Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ ZHPDiag v2017.2.1.21 By Nicolas Coolman (2017/02/01)
~ Run by ahmed (Administrator) (2017/02/01 18:19:58)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Documents and Settings\ahmed\Desktop\ZHPDiag.txt
~ Report: C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600) =>.Microsoft Corporation
---\\ Internet Browsers (3) - 1s
~ GCIE: Google Chrome v49.0.2623.112
~ MFIE: Mozilla Firefox 50.1.0 (x86 en-US)
~ MSIE: Internet Explorer v8.0.6001.18702
---\\ Windows Product Information (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK
---\\ System protection software (2) - 4s
Avast Internet Security v12.3.2280 (Protection)
Malwarebytes version 3.0.6.1469 v3.0.6.1469 (Protection)
---\\ Surveillance software (2) - 5s
~ Adobe Flash Player 24 NPAPI (Surveillance)
~ Adobe Reader XI (Surveillance)
---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 22 Stepping 1, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 783.464 MB (52% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 8 GB (27%) free of 29 GB : ATTENTION =>Warning Disk Space
---\\ Connection to the system mode (3) - 0s
~ Computer Name: BSMLLA
~ User Name: ahmed
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 8 GB free of 29 GB (System)
~ Drive D: has 33 GB free of 46 GB
---\\ State of the Windows Security Center (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (23) - 2s
[MD5.12896823FB95BFB3DC9B46BCAEDC9923] - 14/04/2008 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [1033728] =>.Microsoft Corporation
[MD5.037B1E7798960E0420003D05BB577EE6] - 14/04/2008 - (.Microsoft Corporation - Run a DLL as an App.) -- C:\WINDOWS\System32\rundll32.exe [33280] =>.Microsoft Corporation
[MD5.D73F1BE00684E675571015B3A5880F5B] - 23/09/2013 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [920064] =>.Microsoft Corporation
[MD5.ED0EF0A136DEC83DF69F04118870003E] - 14/04/2008 - (.Microsoft Corporation - Windows NT Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [507904] =>.Microsoft Corporation
[MD5.389496118B3B03C2328024AF320132AC] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] =>.Microsoft Corporation
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 14/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 14/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 14/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] =>.Microsoft Corporation
[MD5.D45926117EB9FA946A6AF572FBE1CAA3] - 14/04/2008 - (.Microsoft Corporation - FIPS Crypto Driver.) -- C:\WINDOWS\System32\drivers\Fips.sys [44544] =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.4A0B06AA8943C1E332520F7440C0AA30] - 14/04/2008 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [52480] =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 14/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 14/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 14/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] =>.Microsoft Corporation
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320] =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 14/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 14/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
[MD5.5575FAF8F97CE5E713D108C2A58D7C7C] - 14/04/2008 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [80128] =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 14/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 14/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
[MD5.F828DD7E1419B6653894A8F97A0094C5] - 14/04/2008 - (.Microsoft Corporation - Redbook Audio Filter Driver.) -- C:\WINDOWS\System32\drivers\redbook.sys [57600] =>.Microsoft Corporation
[MD5.4C8FCB5CC53AAB716D810740FE59D025] - 14/04/2008 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [52352] =>.Microsoft Corporation
---\\ Non Microsoft non disabled Windows Services (7) - 7s
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
O23 - Service: Avast Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.®
O23 - Service: Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc. - Baidu MoboMarket Service.) - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: McciCMService (McciCMService) . (.Alcatel-Lucent - mcci+McciCMService.) - C:\Program Files\Common Files\Motive\McciCMService.exe =>.Alcatel-Lucent
O23 - Service: Baidu PC Faster Service 5.1.0.0 (PCFasterSvc_{PCFaster_5.1.0.0}) . (...) - C:\Program Files\PC Faster\5.1.0.0\PCFasterSvc.exe (.not file.)
---\\ Services not Microsoft (SR=Run, SS=Stop) (9) - 34s
SS - Demand [16/01/2017] [ 270936] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [25/01/2017] [ 197128] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
SR - Auto [25/01/2017] [ 223600] Avast Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.®
SR - Auto [17/12/2014] [ 208928] Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc..) - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe =>.Baidu Online Network Technology (Beijing)Co., Ltd®
SS - Auto [28/08/2015] [ 144200] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [28/08/2015] [ 144200] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [20/01/2017] [ 3303888] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [15/06/2011] [ 319488] McciCMService (McciCMService) . (.Alcatel-Lucent.) - C:\Program Files\Common Files\Motive\McciCMService.exe =>.Alcatel-Lucent
SS - Demand [23/01/2017] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
---\\ Task Planned Automatically (9) - 4s
[MD5.00000000000000000000000000000000] [APT] [Avast Emergency Update] (...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Adobe Flash Player Updater - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [830] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Avast Emergency Update - (...) -- C:\WINDOWS\Tasks\Avast Emergency Update.job [310] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: avast! Emergency Update - (...) -- C:\WINDOWS\Tasks\avast! Emergency Update.job [362] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Baidu PC Faster Update - (...) -- C:\WINDOWS\Tasks\Baidu PC Faster Update.job [356] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [826] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [830] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Microsoft Windows XP End of Service Notification Logon - (...) -- C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job [222] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Microsoft Windows XP End of Service Notification Monthly - (...) -- C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job [216] (.Orphan.) =>.Superfluous.Orphan
---\\ Auto loading programs from Registry and folders (20) - 7s
O4 - HKLM\..\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe =>.Nullsoft, Inc.
O4 - HKLM\..\Run: [Baidu PC Faster 5.1.0.0] C:\Program Files\PC Faster\5.1.0.0\PCFTray.exe (.not file.)
O4 - HKLM\..\Run: [Baidu PC Faster 4.0.0.0] C:\Program Files\PC Faster\5.1.0.0\PCFTray.exe (.not file.)
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Run: [Qsocial] . (.Genre - .) -- C:\Program Files\QSocial\
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [VirtualCloneDrive] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe =>.Elaborate Bytes AG®
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe =>.Microsoft Corporation®
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe =>.AVAST Software s.r.o.®
O4 - HKLM\..\Run: [Malwarebytes TrayApp] . (.Malwarebytes - Malwarebytes Tray Application.) -- C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe =>.Malwarebytes Corporation®
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\Run: [Qsocial] C:\Program Files\QSocial\QSocial.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\Run: [Qsocial] C:\Program Files\QSocial\QSocial.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-436374069-920026266-1177238915-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-436374069-920026266-1177238915-1003\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
---\\ Process running (12) - 2s
[MD5.F4E0580B5789474385E7ACB189C4AF2C] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128] [PID.180] =>.AVAST Software a.s.®
[MD5.CAA9BB913356E9FD56761C9352B7054B] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [223600] [PID.372] =>.AVAST Software a.s.®
[MD5.8E06998A4ED01F1289D00F3EF0527409] - (.Baidu, Inc. - Baidu MoboMarket Service.) -- C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe [208928] [PID.504] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
[MD5.7172E394D61CE38BB4D862CBB2F28A74] - (.Baidu, Inc. - Baidu AndroidStore Helper.) -- C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bas_helper.exe [2201632] [PID.580] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
[MD5.E6CB119EF2E148EAA1A247343550756E] - (.Alcatel-Lucent - mcci+McciCMService.) -- C:\Program Files\Common Files\Motive\McciCMService.exe [319488] [PID.924] =>.Alcatel-Lucent
[MD5.ADED0E73F165B8353690F8055A51154D] - (.Malwarebytes - Malwarebytes Service.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888] [PID.2148] =>.Malwarebytes Corporation®
[MD5.3B01B800A43CF3FAF5AAA78315BC2148] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe [74752] [PID.2384] =>.Nullsoft, Inc.
[MD5.8C31C7B29061F27A850654F292BCB9DD] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [20065936] [PID.2408] =>.Realtek Semiconductor Corp®
[MD5.F40E80C04475731C6ED5D19C48E45E3C] - (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [85160] [PID.2428] =>.Elaborate Bytes AG®
[MD5.CE99AA11D0274BE5BDEF3991508852E9] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [9080768] [PID.2444] =>.AVAST Software s.r.o.®
[MD5.A6A21A7D544675E98C040DA18904CF50] - (.Malwarebytes - Malwarebytes Tray Application.) -- C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112] [PID.2452] =>.Malwarebytes Corporation®
[MD5.1CEA5EA24BE7512838FFBDB64F135FAB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\ahmed\My Documents\Downloads\ZHPDiag3.exe [2659840] [PID.2136] =>.Nicolas Coolman
---\\ Google Chrome, Start,Search,Extensions (18) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://b.top4top.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://i.imgur.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://im67.gulfup.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://up.graaam.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://stats.g.doubleclick.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com.eg =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pmmeolboeidmfiiingaoifjhjdkgmlgj] facemoji - Stickers and emoji for Facebook
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (4) - 3s
P2 - EXT: (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL =>.Microsoft Corporation®
P2 - EXT: (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll =>.Adobe Systems, Incorporated®
P2 - EXT: (.Nullsoft, Inc. - Winamp Application Detector.) -- C:\Program Files\Mozilla Firefox\Plugins\npwachk.dll =>.Nullsoft, Inc.
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_194.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer Extensions, Start, Search (9) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (19)
---\\ Browser Helper Object (BHO) (3) - 1s
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software s.r.o.®
O2 - BHO: Download Ninja IE - {C935DDA0-269E-11E4-9235-78C81D5D46B0} (.Orphan.)
---\\ Internet Explorer Toolbars (1) - 0s
O3 - Toolbar: 0x522D464600476AA776A77A786E7484D7 - [HKCU]{46462D52-4700-A76A-76A7-7A786E7484D7} . (...) -- (.not file.)
---\\ Global shortcuts Startup (73) - 13s
O4 - GS\Desktop [Administrator]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [Administrator]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Administrator]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [ahmed]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [ahmed]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [ahmed]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [ahmed]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [ahmed]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [ahmed]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [ahmed]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [ahmed]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [ahmed]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [ahmed]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [Guest]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [Guest]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Guest]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [HelpAssistant]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [HelpAssistant]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [HelpAssistant]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HelpAssistant]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HelpAssistant]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [HelpAssistant]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [HelpAssistant]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [HelpAssistant]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [SUPPORT_388945a0]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [SUPPORT_388945a0]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [SUPPORT_388945a0]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [SUPPORT_388945a0]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Mp3tag.lnk . (.Florian Heidenreich - Mp3tag - the universal Tag editor.) C:\Program Files\Mp3tag\Mp3tag.exe =>.Florian Heidenreich®
O4 - GS\CommonDesktop [Public]: Virtual CloneDrive.lnk . (.Elaborate Bytes AG - VirtualCloneDrive Preferences.) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDPrefs.exe =>.Elaborate Bytes AG
O4 - GS\CommonDesktop [Public]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Address Book.lnk . (.Microsoft Corporation - Address Book.) C:\Program Files\Outlook Express\wab.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Windows Command Processor.) C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Synchronize.lnk . (.Microsoft Corporation - Microsoft Synchronization Manager.) C:\WINDOWS\system32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Tour Windows XP.lnk . (.Microsoft Corporation - Windows Tour Launcher.) C:\WINDOWS\system32\tourstart.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\WINDOWS\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Adobe Reader XI.lnk . (...) C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SC_Reader.ico =>.Adobe Inc.
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: MSN.lnk . (.Microsoft Corporation - Win32 Cabinet Self-Extractor.) C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows 7 Upgrade Advisor.lnk . (.Microsoft Corporation - Windows 7 Upgrade Advisor.) C:\Program Files\Microsoft Windows 7 Upgrade Advisor\WindowsUpgradeAdvisor.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Messenger.lnk . (.Microsoft Corporation - Windows Messenger.) C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) C:\Program Files\Movie Maker\moviemk.exe =>.Microsoft Corporation
---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{B6DE2D01-BFFD-48E4-94C5-4D29DF0768A5}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Extra protocols (31) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll =>.Microsoft Corporation®
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (167) - 34s
O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 24 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.08) - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824144531} =>.Adobe Systems Incorporated
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM] -- Avast =>.AVAST Software a.s.®
O42 - Logiciel: Baidu PC Faster - (.Baidu, Inc..) [HKLM] -- Baidu PC Faster 5.1.0.0 =>.Baidu, Inc.
O42 - Logiciel: Driver Genius - (.Driver-Soft Inc..) [HKLM] -- Driver Genius_is1 =>.Driver-Soft Inc.
