc.
O42 - Logiciel: Any Video Converter 2.7.2 - (.Any-Video-Converter.com.) [HKLM][64Bits] -- Any Video Converter_is1
O42 - Logiciel: A-PDF Password Security - (.A-PDF Solution.) [HKLM][64Bits] -- A-PDF Password Security_is1 =>.A-PDF Solution
O42 - Logiciel: Atheros Client Installation Program - (.Atheros.) [HKLM][64Bits] -- {D3694B69-6F8C-42D3-8A0A-EB2AB528C02C} =>.Macrovision Corporation®
O42 - Logiciel: Autodesk Backburner 2008.1 - (.Autodesk, Inc..) [HKLM][64Bits] -- {3D347E6D-5A03-4342-B5BA-6A771885F379} =>.Autodesk, Inc.
O42 - Logiciel: Autodesk Material Library 2011 - (.Autodesk.) [HKLM][64Bits] -- {9DEABCB6-B759-4D52-92F8-51B34A2B4D40} =>.Autodesk
O42 - Logiciel: Batch Image To PDF - (.Dreamify Corp.) [HKLM][64Bits] -- {F7F65223-C7CF-4F5F-BFF9-65461B11B8CA}
O42 - Logiciel: Broadcom InConcert Maestro - (.Broadcom Corporation.) [HKLM][64Bits] -- {57DD35E9-D9BB-4089-BB05-EF933C586CB3} =>.Broadcom Corporation
O42 - Logiciel: Broadcom NetLink Controller - (.Broadcom Corporation.) [HKLM][64Bits] -- {C91DCB72-F5BB-410D-A91A-314F5D1B4284} =>.Broadcom Corporation
O42 - Logiciel: Brother MFL-Pro Suite DCP-J125 - (.Brother Industries, Ltd..) [HKLM][64Bits] -- {FB83EAC4-E3F6-4666-B45B-44522F2344B6} =>.Macrovision Corporation®
O42 - Logiciel: BusinessCardsMX 3.99 - (.MOJOSOFT.) [HKLM][64Bits] -- BusinessCardsMX3_is1 =>.MOJOSOFT
O42 - Logiciel: Cain & Abel 4.9.47 - (...) [HKLM][64Bits] -- Cain & Abel 4.9.47
O42 - Logiciel: calibre - (.Kovid Goyal.) [HKLM][64Bits] -- {DFF135C9-274E-443B-B2D1-FF0FD93EE790} =>.Kovid Goyal
O42 - Logiciel: Cambridge Advanced Learner's Dictionary - 3rd Edition - (...) [HKLM][64Bits] -- NSIS_cald3
O42 - Logiciel: Cambridge TOEFL(R) Prep - (...) [HKLM][64Bits] -- Cambridge TOEFL(R) Prep
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd®
O42 - Logiciel: ClipGrab 3.3.0.2 - (.Philipp Schmieder Medien.) [HKLM][64Bits] -- {8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1 =>.Philipp Schmieder Medien
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd®
O42 - Logiciel: DirectVobSub 2.41.5322 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- vsfilter64_is1 =>.MPC-HC Team
O42 - Logiciel: DriverTools 1.0 - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- DriverTools =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: Energy Management - (.Lenovo.) [HKLM][64Bits] -- {D0956C11-0F60-43FE-99AD-524E833471BB} =>.Lenovo
O42 - Logiciel: Energy Management - (.Lenovo.) [HKLM][64Bits] -- InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB} =>.Lenovo
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM][64Bits] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7} =>.Skype Limited
O42 - Logiciel: ffdshow v1.2.4422 [2012-04-09] - (...) [HKLM][64Bits] -- ffdshow_is1
O42 - Logiciel: FileSeek 3.3 - (.Binary Fortress Software.) [HKLM][64Bits] -- 44953928-E730-4e8c-A2B2-3A85BC96A3D0_is1 =>.Binary Fortress Software Ltd.®
O42 - Logiciel: FileZilla Client 3.0.2.1 - (...) [HKLM][64Bits] -- FileZilla Client
O42 - Logiciel: Flashcards 1.0.0 - (.www.rentanadviser.com.) [HKLM][64Bits] -- {EF6D2DE9-0334-477C-BB08-E2AF024DB6E3}_is1
O42 - Logiciel: Fotosizer 1.36 - (.Fotosizer.com.) [HKLM][64Bits] -- Fotosizer =>.Fotosizer.com
O42 - Logiciel: Foxit PDF Editor - (...) [HKLM][64Bits] -- Foxit PDF Editor
O42 - Logiciel: Foxit Reader - (.Foxit Corporation.) [HKLM][64Bits] -- Foxit Reader_is1 =>.Foxit Corporation®
O42 - Logiciel: Free YouTube Downloader 4.1.455 - (.HOW Inc..) [HKLM][64Bits] -- {A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1 =>.HOW Inc.
O42 - Logiciel: Golden Al-Wafi Translator - (...) [HKLM][64Bits] -- ST6UNST #1
O42 - Logiciel: GoldWave v5.68 - (.GoldWave Inc..) [HKLM][64Bits] -- GoldWave v5.68 =>.GoldWave Inc.
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Earth - (.Google.) [HKLM][64Bits] -- {28E82311-8616-11E1-BEB0-B8AC6F97B88E} =>.Google
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: HandBrake 0.10.2 - (...) [HKLM][64Bits] -- HandBrake
O42 - Logiciel: HiSuite - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Hi Suite =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: Image to PDF Converter Free 6.5 - (.PDFArea Software.) [HKLM][64Bits] -- Image to PDF Converter Free_is1 =>.PDFArea Software
O42 - Logiciel: Integrated Production Modelling toolkit IPM 7.5 - (...) [HKLM][64Bits] -- {69A78EB5-8D72-4C58-B79B-25B4597ADA72}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation®
O42 - Logiciel: Intel(R) Turbo Boost Technology Monitor 2.6 - (.Intel.) [HKLM][64Bits] -- {6C9365EB-1F9E-4893-9196-3EC77C88D0C5} =>.Intel
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} =>.Oracle Corporation
O42 - Logiciel: Java Auto Updater - (.Oracle Corporation.) [HKLM][64Bits] -- {4A03706F-666A-4037-7777-5F2748764D10} =>.Oracle Corporation
O42 - Logiciel: JMicron Flash Media Controller Driver - (.JMicron Technology Corp..) [HKLM][64Bits] -- {26604C7E-A313-4D12-867F-7C6E7820BE4C} =>.JMicron Technology Corp.®
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} =>.Microsoft Corporation
O42 - Logiciel: Kaspersky Total Security - (.Kaspersky Lab.) [HKLM][64Bits] -- {77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Kaspersky Total Security - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26} =>.Kaspersky Lab
O42 - Logiciel: Lenovo Bluetooth with Enhanced Data Rate Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {C6C9D5F7-630C-4125-8C4E-94AF77C1896E} =>.Broadcom Corporation
O42 - Logiciel: Lenovo EasyCamera - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {E0A7ED39-8CD6-4351-93C3-69CCA00D12B4} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Lenovo EE Boot Optimizer - (.Lenovo.) [HKLM][64Bits] -- Lenovo EE Boot Optimizer =>.Lenovo (Beijing) Limited®
O42 - Logiciel: Lenovo Games Console - (.Oberon Media Inc..) [HKLM][64Bits] -- Lenovo Games Console =>.Oberon Media, Inc.®
O42 - Logiciel: Lenovo OneKey Recovery - (.CyberLink Corp..) [HKLM][64Bits] -- {46F4D124-20E5-4D12-BE52-EC177A7A4B42} =>.CyberLink®
O42 - Logiciel: Lenovo OneKey Recovery - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42} =>.CyberLink®
O42 - Logiciel: Lenovo R.I.C. (Robust Intelligent Companion) - (.Lenovo.) [HKLM][64Bits] -- Lenovo R.I.C. (Robust Intelligent Companion) =>.Lenovo (Beijing) Limited®
O42 - Logiciel: Lenovo YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink®
O42 - Logiciel: Lenovo YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink®
O42 - Logiciel: Local Area Network File Send Version 2.4 - (...) [HKLM][64Bits] -- Local Area Network File Send 2_is1
O42 - Logiciel: Longman Dictionary of Contemporary English 5th Edition - (...) [HKLM][64Bits] -- NSIS_ldoce5
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: MathGV 4.1 - (.MathGV.) [HKLM][64Bits] -- {D30F78E6-2A82-48E5-94A9-D295D64501BF}
O42 - Logiciel: MATLAB R2011a - (.The MathWorks, Inc..) [HKLM][64Bits] -- MatlabR2011a =>.The MathWorks, Inc.