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 =>.Microsoft Corporation®
O42 - Logiciel: Hotfix for Windows XP (KB952287) - (.Microsoft Corporation.) [HKLM] -- KB952287 =>.Microsoft Corporation®
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 =>.Microsoft Corporation
O42 - Logiciel: Malwarebytes version 3.0.6.1469 - (.Malwarebytes.) [HKLM] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 - (.Microsoft Corporation.) [HKLM] -- Wdf01007 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 - (.Microsoft Corporation.) [HKLM] -- Wdf01009 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Software Update for Web Folders (English) 12 - (.Microsoft Corporation.) [HKLM] -- {90120000-0010-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Windows Debugging Symbols - (.Microsoft.) [HKLM] -- {C6DB958A-50CC-481B-9ED8-3BAD236F7B49} =>.Microsoft
O42 - Logiciel: Mozilla Firefox 50.1.0 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 50.1.0 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Mp3tag v2.64 - (.Florian Heidenreich.) [HKLM] -- Mp3tag =>.Florian Heidenreich
O42 - Logiciel: NirSoft Wireless Network Watcher - (.NirSoft.) [HKLM] -- NirSoft Wireless Network Watcher =>.NirSoft
O42 - Logiciel: PDF Cutter - (.pdfcutter.com.) [HKLM] -- {1A8A7D04-FF0E-4AF7-9A34-5FC8004E250D}_is1
O42 - Logiciel: QQ影音3.9 - (.腾讯科技(深圳)有限公司.) [HKCU] -- QQPlayer
O42 - Logiciel: RogueKiller version 12.9.6.0 - (.Adlice Software.) [HKLM] -- 8B3D7924-ED89-486B-8322-E8594065D5CB_is1 =>.Adlice®
O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2879017) - (.Microsoft Corporation.) [HKLM] -- KB2879017-IE8 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB2834904-v2) - (.Microsoft Corporation.) [HKLM] -- KB2834904-v2_WM11 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2507938) - (.Microsoft Corporation.) [HKLM] -- KB2507938 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2536276-v2) - (.Microsoft Corporation.) [HKLM] -- KB2536276-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2544893-v2) - (.Microsoft Corporation.) [HKLM] -- KB2544893-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2566454) - (.Microsoft Corporation.) [HKLM] -- KB2566454 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2570947) - (.Microsoft Corporation.) [HKLM] -- KB2570947 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2584146) - (.Microsoft Corporation.) [HKLM] -- KB2584146 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2585542) - (.Microsoft Corporation.) [HKLM] -- KB2585542 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2592799) - (.Microsoft Corporation.) [HKLM] -- KB2592799 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2598479) - (.Microsoft Corporation.) [HKLM] -- KB2598479 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2603381) - (.Microsoft Corporation.) [HKLM] -- KB2603381 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2619339) - (.Microsoft Corporation.) [HKLM] -- KB2619339 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2620712) - (.Microsoft Corporation.) [HKLM] -- KB2620712 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2631813) - (.Microsoft Corporation.) [HKLM] -- KB2631813 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2653956) - (.Microsoft Corporation.) [HKLM] -- KB2653956 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2655992) - (.Microsoft Corporation.) [HKLM] -- KB2655992 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2659262) - (.Microsoft Corporation.) [HKLM] -- KB2659262 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2661637) - (.Microsoft Corporation.) [HKLM] -- KB2661637 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2676562) - (.Microsoft Corporation.) [HKLM] -- KB2676562 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2686509) - (.Microsoft Corporation.) [HKLM] -- KB2686509 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2691442) - (.Microsoft Corporation.) [HKLM] -- KB2691442 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2698365) - (.Microsoft Corporation.) [HKLM] -- KB2698365 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2705219-v2) - (.Microsoft Corporation.) [HKLM] -- KB2705219-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2712808) - (.Microsoft Corporation.) [HKLM] -- KB2712808 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2719985) - (.Microsoft Corporation.) [HKLM] -- KB2719985 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2723135-v2) - (.Microsoft Corporation.) [HKLM] -- KB2723135-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2727528) - (.Microsoft Corporation.) [HKLM] -- KB2727528 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2757638) - (.Microsoft Corporation.) [HKLM] -- KB2757638 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2770660) - (.Microsoft Corporation.) [HKLM] -- KB2770660 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2780091) - (.Microsoft Corporation.) [HKLM] -- KB2780091 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2802968) - (.Microsoft Corporation.) [HKLM] -- KB2802968 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2807986) - (.Microsoft Corporation.) [HKLM] -- KB2807986 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2813345) - (.Microsoft Corporation.) [HKLM] -- KB2813345 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2820917) - (.Microsoft Corporation.) [HKLM] -- KB2820917 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2834886) - (.Microsoft Corporation.) [HKLM] -- KB2834886 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2847311) - (.Microsoft Corporation.) [HKLM] -- KB2847311 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2850869) - (.Microsoft Corporation.) [HKLM] -- KB2850869 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2859537) - (.Microsoft Corporation.) [HKLM] -- KB2859537 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2862152) - (.Microsoft Corporation.) [HKLM] -- KB2862152 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2862330) - (.Microsoft Corporation.) [HKLM] -- KB2862330 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2862335) - (.Microsoft Corporation.) [HKLM] -- KB2862335 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2864063) - (.Microsoft Corporation.) [HKLM] -- KB2864063 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2868626) - (.Microsoft Corporation.) [HKLM] -- KB2868626 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2876217) - (.Microsoft Corporation.) [HKLM] -- KB2876217 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2876331) - (.Microsoft Corporation.) [HKLM] -- KB2876331 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2892075) - (.Microsoft Corporation.) [HKLM] -- KB2892075 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2893294) - (.Microsoft Corporation.) [HKLM] -- KB2893294 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2898715) - (.Microsoft Corporation.) [HKLM] -- KB2898715 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2900986) - (.Microsoft Corporation.) [HKLM] -- KB2900986 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2914368) - (.Microsoft Corporation.) [HKLM] -- KB2914368 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2916036) - (.Microsoft Corporation.) [HKLM] -- KB2916036 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2922229) - (.Microsoft Corporation.) [HKLM] -- KB2922229 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2929961) - (.Microsoft Corporation.) [HKLM] -- KB2929961 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2930275) - (.Microsoft Corporation.) [HKLM] -- KB2930275 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB941569) - (.Microsoft Corporation.) [HKLM] -- KB941569 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB946648) - (.Microsoft Corporation.) [HKLM] -- KB946648 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB950762) - (.Microsoft Corporation.) [HKLM] -- KB950762 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB950974) - (.Microsoft Corporation.) [HKLM] -- KB950974 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB951376-v2) - (.Microsoft Corporation.) [HKLM] -- KB951376-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB952954) - (.Microsoft Corporation.) [HKLM] -- KB952954 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2749655) - (.Microsoft Corporation.) [HKLM] -- KB2749655 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2904266) - (.Microsoft Corporation.) [HKLM] -- KB2904266 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2934207) - (.Microsoft Corporation.) [HKLM] -- KB2934207 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB898461) - (.Microsoft Corporation.) [HKLM] -- KB898461 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB951978) - (.Microsoft Corporation.) [HKLM] -- KB951978 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815 =>.Microsoft Corporation®
O42 - Logiciel: VeryPDF PDF Split-Merge v3.0 - (.VeryPDF.com, Inc..) [HKLM] -- VeryPDF PDF Split-Merge v3.0_is1
O42 - Logiciel: WebFldrs XP - (.Microsoft Corporation.) [HKLM] -- {350C97B0-3D7C-4EE8-BAA9-00BCB3D54227} =>.Microsoft Corporation
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp =>.Nullsoft, Inc
O42 - Logiciel: Winamp Detector Plug-in - (.Nullsoft, Inc.) [HKCU] -- Winamp Detect =>.Nullsoft, Inc
O42 - Logiciel: Windows 7 Upgrade Advisor - (.Microsoft Corporation.) [HKLM] -- {AB05F2C8-F608-403b-95E1-FD8ADFACD31E} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Package - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.505.08 - (.Baidu.com.) [HKLM] -- B7E5B73AF9E802DFB0CCB4DCC81176B6ABF68D2A =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O42 - Logiciel: Windows Driver Package - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.505.08 - (.Baidu.com.) [HKLM] -- FEC771B671F26BEEE1C7748D6B779FE46C0D1834 =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify =>.Microsoft Corporation
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 =>.Microsoft Corporation®
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- Windows Media Format Runtime =>.Microsoft Corporation
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 =>.Microsoft Corporation®
O42 - Logiciel: WinRAR archiver - (.RarLab.) [HKLM] -- WinRAR archiver =>.RarLab
---\\ HKCU & HKLM Software Keys (133) - 34s
HKLM\SOFTWARE\Acclaim Software Ltd
HKLM\SOFTWARE\Adguard =>.Adguard
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\America Online =>.America Online
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\AVG =>.AVG Software
HKLM\SOFTWARE\Baidu Security =>.Baidu Technology
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\BenVista =>.BenVista
HKLM\SOFTWARE\BitDefender Parental Control =>.Bitdefender
HKLM\SOFTWARE\C07ft5Y =>.Total War Game
HKLM\SOFTWARE\CDDB =>.Cddb Software
HKLM\SOFTWARE\CloudOpt
HKLM\SOFTWARE\CoreCodec
HKLM\SOFTWARE\Creative Tech =>.Creative Tech
HKLM\SOFTWARE\CyberLink =>.CyberLink Corporation
HKLM\SOFTWARE\Dayterium =>.Dayterium
HKLM\SOFTWARE\DFX =>.DFX Power Technology
HKLM\SOFTWARE\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Disney Interactive =>.Disney Interactive
HKLM\SOFTWARE\Driver-Soft =>.Driver-Soft
HKLM\SOFTWARE\Elaborate Bytes =>.Elaborate Bytes
HKLM\SOFTWARE\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\ESET =>.ESET
HKLM\SOFTWARE\EVP =>.EVP Software
HKLM\SOFTWARE\Florian Heidenreich =>.Florian Heidenreich
HKLM\SOFTWARE\GameHouse =>.GameHouse
HKLM\SOFTWARE\Gemplus =>.Gemplus
HKLM\SOFTWARE\Global IP Solutions
HKLM\SOFTWARE\GNU =>.GNU
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\HaaliMkx =>.Haali Media
HKLM\SOFTWARE\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\JJsoft
HKLM\SOFTWARE\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKLM\SOFTWARE\KONAMIPES6 =>.Konami
HKLM\SOFTWARE\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\McAfee.com =>.McAfee Inc.
HKLM\SOFTWARE\Motive
HKLM\SOFTWARE\Motorola =>.Motorola
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nullsoft =>.Nullsoft
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\PopCap
HKLM\SOFTWARE\PowerTechnology =>.PowerTechnology
HKLM\SOFTWARE\Program Groups =>.Program Groups
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\ReflexiveArcade =>.Games Software
HKLM\SOFTWARE\Reg =>.Legitimate
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Schlumberger =>.Schlumberger
HKLM\SOFTWARE\Software =>.Unknow
HKLM\SOFTWARE\SOSVirus =>.SosVirus
HKLM\SOFTWARE\tools
HKLM\SOFTWARE\TuneUp =>.TuneUp
HKLM\SOFTWARE\Windows 3.1 Migration Status =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\ZONER
HKCU\SOFTWARE\3rd Eye Solutions
HKCU\SOFTWARE\Acclaim Software Ltd
HKCU\SOFTWARE\Active@ File Preview
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Applications
HKCU\SOFTWARE\Avast Software =>.AVAST Software
HKCU\SOFTWARE\AVG =>.AVG Software
HKCU\SOFTWARE\Baidu =>.Baidu
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\BenVista =>.BenVista
HKCU\SOFTWARE\CDDB =>.Cddb Software
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\CoreAAC =>.Core Codec
HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation
HKCU\SOFTWARE\Device VS-1012
HKCU\SOFTWARE\Digienhanc
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\DSP-worx =>.Microsoft Corporation
HKCU\SOFTWARE\Ectaco
HKCU\SOFTWARE\Elaborate Bytes =>.Elaborate Bytes
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Flash Player Pro
HKCU\SOFTWARE\Flying. Stone. production
HKCU\SOFTWARE\FreeTime =>.FreeTime Inc
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\GameHouse =>.GameHouse
HKCU\SOFTWARE\GNU =>.GNU
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GRETECH =>.Gretech
HKCU\SOFTWARE\Haali =>.Haali Media
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\Investintech.com Inc.
HKCU\SOFTWARE\JEDI-VCL =>.JEDI Project
HKCU\SOFTWARE\Kiloo Games =>.Kiloo Games
HKCU\SOFTWARE\Leawo Software =>.Leawo Software
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Media Research Group
HKCU\SOFTWARE\Mediachance =>.Mediachance
HKCU\SOFTWARE\Motive
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OperaOB
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\Reg =>.Legitimate
HKCU\SOFTWARE\RSB
HKCU\SOFTWARE\Sandlot Games
HKCU\SOFTWARE\SecuROM =>.SecuROM
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\SmartDeblur =>.Vladimir Yuzhikov
HKCU\SOFTWARE\Toogame
HKCU\SOFTWARE\TreeCardGames =>.TreeCardGames
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\Winamp =>.Nullsoft Inc.