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM][64Bits] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Text-to-Speech Engine 4.0 (English) - (...) [HKLM][64Bits] -- MSTTS
O42 - Logiciel: Microsoft Windows SDK for Windows 7 (7.1) - (.Microsoft Corporation.) [HKLM][64Bits] -- {3156336D-8E44-3671-A6FE-AE51D3D6564E} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Windows 7 (7.1) - (.Microsoft Corporation.) [HKLM][64Bits] -- SDKSetup_7.1.7600.0.30514 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Windows SDK for Windows 7 Common Utilities (30514) - (.Microsoft Corporation.) [HKLM][64Bits] -- {A0B0F02C-410B-3DE3-9740-EC4C3D902532} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Windows 7 Headers and Libraries (30514) - (.Microsoft Corporation.) [HKLM][64Bits] -- {84452C2C-BDCC-36F3-A189-CE15F02A47FB} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Windows 7 Samples (30514) - (.Microsoft Corporation.) [HKLM][64Bits] -- {951E6223-AC28-345E-BCF4-B55C1267E321} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK for Windows 7 Utilities for Win32 Development (30514) - (.Microsoft Corporation.) [HKLM][64Bits] -- {6C8D7973-31F9-32E1-A820-8DD857910323} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK Intellisense and Reference Assemblies (30514) - (.Microsoft Corporation.) [HKLM][64Bits] -- {84E30D73-E30F-3A02-BAA0-5353C04DD18A} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Windows SDK Net Fx Interop Headers And Libraries (30514) - (.Microsoft Corporation.) [HKLM][64Bits] -- {68570626-1BF6-310B-AF69-6CD686C04AEA} =>.Microsoft Corporation
O42 - Logiciel: Movavi Video Editor 11 - (.Movavi.) [HKLM][64Bits] -- Movavi Video Editor 11 =>.Taukonsalt OOO®
O42 - Logiciel: Mozilla Firefox 42.0 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 42.0 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: MPC-HC 1.6.2.4902 (64-bit) - (.MPC-HC Team.) [HKLM][64Bits] -- {2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1 =>.MPC-HC Team
O42 - Logiciel: MSVC80_x64_v2 - (.Nokia.) [HKLM][64Bits] -- {4D668D4F-FAA2-4726-834C-31F4614F312E} =>.Nokia
O42 - Logiciel: MSVC80_x86_v2 - (.Nokia.) [HKLM][64Bits] -- {6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6} =>.Nokia
O42 - Logiciel: MSVC90_x64 - (.Nokia.) [HKLM][64Bits] -- {AB071C8B-873C-459F-ACA9-9EBE03C3E89B} =>.Nokia
O42 - Logiciel: MSVC90_x86 - (.Nokia.) [HKLM][64Bits] -- {AF111648-99A1-453E-81DD-80DBBF6DAD0D} =>.Nokia
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} =>.Microsoft
O42 - Logiciel: Notepad++ - (...) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: NVIDIA 3D Vision Controller Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA StereoUSB Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA 3D Vision Controller Driver 266.34 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Control Panel 268.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Graphics Driver 268.44 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Optimus 1.0.21 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Update Components - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update =>.NVIDIA Corporation
O42 - Logiciel: Onekey Theater - (.Lenovo.) [HKLM][64Bits] -- {D4B060B9-AD4A-4152-9D99-28B93C615AFE} =>.Lenovo
O42 - Logiciel: Onekey Theater - (.Lenovo.) [HKLM][64Bits] -- InstallShield_{D4B060B9-AD4A-4152-9D99-28B93C615AFE} =>.Lenovo
O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL =>.Creative Labs Inc®
O42 - Logiciel: Opera Stable 37.0.2178.43 - (.Opera Software.) [HKLM][64Bits] -- Opera 37.0.2178.43 =>.Opera Software ASA®
O42 - Logiciel: Oxford Advanced Learner's Dictionary - 8th Edition - (...) [HKLM][64Bits] -- NSIS_oald8
O42 - Logiciel: PC Connectivity Solution - (.Nokia.) [HKLM][64Bits] -- {7390478C-8581-415E-92E9-2997D9306B81} =>.Nokia
O42 - Logiciel: PDF Settings CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {BFEAAE77-BD7F-4534-B286-9C5CB4697EB1} =>.Adobe Systems Incorporated
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} =>.CyberLink®
O42 - Logiciel: PxMergeModule - (.Your Company Name.) [HKLM][64Bits] -- {024521CF-C07E-4F8E-8481-0D75695E03AF} =>.Your Company Name
O42 - Logiciel: QUICKfind server v1.1 - (.IDM.) [HKLM][64Bits] -- QUICKfind =>.IDM
O42 - Logiciel: Rapture3D 2.4.8 Game - (.Blue Ripple Sound.) [HKLM][64Bits] -- {D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1 =>.Blue Ripple Sound
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} =>.Realtek Semiconductor Corp.
O42 - Logiciel: reber Quick - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- reber Quick =>.Huawei Technologies Co.,Ltd
O42 - Logiciel: Recuva - (.Piriform.) [HKLM][64Bits] -- Recuva =>.Piriform Ltd®
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- {5442DAB8-7177-49E1-8B22-09A049EA5996} =>.Renesas Electronics Corporation
O42 - Logiciel: Renesas Electronics USB 3.0 Host Controller Driver - (.Renesas Electronics Corporation.) [HKLM][64Bits] -- InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996} =>.Renesas Electronics Corporation
O42 - Logiciel: ResumeMaker Professional - (.Individual Software Inc..) [HKLM][64Bits] -- {D2E80193-7318-4707-A9DE-49AF663ADA73}
O42 - Logiciel: Skype™ 7.17 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} =>.Skype Technologies S.A.
O42 - Logiciel: SRS Control Panel - (.SRS Labs, Inc..) [HKLM][64Bits] -- {F3C66EC8-2F33-452D-9CFF-E8C886B3ECC4} =>.SRS Labs, Inc.
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated
O42 - Logiciel: TeamViewer 11 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer =>.TeamViewer®
O42 - Logiciel: Ultimate Reference Suite - (.Encyclopaedia Britannica, Inc..) [HKLM][64Bits] -- Ultimate Reference Suite
O42 - Logiciel: Uncheckit - (.EVANGEL TECHNOLOGY (HK) LIMITED.) [HKLM][64Bits] -- Uncheckit {6598600EFB840C3646AE356D} =>.EVANGEL TECHNOLOGY (HK) LIMITED
O42 - Logiciel: UserGuide - (.Lenovo.) [HKLM][64Bits] -- {F07C2CF8-4C53-4EC3-8162-A6221E36EB88} =>.Lenovo
O42 - Logiciel: UserGuide - (.Lenovo.) [HKLM][64Bits] -- InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88} =>.Lenovo
O42 - Logiciel: UTCHEM_GUI9.82 - (...) [HKLM][64Bits] -- ST6UNST #2
O42 - Logiciel: VeriFace - (.Lenovo.) [HKLM][64Bits] -- VeriFace =>.Lenovo (Beijing) Limited®
O42 - Logiciel: Viber - (.Viber Media Inc..) [HKCU][64Bits] -- {b44f5a1f-ca34-4def-9c69-9aabd288bcb6} {5AECF5A58104948997EF21A8F3D44AAE}
O42 - Logiciel: Viber - (.Viber Media Inc..) [HKLM][64Bits] -- {B0EA596A-BA3B-4708-9F8A-29063B572292}
O42 - Logiciel: Vocaboly 3.0 - (.Vocaboly Software.) [HKLM][64Bits] -- {43EBFA90-95DF-4b69-A63F-68B3FAE4E8F8}_is1
O42 - Logiciel: WampServer 2.5 - (.Hervé Leclerc (HeL).) [HKLM][64Bits] -- WampServer 2_is1 =>.Hervé Leclerc (HeL)
O42 - Logiciel: Windows Driver Package - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1) - (.Lenovo.) [HKLM][64Bits] -- EA12B1FB53CE4E387C31A85236C41EF559B5E392 =>.Lenovo (Beijing) Limited®
O42 - Logiciel: Windows Driver Package - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) - (.Nokia.) [HKLM][64Bits] -- 62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F =>.Microsoft Windows®
O42 - Logiciel: Windows SDK IntellisenseNFX - (.Microsoft.) [HKLM][64Bits] -- {E4197D6B-F046-33E7-ABDE-51FF373FDC76} =>.Microsoft
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst =>.Riverbed Technology, Inc.
O42 - Logiciel: WinRAR 4.20 beta 1 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH
O42 - Logiciel: Wireshark 2.0.3 (64-bit) - (.The Wireshark developer community, https://www.wireshark.org.) [HKLM][64Bits] -- Wireshark =>.Wireshark Foundation, Inc.®
O42 - Logiciel: Yahoo! Messenger - (.Yahoo! Inc..) [HKLM][64Bits] -- Yahoo! Messenger =>.Yahoo! Inc.
O42 - Logiciel: YoutubeMovieMaker - (.Youtube Movie Maker.) [HKLM][64Bits] -- {E084C471-FA8F-4468-93F1-25B3A13ED942} =>.Youtube Movie Maker
O42 - Logiciel: ZAR X - (.www.z-a-recovery.com.) [HKLM][64Bits] -- {85DA9B81-D7F9-4165-8E62-F776B57213F8}_is1

---\\ HKCU & HKLM Software Keys (190) - 23s
HKLM\SOFTWARE\Wow6432Node\ABBYY
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\AFPL Ghostscript
HKLM\SOFTWARE\Wow6432Node\Android SDK Tools
HKLM\SOFTWARE\Wow6432Node\Apple Inc.
HKLM\SOFTWARE\Wow6432Node\Atheros
HKLM\SOFTWARE\Wow6432Node\Autodesk
HKLM\SOFTWARE\Wow6432Node\BlueRippleSound
HKLM\SOFTWARE\Wow6432Node\Britannica 12.0
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\Brother Industries, Ltd.
HKLM\SOFTWARE\Wow6432Node\Bunndle
HKLM\SOFTWARE\Wow6432Node\CyberLink
HKLM\SOFTWARE\Wow6432Node\DT Soft
HKLM\SOFTWARE\Wow6432Node\EA Games
HKLM\SOFTWARE\Wow6432Node\FileZilla 3
HKLM\SOFTWARE\Wow6432Node\FileZilla Client
HKLM\SOFTWARE\Wow6432Node\Fotosizer
HKLM\SOFTWARE\Wow6432Node\Foxit Software
HKLM\SOFTWARE\Wow6432Node\Free YouTube Downloader
HKLM\SOFTWARE\Wow6432Node\Freemake
HKLM\SOFTWARE\Wow6432Node\GNU
HKLM\SOFTWARE\Wow6432Node\GOG.com
HKLM\SOFTWARE\Wow6432Node\Golden Al-Wafi Translator
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\HaaliMkx
HKLM\SOFTWARE\Wow6432Node\Huawei technologies
HKLM\SOFTWARE\Wow6432Node\IDM
HKLM\SOFTWARE\Wow6432Node\IM Providers
HKLM\SOFTWARE\Wow6432Node\Individual Software
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Internet Download Manager
HKLM\SOFTWARE\Wow6432Node\JavaSoft
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\KasperskyLab
HKLM\SOFTWARE\Wow6432Node\Kaydara
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\KONAMI
HKLM\SOFTWARE\Wow6432Node\LEAD Technologies, Inc.
HKLM\SOFTWARE\Wow6432Node\Lenovo
HKLM\SOFTWARE\Wow6432Node\Licenses
HKLM\SOFTWARE\Wow6432Node\Macromedia
HKLM\SOFTWARE\Wow6432Node\Macrovision
HKLM\SOFTWARE\Wow6432Node\magnet
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware (Trial)
HKLM\SOFTWARE\Wow6432Node\MOVAVI
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Nokia
HKLM\SOFTWARE\Wow6432Node\Notepad++
HKLM\SOFTWARE\Wow6432Node\NSIS_cald3
HKLM\SOFTWARE\Wow6432Node\NSIS_ldoce5
HKLM\SOFTWARE\Wow6432Node\NSIS_oald8
HKLM\SOFTWARE\Wow6432Node\NVIDIA Corporation
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\OpenAL
HKLM\SOFTWARE\Wow6432Node\Opera Software
HKLM\SOFTWARE\Wow6432Node\PC Connectivity Solution
HKLM\SOFTWARE\Wow6432Node\PCSuite
HKLM\SOFTWARE\Wow6432Node\Petroleum Experts
HKLM\SOFTWARE\Wow6432Node\Pixologic
HKLM\SOFTWARE\Wow6432Node\Python
HKLM\SOFTWARE\Wow6432Node\Realtek
HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp.
HKLM\SOFTWARE\Wow6432Node\RZsoft
HKLM\SOFTWARE\Wow6432Node\ScanSoft
HKLM\SOFTWARE\Wow6432Node\Skype
HKLM\SOFTWARE\Wow6432Node\SOFTWARE
HKLM\SOFTWARE\Wow6432Node\StepWare
HKLM\SOFTWARE\Wow6432Node\SuppHelpDir
HKLM\SOFTWARE\Wow6432Node\Swearware
HKLM\SOFTWARE\Wow6432Node\TeamViewer
HKLM\SOFTWARE\Wow6432Node\TEXTware A/S
HKLM\SOFTWARE\Wow6432Node\TrueSoftware
HKLM\SOFTWARE\Wow6432Node\UBISOFT
HKLM\SOFTWARE\Wow6432Node\Uncheckit
HKLM\SOFTWARE\Wow6432Node\uTorrentControl3
HKLM\SOFTWARE\Wow6432Node\Voice
HKLM\SOFTWARE\Wow6432Node\Volatile
HKLM\SOFTWARE\Wow6432Node\VsMntNtf
HKLM\SOFTWARE\Wow6432Node\Westwood
HKLM\SOFTWARE\Wow6432Node\WhlProvider
HKLM\SOFTWARE\Wow6432Node\WinPcap
HKLM\SOFTWARE\Wow6432Node\WinRAR
HKLM\SOFTWARE\Wow6432Node\Wise Solutions
HKLM\SOFTWARE\Wow6432Node\Yahoo =>.Yahoo!
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\A-PDF
HKCU\SOFTWARE\ABBYY
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\Any Video Converter
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Autodesk
HKCU\SOFTWARE\Binary Fortress Software
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BlueRippleSound
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Cain
HKCU\SOFTWARE\CodeGear
HKCU\SOFTWARE\Common
HKCU\SOFTWARE\Corel
HKCU\SOFTWARE\Cruiser Team
HKCU\SOFTWARE\CUP-TOEFL4
HKCU\SOFTWARE\CyberLink
HKCU\SOFTWARE\Datel X360 Explorer
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DT Soft
HKCU\SOFTWARE\Earth Resource Mapping
HKCU\SOFTWARE\Facebook
HKCU\SOFTWARE\fastview
HKCU\SOFTWARE\Fauland
HKCU\SOFTWARE\FileHippo
HKCU\SOFTWARE\FLEXlm License Manager
HKCU\SOFTWARE\FLEXnet
HKCU\SOFTWARE\Fotosizer
HKCU\SOFTWARE\Foxit Software
HKCU\SOFTWARE\Foxit Software Company
HKCU\SOFTWARE\Freemake
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GameTuts
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GoldWave
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\gpodder.org
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\KovidsBrain
HKCU\SOFTWARE\LEAD Technologies, Inc.
HKCU\SOFTWARE\Lenovo
HKCU\SOFTWARE\Licenses
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MathGV
HKCU\SOFTWARE\Mathworks
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\MOVAVI
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nokia
HKCU\SOFTWARE\Northcode Inc
HKCU\SOFTWARE\Nuance
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Opera Software
HKCU\SOFTWARE\PDFArea Software
HKCU\SOFTWARE\Petroleum Experts
HKCU\SOFTWARE\Philipp Schmieder
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\ProcessLasso
HKCU\SOFTWARE\pth264
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\Smart Soft
HKCU\SOFTWARE\Sony Ericsson
HKCU\SOFTWARE\Spoon
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Sysprogs
HKCU\SOFTWARE\TeamViewer
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Ubisoft
HKCU\SOFTWARE\Uncheckit
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\Viber
HKCU\SOFTWARE\Voice
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wireshark
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\Yahoo =>.Yahoo!
HKCU\SOFTWARE\ZAR
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\ZEON
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Adobe
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft

---\\ Contents of the Common Files folders (466) - 299s
O43 - CFD: 11/07/2013 - [] D -- C:\Program Files\A-FF Find and Mount
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files\Adobe =>.Adobe Systems Incorporated®
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Autodesk
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\Broadcom
O43 - CFD: 12/07/2012 - [] D -- C:\Program Files\CCleaner =>.Piriform Ltd®
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files\Common Files
O43 - CFD: 10/09/2012 - [] D -- C:\Program Files\DIFX =>.Microsoft Windows®
O43 - CFD: 23/07/2012 - [] D -- C:\Program Files\DirectVobSub
O43 - CFD: 22/02/2011 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 16/09/2013 - [] D -- C:\Program Files\Foxit Software
O43 - CFD: 16/11/2012 - [0] D -- C:\Program Files\Google
O43 - CFD: 07/01/2016 - [] D -- C:\Program Files\Handbrake
O43 - CFD: 12/07/2012 - [] D -- C:\Program Files\Intel =>.Intel(R) Software®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\Lenovo =>.Lenovo (Beijing) Limited®
O43 - CFD: 02/03/2014 - [] D -- C:\Program Files\MATLAB
O43 - CFD: 22/02/2011 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 03/11/2012 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 25/01/2013 - [] D -- C:\Program Files\Microsoft SDKs =>.Microsoft Corporation®
O43 - CFD: 23/07/2012 - [] D -- C:\Program Files\MPC-HC
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\Realtek =>.Andrea Electronics®
O43 - CFD: 22/05/2016 - [] D -- C:\Program Files\Recuva =>.Piriform Ltd®
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\SRS Labs =>.SRS Labs, Inc®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 22/02/2011 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files\Windows Live =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 01/05/2010 - [] D -- C:\Program Files\Windows Movie Maker 6.0
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 22/05/2016 - [] D -- C:\Program Files\Wireshark =>.Wireshark Foundation, Inc.®
O43 - CFD: 01/12/2015 - [] D -- C:\Program Files\ZAR
O43 - CFD: 25/01/2015 - [] D -- C:\Program Files (x86)\A-PDF Password Security
O43 - CFD: 09/09/2014 - [] D -- C:\Program Files (x86)\A.F.5 Rename your files 1.1
O43 - CFD: 22/06/2014 - [] D -- C:\Program Files (x86)\ABBYY FineReader 12 =>.ABBYY PRODUCTION LLC®
O43 - CFD: 23/07/2012 - [] D -- C:\Program Files (x86)\AceReader Pro Deluxe Plus