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\ZONER
HKCU\SOFTWARE\Zylom =>.Zylom
---\\ Contents of the Common Files folders (212) - 23s
O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\31275697030932b5b015
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 22/09/2015 - [] D -- C:\Program Files\All File to All File Converter 3000
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\AutoRun =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software a.s.®
O43 - CFD: 01/11/2014 - [] D -- C:\Program Files\Baidu Security =>.Baidu Technology
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\BandRich
O43 - CFD: 01/02/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [0] D -- C:\Program Files\ComPlus Applications =>.Microsoft Corporation
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\config
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\DCEnhancer
O43 - CFD: 08/02/2015 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\Driver =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files\Driver Checker {058EFD81CFC178B930CAA249710DE3B1}
O43 - CFD: 24/09/2015 - [] D -- C:\Program Files\Driver-Soft =>.Driver Information Technology Co., Ltd.®
O43 - CFD: 18/07/2016 - [] D -- C:\Program Files\Elaborate Bytes =>.Elaborate Bytes
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\ESET =>.ESET
O43 - CFD: 13/10/2014 - [] D -- C:\Program Files\GameTop.com
O43 - CFD: 09/09/2015 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\GUM12B.tmp =>.Google Inc®
O43 - CFD: 18/09/2015 - [] HD -- C:\Program Files\InstallShield Installation Information =>.InstallShield Software
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 15/12/2015 - [0] D -- C:\Program Files\iStonsoft =>.iStonsoft
O43 - CFD: 03/09/2015 - [0] D -- C:\Program Files\leawo =>.Leawo
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\Log =>.Unknow
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\LSoft Technologies =>.Lsoft technologies
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 06/07/2016 - [] D -- C:\Program Files\Messenger =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\microsoft frontpage =>.Microsoft Corporation
O43 - CFD: 15/12/2016 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Microsoft Visual Studio =>.Microsoft Corporation
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor =>.Microsoft Corporation
O43 - CFD: 20/08/2016 - [] D -- C:\Program Files\Microsoft Works =>.Microsoft Corporation
O43 - CFD: 17/08/2016 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files\Movie Maker =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 14/10/2014 - [] D -- C:\Program Files\Mp3tag =>.Florian Heidenreich
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\MSN =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\MSN Gaming Zone =>.Microsoft Corporation
O43 - CFD: 10/09/2015 - [0] D -- C:\Program Files\MyPlayCity.com =>.MyPlayCity.com
O43 - CFD: 13/10/2014 - [] D -- C:\Program Files\Mystic Match Demo
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\NetMeeting =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files\Ninja Download Manager =>.Websecure Ltd®
O43 - CFD: 29/01/2016 - [] D -- C:\Program Files\NirSoft =>.NirSoft
O43 - CFD: 17/08/2016 - [] D -- C:\Program Files\officeen =>.Microsoft Corporation®
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Online Services =>.Hewlett-Packard
O43 - CFD: 06/07/2016 - [] D -- C:\Program Files\Outlook Express =>.Microsoft Corporation
O43 - CFD: 09/05/2016 - [] D -- C:\Program Files\PDF Cutter
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\plugins
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files\QSocial
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\qtlib
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 07/10/2016 - [0] D -- C:\Program Files\Recuva =>.Piriform
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\RogueKiller =>.Adlice
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\skin
O43 - CFD: 10/10/2014 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 23/01/2015 - [] AD -- C:\Program Files\UpdateDog =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\usermanual
O43 - CFD: 09/05/2016 - [] D -- C:\Program Files\VeryPDF PDF Split-Merge v3.0
O43 - CFD: 09/08/2016 - [] D -- C:\Program Files\Winamp =>.Winamp
O43 - CFD: 14/10/2014 - [] D -- C:\Program Files\Winamp Detect =>.Nullsoft Inc.
O43 - CFD: 18/09/2015 - [0] D -- C:\Program Files\Windows Media Connect 2 =>.Microsoft Corporation
O43 - CFD: 18/09/2015 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [0] HD -- C:\Program Files\WindowsUpdate =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\WinRAR =>.WinRAR
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\xerox =>.Xerox
O43 - CFD: 22/07/2016 - [] D -- C:\Program Files\Yahoo! =>.Yahoo!
O43 - CFD: 12/10/2016 - [] D -- C:\Program Files\Zoner =>.Zoner Inc.
O43 - CFD: 08/02/2015 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\AVAST Software =>.AVAST Software
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Baidu PC Faster
O43 - CFD: 24/09/2015 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Driver Genius
O43 - CFD: 18/07/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Elaborate Bytes =>.Elaborate Bytes
O43 - CFD: 10/10/2014 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 15/10/2014 - [0] D -- C:\Documents and Settings\All Users\Start Menu\Programs\GameTop.com
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 13/10/2016 - [0] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Mediachance =>.Mediachance
O43 - CFD: 17/08/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Mp3tag =>.Florian Heidenreich
O43 - CFD: 10/09/2015 - [0] D -- C:\Documents and Settings\All Users\Start Menu\Programs\MyPlayCity.com =>.MyPlayCity.com
O43 - CFD: 09/05/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\PDF Cutter
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\RogueKiller =>.Adlice
O43 - CFD: 20/11/2016 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 09/05/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\VeryPDF PDF Split-Merge v3.0
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Winamp =>.Winamp
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 20/11/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Adguard =>.Insoft LLC
O43 - CFD: 03/02/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe =>.Adobe
O43 - CFD: 15/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Atheros =>.Qualcomm Atheros
O43 - CFD: 12/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\AVAST Software =>.AVAST Software
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\AVG =>.AVG Software
O43 - CFD: 18/08/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Avira =>.Avira Software
O43 - CFD: 05/12/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu =>.Baidu
O43 - CFD: 07/03/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu Security =>.Baidu Technology
O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\BDLogging =>.Bitdefender
O43 - CFD: 28/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\boost_interprocess =>.boost.org
O43 - CFD: 18/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Cache =>.Legitimate
O43 - CFD: 12/09/2015 - [] HD -- C:\Documents and Settings\All Users\Application Data\Common Files =>.Microsoft Corporation
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Ultra =>.Daemon's Home
O43 - CFD: 28/01/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\DatacardService =>.Entriq, Inc.
O43 - CFD: 12/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\DivoGames
O43 - CFD: 15/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\DriverGenius =>.Bluesquad
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Etisalat 3.75G USB Modem
O43 - CFD: 10/10/2014 - [0] D -- C:\Documents and Settings\All Users\Application Data\IDM =>.IDM
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Ludia
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\Malwarebytes =>.Malwarebytes
O43 - CFD: 03/02/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\McAfee =>.McAfee
O43 - CFD: 28/07/2015 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 17/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 28/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Motive
O43 - CFD: 20/11/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Package Cache =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\PC Faster
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\PlayFirst
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\RogueKiller =>.Adlice
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
O43 - CFD: 15/12/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Skype =>.Skype
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Sun =>.Oracle
O43 - CFD: 12/10/2014 - [0] AD -- C:\Documents and Settings\All Users\Application Data\TEMP =>.Microsoft Corporation
O43 - CFD: 15/01/2017 - [0] D -- C:\Documents and Settings\All Users\Application Data\tools
O43 - CFD: 18/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage =>.Microsoft Corporation
O43 - CFD: 12/10/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Zoner =>.Zoner Inc.
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\Common Files\Adobe =>.Adobe
O43 - CFD: 13/07/2015 - [] D -- C:\Program Files\Common Files\Bitdefender =>.Bitdefender
O43 - CFD: 23/08/2016 - [] D -- C:\Program Files\Common Files\DESIGNER =>.Designer
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files\Common Files\DirectX =>.Microsoft Corporation
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\Common Files\InstallShield =>.InstallShield
O43 - CFD: 20/08/2016 - [] D -- C:\Program Files\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 28/07/2015 - [] D -- C:\Program Files\Common Files\Motive
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\MSSoap =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\ODBC =>.DB Connectivity Solutions
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 26/08/2016 - [] D -- C:\Program Files\Common Files\System =>.Microsoft Corporation
O43 - CFD: 11/11/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Adobe =>.Adobe
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\AVAST Software =>.AVAST Software
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\AVG =>.AVG Software
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\baidu =>.Baidu
O43 - CFD: 07/03/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Baidu Security =>.Baidu Technology
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\DAEMON Tools Ultra =>.Daemon's Home
O43 - CFD: 29/07/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\DMCache =>.DMCache
O43 - CFD: 27/07/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\DownloadNinja
O43 - CFD: 05/08/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Ectaco
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\EleFun Games =>.EleFun Games
O43 - CFD: 21/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\ESET =>.ESET
O43 - CFD: 09/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Google =>.Google
O43 - CFD: 11/10/2014 - [0] D -- C:\Documents and Settings\ahmed\Application Data\Help =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Identities =>.Microsoft Corporation
O43 - CFD: 29/07/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\IDM =>.IDM
O43 - CFD: 11/11/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\iStonsoft =>.iStonsoft
O43 - CFD: 03/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Leawo =>.Leawo
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Ludia
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Macromedia =>.Macromedia
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Mozilla =>.Mozilla Corporation
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Mp3tag =>.Florian Heidenreich
O43 - CFD: 06/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Pardolabs
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\PC Faster
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\PlayFirst
O43 - CFD: 10/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\QSocial
O43 - CFD: 01/07/2015 - [0] D -- C:\Documents and Settings\ahmed\Application Data\QuickScan =>.Bitdefender
O43 - CFD: 30/08/2015 - [] RHD -- C:\Documents and Settings\ahmed\Application Data\SecuROM =>.SecuROM
O43 - CFD: 18/01/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\Skype =>.Skype
O43 - CFD: 02/07/2016 - [0] D -- C:\Documents and Settings\ahmed\Application Data\Smadav =>.SmadAV
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Sun =>.Oracle
O43 - CFD: 19/07/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Thinstall =>.VMare
O43 - CFD: 09/08/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\vlc =>.VideoLan Team
O43 - CFD: 01/08/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Winamp =>.Winamp
O43 - CFD: 12/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Yahoo! =>.Yahoo!
O43 - CFD: 01/02/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\ZHP =>.Nicolas Coolman
O43 - CFD: 12/10/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\Zoner =>.Zoner Inc.
O43 - CFD: 27/11/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\Zoom =>.ZOOM
O43 - CFD: 16/01/2017 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Adobe =>.Adobe
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Avg =>.AVG Software
O43 - CFD: 30/11/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\CEF =>.CEF
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Disc_Soft_Ltd =>.Disc Soft Ltd
O43 - CFD: 21/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\ESET =>.ESET
O43 - CFD: 10/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Google =>.Google
O43 - CFD: 11/10/2014 - [0] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Help =>.Microsoft Corporation
O43 - CFD: 16/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Identities =>.Microsoft Corporation
O43 - CFD: 10/08/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Investintech.com Inc
O43 - CFD: 02/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Kiloo Games
O43 - CFD: 04/02/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Logo Style
O43 - CFD: 17/01/2017 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Microsoft Corporation =>.Microsoft Corporation
O43 - CFD: 17/08/2016 - [0] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Mozilla =>.Mozilla Corporation
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\RSB
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Skype =>.Skype
O43 - CFD: 13/12/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Temp =>.Microsoft Corporation
O43 - CFD: 19/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Thinstall =>.VMare
O43 - CFD: 28/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\WiFi Guard
O43 - CFD: 11/10/2014 - [0] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\WMTools Downloaded Files =>.WMTools
O43 - CFD: 12/10/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Zoner =>.Zoner Inc.
O43 - CFD: 10/10/2014 - [] RD -- C:\Documents and Settings\ahmed\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 07/03/2015 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\Baidu PC Faster
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\Eidos Interactive =>.Eidos Interactive
O43 - CFD: 15/12/2015 - [0] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\iStonsoft =>.iStonsoft
O43 - CFD: 29/01/2016 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\NirSoft Wireless Network Watcher
O43 - CFD: 14/12/2016 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\PhotoZoom Pro 7
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\QQPlayer
O43 - CFD: 20/11/2016 - [] RD -- C:\Documents and Settings\ahmed\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\Winamp Detector Plug-in
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\腾讯软件
O43 - CFD: 10/10/2014 - [] RD -- C:\WINDOWS\System32\Config\systemprofile\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\Start Menu\Programs\Baidu PC Faster
O43 - CFD: 10/10/2014 - [] RD -- C:\WINDOWS\System32\Config\systemprofile\Start Menu\Programs\Startup =>.Microsoft Corporation
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s
O106 - SIOI: avast [00asw] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.®
O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.®
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Offline Files Menu [Offline Files] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation
---\\ ShareTools MSconfig StartupReg (11) - 1s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (...) -- C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\avgnt [Key] . (...) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CTFMON.EXE [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (...) -- C:\Program Files\Internet Download Manager\IDMan.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Messenger (Yahoo!) [Key] . (...) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RTHDCPL [Key] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- RTHDCPL.EXE (.not file.) =>.Realtek Semiconductor Corp.
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (...) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (...) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\VNT [Key] . (...) -- C:\Program Files\VNT\vntldr.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WinampAgent [Key] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe =>.Nullsoft, Inc.
---\\ System Drivers List (68) - 28s
O58 - SDL:2009/11/18 06:16:00 A . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480] =>.Creative Labs Inc®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! HWID.) -- C:\WINDOWS\System32\drivers\aswHwid.sys [34008] =>.AVAST Software a.s.® (.AVAST Software)
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [92256] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:23 A . (.ALWIL Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdis.sys [12112] =>.ALWIL Software®
O58 - SDL:2017/01/25 01:25:23 A . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdis2.sys [295840] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! TDI Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr.sys [64272] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [60424] =>.AVAST Software a.s.® (.AVAST Software)
O58 - SDL:2017/01/25 01:26:56 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswsnx.sys [735488] =>.AVAST Software s.r.o.®
O58 - SDL:2017/01/25 01:26:59 A . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswsp.sys [433768] =>.AVAST Software s.r.o.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStmXP.sys [184592] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\System32\drivers\aswTdi.sys [66688] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:27:01 A . (.AVAST Software - avast! VM Monitor.) -- C:\WINDOWS\System32\drivers\aswvmm.sys [224752] =>.AVAST Software s.r.o.® (.AVAST Software)
O58 - SDL:2015/05/03 08:39:19 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\System32\drivers\Bhbase.sys [46440] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O58 - SDL:2015/05/03 08:39:20 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\System32\drivers\BProtectEx.sys [113992] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O58 - SDL:2011/03/04 21:44:12 N . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [9072] =>.Sonic Solutions®
O58 - SDL:2011/03/04 21:44:12 N . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [9200] =>.Sonic Solutions®
O58 - SDL:2008/04/14 15:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] =>.RAVISENT Technologies Inc.
O58 - SDL:2008/04/14 15:00:00 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] =>.Compaq Computer Corporation
O58 - SDL:2004/12/08 08:10:00 A . (.Dritek System Inc. - Dritek PS2 Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\DKbFltr.SYS [16896] =>.Dritek System Inc.