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 12/07/2012 - [] D -- C:\Program Files (x86)\Adobe Media Player
O43 - CFD: 22/07/2012 - [] D -- C:\Program Files (x86)\Any Video Converter
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Atheros
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files (x86)\Autodesk
O43 - CFD: 02/08/2012 - [] D -- C:\Program Files (x86)\Britannica 12.0 {65FF34F19F7576334AD1CF359C8ED8D4}
O43 - CFD: 22/08/2012 - [] D -- C:\Program Files (x86)\Brother
O43 - CFD: 22/08/2012 - [] D -- C:\Program Files (x86)\Browny02
O43 - CFD: 06/08/2012 - [] D -- C:\Program Files (x86)\BRS
O43 - CFD: 15/01/2014 - [] D -- C:\Program Files (x86)\Cain
O43 - CFD: 17/09/2013 - [] D -- C:\Program Files (x86)\Calibre2
O43 - CFD: 16/11/2012 - [] D -- C:\Program Files (x86)\Cambridge
O43 - CFD: 03/10/2014 - [] D -- C:\Program Files (x86)\Cambridge TOEFL(R) Prep
O43 - CFD: 19/05/2016 - [0] D -- C:\Program Files (x86)\Chefusp
O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\ClipGrab
O43 - CFD: 06/08/2012 - [] D -- C:\Program Files (x86)\Codemasters
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\CyberLink =>.CyberLink®
O43 - CFD: 02/08/2012 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd®
O43 - CFD: 06/04/2014 - [] D -- C:\Program Files (x86)\Dreamify Corp
O43 - CFD: 17/09/2015 - [] D -- C:\Program Files (x86)\DriverTools
O43 - CFD: 21/07/2013 - [] D -- C:\Program Files (x86)\EA Games
O43 - CFD: 05/11/2013 - [] D -- C:\Program Files (x86)\ElcomSoft
O43 - CFD: 29/06/2013 - [] D -- C:\Program Files (x86)\ffdshow
O43 - CFD: 10/09/2014 - [] D -- C:\Program Files (x86)\FileSeek =>.Binary Fortress Software Ltd.®
O43 - CFD: 09/09/2014 - [] D -- C:\Program Files (x86)\FileZilla Client
O43 - CFD: 06/04/2014 - [] D -- C:\Program Files (x86)\Fotosizer
O43 - CFD: 22/09/2013 - [] D -- C:\Program Files (x86)\Foxit Software =>.Foxit Corporation®
O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Free YouTube Downloader
O43 - CFD: 31/01/2015 - [] D -- C:\Program Files (x86)\Freemake
O43 - CFD: 21/11/2012 - [] D -- C:\Program Files (x86)\Golden Al-Wafi Translator
O43 - CFD: 26/04/2013 - [] D -- C:\Program Files (x86)\GoldWave
O43 - CFD: 23/05/2014 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 01/12/2012 - [] D -- C:\Program Files (x86)\Grammarly
O43 - CFD: 17/09/2015 - [] D -- C:\Program Files (x86)\HiSuite =>.Huawei Software Technologies Co., LTD.®
O43 - CFD: 16/11/2012 - [] D -- C:\Program Files (x86)\IDM
O43 - CFD: 05/03/2013 - [] D -- C:\Program Files (x86)\Improve Your English
O43 - CFD: 23/05/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information =>.Macrovision Corporation®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation®
O43 - CFD: 25/08/2014 - [] D -- C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 22/07/2012 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 25/04/2015 - [] D -- C:\Program Files (x86)\Java =>.Oracle America, Inc.®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\JMicron =>.JMicron Technology Corp.®
O43 - CFD: 22/05/2016 - [] D -- C:\Program Files (x86)\Kaspersky Lab =>.Kaspersky Lab®
O43 - CFD: 29/09/2012 - [] D -- C:\Program Files (x86)\KONAMI
O43 - CFD: 13/07/2012 - [] D -- C:\Program Files (x86)\Lan.FS
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Lenovo =>.CyberLink®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Lenovo Games =>.Oberon Media, Inc.®
O43 - CFD: 16/11/2012 - [] D -- C:\Program Files (x86)\Longman
O43 - CFD: 22/07/2012 - [] D -- C:\Program Files (x86)\Longman iBT
O43 - CFD: 05/11/2013 - [] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware =>.Malwarebytes Corporation®
O43 - CFD: 27/11/2012 - [] D -- C:\Program Files (x86)\MathGV
O43 - CFD: 12/07/2012 - [] D -- C:\Program Files (x86)\McAfee
O43 - CFD: 06/11/2012 - [0] D -- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 15/07/2012 - [] D -- C:\Program Files (x86)\Microsoft Application Virtualization Client =>.Microsoft Corporation®
O43 - CFD: 06/08/2012 - [] D -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE =>.Microsoft Corporation®
O43 - CFD: 03/11/2012 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation®
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 03/11/2012 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 03/11/2012 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 03/11/2012 - [] D -- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 03/11/2012 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/07/2012 - [] D -- C:\Program Files (x86)\MOJOSOFT
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files (x86)\Movavi Video Editor 11 =>.Taukonsalt OOO®
O43 - CFD: 27/02/2016 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla Corporation®
O43 - CFD: 13/11/2015 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla Corporation®
O43 - CFD: 25/01/2013 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 17/06/2014 - [] D -- C:\Program Files (x86)\MSECache
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files (x86)\My Company Name
O43 - CFD: 20/08/2014 - [0] D -- C:\Program Files (x86)\MyPublicWiFi
O43 - CFD: 16/11/2012 - [0] D -- C:\Program Files (x86)\Nokia
O43 - CFD: 20/02/2013 - [] D -- C:\Program Files (x86)\Notepad++
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.NVIDIA Corporation®
O43 - CFD: 06/08/2012 - [] D -- C:\Program Files (x86)\OpenAL =>.Creative Labs Inc®
O43 - CFD: 12/05/2016 - [] D -- C:\Program Files (x86)\Opera =>.Opera Software ASA®
O43 - CFD: 26/01/2013 - [] D -- C:\Program Files (x86)\Oxford
O43 - CFD: 10/09/2012 - [] D -- C:\Program Files (x86)\PC Connectivity Solution =>.Microsoft Windows®
O43 - CFD: 06/04/2014 - [] D -- C:\Program Files (x86)\PDFArea
O43 - CFD: 23/05/2016 - [] D -- C:\Program Files (x86)\Petroleum Experts
O43 - CFD: 22/09/2013 - [] D -- C:\Program Files (x86)\Portable
O43 - CFD: 20/05/2016 - [] D -- C:\Program Files (x86)\QQBrowser =>.Superfluous.Tencent
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Realtek
O43 - CFD: 28/11/2012 - [] D -- C:\Program Files (x86)\reber Quick
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Renesas Electronics =>.Renesas Electronics Corporation®
O43 - CFD: 13/05/2014 - [] D -- C:\Program Files (x86)\ResumeMaker Professional
O43 - CFD: 15/12/2015 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Software Sarl®
O43 - CFD: 22/05/2016 - [] D -- C:\Program Files (x86)\Stakuphcoemight {1121F45C26C5D92D1F4A2BD4DF326C5AF174}
O43 - CFD: 27/02/2016 - [] D -- C:\Program Files (x86)\TeamViewer
O43 - CFD: 19/08/2011 - [0] HD -- C:\Program Files (x86)\Temp
O43 - CFD: 16/11/2012 - [] D -- C:\Program Files (x86)\TEXTware
O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Uncheckit {6598600EFB840C3646AE356D}
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 15/10/2015 - [] D -- C:\Program Files (x86)\UTCHEM_GUI9.82
O43 - CFD: 12/07/2012 - [] D -- C:\Program Files (x86)\uTorrent =>.BitTorrent Inc®
O43 - CFD: 18/08/2013 - [] D -- C:\Program Files (x86)\VeryPDF DWG to Vector Converter
O43 - CFD: 23/07/2012 - [0] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 16/11/2012 - [] D -- C:\Program Files (x86)\Vocaboly
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 09/07/2013 - [] D -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation®
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/05/2016 - [] D -- C:\Program Files (x86)\WinPcap =>.Riverbed Technology, Inc.®
O43 - CFD: 09/09/2014 - [] D -- C:\Program Files (x86)\WinRAR
O43 - CFD: 11/07/2012 - [] D -- C:\Program Files (x86)\Yahoo!
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Youtube Movie Maker
O43 - CFD: 02/08/2012 - [] HD -- C:\Program Files (x86)\Zero G Registry
O43 - CFD: 21/06/2014 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\3DField
O43 - CFD: 25/01/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A-PDF Password Security
O43 - CFD: 22/06/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ABBYY FineReader 12
O43 - CFD: 19/08/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 23/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AceReader Pro Deluxe Plus
O43 - CFD: 06/09/2014 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 06/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
O43 - CFD: 22/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Any Video Converter
O43 - CFD: 05/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
O43 - CFD: 06/04/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batch Image To PDF
O43 - CFD: 06/08/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Ripple Sound
O43 - CFD: 22/08/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
O43 - CFD: 30/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain
O43 - CFD: 17/09/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
O43 - CFD: 16/11/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cambridge
O43 - CFD: 03/10/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cambridge TOEFL(R) Prep
O43 - CFD: 12/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 02/08/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
O43 - CFD: 23/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DirectVobSub
O43 - CFD: 17/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverTools
O43 - CFD: 23/05/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DRPU ID Card Design Software
O43 - CFD: 29/06/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
O43 - CFD: 10/09/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileSeek
O43 - CFD: 09/09/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla Client
O43 - CFD: 06/04/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fotosizer
O43 - CFD: 16/09/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Editor
O43 - CFD: 22/09/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
O43 - CFD: 06/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free YouTube Downloader
O43 - CFD: 05/11/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 21/11/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Golden Al-Wafi Translator
O43 - CFD: 12/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
O43 - CFD: 07/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 17/09/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiSuite
O43 - CFD: 05/03/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Improve Your English
O43 - CFD: 12/07/2012 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 23/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 12/12/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 22/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
O43 - CFD: 13/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lan.FS
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Games
O43 - CFD: 16/11/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Longman
O43 - CFD: 23/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Longman iBT
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 05/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
O43 - CFD: 27/11/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MathGV 4.1
O43 - CFD: 06/08/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
O43 - CFD: 03/11/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 27/09/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (English)
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 25/01/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Windows SDK v7.1
O43 - CFD: 06/01/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Video Editor 11
O43 - CFD: 23/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC x64
O43 - CFD: 20/02/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 26/01/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oxford
O43 - CFD: 06/04/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFArea
O43 - CFD: 23/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Petroleum Experts IPM 7.5
O43 - CFD: 28/11/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reber Quick
O43 - CFD: 22/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
O43 - CFD: 13/05/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ResumeMaker Professional
O43 - CFD: 15/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 25/04/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 22/02/2011 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 23/05/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tube Bot
O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uncheckit
O43 - CFD: 15/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UTCHEM_GUI9.82
O43 - CFD: 16/11/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vocaboly
O43 - CFD: 06/09/2014 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer
O43 - CFD: 19/08/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 30/11/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
O43 - CFD: 12/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 24/05/2016 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
O43 - CFD: 11/07/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
O43 - CFD: 15/03/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Movie Maker
O43 - CFD: 01/12/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZAR
O43 - CFD: 22/09/2013 - [] D -- C:\ProgramData\A-PDF
O43 - CFD: 22/06/2014 - [] D -- C:\ProgramData\ABBYY
O43 - CFD: 23/07/2012 - [] D -- C:\ProgramData\AceReader Pro Deluxe Plus
O43 - CFD: 16/06/2013 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 15/07/2012 - [0] D -- C:\ProgramData\ALM
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 23/05/2014 - [0] D -- C:\ProgramData\Atheros
O43 - CFD: 05/11/2013 - [] D -- C:\ProgramData\Autodesk
O43 - CFD: 22/08/2014 - [] D -- C:\ProgramData\AVS4YOU
O43 - CFD: 22/08/2012 - [] D -- C:\ProgramData\Brother
O43 - CFD: 09/09/2012 - [0] D -- C:\ProgramData\Codemasters
O43 - CFD: 23/07/2012 - [] D -- C:\ProgramData\CrypKey
O43 - CFD: 20/04/2013 - [] D -- C:\ProgramData\CyberLink
O43 - CFD: 02/08/2012 - [] D -- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 28/11/2012 - [] D -- C:\ProgramData\DatacardService
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 06/08/2012 - [] SHD -- C:\ProgramData\DSS
O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\DwinpD
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 21/06/2014 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 31/01/2015 - [0] D -- C:\ProgramData\Freemake
O43 - CFD: 17/09/2015 - [] D -- C:\ProgramData\HandSetService
O43 - CFD: 17/09/2015 - [] D -- C:\ProgramData\HiSuiteOuc
O43 - CFD: 25/08/2014 - [0] D -- C:\ProgramData\IDM
O43 - CFD: 13/05/2014 - [] D -- C:\ProgramData\Individual Software
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\Intel
O43 - CFD: 09/09/2014 - [0] D -- C:\ProgramData\ioloGovernor
O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Kaspersky Lab
O43 - CFD: 13/07/2012 - [] D -- C:\ProgramData\Lan.Fs
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\Lenovo Games
O43 - CFD: 03/11/2012 - [] D -- C:\ProgramData\LenovoRIC
O43 - CFD: 21/06/2014 - [] D -- C:\ProgramData\Macrovision
O43 - CFD: 05/11/2013 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 11/07/2013 - [] D -- C:\ProgramData\Mathematica
O43 - CFD: 12/12/2014 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 26/04/2013 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 05/03/2013 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 06/01/2016 - [] D -- C:\ProgramData\Movavi Video Editor 11
O43 - CFD: 11/09/2014 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 16/11/2012 - [0] D -- C:\ProgramData\Nokia
O43 - CFD: 10/09/2012 - [] D -- C:\ProgramData\NokiaInstallerCache
O43 - CFD: 21/06/2014 - [] D -- C:\ProgramData\Nuance
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 19/08/2011 - [] D -- C:\ProgramData\OneKey Recovery
O43 - CFD: 25/04/2015 - [] D -- C:\ProgramData\Oracle
O43 - CFD: 22/05/2016 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 10/09/2012 - [] D -- C:\ProgramData\PC Suite
O43 - CFD: 22/07/2012 - [] D -- C:\ProgramData\QuickTime
O43 - CFD: 25/08/2013 - [] D -- C:\ProgramData\REF
O43 - CFD: 06/01/2016 - [] D -- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\RogueKiller
O43 - CFD: 21/06/2014 - [] D -- C:\ProgramData\ScanSoft
O43 - CFD: 21/12/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 27/03/2013 - [] D -- C:\ProgramData\Sun
O43 - CFD: 21/06/2014 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 24/05/2016 - [0] D -- C:\ProgramData\uckt
O43 - CFD: 24/05/2016 - [0] D -- C:\ProgramData\Uncheckit
O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\VeriFace
O43 - CFD: 26/09/2012 - [] D -- C:\ProgramData\VirtualizedApplications
O43 - CFD: 16/11/2012 - [] D -- C:\ProgramData\Vocaboly
O43 - CFD: 11/07/2012 - [] D -- C:\ProgramData\Yahoo!
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 16/06/2013 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 05/11/2013 - [] D -- C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 15/07/2012 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 21/06/2014 - [] D -- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 25/04/2015 - [] D -- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 21/11/2012 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 15/12/2015 - [] D -- C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 06/01/2016 - [] D -- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 03/11/2012 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 19/08/2011 - [] D -- C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 15/03/2015 - [] D -- C:\Program Files (x86)\Common Files\YUMediaCodec
O43 - CFD: 24/05/2014 - [] D -- C:\Users\Maan\AppData\Roaming\3DFMaps
O43 - CFD: 21/06/2014 - [] D -- C:\Users\Maan\AppData\Roaming\ABBYY
O43 - CFD: 21/11/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Acapela Group
O43 - CFD: 29/04/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Adobe
O43 - CFD: 31/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Adobe Mini Bridge CS5
O43 - CFD: 11/12/2015 - [] D -- C:\Users\Maan\AppData\Roaming\Any Video Converter
O43 - CFD: 18/08/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Autodesk
O43 - CFD: 06/04/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Batch Image To PDF
O43 - CFD: 28/08/2012 - [] RD -- C:\Users\Maan\AppData\Roaming\Brother
O43 - CFD: 16/11/2012 - [] D -- C:\Users\Maan\AppData\Roaming\cald3
O43 - CFD: 19/07/2014 - [] D -- C:\Users\Maan\AppData\Roaming\calibre
O43 - CFD: 01/08/2012 - [] D -- C:\Users\Maan\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 10/09/2014 - [] SHD -- C:\Users\Maan\AppData\Roaming\Common
O43 - CFD: 11/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\CyberLink
O43 - CFD: 04/04/2016 - [] D -- C:\Users\Maan\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 25/07/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Datel
O43 - CFD: 02/02/2016 - [] D -- C:\Users\Maan\AppData\Roaming\DMCache
O43 - CFD: 17/11/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Downloaded Installations
O43 - CFD: 03/11/2012 - [] D -- C:\Users\Maan\AppData\Roaming\EasyCapture
O43 - CFD: 04/04/2016 - [] D -- C:\Users\Maan\AppData\Roaming\FileZilla
O43 - CFD: 21/06/2014 - [] D -- C:\Users\Maan\AppData\Roaming\FLEXnet
O43 - CFD: 29/09/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Foxit Software
O43 - CFD: 16/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Google
O43 - CFD: 08/01/2016 - [] D -- C:\Users\Maan\AppData\Roaming\HandBrake
O43 - CFD: 06/01/2016 - [] D -- C:\Users\Maan\AppData\Roaming\How Inc
O43 - CFD: 11/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Identities
O43 - CFD: 04/04/2016 - [] D -- C:\Users\Maan\AppData\Roaming\IDM
O43 - CFD: 13/05/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Individual Software
O43 - CFD: 12/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\InstallShield
O43 - CFD: 11/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Intel Corporation
O43 - CFD: 09/09/2014 - [] D -- C:\Users\Maan\AppData\Roaming\ioloGovernor
O43 - CFD: 16/11/2012 - [] D -- C:\Users\Maan\AppData\Roaming\ldoce5
O43 - CFD: 23/05/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Macromedia
O43 - CFD: 05/11/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Malwarebytes
O43 - CFD: 31/05/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Mathematica
O43 - CFD: 25/01/2013 - [] D -- C:\Users\Maan\AppData\Roaming\MathWorks
O43 - CFD: 22/02/2011 - [0] D -- C:\Users\Maan\AppData\Roaming\Media Center Programs
O43 - CFD: 04/04/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Media Player Classic
O43 - CFD: 23/05/2015 - [] SD -- C:\Users\Maan\AppData\Roaming\Microsoft
O43 - CFD: 18/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\mojosoft
O43 - CFD: 23/05/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Mozilla
O43 - CFD: 10/09/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Nokia
O43 - CFD: 20/02/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Notepad++
O43 - CFD: 21/06/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Nuance
O43 - CFD: 22/08/2014 - [] D -- C:\Users\Maan\AppData\Roaming\NVIDIA
O43 - CFD: 26/01/2013 - [] D -- C:\Users\Maan\AppData\Roaming\oald8
O43 - CFD: 11/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\ooVoo Details
O43 - CFD: 06/01/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Opera Software
O43 - CFD: 21/02/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Participatory Culture Foundation
O43 - CFD: 10/09/2012 - [] D -- C:\Users\Maan\AppData\Roaming\PC Suite
O43 - CFD: 23/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Petroleum Experts
O43 - CFD: 19/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Profiles
O43 - CFD: 06/04/2014 - [] D -- C:\Users\Maan\AppData\Roaming\RoboSizer
O43 - CFD: 21/06/2014 - [] D -- C:\Users\Maan\AppData\Roaming\ScanSoft
O43 - CFD: 24/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\shamela
O43 - CFD: 29/04/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Skype
O43 - CFD: 21/06/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Smart OCR
O43 - CFD: 02/01/2016 - [] D -- C:\Users\Maan\AppData\Roaming\SoftGrid Client
O43 - CFD: 31/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
O43 - CFD: 11/08/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Subtitle Edit
O43 - CFD: 27/02/2016 - [] D -- C:\Users\Maan\AppData\Roaming\TeamViewer
O43 - CFD: 15/07/2012 - [0] D -- C:\Users\Maan\AppData\Roaming\TP
O43 - CFD: 24/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Uncheckit
O43 - CFD: 27/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Utech Computer Solutions
O43 - CFD: 22/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\uTorrent
O43 - CFD: 20/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\ViberPC
O43 - CFD: 12/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\WinRAR
O43 - CFD: 22/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Wireshark
O43 - CFD: 15/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Yahoo!