O58 - SDL:2008/04/14 15:00:00 A . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmboot.sys [799744] =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/14 15:00:00 A . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\drivers\dmio.sys [153344] =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/14 15:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] =>.Microsoft Corp., Veritas Software.
O58 - SDL:2015/09/12 07:51:18 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtultrascsibus.sys [25016] =>.Disc Soft Ltd®
O58 - SDL:2015/09/12 07:51:28 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual USB Bus Driver.) -- C:\WINDOWS\System32\drivers\dtultrausbbus.sys [39992] =>.Disc Soft Ltd®
O58 - SDL:2001/12/28 21:55:46 RA . (.Compaq Computer Corp. - Easy Access PS/2 Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\eaps2kbd.sys [24035]
O58 - SDL:1999/10/29 22:35:08 RA . (.Compaq Computer Corporation - Compaq EAWDMFD driver.) -- C:\WINDOWS\System32\drivers\EAWDMFD.SYS [24035] =>.Compaq Computer Corporation
O58 - SDL:2009/12/18 00:25:12 A . (.Elaborate Bytes AG - ElbyCD Windows NT/2000/XP I/O driver.) -- C:\WINDOWS\System32\drivers\ElbyCDIO.sys [24035] =>.Elaborate Bytes AG®
O58 - SDL:2008/04/14 15:00:00 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [24035] =>.Microsoft Corporation
O58 - SDL:2007/06/18 10:12:04 A . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [24035] =>.Hewlett-Packard Development Company, L.P.
O58 - SDL:2017/01/20 07:47:44 A . (...) -- C:\WINDOWS\System32\drivers\mbae.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2017/02/01 16:39:17 A . (.Malwarebytes - Malwarebytes Real-Time Protection.) -- C:\WINDOWS\System32\drivers\mbam.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2017/02/01 14:15:20 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\WINDOWS\System32\drivers\MBAMChameleon.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2017/02/01 16:39:02 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2009/11/18 06:17:00 A . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\Monfilt.sys [24035] =>.Creative Labs Inc®
O58 - SDL:2008/04/14 15:00:00 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [24035] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/14 15:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [24035] =>.Parallel Technologies, Inc.
O58 - SDL:2011/03/04 21:44:14 N . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\System32\drivers\PxHelp20.sys [24035] =>.Sonic Solutions®
O58 - SDL:2008/04/14 15:00:00 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [24035] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/14 15:00:00 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [24035] =>.S3/Diamond Multimedia Systems
O58 - SDL:2012/06/19 15:54:20 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [24035] =>.Realtek Semiconductor Corp®
O58 - SDL:2008/04/14 15:00:00 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [24035] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2006/06/16 04:04:38 A . (.Silicon Integrated Systems Corporation - SiS AGPv3.5 Filter.) -- C:\WINDOWS\System32\drivers\SISAGPX.SYS [24035] =>.Silicon Integrated Systems Corporation
O58 - SDL:2008/03/03 06:00:00 A . (.Silicon Integrated Systems Corp. - NDIS 5.1 Miniport Driver for SiS191/SiS190.) -- C:\WINDOWS\System32\drivers\SiSGbeXP.sys [24035] =>.Silicon Integrated Systems Corp.
O58 - SDL:2010/01/06 09:25:24 A . (.Silicon Integrated Systems Corporation - SiS Compatible Super VGA Driver.) -- C:\WINDOWS\System32\drivers\sisgrp.sys [24035] =>.Silicon Integrated Systems Corporation
O58 - SDL:2003/07/09 02:12:54 RA . (.Silicon Integrated Systems Corp. - SiS PCI Mini IDE Driver.) -- C:\WINDOWS\System32\drivers\siside.sys [24035] =>.Silicon Integrated Systems Corp.
O58 - SDL:2009/08/23 05:23:08 A . (.Motorola Inc. - Motorola SM56 Modem WDM Driver.) -- C:\WINDOWS\System32\drivers\smserial.sys [24035] =>.Motorola Inc.
O58 - SDL:2010/01/06 09:49:34 A . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) -- C:\WINDOWS\System32\drivers\srvkp.sys [24035] =>.Silicon Integrated Systems Corporation
O58 - SDL:2014/12/11 20:53:08 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tapwp01.sys [24035] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2017/01/25 21:30:27 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [24035] =>.Adlice®
O58 - SDL:2008/04/14 15:00:00 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [24035] =>.Toshiba Corporation
O58 - SDL:2009/08/09 23:25:56 A . (.Elaborate Bytes AG - VirtualCloneCD Driver.) -- C:\WINDOWS\System32\drivers\VClone.sys [24035] =>.Elaborate Bytes AG
O58 - SDL:2008/04/14 15:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [24035] =>.RAVISENT Technologies Inc.
O58 - SDL:2016/11/20 09:20:28 A . (...) -- C:\WINDOWS\System32\drivers\vwifikerneldrv.sys [24035]
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\keyboard.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio404.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio411.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio412.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio804.sys [24035] =>.Microsoft Corporation
---\\ Last modified or created user files (1) - 19s
O61 - LFC: 2017/01/26 13:53:19 A . (.QQPlayer.NET Tencent.) -- C:\Documents and Settings\ahmed\My Documents\Downloads\QQPlayer_Setup_English.exe [32963797] =>.Superfluous.Tencent
---\\ File Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O67 - Shell Spawning: <.js>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.reg>[HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\WINDOWS\regedit.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.scr>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (...) -- Chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc.
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\WINDOWS\system32\ie4uinit.exe =>.Microsoft Corporation
---\\ Search Browser Infection (3) - 6s
O69 - SBI: SearchScopes [HKCU] {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} - (Avast Search) - http://search.avast.com/ =>.Avast Software s.r.o
O69 - SBI: SearchScopes [HKCU] {B7725F08-F62A-40B0-B3CC-0625D8491A39} [DefaultScope] - (Google) - http://www.google.com/ =>.Google Inc.
O69 - SBI: SearchScopes [HKLM] {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} - (Avast Search) - http://search.avast.com/ =>.Avast Software s.r.o
---\\ Search Svchost Services (41) - 0s
O83 - Search Svchost Services: 6to4 (6to4) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\system32\6to4svc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\WINDOWS\system32\appmgmts.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - Logical Disk Manager service dll.) -- C:\WINDOWS\system32\dmserver.dll [24035] =>.Microsoft Corp.
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - DHCP Client Service.) -- C:\WINDOWS\system32\dhcpcsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\system32\shsvcs.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS\System32\hidserv.dll [24035]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Network Connections Manager.) -- C:\WINDOWS\system32\netman.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provi.) -- C:\WINDOWS\system32\mswsock.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Removable Storage Manager.) -- C:\WINDOWS\system32\ntmssvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Task Scheduler Engine.) -- C:\WINDOWS\system32\schedsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\system32\ipnathlp.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - System Restore Service.) -- C:\WINDOWS\system32\srsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\WINDOWS\system32\tapisrv.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\system32\shsvcs.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Windows Time Service.) -- C:\WINDOWS\system32\w32time.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Wireless Zero Configuration Service.) -- C:\WINDOWS\system32\wzcsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - Advanced Windows 32 Base API.) -- C:\WINDOWS\system32\advapi32.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Quarantine Agent Service Run-Time.) -- C:\WINDOWS\system32\qagentrt.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\WINDOWS\system32\kmsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\system32\qmgr.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\system32\shsvcs.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [24035] =>.Microsoft Corporation
---\\ Additional Scan (O88) (3) - 1s
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C935DDA0-269E-11E4-9235-78C81D5D46B0} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C935DDA0-269E-11E4-9235-78C81D5D46B0} =>.Superfluous.Orphan
C:\Documents and Settings\ahmed\My Documents\Downloads\QQPlayer_Setup_English.exe =>.Superfluous.Tencent
---\\ Summary of the elements found (1) - 0s
https://www.nicolascoolman.com/fr/adware-tencentaddressbar/ =>.Superfluous.Tencent
~ Unselected Options: O82,
~ End of the scan, 47172 items in 03mn34s (1020)(0)
~ Run by ahmed (Administrator) (2017/02/01 18:19:58)
~ Web: https://www.nicolascoolman.com
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Documents and Settings\ahmed\Desktop\ZHPDiag.txt
~ Report: C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ System startup: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600) =>.Microsoft Corporation
---\\ Internet Browsers (3) - 1s
~ GCIE: Google Chrome v49.0.2623.112
~ MFIE: Mozilla Firefox 50.1.0 (x86 en-US)
~ MSIE: Internet Explorer v8.0.6001.18702
---\\ Windows Product Information (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK
---\\ System protection software (2) - 4s
Avast Internet Security v12.3.2280 (Protection)
Malwarebytes version 3.0.6.1469 v3.0.6.1469 (Protection)
---\\ Surveillance software (2) - 5s
~ Adobe Flash Player 24 NPAPI (Surveillance)
~ Adobe Reader XI (Surveillance)
---\\ Information on the system (6) - 0s
~ Operating System: x86 Family 6 Model 22 Stepping 1, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 783.464 MB (52% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 8 GB (27%) free of 29 GB : ATTENTION =>Warning Disk Space
---\\ Connection to the system mode (3) - 0s
~ Computer Name: BSMLLA
~ User Name: ahmed
~ Logged in as Administrator
---\\ Enumeration of the disk units (2) - 0s
~ Drive C: has 8 GB free of 29 GB (System)
~ Drive D: has 33 GB free of 46 GB
---\\ State of the Windows Security Center (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Search Generic System Files (23) - 2s
[MD5.12896823FB95BFB3DC9B46BCAEDC9923] - 14/04/2008 - (.Microsoft Corporation - Windows Explorer.) -- C:\WINDOWS\Explorer.exe [1033728] =>.Microsoft Corporation
[MD5.037B1E7798960E0420003D05BB577EE6] - 14/04/2008 - (.Microsoft Corporation - Run a DLL as an App.) -- C:\WINDOWS\System32\rundll32.exe [33280] =>.Microsoft Corporation
[MD5.D73F1BE00684E675571015B3A5880F5B] - 23/09/2013 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [920064] =>.Microsoft Corporation
[MD5.ED0EF0A136DEC83DF69F04118870003E] - 14/04/2008 - (.Microsoft Corporation - Windows NT Logon Application.) -- C:\WINDOWS\System32\Winlogon.exe [507904] =>.Microsoft Corporation
[MD5.389496118B3B03C2328024AF320132AC] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] =>.Microsoft Corporation
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 14/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 14/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 14/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] =>.Microsoft Corporation
[MD5.D45926117EB9FA946A6AF572FBE1CAA3] - 14/04/2008 - (.Microsoft Corporation - FIPS Crypto Driver.) -- C:\WINDOWS\System32\drivers\Fips.sys [44544] =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 14/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.4A0B06AA8943C1E332520F7440C0AA30] - 14/04/2008 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [52480] =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 14/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 14/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 14/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] =>.Microsoft Corporation
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320] =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 14/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 14/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
[MD5.5575FAF8F97CE5E713D108C2A58D7C7C] - 14/04/2008 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\WINDOWS\System32\drivers\Parport.sys [80128] =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 14/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 14/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
[MD5.F828DD7E1419B6653894A8F97A0094C5] - 14/04/2008 - (.Microsoft Corporation - Redbook Audio Filter Driver.) -- C:\WINDOWS\System32\drivers\redbook.sys [57600] =>.Microsoft Corporation
[MD5.4C8FCB5CC53AAB716D810740FE59D025] - 14/04/2008 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [52352] =>.Microsoft Corporation
---\\ Non Microsoft non disabled Windows Services (7) - 7s
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
O23 - Service: Avast Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.®
O23 - Service: Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc. - Baidu MoboMarket Service.) - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O23 - Service: خدمة Google Update (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Malwarebytes Service (MBAMService) . (.Malwarebytes - Malwarebytes Service.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: McciCMService (McciCMService) . (.Alcatel-Lucent - mcci+McciCMService.) - C:\Program Files\Common Files\Motive\McciCMService.exe =>.Alcatel-Lucent
O23 - Service: Baidu PC Faster Service 5.1.0.0 (PCFasterSvc_{PCFaster_5.1.0.0}) . (...) - C:\Program Files\PC Faster\5.1.0.0\PCFasterSvc.exe (.not file.)
---\\ Services not Microsoft (SR=Run, SS=Stop) (9) - 34s
SS - Demand [16/01/2017] [ 270936] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SR - Auto [25/01/2017] [ 197128] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
SR - Auto [25/01/2017] [ 223600] Avast Firewall (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe =>.AVAST Software a.s.®
SR - Auto [17/12/2014] [ 208928] Baidu MoboMarket Service (BASSVC) . (.Baidu, Inc..) - C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe =>.Baidu Online Network Technology (Beijing)Co., Ltd®
SS - Auto [28/08/2015] [ 144200] خدمة Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [28/08/2015] [ 144200] خدمة Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Auto [20/01/2017] [ 3303888] Malwarebytes Service (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [15/06/2011] [ 319488] McciCMService (McciCMService) . (.Alcatel-Lucent.) - C:\Program Files\Common Files\Motive\McciCMService.exe =>.Alcatel-Lucent
SS - Demand [23/01/2017] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
---\\ Task Planned Automatically (9) - 4s
[MD5.00000000000000000000000000000000] [APT] [Avast Emergency Update] (...) -- C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty
O39 - APT: Adobe Flash Player Updater - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [830] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Avast Emergency Update - (...) -- C:\WINDOWS\Tasks\Avast Emergency Update.job [310] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: avast! Emergency Update - (...) -- C:\WINDOWS\Tasks\avast! Emergency Update.job [362] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Baidu PC Faster Update - (...) -- C:\WINDOWS\Tasks\Baidu PC Faster Update.job [356] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [826] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [830] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Microsoft Windows XP End of Service Notification Logon - (...) -- C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job [222] (.Orphan.) =>.Superfluous.Orphan
O39 - APT: Microsoft Windows XP End of Service Notification Monthly - (...) -- C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job [216] (.Orphan.) =>.Superfluous.Orphan
---\\ Auto loading programs from Registry and folders (20) - 7s
O4 - HKLM\..\Run: [WinampAgent] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe =>.Nullsoft, Inc.
O4 - HKLM\..\Run: [Baidu PC Faster 5.1.0.0] C:\Program Files\PC Faster\5.1.0.0\PCFTray.exe (.not file.)
O4 - HKLM\..\Run: [Baidu PC Faster 4.0.0.0] C:\Program Files\PC Faster\5.1.0.0\PCFTray.exe (.not file.)
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems, Incorporated®
O4 - HKLM\..\Run: [Qsocial] . (.Genre - .) -- C:\Program Files\QSocial\
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [VirtualCloneDrive] . (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe =>.Elaborate Bytes AG®
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe =>.Microsoft Corporation®
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe =>.AVAST Software s.r.o.®
O4 - HKLM\..\Run: [Malwarebytes TrayApp] . (.Malwarebytes - Malwarebytes Tray Application.) -- C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe =>.Malwarebytes Corporation®
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\Run: [Qsocial] C:\Program Files\QSocial\QSocial.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\Run: [Qsocial] C:\Program Files\QSocial\QSocial.exe (.not file.)
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-436374069-920026266-1177238915-1003\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-436374069-920026266-1177238915-1003\..\Run: [MSMSGS] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
---\\ Process running (12) - 2s
[MD5.F4E0580B5789474385E7ACB189C4AF2C] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128] [PID.180] =>.AVAST Software a.s.®
[MD5.CAA9BB913356E9FD56761C9352B7054B] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [223600] [PID.372] =>.AVAST Software a.s.®
[MD5.8E06998A4ED01F1289D00F3EF0527409] - (.Baidu, Inc. - Baidu MoboMarket Service.) -- C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe [208928] [PID.504] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
[MD5.7172E394D61CE38BB4D862CBB2F28A74] - (.Baidu, Inc. - Baidu AndroidStore Helper.) -- C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bas_helper.exe [2201632] [PID.580] =>.Baidu Online Network Technology (Beijing)Co., Ltd®
[MD5.E6CB119EF2E148EAA1A247343550756E] - (.Alcatel-Lucent - mcci+McciCMService.) -- C:\Program Files\Common Files\Motive\McciCMService.exe [319488] [PID.924] =>.Alcatel-Lucent
[MD5.ADED0E73F165B8353690F8055A51154D] - (.Malwarebytes - Malwarebytes Service.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888] [PID.2148] =>.Malwarebytes Corporation®
[MD5.3B01B800A43CF3FAF5AAA78315BC2148] - (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe [74752] [PID.2384] =>.Nullsoft, Inc.
[MD5.8C31C7B29061F27A850654F292BCB9DD] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.EXE [20065936] [PID.2408] =>.Realtek Semiconductor Corp®
[MD5.F40E80C04475731C6ED5D19C48E45E3C] - (.Elaborate Bytes AG - Virtual CloneDrive Daemon.) -- C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [85160] [PID.2428] =>.Elaborate Bytes AG®
[MD5.CE99AA11D0274BE5BDEF3991508852E9] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [9080768] [PID.2444] =>.AVAST Software s.r.o.®
[MD5.A6A21A7D544675E98C040DA18904CF50] - (.Malwarebytes - Malwarebytes Tray Application.) -- C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112] [PID.2452] =>.Malwarebytes Corporation®
[MD5.1CEA5EA24BE7512838FFBDB64F135FAB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\ahmed\My Documents\Downloads\ZHPDiag3.exe [2659840] [PID.2136] =>.Nicolas Coolman
---\\ Google Chrome, Start,Search,Extensions (18) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://b.top4top.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://i.imgur.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://im67.gulfup.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://up.graaam.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.startimes.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://stats.g.doubleclick.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com.eg =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pmmeolboeidmfiiingaoifjhjdkgmlgj] facemoji - Stickers and emoji for Facebook
---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (4) - 3s
P2 - EXT: (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL =>.Microsoft Corporation®
P2 - EXT: (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll =>.Adobe Systems, Incorporated®
P2 - EXT: (.Nullsoft, Inc. - Winamp Application Detector.) -- C:\Program Files\Mozilla Firefox\Plugins\npwachk.dll =>.Nullsoft, Inc.
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_194.dll =>.Adobe Systems Incorporated
---\\ Internet Explorer Extensions, Start, Search (9) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (4) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (19)
---\\ Browser Helper Object (BHO) (3) - 1s
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll =>.AVAST Software s.r.o.®
O2 - BHO: Download Ninja IE - {C935DDA0-269E-11E4-9235-78C81D5D46B0} (.Orphan.)
---\\ Internet Explorer Toolbars (1) - 0s
O3 - Toolbar: 0x522D464600476AA776A77A786E7484D7 - [HKCU]{46462D52-4700-A76A-76A7-7A786E7484D7} . (...) -- (.not file.)
---\\ Global shortcuts Startup (73) - 13s
O4 - GS\Desktop [Administrator]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [Administrator]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Administrator]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Administrator]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Administrator]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [ahmed]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [ahmed]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [ahmed]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [ahmed]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [ahmed]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [ahmed]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [ahmed]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [ahmed]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [ahmed]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [ahmed]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [Guest]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [Guest]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [Guest]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [Guest]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Guest]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [HelpAssistant]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [HelpAssistant]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [HelpAssistant]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [HelpAssistant]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [HelpAssistant]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [HelpAssistant]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [HelpAssistant]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [HelpAssistant]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [HelpAssistant]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Desktop [SUPPORT_388945a0]: Driver Genius.lnk . (.Driver-Soft Inc. - Driver Genius.) C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe =>.Driver Information Technology Co., Ltd.®
O4 - GS\Desktop [SUPPORT_388945a0]: ZHPCleaner.lnk . (.Nicolas Coolman - ZHPCleane.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPCleaner.exe =>.Nicolas Coolman
O4 - GS\Desktop [SUPPORT_388945a0]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Documents and Settings\ahmed\Application Data\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Quicklaunch [SUPPORT_388945a0]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [SUPPORT_388945a0]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [SUPPORT_388945a0]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\CommonDesktop [Public]: Adobe Reader XI.lnk . (.Adobe Systems Incorporated - Adobe Reader.) C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Mp3tag.lnk . (.Florian Heidenreich - Mp3tag - the universal Tag editor.) C:\Program Files\Mp3tag\Mp3tag.exe =>.Florian Heidenreich®
O4 - GS\CommonDesktop [Public]: Virtual CloneDrive.lnk . (.Elaborate Bytes AG - VirtualCloneDrive Preferences.) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDPrefs.exe =>.Elaborate Bytes AG
O4 - GS\CommonDesktop [Public]: Winamp.lnk . (.Nullsoft, Inc. - Winamp.) C:\Program Files\Winamp\winamp.exe =>.Nullsoft Inc.®
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) C:\Program Files\Outlook Express\msimn.exe =>.Microsoft Corporation
O4 - GS\Programs [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Address Book.lnk . (.Microsoft Corporation - Address Book.) C:\Program Files\Outlook Express\wab.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Windows Command Processor.) C:\WINDOWS\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Synchronize.lnk . (.Microsoft Corporation - Microsoft Synchronization Manager.) C:\WINDOWS\system32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Tour Windows XP.lnk . (.Microsoft Corporation - Windows Tour Launcher.) C:\WINDOWS\system32\tourstart.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) C:\WINDOWS\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Adobe Reader XI.lnk . (...) C:\WINDOWS\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SC_Reader.ico =>.Adobe Inc.
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: MSN.lnk . (.Microsoft Corporation - Win32 Cabinet Self-Extractor.) C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows 7 Upgrade Advisor.lnk . (.Microsoft Corporation - Windows 7 Upgrade Advisor.) C:\Program Files\Microsoft Windows 7 Upgrade Advisor\WindowsUpgradeAdvisor.exe =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Messenger.lnk . (.Microsoft Corporation - Windows Messenger.) C:\Program Files\Messenger\msmsgs.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) C:\Program Files\Movie Maker\moviemk.exe =>.Microsoft Corporation
---\\ Lop.com/Domain Hijackers (2) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{B6DE2D01-BFFD-48E4-94C5-4D29DF0768A5}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
---\\ Extra protocols (31) - 1s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll =>.Microsoft Corporation®
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API.) -- C:\WINDOWS\system32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\WINDOWS\system32\itss.dll =>.Microsoft Corporation
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\WINDOWS\system32\msvidctl.dll =>.Microsoft Corporation
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\WINDOWS\system32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\system32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\WINDOWS\system32\urlmon.dll =>.Microsoft Corporation
O18 - Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\WINDOWS\system32\shell32.dll =>.Microsoft Corporation
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®
---\\ Software installed (167) - 34s
O42 - Logiciel: Adobe Flash Player 12 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Flash Player 24 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Reader XI (11.0.08) - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-AB0000000001} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824144531} =>.Adobe Systems Incorporated
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM] -- Avast =>.AVAST Software a.s.®
O42 - Logiciel: Baidu PC Faster - (.Baidu, Inc..) [HKLM] -- Baidu PC Faster 5.1.0.0 =>.Baidu, Inc.
O42 - Logiciel: Driver Genius - (.Driver-Soft Inc..) [HKLM] -- Driver Genius_is1 =>.Driver-Soft Inc.