O43 - CFD: 21/06/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Zeon
O43 - CFD: 24/05/2016 - [] D -- C:\Users\Maan\AppData\Roaming\ZHP
O43 - CFD: 19/05/2016 - [] D -- C:\Users\Maan\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
O43 - CFD: 22/06/2014 - [] D -- C:\Users\Maan\AppData\Local\ABBYY
O43 - CFD: 26/06/2015 - [] D -- C:\Users\Maan\AppData\Local\Adobe
O43 - CFD: 17/09/2015 - [] D -- C:\Users\Maan\AppData\Local\Android
O43 - CFD: 11/07/2012 - [0] SHD -- C:\Users\Maan\AppData\Local\Application Data
O43 - CFD: 23/05/2014 - [] D -- C:\Users\Maan\AppData\Local\Apps
O43 - CFD: 17/08/2013 - [] D -- C:\Users\Maan\AppData\Local\Autodesk
O43 - CFD: 11/07/2012 - [] D -- C:\Users\Maan\AppData\Local\Broadcom
O43 - CFD: 06/04/2014 - [] D -- C:\Users\Maan\AppData\Local\cache
O43 - CFD: 16/11/2012 - [] D -- C:\Users\Maan\AppData\Local\cald3
O43 - CFD: 11/07/2012 - [] D -- C:\Users\Maan\AppData\Local\CyberLink
O43 - CFD: 23/05/2014 - [0] D -- C:\Users\Maan\AppData\Local\Deployment
O43 - CFD: 22/05/2016 - [] D -- C:\Users\Maan\AppData\Local\Diagnostics
O43 - CFD: 15/03/2015 - [] D -- C:\Users\Maan\AppData\Local\Downloaded Installations
O43 - CFD: 09/02/2015 - [0] D -- C:\Users\Maan\AppData\Local\ElevatedDiagnostics
O43 - CFD: 25/04/2015 - [] D -- C:\Users\Maan\AppData\Local\ezvid
O43 - CFD: 15/03/2015 - [] D -- C:\Users\Maan\AppData\Local\ezvid,_inc
O43 - CFD: 14/03/2013 - [] D -- C:\Users\Maan\AppData\Local\Facebook
O43 - CFD: 13/07/2012 - [] D -- C:\Users\Maan\AppData\Local\FAP
O43 - CFD: 06/04/2014 - [] D -- C:\Users\Maan\AppData\Local\Free_Picture_Solutions
O43 - CFD: 14/09/2015 - [] D -- C:\Users\Maan\AppData\Local\Google
O43 - CFD: 11/07/2012 - [0] SHD -- C:\Users\Maan\AppData\Local\History
O43 - CFD: 17/09/2015 - [] D -- C:\Users\Maan\AppData\Local\HiSuite
O43 - CFD: 05/05/2014 - [0] D -- C:\Users\Maan\AppData\Local\iexplorer
O43 - CFD: 06/04/2014 - [] D -- C:\Users\Maan\AppData\Local\IsolatedStorage
O43 - CFD: 16/11/2012 - [] D -- C:\Users\Maan\AppData\Local\ldoce5
O43 - CFD: 23/05/2014 - [] D -- C:\Users\Maan\AppData\Local\Macromedia
O43 - CFD: 28/04/2013 - [] D -- C:\Users\Maan\AppData\Local\Macroplant_LLC
O43 - CFD: 31/05/2013 - [] D -- C:\Users\Maan\AppData\Local\Mathematica
O43 - CFD: 06/01/2016 - [] D -- C:\Users\Maan\AppData\Local\Microsoft
O43 - CFD: 26/10/2015 - [] D -- C:\Users\Maan\AppData\Local\Microsoft Games
O43 - CFD: 16/07/2012 - [0] D -- C:\Users\Maan\AppData\Local\Microsoft Help
O43 - CFD: 01/12/2012 - [] D -- C:\Users\Maan\AppData\Local\Microsoft_Corporation
O43 - CFD: 06/01/2016 - [] D -- C:\Users\Maan\AppData\Local\Movavi
O43 - CFD: 23/05/2014 - [] D -- C:\Users\Maan\AppData\Local\Mozilla
O43 - CFD: 10/09/2012 - [] D -- C:\Users\Maan\AppData\Local\Nokia
O43 - CFD: 16/11/2012 - [] D -- C:\Users\Maan\AppData\Local\NokiaAccount
O43 - CFD: 26/01/2013 - [] D -- C:\Users\Maan\AppData\Local\oald8
O43 - CFD: 06/01/2016 - [] D -- C:\Users\Maan\AppData\Local\Opera Software
O43 - CFD: 21/03/2016 - [] D -- C:\Users\Maan\AppData\Local\Package Cache
O43 - CFD: 28/04/2013 - [] D -- C:\Users\Maan\AppData\Local\Programs
O43 - CFD: 21/06/2014 - [] D -- C:\Users\Maan\AppData\Local\ScanSoft
O43 - CFD: 15/12/2015 - [0] D -- C:\Users\Maan\AppData\Local\Skype
O43 - CFD: 15/07/2012 - [] D -- C:\Users\Maan\AppData\Local\SoftGrid Client
O43 - CFD: 06/04/2014 - [] D -- C:\Users\Maan\AppData\Local\Spoon
O43 - CFD: 11/07/2012 - [] D -- C:\Users\Maan\AppData\Local\SRS Labs
O43 - CFD: 24/05/2016 - [] D -- C:\Users\Maan\AppData\Local\Temp
O43 - CFD: 11/07/2012 - [0] SHD -- C:\Users\Maan\AppData\Local\Temporary Internet Files
O43 - CFD: 25/09/2012 - [] D -- C:\Users\Maan\AppData\Local\Tube Bot
O43 - CFD: 13/07/2012 - [] D -- C:\Users\Maan\AppData\Local\Ubisoft Game Launcher
O43 - CFD: 27/07/2012 - [] D -- C:\Users\Maan\AppData\Local\Utech_Computer_Solutions
O43 - CFD: 21/03/2016 - [] D -- C:\Users\Maan\AppData\Local\Viber
O43 - CFD: 06/01/2016 - [] D -- C:\Users\Maan\AppData\Local\VideoEditor
O43 - CFD: 17/09/2015 - [] D -- C:\Users\Maan\AppData\Local\VirtualStore
O43 - CFD: 12/01/2015 - [] D -- C:\Users\Maan\AppData\Local\Windows Live
O43 - CFD: 28/04/2013 - [0] D -- C:\Users\Maan\AppData\Local\Programs\Common
O43 - CFD: 23/08/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\A.F.5 Rename your files 1.1
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/07/2012 - [] RD -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 17/09/2015 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Android SDK Tools
O43 - CFD: 02/08/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Britannica 12.0
O43 - CFD: 18/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BusinessCardsMX3
O43 - CFD: 30/11/2013 - [0] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cain
O43 - CFD: 16/11/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cambridge
O43 - CFD: 03/10/2014 - [0] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cambridge TOEFL(R) Prep
O43 - CFD: 12/07/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 21/11/2012 - [0] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Golden Al-Wafi Translator
O43 - CFD: 26/04/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoldWave
O43 - CFD: 07/01/2016 - [0] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 23/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 23/05/2014 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
O43 - CFD: 16/11/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Longman
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 20/02/2013 - [0] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 26/01/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Oxford
O43 - CFD: 22/09/2013 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portable Programs
O43 - CFD: 15/10/2015 - [] RASHD -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/03/2016 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
O43 - CFD: 12/07/2012 - [] D -- C:\Users\Maan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 12/01/2013 - [] D -- C:\windows\System32\Config\systemprofile\AppData\Local\Microsoft
O43 - CFD: 03/11/2012 - [0] D -- C:\windows\System32\Config\systemprofile\AppData\Local\SoftGrid Client

---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: VSMntNtfOverlayIcon Class [EldosIconOverlay] - {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC}. (.EldoS Corporation - CbFs Mount Notifier.) -- C:\Windows\SysWOW64\CbFsMntNtf3.dll =>.EldoS Corporation®
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation

---\\ ShareTools MSconfig StartupReg (7) - 0s
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\AdobeCS5ServiceManager [Key] . (.Adobe Systems Incorporated - Adobe CS5 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe =>.Tonec Inc.