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 =>.Microsoft Corporation®
O42 - Logiciel: Hotfix for Windows XP (KB952287) - (.Microsoft Corporation.) [HKLM] -- KB952287 =>.Microsoft Corporation®
O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 =>.Microsoft Corporation
O42 - Logiciel: Malwarebytes version 3.0.6.1469 - (.Malwarebytes.) [HKLM] -- {35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1 =>.Malwarebytes Corporation®
O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 - (.Microsoft Corporation.) [HKLM] -- Wdf01007 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 - (.Microsoft Corporation.) [HKLM] -- Wdf01009 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Software Update for Web Folders (English) 12 - (.Microsoft Corporation.) [HKLM] -- {90120000-0010-0409-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 =>.Microsoft Corporation®
O42 - Logiciel: Microsoft Windows Debugging Symbols - (.Microsoft.) [HKLM] -- {C6DB958A-50CC-481B-9ED8-3BAD236F7B49} =>.Microsoft
O42 - Logiciel: Mozilla Firefox 50.1.0 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 50.1.0 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService =>.Mozilla
O42 - Logiciel: Mp3tag v2.64 - (.Florian Heidenreich.) [HKLM] -- Mp3tag =>.Florian Heidenreich
O42 - Logiciel: NirSoft Wireless Network Watcher - (.NirSoft.) [HKLM] -- NirSoft Wireless Network Watcher =>.NirSoft
O42 - Logiciel: PDF Cutter - (.pdfcutter.com.) [HKLM] -- {1A8A7D04-FF0E-4AF7-9A34-5FC8004E250D}_is1
O42 - Logiciel: QQ影音3.9 - (.腾讯科技(深圳)有限公司.) [HKCU] -- QQPlayer
O42 - Logiciel: RogueKiller version 12.9.6.0 - (.Adlice Software.) [HKLM] -- 8B3D7924-ED89-486B-8322-E8594065D5CB_is1 =>.Adlice®
O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2510531) - (.Microsoft Corporation.) [HKLM] -- KB2510531-IE8 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Internet Explorer 8 (KB2879017) - (.Microsoft Corporation.) [HKLM] -- KB2879017-IE8 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB2378111) - (.Microsoft Corporation.) [HKLM] -- KB2378111_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB2834904-v2) - (.Microsoft Corporation.) [HKLM] -- KB2834904-v2_WM11 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB952069) - (.Microsoft Corporation.) [HKLM] -- KB952069_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB954155) - (.Microsoft Corporation.) [HKLM] -- KB954155_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB973540) - (.Microsoft Corporation.) [HKLM] -- KB973540_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB975558) - (.Microsoft Corporation.) [HKLM] -- KB975558_WM8 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows Media Player (KB978695) - (.Microsoft Corporation.) [HKLM] -- KB978695_WM9 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2115168) - (.Microsoft Corporation.) [HKLM] -- KB2115168 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2229593) - (.Microsoft Corporation.) [HKLM] -- KB2229593 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2296011) - (.Microsoft Corporation.) [HKLM] -- KB2296011 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2347290) - (.Microsoft Corporation.) [HKLM] -- KB2347290 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2387149) - (.Microsoft Corporation.) [HKLM] -- KB2387149 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2393802) - (.Microsoft Corporation.) [HKLM] -- KB2393802 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2419632) - (.Microsoft Corporation.) [HKLM] -- KB2419632 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2423089) - (.Microsoft Corporation.) [HKLM] -- KB2423089 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2443105) - (.Microsoft Corporation.) [HKLM] -- KB2443105 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2478960) - (.Microsoft Corporation.) [HKLM] -- KB2478960 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2478971) - (.Microsoft Corporation.) [HKLM] -- KB2478971 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2479943) - (.Microsoft Corporation.) [HKLM] -- KB2479943 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2481109) - (.Microsoft Corporation.) [HKLM] -- KB2481109 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2483185) - (.Microsoft Corporation.) [HKLM] -- KB2483185 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2485663) - (.Microsoft Corporation.) [HKLM] -- KB2485663 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2506212) - (.Microsoft Corporation.) [HKLM] -- KB2506212 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2507938) - (.Microsoft Corporation.) [HKLM] -- KB2507938 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2508429) - (.Microsoft Corporation.) [HKLM] -- KB2508429 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2509553) - (.Microsoft Corporation.) [HKLM] -- KB2509553 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2535512) - (.Microsoft Corporation.) [HKLM] -- KB2535512 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2536276-v2) - (.Microsoft Corporation.) [HKLM] -- KB2536276-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2544893-v2) - (.Microsoft Corporation.) [HKLM] -- KB2544893-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2566454) - (.Microsoft Corporation.) [HKLM] -- KB2566454 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2570947) - (.Microsoft Corporation.) [HKLM] -- KB2570947 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2584146) - (.Microsoft Corporation.) [HKLM] -- KB2584146 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2585542) - (.Microsoft Corporation.) [HKLM] -- KB2585542 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2592799) - (.Microsoft Corporation.) [HKLM] -- KB2592799 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2598479) - (.Microsoft Corporation.) [HKLM] -- KB2598479 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2603381) - (.Microsoft Corporation.) [HKLM] -- KB2603381 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2619339) - (.Microsoft Corporation.) [HKLM] -- KB2619339 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2620712) - (.Microsoft Corporation.) [HKLM] -- KB2620712 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2631813) - (.Microsoft Corporation.) [HKLM] -- KB2631813 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2653956) - (.Microsoft Corporation.) [HKLM] -- KB2653956 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2655992) - (.Microsoft Corporation.) [HKLM] -- KB2655992 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2659262) - (.Microsoft Corporation.) [HKLM] -- KB2659262 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2661637) - (.Microsoft Corporation.) [HKLM] -- KB2661637 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2676562) - (.Microsoft Corporation.) [HKLM] -- KB2676562 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2686509) - (.Microsoft Corporation.) [HKLM] -- KB2686509 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2691442) - (.Microsoft Corporation.) [HKLM] -- KB2691442 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2698365) - (.Microsoft Corporation.) [HKLM] -- KB2698365 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2705219-v2) - (.Microsoft Corporation.) [HKLM] -- KB2705219-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2712808) - (.Microsoft Corporation.) [HKLM] -- KB2712808 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2719985) - (.Microsoft Corporation.) [HKLM] -- KB2719985 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2723135-v2) - (.Microsoft Corporation.) [HKLM] -- KB2723135-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2727528) - (.Microsoft Corporation.) [HKLM] -- KB2727528 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2757638) - (.Microsoft Corporation.) [HKLM] -- KB2757638 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2770660) - (.Microsoft Corporation.) [HKLM] -- KB2770660 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2780091) - (.Microsoft Corporation.) [HKLM] -- KB2780091 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2802968) - (.Microsoft Corporation.) [HKLM] -- KB2802968 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2807986) - (.Microsoft Corporation.) [HKLM] -- KB2807986 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2813345) - (.Microsoft Corporation.) [HKLM] -- KB2813345 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2820917) - (.Microsoft Corporation.) [HKLM] -- KB2820917 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2834886) - (.Microsoft Corporation.) [HKLM] -- KB2834886 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2847311) - (.Microsoft Corporation.) [HKLM] -- KB2847311 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2850869) - (.Microsoft Corporation.) [HKLM] -- KB2850869 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2859537) - (.Microsoft Corporation.) [HKLM] -- KB2859537 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2862152) - (.Microsoft Corporation.) [HKLM] -- KB2862152 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2862330) - (.Microsoft Corporation.) [HKLM] -- KB2862330 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2862335) - (.Microsoft Corporation.) [HKLM] -- KB2862335 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2864063) - (.Microsoft Corporation.) [HKLM] -- KB2864063 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2868626) - (.Microsoft Corporation.) [HKLM] -- KB2868626 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2876217) - (.Microsoft Corporation.) [HKLM] -- KB2876217 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2876331) - (.Microsoft Corporation.) [HKLM] -- KB2876331 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2892075) - (.Microsoft Corporation.) [HKLM] -- KB2892075 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2893294) - (.Microsoft Corporation.) [HKLM] -- KB2893294 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2898715) - (.Microsoft Corporation.) [HKLM] -- KB2898715 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2900986) - (.Microsoft Corporation.) [HKLM] -- KB2900986 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2914368) - (.Microsoft Corporation.) [HKLM] -- KB2914368 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2916036) - (.Microsoft Corporation.) [HKLM] -- KB2916036 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2922229) - (.Microsoft Corporation.) [HKLM] -- KB2922229 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2929961) - (.Microsoft Corporation.) [HKLM] -- KB2929961 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB2930275) - (.Microsoft Corporation.) [HKLM] -- KB2930275 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB923561) - (.Microsoft Corporation.) [HKLM] -- KB923561 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB941569) - (.Microsoft Corporation.) [HKLM] -- KB941569 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB946648) - (.Microsoft Corporation.) [HKLM] -- KB946648 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB950762) - (.Microsoft Corporation.) [HKLM] -- KB950762 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB950974) - (.Microsoft Corporation.) [HKLM] -- KB950974 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB951376-v2) - (.Microsoft Corporation.) [HKLM] -- KB951376-v2 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB952004) - (.Microsoft Corporation.) [HKLM] -- KB952004 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB952954) - (.Microsoft Corporation.) [HKLM] -- KB952954 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB956572) - (.Microsoft Corporation.) [HKLM] -- KB956572 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB956844) - (.Microsoft Corporation.) [HKLM] -- KB956844 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB959426) - (.Microsoft Corporation.) [HKLM] -- KB959426 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB960803) - (.Microsoft Corporation.) [HKLM] -- KB960803 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB960859) - (.Microsoft Corporation.) [HKLM] -- KB960859 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB969059) - (.Microsoft Corporation.) [HKLM] -- KB969059 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB970430) - (.Microsoft Corporation.) [HKLM] -- KB970430 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB971657) - (.Microsoft Corporation.) [HKLM] -- KB971657 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB972270) - (.Microsoft Corporation.) [HKLM] -- KB972270 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB973507) - (.Microsoft Corporation.) [HKLM] -- KB973507 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB973869) - (.Microsoft Corporation.) [HKLM] -- KB973869 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB973904) - (.Microsoft Corporation.) [HKLM] -- KB973904 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB974112) - (.Microsoft Corporation.) [HKLM] -- KB974112 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB974318) - (.Microsoft Corporation.) [HKLM] -- KB974318 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB974571) - (.Microsoft Corporation.) [HKLM] -- KB974571 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975025) - (.Microsoft Corporation.) [HKLM] -- KB975025 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975467) - (.Microsoft Corporation.) [HKLM] -- KB975467 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975560) - (.Microsoft Corporation.) [HKLM] -- KB975560 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB975713) - (.Microsoft Corporation.) [HKLM] -- KB975713 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB977816) - (.Microsoft Corporation.) [HKLM] -- KB977816 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB977914) - (.Microsoft Corporation.) [HKLM] -- KB977914 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB978338) - (.Microsoft Corporation.) [HKLM] -- KB978338 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB978542) - (.Microsoft Corporation.) [HKLM] -- KB978542 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB978706) - (.Microsoft Corporation.) [HKLM] -- KB978706 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB979309) - (.Microsoft Corporation.) [HKLM] -- KB979309 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB979482) - (.Microsoft Corporation.) [HKLM] -- KB979482 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB979687) - (.Microsoft Corporation.) [HKLM] -- KB979687 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB981997) - (.Microsoft Corporation.) [HKLM] -- KB981997 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB982132) - (.Microsoft Corporation.) [HKLM] -- KB982132 =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Windows XP (KB982665) - (.Microsoft Corporation.) [HKLM] -- KB982665 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2345886) - (.Microsoft Corporation.) [HKLM] -- KB2345886 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2749655) - (.Microsoft Corporation.) [HKLM] -- KB2749655 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2904266) - (.Microsoft Corporation.) [HKLM] -- KB2904266 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB2934207) - (.Microsoft Corporation.) [HKLM] -- KB2934207 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB898461) - (.Microsoft Corporation.) [HKLM] -- KB898461 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB951978) - (.Microsoft Corporation.) [HKLM] -- KB951978 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB955759) - (.Microsoft Corporation.) [HKLM] -- KB955759 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB968389) - (.Microsoft Corporation.) [HKLM] -- KB968389 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB971029) - (.Microsoft Corporation.) [HKLM] -- KB971029 =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows XP (KB973815) - (.Microsoft Corporation.) [HKLM] -- KB973815 =>.Microsoft Corporation®
O42 - Logiciel: VeryPDF PDF Split-Merge v3.0 - (.VeryPDF.com, Inc..) [HKLM] -- VeryPDF PDF Split-Merge v3.0_is1
O42 - Logiciel: WebFldrs XP - (.Microsoft Corporation.) [HKLM] -- {350C97B0-3D7C-4EE8-BAA9-00BCB3D54227} =>.Microsoft Corporation
O42 - Logiciel: Winamp - (.Nullsoft, Inc.) [HKLM] -- Winamp =>.Nullsoft, Inc
O42 - Logiciel: Winamp Detector Plug-in - (.Nullsoft, Inc.) [HKCU] -- Winamp Detect =>.Nullsoft, Inc
O42 - Logiciel: Windows 7 Upgrade Advisor - (.Microsoft Corporation.) [HKLM] -- {AB05F2C8-F608-403b-95E1-FD8ADFACD31E} =>.Microsoft Corporation
O42 - Logiciel: Windows Driver Package - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.505.08 - (.Baidu.com.) [HKLM] -- B7E5B73AF9E802DFB0CCB4DCC81176B6ABF68D2A =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O42 - Logiciel: Windows Driver Package - Baidu.com (dg_usbccgp) USB (20/2/2014 2.9.505.08 - (.Baidu.com.) [HKLM] -- FEC771B671F26BEEE1C7748D6B779FE46C0D1834 =>.Baidu Online Network Technology (Beijing)Co., Ltd®
O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify =>.Microsoft Corporation
O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 =>.Microsoft Corporation®
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- Windows Media Format Runtime =>.Microsoft Corporation
O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 =>.Microsoft Corporation®
O42 - Logiciel: WinRAR archiver - (.RarLab.) [HKLM] -- WinRAR archiver =>.RarLab
---\\ HKCU & HKLM Software Keys (133) - 34s
HKLM\SOFTWARE\Acclaim Software Ltd
HKLM\SOFTWARE\Adguard =>.Adguard
HKLM\SOFTWARE\Adobe =>.Adobe
HKLM\SOFTWARE\America Online =>.America Online
HKLM\SOFTWARE\AVAST Software =>.AVAST Software
HKLM\SOFTWARE\AVG =>.AVG Software
HKLM\SOFTWARE\Baidu Security =>.Baidu Technology
HKLM\SOFTWARE\Baidu_Drp_pos =>.Baidu Technology
HKLM\SOFTWARE\BenVista =>.BenVista
HKLM\SOFTWARE\BitDefender Parental Control =>.Bitdefender
HKLM\SOFTWARE\C07ft5Y =>.Total War Game
HKLM\SOFTWARE\CDDB =>.Cddb Software
HKLM\SOFTWARE\CloudOpt
HKLM\SOFTWARE\CoreCodec
HKLM\SOFTWARE\Creative Tech =>.Creative Tech
HKLM\SOFTWARE\CyberLink =>.CyberLink Corporation
HKLM\SOFTWARE\Dayterium =>.Dayterium
HKLM\SOFTWARE\DFX =>.DFX Power Technology
HKLM\SOFTWARE\Disc Soft =>.Disc Soft
HKLM\SOFTWARE\Disney Interactive =>.Disney Interactive
HKLM\SOFTWARE\Driver-Soft =>.Driver-Soft
HKLM\SOFTWARE\Elaborate Bytes =>.Elaborate Bytes
HKLM\SOFTWARE\Electronic Arts =>.Electronic Arts
HKLM\SOFTWARE\ESET =>.ESET
HKLM\SOFTWARE\EVP =>.EVP Software
HKLM\SOFTWARE\Florian Heidenreich =>.Florian Heidenreich
HKLM\SOFTWARE\GameHouse =>.GameHouse
HKLM\SOFTWARE\Gemplus =>.Gemplus
HKLM\SOFTWARE\Global IP Solutions
HKLM\SOFTWARE\GNU =>.GNU
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\HaaliMkx =>.Haali Media
HKLM\SOFTWARE\Huawei technologies =>.Huawei Technologies
HKLM\SOFTWARE\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\JavaSoft =>.JavaSoft
HKLM\SOFTWARE\JJsoft
HKLM\SOFTWARE\JreMetrics =>.JreMetrics
HKLM\SOFTWARE\KasperskyLab =>.Kaspersky Labs
HKLM\SOFTWARE\KONAMIPES6 =>.Konami
HKLM\SOFTWARE\Licenses =>.Microsoft Corporation
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\McAfee.com =>.McAfee Inc.
HKLM\SOFTWARE\Motive
HKLM\SOFTWARE\Motorola =>.Motorola
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\Nullsoft =>.Nullsoft
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\PopCap
HKLM\SOFTWARE\PowerTechnology =>.PowerTechnology
HKLM\SOFTWARE\Program Groups =>.Program Groups
HKLM\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\Realtek Semiconductor Corp. =>.Realtek Semiconductor Corp.