O53 - SMSR:HKLM\...\startupreg\Messenger (Yahoo!) [Key] . (.Yahoo! Inc. - Yahoo! Messenger.) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe =>.Yahoo! Inc.
O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (...) -- C:\Program Files (x86)\QuickTime\qttask.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O53 - SMSR:HKLM\...\startupreg\WorldTime2006 [Key] . (...) -- C:\Program Files (x86)\AnyTime Organizer Premier\WorldTime.exe (.not file.)

---\\ System Drivers List (112) - 10s
O58 - SDL:2011/08/19 23:34:56 A . (.Lenovo Corporation - ACPI Virtual Power Controller Driver.) -- C:\windows\System32\drivers\AcpiVpc.sys [29792] =>.Lenovo (Beijing) Limited®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows®
O58 - SDL:2011/08/19 14:26:06 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows®
O58 - SDL:2011/08/19 14:26:06 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows®
O58 - SDL:2010/11/05 20:03:08 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\drivers\athrx.sys [2637824] =>.Atheros Communications, Inc.
O58 - SDL:2009/06/10 23:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation
O58 - SDL:2011/08/19 23:32:39 A . (.Lenovo - BpntDrv.) -- C:\windows\System32\drivers\BPntDrv.sys [13408] =>.Lenovo (Beijing) Limited®
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd.
O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd.
O58 - SDL:2009/07/14 04:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd.
O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd.
O58 - SDL:2011/05/13 03:01:34 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\windows\System32\drivers\btwampfl.sys [437288] =>.Broadcom Corporation®
O58 - SDL:2011/05/13 03:01:24 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\windows\System32\drivers\btwaudio.sys [150568] =>.Broadcom Corporation®
O58 - SDL:2011/05/13 03:01:24 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\windows\System32\drivers\btwavdt.sys [164392] =>.Broadcom Corporation®
O58 - SDL:2011/05/13 03:01:36 A . (.Broadcom Corporation. - Bluetooth LAN Access Server Driver.) -- C:\windows\System32\drivers\btwdpan.sys [89640] =>.Broadcom Corporation®
O58 - SDL:2011/05/13 03:01:24 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\windows\System32\drivers\btwl2cap.sys [39976] =>.Broadcom Corporation®
O58 - SDL:2011/05/13 03:01:24 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\windows\System32\drivers\btwrchid.sys [21544] =>.Broadcom Corporation®
O58 - SDL:2009/06/10 23:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation
O58 - SDL:2012/04/09 16:27:34 A . (.EldoS Corporation - Callback File System Driver.) -- C:\windows\System32\drivers\cbfs3.sys [352144] =>.EldoS Corporation®
O58 - SDL:2009/06/23 03:00:00 N . (.Sonic Solutions - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\windows\System32\drivers\cdr4_xp.sys [10224] =>.Sonic Solutions®
O58 - SDL:2009/06/23 03:00:00 N . (.Sonic Solutions - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\windows\System32\drivers\cdralw2k.sys [10224] =>.Sonic Solutions®
O58 - SDL:2011/01/29 02:29:58 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\windows\System32\drivers\clwvd.sys [31088] =>.CyberLink®
O58 - SDL:2009/07/14 04:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2015/07/06 00:10:20 A . (.Kaspersky Lab ZAO - Cryptographic Module Driver x64 (Weak).) -- C:\windows\System32\drivers\cm_km.sys [389816] =>.Kaspersky Lab®
O58 - SDL:2011/08/19 23:23:52 A . (.Ensurebit Inc. - Lid Filter Driver.) -- C:\windows\System32\drivers\delayman.sys [20064] =>.Lenovo (Beijing) Limited®
O58 - SDL:2012/08/02 14:27:04 A . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\windows\System32\drivers\dtsoftbus01.sys [283200] =>.DT Soft Ltd®
O58 - SDL:2009/07/14 04:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows®
O58 - SDL:2009/06/10 23:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation
O58 - SDL:2010/01/18 18:48:12 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\windows\System32\drivers\ewdcsc.sys [32768] =>.Huawei Tech. Co., Ltd.
O58 - SDL:2010/03/25 10:08:46 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\windows\System32\drivers\ewusbmdm.sys [120704] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/04/07 17:05:00 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\windows\System32\drivers\ewusbnet.sys [250368] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/03/20 11:56:56 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\windows\System32\drivers\ew_hwusbdev.sys [114560] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/04/09 15:24:32 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\windows\System32\drivers\ew_jubusenum.sys [76288] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/04/09 15:24:38 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\windows\System32\drivers\ew_jucdcacm.sys [79360] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/04/09 15:24:34 A . (.Huawei Technologies Co., Ltd. - ew_jucdcecm Driver.) -- C:\windows\System32\drivers\ew_jucdcecm.sys [49664] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/04/09 15:24:36 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\windows\System32\drivers\ew_juextctrl.sys [27136] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2010/03/20 12:06:58 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\windows\System32\drivers\ew_usbenumfilter.sys [13952] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2011/08/19 23:32:39 A . (.Lenovo - FBfmon.) -- C:\windows\System32\drivers\fbfmon.sys [57952] =>.Lenovo (Beijing) Limited®
O58 - SDL:2009/06/10 23:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc.
O58 - SDL:2010/10/20 03:34:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\windows\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation®
O58 - SDL:2010/11/21 06:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows®
O58 - SDL:2015/05/07 14:40:30 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\windows\System32\drivers\hw_quusbmdm.sys [223232] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/05/07 14:40:30 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\windows\System32\drivers\hw_quusbnet.sys [287232] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2015/05/07 14:40:30 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\windows\System32\drivers\hw_usbdev.sys [116864] =>.Huawei Technologies Co., Ltd.
O58 - SDL:2011/01/12 20:51:44 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\windows\System32\drivers\iaStor.sys [439320] =>.Intel Corporation®
O58 - SDL:2011/08/19 14:26:06 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows®
O58 - SDL:2014/06/09 11:41:00 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\windows\System32\drivers\idmwfp.sys [180136] =>.Tonec Inc.®
O58 - SDL:2011/03/26 04:17:50 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\windows\System32\drivers\igdkmd64.sys [12262336] =>.Intel Corporation
O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows®
O58 - SDL:2010/10/15 11:28:18 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\windows\System32\drivers\IntcDAud.sys [317440] =>.Intel(R) Corporation
O58 - SDL:2010/12/13 06:31:00 A . (.JMicron Technology Corporation - JMicron PCIe Flash Media Controller Driver.) -- C:\windows\System32\drivers\jmcr.sys [174168] =>.JMicron Technology Corp.®
O58 - SDL:2011/05/09 23:42:14 A . (.Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS.) -- C:\windows\System32\drivers\k57nd60a.sys [425000] =>.Broadcom Corporation®
O58 - SDL:2015/06/22 20:40:04 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\windows\System32\drivers\kl1.sys [478392] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 08:48:24 A . (.Kaspersky Lab ZAO - Backup Disk Filter [fre_wnet_x64].) -- C:\windows\System32\drivers\klbackupdisk.sys [53432] =>.Kaspersky Lab®
O58 - SDL:2015/06/27 01:30:00 A . (.Kaspersky Lab ZAO - Backup File Filter [fre_wlh_x64].) -- C:\windows\System32\drivers\klbackupflt.sys [70000] =>.Kaspersky Lab®
O58 - SDL:2016/05/22 18:20:12 A . (.AO Kaspersky Lab - Virtual Disk [fre_wnet_x64].) -- C:\windows\System32\drivers\kldisk.sys [77728] =>.Kaspersky Lab®
O58 - SDL:2015/12/05 03:51:34 A . (.AO Kaspersky Lab - Filter Core [fre_wlh_x64].) -- C:\windows\System32\drivers\klflt.sys [181640] =>.Kaspersky Lab®
O58 - SDL:2016/05/24 16:17:24 A . (.AO Kaspersky Lab - klhk [fre_wlh_x64].) -- C:\windows\System32\drivers\klhk.sys [237480] =>.Kaspersky Lab®
O58 - SDL:2016/05/24 16:17:40 A . (.AO Kaspersky Lab - Core System Interceptors [fre_wlh_x64].) -- C:\windows\System32\drivers\klif.sys [943536] =>.Kaspersky Lab®
O58 - SDL:2016/05/24 16:17:40 A . (.AO Kaspersky Lab - Kaspersky Lab Intermediate Network Driver [.) -- C:\windows\System32\drivers\klim6.sys [49240] =>.Kaspersky Lab®
O58 - SDL:2015/06/06 08:31:42 A . (.Kaspersky Lab ZAO - Keyboard Device Filter [fre_wlh_x64].) -- C:\windows\System32\drivers\klkbdflt.sys [41144] =>.Kaspersky Lab®
O58 - SDL:2015/06/07 01:50:04 A . (.Kaspersky Lab ZAO - Mouse Device Filter [fre_wlh_x64].) -- C:\windows\System32\drivers\klmouflt.sys [41648] =>.Kaspersky Lab®