HKLM\SOFTWARE\ReflexiveArcade =>.Games Software
HKLM\SOFTWARE\Reg =>.Legitimate
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Schlumberger =>.Schlumberger
HKLM\SOFTWARE\Software =>.Unknow
HKLM\SOFTWARE\SOSVirus =>.SosVirus
HKLM\SOFTWARE\tools
HKLM\SOFTWARE\TuneUp =>.TuneUp
HKLM\SOFTWARE\Windows 3.1 Migration Status =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\ZONER
HKCU\SOFTWARE\3rd Eye Solutions
HKCU\SOFTWARE\Acclaim Software Ltd
HKCU\SOFTWARE\Active@ File Preview
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\Applications
HKCU\SOFTWARE\Avast Software =>.AVAST Software
HKCU\SOFTWARE\AVG =>.AVG Software
HKCU\SOFTWARE\Baidu =>.Baidu
HKCU\SOFTWARE\Baidu Security =>.Baidu Technology
HKCU\SOFTWARE\BenVista =>.BenVista
HKCU\SOFTWARE\CDDB =>.Cddb Software
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\CoreAAC =>.Core Codec
HKCU\SOFTWARE\CyberLink =>.CyberLink Corporation
HKCU\SOFTWARE\Device VS-1012
HKCU\SOFTWARE\Digienhanc
HKCU\SOFTWARE\Disc Soft =>.Disc Soft
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\DSP-worx =>.Microsoft Corporation
HKCU\SOFTWARE\Ectaco
HKCU\SOFTWARE\Elaborate Bytes =>.Elaborate Bytes
HKCU\SOFTWARE\ESET =>.ESET
HKCU\SOFTWARE\Flash Player Pro
HKCU\SOFTWARE\Flying. Stone. production
HKCU\SOFTWARE\FreeTime =>.FreeTime Inc
HKCU\SOFTWARE\Gabest =>.Gabest
HKCU\SOFTWARE\GameHouse =>.GameHouse
HKCU\SOFTWARE\GNU =>.GNU
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\GRETECH =>.Gretech
HKCU\SOFTWARE\Haali =>.Haali Media
HKCU\SOFTWARE\IM Providers =>.IM Providers
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\Investintech.com Inc.
HKCU\SOFTWARE\JEDI-VCL =>.JEDI Project
HKCU\SOFTWARE\Kiloo Games =>.Kiloo Games
HKCU\SOFTWARE\Leawo Software =>.Leawo Software
HKCU\SOFTWARE\Licenses =>.Microsoft Corporation
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\Malwarebytes =>.Malwarebytes
HKCU\SOFTWARE\Media Research Group
HKCU\SOFTWARE\Mediachance =>.Mediachance
HKCU\SOFTWARE\Motive
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\OperaOB
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\Realtek =>.Realtek Semiconductor Corp.
HKCU\SOFTWARE\Reg =>.Legitimate
HKCU\SOFTWARE\RSB
HKCU\SOFTWARE\Sandlot Games
HKCU\SOFTWARE\SecuROM =>.SecuROM
HKCU\SOFTWARE\Skype =>.Skype
HKCU\SOFTWARE\SMADΔV
HKCU\SOFTWARE\SmartDeblur =>.Vladimir Yuzhikov
HKCU\SOFTWARE\Toogame
HKCU\SOFTWARE\TreeCardGames =>.TreeCardGames
HKCU\SOFTWARE\Trolltech =>.Trolltech
HKCU\SOFTWARE\Unity =>.Unity
HKCU\SOFTWARE\Winamp =>.Nullsoft Inc.
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\ZONER
HKCU\SOFTWARE\Zylom =>.Zylom
---\\ Contents of the Common Files folders (212) - 23s
O43 - CFD: 29/07/2016 - [] D -- C:\Program Files\31275697030932b5b015
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\Adobe =>.Adobe Systems, Incorporated®
O43 - CFD: 22/09/2015 - [] D -- C:\Program Files\All File to All File Converter 3000
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\AutoRun =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\AVAST Software =>.AVAST Software a.s.®
O43 - CFD: 01/11/2014 - [] D -- C:\Program Files\Baidu Security =>.Baidu Technology
O43 - CFD: 10/02/2015 - [] D -- C:\Program Files\BandRich
O43 - CFD: 01/02/2017 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [0] D -- C:\Program Files\ComPlus Applications =>.Microsoft Corporation
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\config
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\DCEnhancer
O43 - CFD: 08/02/2015 - [] D -- C:\Program Files\DIFX =>.Microsoft Corporation
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\Driver =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 16/09/2015 - [] D -- C:\Program Files\Driver Checker {058EFD81CFC178B930CAA249710DE3B1}
O43 - CFD: 24/09/2015 - [] D -- C:\Program Files\Driver-Soft =>.Driver Information Technology Co., Ltd.®
O43 - CFD: 18/07/2016 - [] D -- C:\Program Files\Elaborate Bytes =>.Elaborate Bytes
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\ESET =>.ESET
O43 - CFD: 13/10/2014 - [] D -- C:\Program Files\GameTop.com
O43 - CFD: 09/09/2015 - [] D -- C:\Program Files\Google =>.Google Inc®
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\GUM12B.tmp =>.Google Inc®
O43 - CFD: 18/09/2015 - [] HD -- C:\Program Files\InstallShield Installation Information =>.InstallShield Software
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 15/12/2015 - [0] D -- C:\Program Files\iStonsoft =>.iStonsoft
O43 - CFD: 03/09/2015 - [0] D -- C:\Program Files\leawo =>.Leawo
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\Log =>.Unknow
O43 - CFD: 13/10/2016 - [] D -- C:\Program Files\LSoft Technologies =>.Lsoft technologies
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Malwarebytes =>.Malwarebytes
O43 - CFD: 06/07/2016 - [] D -- C:\Program Files\Messenger =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\microsoft frontpage =>.Microsoft Corporation
O43 - CFD: 15/12/2016 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Microsoft Visual Studio =>.Microsoft Corporation
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\Microsoft Windows 7 Upgrade Advisor =>.Microsoft Corporation
O43 - CFD: 20/08/2016 - [] D -- C:\Program Files\Microsoft Works =>.Microsoft Corporation
O43 - CFD: 17/08/2016 - [] D -- C:\Program Files\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 05/07/2016 - [] D -- C:\Program Files\Movie Maker =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Mozilla Firefox =>.Mozilla
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 14/10/2014 - [] D -- C:\Program Files\Mp3tag =>.Florian Heidenreich
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\MSBuild =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\MSN =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\MSN Gaming Zone =>.Microsoft Corporation
O43 - CFD: 10/09/2015 - [0] D -- C:\Program Files\MyPlayCity.com =>.MyPlayCity.com
O43 - CFD: 13/10/2014 - [] D -- C:\Program Files\Mystic Match Demo
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\NetMeeting =>.Microsoft Corporation
O43 - CFD: 27/07/2016 - [] D -- C:\Program Files\Ninja Download Manager =>.Websecure Ltd®
O43 - CFD: 29/01/2016 - [] D -- C:\Program Files\NirSoft =>.NirSoft
O43 - CFD: 17/08/2016 - [] D -- C:\Program Files\officeen =>.Microsoft Corporation®
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Online Services =>.Hewlett-Packard
O43 - CFD: 06/07/2016 - [] D -- C:\Program Files\Outlook Express =>.Microsoft Corporation
O43 - CFD: 09/05/2016 - [] D -- C:\Program Files\PDF Cutter
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\plugins
O43 - CFD: 10/09/2015 - [] D -- C:\Program Files\QSocial
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\qtlib
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\Realtek =>.Realtek
O43 - CFD: 07/10/2016 - [0] D -- C:\Program Files\Recuva =>.Piriform
O43 - CFD: 26/01/2017 - [] D -- C:\Program Files\Reference Assemblies =>.Microsoft Corporation
O43 - CFD: 25/01/2017 - [] D -- C:\Program Files\RogueKiller =>.Adlice
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\skin
O43 - CFD: 10/10/2014 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 23/01/2015 - [] AD -- C:\Program Files\UpdateDog =>.HUAWEI Technologies Co., Ltd.®
O43 - CFD: 23/01/2015 - [] D -- C:\Program Files\usermanual
O43 - CFD: 09/05/2016 - [] D -- C:\Program Files\VeryPDF PDF Split-Merge v3.0
O43 - CFD: 09/08/2016 - [] D -- C:\Program Files\Winamp =>.Winamp
O43 - CFD: 14/10/2014 - [] D -- C:\Program Files\Winamp Detect =>.Nullsoft Inc.
O43 - CFD: 18/09/2015 - [0] D -- C:\Program Files\Windows Media Connect 2 =>.Microsoft Corporation
O43 - CFD: 18/09/2015 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [0] HD -- C:\Program Files\WindowsUpdate =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\WinRAR =>.WinRAR
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\xerox =>.Xerox
O43 - CFD: 22/07/2016 - [] D -- C:\Program Files\Yahoo! =>.Yahoo!
O43 - CFD: 12/10/2016 - [] D -- C:\Program Files\Zoner =>.Zoner Inc.
O43 - CFD: 08/02/2015 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\AVAST Software =>.AVAST Software
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Baidu PC Faster
O43 - CFD: 24/09/2015 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Driver Genius
O43 - CFD: 18/07/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Elaborate Bytes =>.Elaborate Bytes
O43 - CFD: 10/10/2014 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Games =>.Microsoft Corporation
O43 - CFD: 15/10/2014 - [0] D -- C:\Documents and Settings\All Users\Start Menu\Programs\GameTop.com
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes =>.Malwarebytes
O43 - CFD: 13/10/2016 - [0] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Mediachance =>.Mediachance
O43 - CFD: 17/08/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Mp3tag =>.Florian Heidenreich
O43 - CFD: 10/09/2015 - [0] D -- C:\Documents and Settings\All Users\Start Menu\Programs\MyPlayCity.com =>.MyPlayCity.com
O43 - CFD: 09/05/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\PDF Cutter
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\RogueKiller =>.Adlice
O43 - CFD: 20/11/2016 - [] RD -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 09/05/2016 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\VeryPDF PDF Split-Merge v3.0
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\Winamp =>.Winamp
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 20/11/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Adguard =>.Insoft LLC
O43 - CFD: 03/02/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Adobe =>.Adobe
O43 - CFD: 15/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Atheros =>.Qualcomm Atheros
O43 - CFD: 12/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\AVAST Software =>.AVAST Software
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\AVG =>.AVG Software
O43 - CFD: 18/08/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Avira =>.Avira Software
O43 - CFD: 05/12/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu =>.Baidu
O43 - CFD: 07/03/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Baidu Security =>.Baidu Technology
O43 - CFD: 13/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\BDLogging =>.Bitdefender
O43 - CFD: 28/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\boost_interprocess =>.boost.org
O43 - CFD: 18/03/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Cache =>.Legitimate
O43 - CFD: 12/09/2015 - [] HD -- C:\Documents and Settings\All Users\Application Data\Common Files =>.Microsoft Corporation
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Ultra =>.Daemon's Home
O43 - CFD: 28/01/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\DatacardService =>.Entriq, Inc.
O43 - CFD: 12/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\DivoGames
O43 - CFD: 15/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\DriverGenius =>.Bluesquad
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Etisalat 3.75G USB Modem
O43 - CFD: 10/10/2014 - [0] D -- C:\Documents and Settings\All Users\Application Data\IDM =>.IDM
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Ludia
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\Malwarebytes =>.Malwarebytes
O43 - CFD: 03/02/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\McAfee =>.McAfee
O43 - CFD: 28/07/2015 - [] SD -- C:\Documents and Settings\All Users\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 17/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 28/07/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Motive
O43 - CFD: 20/11/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Package Cache =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\PC Faster
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\PlayFirst
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\All Users\Application Data\RogueKiller =>.Adlice
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Sandlot Games
O43 - CFD: 15/12/2016 - [0] D -- C:\Documents and Settings\All Users\Application Data\Skype =>.Skype
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\All Users\Application Data\Sun =>.Oracle
O43 - CFD: 12/10/2014 - [0] AD -- C:\Documents and Settings\All Users\Application Data\TEMP =>.Microsoft Corporation
O43 - CFD: 15/01/2017 - [0] D -- C:\Documents and Settings\All Users\Application Data\tools
O43 - CFD: 18/09/2015 - [] D -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage =>.Microsoft Corporation
O43 - CFD: 12/10/2016 - [] D -- C:\Documents and Settings\All Users\Application Data\Zoner =>.Zoner Inc.