O58 - SDL:2015/12/05 03:51:34 A . (.AO Kaspersky Lab - Format Recognizer [fre_wnet_x64].) -- C:\windows\System32\drivers\klpd.sys [41352] =>.Kaspersky Lab®
O58 - SDL:2015/06/11 15:56:56 A . (.Kaspersky Lab ZAO - Network filtering component [fre_wnet_amd64.) -- C:\windows\System32\drivers\kltdi.sys [65208] =>.Kaspersky Lab®
O58 - SDL:2015/06/16 21:56:32 A . (.Kaspersky Lab ZAO - WFP Network Connection Filter Driver [fre_w.) -- C:\windows\System32\drivers\klwtp.sys [103096] =>.Kaspersky Lab®
O58 - SDL:2015/06/23 18:30:50 A . (.Kaspersky Lab ZAO - Network Processor [fre_wnet_x64].) -- C:\windows\System32\drivers\kneps.sys [187056] =>.Kaspersky Lab®
O58 - SDL:2011/08/19 23:34:58 A . (.Lenovo. - HD Disk Driver.) -- C:\windows\System32\drivers\LhdX64.sys [39008] =>.Lenovo (Beijing) Limited®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows®
O58 - SDL:2013/04/04 14:50:32 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\windows\System32\drivers\mbam.sys [25928] =>.Malwarebytes Corporation®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows®
O58 - SDL:2010/03/17 14:34:16 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\windows\System32\drivers\mod7700.sys [1001472] =>.DiBcom SA
O58 - SDL:2012/12/07 10:28:06 A . (.Khalil Azzouzi - Azzouzi HotSpot helper driver.) -- C:\windows\System32\drivers\ndiskhaz.sys [30536] =>.Khalil Azzouzi®
O58 - SDL:2009/07/14 04:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows®
O58 - SDL:2013/03/01 04:49:12 A . (.Riverbed Technology, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\windows\System32\drivers\npf.sys [36600] =>.Riverbed Technology, Inc.®
O58 - SDL:2010/11/19 05:34:26 A . (.Renesas Electronics Corporation - USB 3.0 Hub Driver.) -- C:\windows\System32\drivers\nusb3hub.sys [80384] =>.Renesas Electronics Corporation
O58 - SDL:2010/11/19 05:34:26 A . (.Renesas Electronics Corporation - USB 3.0 Host Controller Driver.) -- C:\windows\System32\drivers\nusb3xhc.sys [181248] =>.Renesas Electronics Corporation
O58 - SDL:2011/05/10 07:00:16 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\windows\System32\drivers\nvlddmkm.sys [13071592] =>.NVIDIA Corporation®
O58 - SDL:2011/05/10 07:00:18 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\windows\System32\drivers\nvpciflt.sys [25960] =>.NVIDIA Corporation®
O58 - SDL:2011/08/19 14:26:06 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows®
O58 - SDL:2011/08/19 14:26:06 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows®
O58 - SDL:2012/06/27 15:18:52 A . (.Nokia - PCCS Mode Change Filter Driver.) -- C:\windows\System32\drivers\pccsmcfdx64.sys [26112] =>.Nokia
O58 - SDL:2009/07/09 03:00:00 N . (.Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) -- C:\windows\System32\drivers\PxHlpa64.sys [55280] =>.Sonic Solutions®
O58 - SDL:2009/07/14 04:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows®
O58 - SDL:2009/06/10 23:35:42 A . (.Realtek Corporation - Realtek 8101E/8168/8169 NDIS 6.20 64-bit Dr.) -- C:\windows\System32\drivers\Rt64win7.sys [187392] =>.Realtek Corporation
O58 - SDL:2011/03/29 14:24:20 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\windows\System32\drivers\RTKVHD64.sys [2819560] =>.Realtek Semiconductor Corp®
O58 - SDL:2011/03/23 17:13:58 A . (.Realtek Semiconductor Corp. - Realtek UVC Driver for XP/Vista/Win7.) -- C:\windows\System32\drivers\rtsuvc.sys [8199016] =>.Realtek Semiconductor Corp®
O58 - SDL:2009/06/10 23:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2009/07/14 04:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows®
O58 - SDL:2011/03/21 08:42:52 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\windows\System32\drivers\SynTP.sys [1413168] =>.Synaptics Incorporated®
O58 - SDL:2016/05/24 15:54:02 A . (...) -- C:\windows\System32\drivers\TrueSight.sys [28272] =>.Adlice®
O58 - SDL:2012/05/30 13:10:50 A . (.Intel(R) Corporation - TurboB Device Driver.) -- C:\windows\System32\drivers\TurboB.sys [16168] {416EC9A1000100005B7D} =>.Intel(R) Corporation
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows®
O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows®
O58 - SDL:2011/08/19 23:23:52 A . (.Ensurebit Inc. - Lenovo IoEx driver.) -- C:\windows\System32\drivers\winioex.sys [15456] =>.Lenovo (Beijing) Limited®
O58 - SDL:2009/07/21 17:20:06 A . (.CyberLink - x64.) -- C:\windows\System32\drivers\wsvd.sys [121840] =>.CyberLink®
O58 - SDL:2010/11/05 20:03:08 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\athrx.sys [2637824] =>.Atheros Communications, Inc.
O58 - SDL:2010/03/19 02:11:09 A . (...) -- C:\windows\System32\Ckldrv.sys [30272] {2B3FA09EE8C67ACEFAEF913DE7E67218}

---\\ File Associations Shell Spawning (11) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software ASA®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.scr> [HKCU\..\open\Command] (.Microsoft Corporation - Notepad.) -- C:\Windows\System32\notepad.exe =>.Microsoft Corporation

---\\ Start Menu Internet (16) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\Launcher.exe =>.Opera Software ASA®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - 'Firefox' Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Opera Software - Opera Internet Browser.) -- C:\Program Files (x86)\Opera\launcher.exe =>.Opera Software

---\\ Search Browser Infection (2) - 3s
O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - http://www.bing.com/
O69 - SBI: SearchScopes [HKLM] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com/

---\\ Crack & Keygen Files (8) - 95s
O82 - LFC: 2010/11/04 21:35:00 A . (...) -- C:\Users\Maan\Downloads\Vocaboly 3.1 Software + Keygen\Vocaboly 3.1 Software\Keygen\SnDkg.exe [5200426] =>.Crack,Keygen
O82 - LFC: 2014/08/12 16:07:13 A . (...) -- C:\Users\Maan\Downloads\oem\Windows Loader.exe [5200426] =>.Crack,Keygen
O82 - LFC: 2013/07/02 23:25:27 A . (.radio42.) -- C:\Users\Maan\Downloads\Keygen\Bass.Net.dll [5200426] =>.Crack,Keygen
O82 - LFC: 2012/07/27 06:16:01 A . (.Individual Software Inc..) -- C:\Users\Maan\Desktop\MaanDhia\Personal Organizing Software - AnyTime Organizer Deluxe v12.3 Retail + CRACKED [h33t] [mahasonaz]\Your Software Here\Autorun.exe [5200426] =>.Crack,Keygen
O82 - LFC: 2012/07/27 06:21:19 A . (.Individual Software Inc..) -- C:\Users\Maan\Desktop\MaanDhia\Personal Organizing Software - AnyTime Organizer Deluxe v12.3 Retail + CRACKED [h33t] [mahasonaz]\Your Software Here\Setup.exe [5200426] =>.Crack,Keygen
O82 - LFC: 2012/07/27 06:23:15 A . (.Individual Software, In.) -- C:\Users\Maan\Desktop\MaanDhia\Personal Organizing Software - AnyTime Organizer Deluxe v12.3 Retail + CRACKED [h33t] [mahasonaz]\Your Software Here\ASync\setup.exe [5200426] =>.Crack,Keygen
O82 - LFC: 2012/07/27 06:23:52 A . (...) -- C:\Users\Maan\Desktop\MaanDhia\Personal Organizing Software - AnyTime Organizer Deluxe v12.3 Retail + CRACKED [h33t] [mahasonaz]\Your Software Here\A13\Setup.EXE [5200426] =>.Crack,Keygen
O82 - LFC: 2013/07/02 23:25:28 A . (.radio42.) -- C:\Users\Maan\Desktop\MaanDhia\my flash 725\Keygen\Bass.Net.dll [5200426] =>.Crack,Keygen

---\\ Search Svchost Services (32) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\windows\System32\certprop.dll [80384] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\windows\System32\srvsvc.dll [236032] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\windows\System32\ikeext.dll [853504] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\windows\System32\Audiosrv.dll [679424] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\windows\System32\rasauto.dll [99328] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\windows\System32\rasmans.dll [344064] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\windows\System32\termsrv.dll [680960] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\windows\system32\wuaueng.dll [2420736] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\windows\system32\qmgr.dll [849920] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\windows\system32\seclogon.dll [30720] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\windows\System32\appinfo.dll [70656] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\windows\system32\mmcss.dll [67584] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\windows\System32\browser.dll [136192] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\windows\system32\profsvc.dll [209920] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\windows\system32\themeservice.dll [44544] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation

---\\ Firewall Active Exception List (1) - 3s
O87 - FAEL: "{BF68BDD3-0CE3-46E3-96E5-FD0AC8209CC4}" [In-None-P17-TRUE] .(...) -- C:\Users\Maan\AppData\Local\Viber\Viber.exe {5AECF5A58104948997EF21A8F3D44AAE}

---\\ Additional Scan (O88) (2) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\WdMan =>PUP.Optional.WdsManPro
C:\ProgramData\DwinpD\WFini.exe =>PUP.Optional.WdsManPro

---\\ Summary of the elements found (2) - 0s
http://www.nicolascoolman.fr/?p=4664 =>PUP.Optional.WdsManPro
http://www.nicolascoolman.fr/?p=368 =>.Superfluous.Tencent

~ End of the scan, 56320 items in 00h09mn16s (1449)(8)