O43 - CFD: 03/02/2016 - [] D -- C:\Program Files\Common Files\Adobe =>.Adobe
O43 - CFD: 13/07/2015 - [] D -- C:\Program Files\Common Files\Bitdefender =>.Bitdefender
O43 - CFD: 23/08/2016 - [] D -- C:\Program Files\Common Files\DESIGNER =>.Designer
O43 - CFD: 21/07/2015 - [] D -- C:\Program Files\Common Files\DirectX =>.Microsoft Corporation
O43 - CFD: 15/09/2015 - [] D -- C:\Program Files\Common Files\InstallShield =>.InstallShield
O43 - CFD: 20/08/2016 - [] D -- C:\Program Files\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 28/07/2015 - [] D -- C:\Program Files\Common Files\Motive
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\MSSoap =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\ODBC =>.DB Connectivity Solutions
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Program Files\Common Files\SpeechEngines =>.Microsoft Corporation
O43 - CFD: 26/08/2016 - [] D -- C:\Program Files\Common Files\System =>.Microsoft Corporation
O43 - CFD: 11/11/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Adobe =>.Adobe
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\AVAST Software =>.AVAST Software
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\AVG =>.AVG Software
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\baidu =>.Baidu
O43 - CFD: 07/03/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Baidu Security =>.Baidu Technology
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\DAEMON Tools Ultra =>.Daemon's Home
O43 - CFD: 29/07/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\DMCache =>.DMCache
O43 - CFD: 27/07/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\DownloadNinja
O43 - CFD: 05/08/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Ectaco
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\EleFun Games =>.EleFun Games
O43 - CFD: 21/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\ESET =>.ESET
O43 - CFD: 09/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Google =>.Google
O43 - CFD: 11/10/2014 - [0] D -- C:\Documents and Settings\ahmed\Application Data\Help =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Identities =>.Microsoft Corporation
O43 - CFD: 29/07/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\IDM =>.IDM
O43 - CFD: 11/11/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\iStonsoft =>.iStonsoft
O43 - CFD: 03/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Leawo =>.Leawo
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Ludia
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Macromedia =>.Macromedia
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Mozilla =>.Mozilla Corporation
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Mp3tag =>.Florian Heidenreich
O43 - CFD: 06/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Pardolabs
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\PC Faster
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\PlayFirst
O43 - CFD: 10/09/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\QSocial
O43 - CFD: 01/07/2015 - [0] D -- C:\Documents and Settings\ahmed\Application Data\QuickScan =>.Bitdefender
O43 - CFD: 30/08/2015 - [] RHD -- C:\Documents and Settings\ahmed\Application Data\SecuROM =>.SecuROM
O43 - CFD: 18/01/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\Skype =>.Skype
O43 - CFD: 02/07/2016 - [0] D -- C:\Documents and Settings\ahmed\Application Data\Smadav =>.SmadAV
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Sun =>.Oracle
O43 - CFD: 19/07/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Thinstall =>.VMare
O43 - CFD: 09/08/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\vlc =>.VideoLan Team
O43 - CFD: 01/08/2015 - [] D -- C:\Documents and Settings\ahmed\Application Data\Winamp =>.Winamp
O43 - CFD: 12/10/2014 - [] D -- C:\Documents and Settings\ahmed\Application Data\Yahoo! =>.Yahoo!
O43 - CFD: 01/02/2017 - [] D -- C:\Documents and Settings\ahmed\Application Data\ZHP =>.Nicolas Coolman
O43 - CFD: 12/10/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\Zoner =>.Zoner Inc.
O43 - CFD: 27/11/2016 - [] D -- C:\Documents and Settings\ahmed\Application Data\Zoom =>.ZOOM
O43 - CFD: 16/01/2017 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Adobe =>.Adobe
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Avg =>.AVG Software
O43 - CFD: 30/11/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\CEF =>.CEF
O43 - CFD: 12/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Disc_Soft_Ltd =>.Disc Soft Ltd
O43 - CFD: 21/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\ESET =>.ESET
O43 - CFD: 10/09/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Google =>.Google
O43 - CFD: 11/10/2014 - [0] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Help =>.Microsoft Corporation
O43 - CFD: 16/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Identities =>.Microsoft Corporation
O43 - CFD: 10/08/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Investintech.com Inc
O43 - CFD: 02/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Kiloo Games
O43 - CFD: 04/02/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Logo Style
O43 - CFD: 17/01/2017 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Microsoft =>.Microsoft Corporation
O43 - CFD: 25/01/2017 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Microsoft Corporation =>.Microsoft Corporation
O43 - CFD: 17/08/2016 - [0] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Mozilla =>.Mozilla Corporation
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\RSB
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Skype =>.Skype
O43 - CFD: 13/12/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Temp =>.Microsoft Corporation
O43 - CFD: 19/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Thinstall =>.VMare
O43 - CFD: 28/07/2015 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\WiFi Guard
O43 - CFD: 11/10/2014 - [0] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\WMTools Downloaded Files =>.WMTools
O43 - CFD: 12/10/2016 - [] D -- C:\Documents and Settings\ahmed\Local Settings\Application Data\Zoner =>.Zoner Inc.
O43 - CFD: 10/10/2014 - [] RD -- C:\Documents and Settings\ahmed\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 07/03/2015 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\Baidu PC Faster
O43 - CFD: 11/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\Eidos Interactive =>.Eidos Interactive
O43 - CFD: 15/12/2015 - [0] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\iStonsoft =>.iStonsoft
O43 - CFD: 29/01/2016 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\NirSoft Wireless Network Watcher
O43 - CFD: 14/12/2016 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\PhotoZoom Pro 7
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\QQPlayer
O43 - CFD: 20/11/2016 - [] RD -- C:\Documents and Settings\ahmed\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 14/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\Winamp Detector Plug-in
O43 - CFD: 10/10/2014 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 26/01/2017 - [] D -- C:\Documents and Settings\ahmed\Start Menu\Programs\腾讯软件
O43 - CFD: 10/10/2014 - [] RD -- C:\WINDOWS\System32\Config\systemprofile\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 26/01/2017 - [0] D -- C:\WINDOWS\System32\Config\systemprofile\Start Menu\Programs\Baidu PC Faster
O43 - CFD: 10/10/2014 - [] RD -- C:\WINDOWS\System32\Config\systemprofile\Start Menu\Programs\Startup =>.Microsoft Corporation
---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s
O106 - SIOI: avast [00asw] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.®
O106 - SIOI: avast [00avast] - {472083B0-C522-11CF-8763-00608CC02F24}. (.AVAST Software - avast! Shell Extension.) -- C:\Program Files\AVAST Software\Avast\ashShell.dll =>.AVAST Software a.s.®
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll =>.Microsoft Corporation®
O106 - SIOI: Offline Files Menu [Offline Files] - {750fdf0e-2a26-11d1-a3ea-080036587f03}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\WINDOWS\system32\cscui.dll =>.Microsoft Corporation
---\\ ShareTools MSconfig StartupReg (11) - 1s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (...) -- C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\avgnt [Key] . (...) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\CTFMON.EXE [Key] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe =>.Microsoft Corporation
O53 - SMSR:HKLM\...\startupreg\IDMan [Key] . (...) -- C:\Program Files\Internet Download Manager\IDMan.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Messenger (Yahoo!) [Key] . (...) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RTHDCPL [Key] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- RTHDCPL.EXE (.not file.) =>.Realtek Semiconductor Corp.
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (...) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (...) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\VNT [Key] . (...) -- C:\Program Files\VNT\vntldr.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WinampAgent [Key] . (.Nullsoft, Inc. - Winamp Agent.) -- C:\Program Files\Winamp\winampa.exe =>.Nullsoft, Inc.
---\\ System Drivers List (68) - 28s
O58 - SDL:2009/11/18 06:16:00 A . (.Creative - Creative WDM 3D Audio Driver.) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480] =>.Creative Labs Inc®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! HWID.) -- C:\WINDOWS\System32\drivers\aswHwid.sys [34008] =>.AVAST Software a.s.® (.AVAST Software)
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [92256] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:23 A . (.ALWIL Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdis.sys [12112] =>.ALWIL Software®
O58 - SDL:2017/01/25 01:25:23 A . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\WINDOWS\System32\drivers\aswNdis2.sys [295840] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! TDI Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr.sys [64272] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! Revert.) -- C:\WINDOWS\System32\drivers\aswRvrt.sys [60424] =>.AVAST Software a.s.® (.AVAST Software)
O58 - SDL:2017/01/25 01:26:56 A . (.AVAST Software - avast! Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswsnx.sys [735488] =>.AVAST Software s.r.o.®
O58 - SDL:2017/01/25 01:26:59 A . (.AVAST Software - avast! self protection module.) -- C:\WINDOWS\System32\drivers\aswsp.sys [433768] =>.AVAST Software s.r.o.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStmXP.sys [184592] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:25:39 A . (.AVAST Software - avast! TDI Filter Driver.) -- C:\WINDOWS\System32\drivers\aswTdi.sys [66688] =>.AVAST Software a.s.®
O58 - SDL:2017/01/25 01:27:01 A . (.AVAST Software - avast! VM Monitor.) -- C:\WINDOWS\System32\drivers\aswvmm.sys [224752] =>.AVAST Software s.r.o.® (.AVAST Software)
O58 - SDL:2015/05/03 08:39:19 A . (.Baidu, Inc. - Baidu Antivirus Hook Base.) -- C:\WINDOWS\System32\drivers\Bhbase.sys [46440] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O58 - SDL:2015/05/03 08:39:20 A . (.Baidu, Inc. - Baidu Antivirus Minifilter Driver.) -- C:\WINDOWS\System32\drivers\BProtectEx.sys [113992] =>.Baidu Online Network Technology (Beijing) Co.,Ltd.®
O58 - SDL:2011/03/04 21:44:12 N . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [9072] =>.Sonic Solutions®
O58 - SDL:2011/03/04 21:44:12 N . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [9200] =>.Sonic Solutions®
O58 - SDL:2008/04/14 15:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C 1.2 WDM Main Driver.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] =>.RAVISENT Technologies Inc.
O58 - SDL:2008/04/14 15:00:00 A . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] =>.Compaq Computer Corporation
O58 - SDL:2004/12/08 08:10:00 A . (.Dritek System Inc. - Dritek PS2 Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\DKbFltr.SYS [16896] =>.Dritek System Inc.
O58 - SDL:2008/04/14 15:00:00 A . (.Microsoft Corp., Veritas Software - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmboot.sys [799744] =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/14 15:00:00 A . (.Microsoft Corp., Veritas Software - NT Disk Manager I/O Driver.) -- C:\WINDOWS\System32\drivers\dmio.sys [153344] =>.Microsoft Corp., Veritas Software
O58 - SDL:2008/04/14 15:00:00 A . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] =>.Microsoft Corp., Veritas Software.
O58 - SDL:2015/09/12 07:51:18 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtultrascsibus.sys [25016] =>.Disc Soft Ltd®
O58 - SDL:2015/09/12 07:51:28 A . (.Disc Soft Ltd - DAEMON Tools Ultra Virtual USB Bus Driver.) -- C:\WINDOWS\System32\drivers\dtultrausbbus.sys [39992] =>.Disc Soft Ltd®
O58 - SDL:2001/12/28 21:55:46 RA . (.Compaq Computer Corp. - Easy Access PS/2 Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\eaps2kbd.sys [24035]
O58 - SDL:1999/10/29 22:35:08 RA . (.Compaq Computer Corporation - Compaq EAWDMFD driver.) -- C:\WINDOWS\System32\drivers\EAWDMFD.SYS [24035] =>.Compaq Computer Corporation
O58 - SDL:2009/12/18 00:25:12 A . (.Elaborate Bytes AG - ElbyCD Windows NT/2000/XP I/O driver.) -- C:\WINDOWS\System32\drivers\ElbyCDIO.sys [24035] =>.Elaborate Bytes AG®
O58 - SDL:2008/04/14 15:00:00 A . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [24035] =>.Microsoft Corporation
O58 - SDL:2007/06/18 10:12:04 A . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [24035] =>.Hewlett-Packard Development Company, L.P.
O58 - SDL:2017/01/20 07:47:44 A . (...) -- C:\WINDOWS\System32\drivers\mbae.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2017/02/01 16:39:17 A . (.Malwarebytes - Malwarebytes Real-Time Protection.) -- C:\WINDOWS\System32\drivers\mbam.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2017/02/01 14:15:20 A . (.Malwarebytes - Malwarebytes Chameleon.) -- C:\WINDOWS\System32\drivers\MBAMChameleon.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2017/02/01 16:39:02 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [24035] =>.Malwarebytes Corporation®
O58 - SDL:2009/11/18 06:17:00 A . (.Creative Technology Ltd. - Creative WDM Audio Driver (32-bit).) -- C:\WINDOWS\System32\drivers\Monfilt.sys [24035] =>.Creative Labs Inc®
O58 - SDL:2008/04/14 15:00:00 A . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [24035] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/14 15:00:00 A . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [24035] =>.Parallel Technologies, Inc.
O58 - SDL:2011/03/04 21:44:14 N . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\WINDOWS\System32\drivers\PxHelp20.sys [24035] =>.Sonic Solutions®
O58 - SDL:2008/04/14 15:00:00 A . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [24035] =>.S3/Diamond Multimedia Systems
O58 - SDL:2008/04/14 15:00:00 A . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [24035] =>.S3/Diamond Multimedia Systems
O58 - SDL:2012/06/19 15:54:20 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [24035] =>.Realtek Semiconductor Corp®
O58 - SDL:2008/04/14 15:00:00 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [24035] =>.Macrovision Corporation, Macrovision Europe Limited,
O58 - SDL:2006/06/16 04:04:38 A . (.Silicon Integrated Systems Corporation - SiS AGPv3.5 Filter.) -- C:\WINDOWS\System32\drivers\SISAGPX.SYS [24035] =>.Silicon Integrated Systems Corporation
O58 - SDL:2008/03/03 06:00:00 A . (.Silicon Integrated Systems Corp. - NDIS 5.1 Miniport Driver for SiS191/SiS190.) -- C:\WINDOWS\System32\drivers\SiSGbeXP.sys [24035] =>.Silicon Integrated Systems Corp.
O58 - SDL:2010/01/06 09:25:24 A . (.Silicon Integrated Systems Corporation - SiS Compatible Super VGA Driver.) -- C:\WINDOWS\System32\drivers\sisgrp.sys [24035] =>.Silicon Integrated Systems Corporation
O58 - SDL:2003/07/09 02:12:54 RA . (.Silicon Integrated Systems Corp. - SiS PCI Mini IDE Driver.) -- C:\WINDOWS\System32\drivers\siside.sys [24035] =>.Silicon Integrated Systems Corp.
O58 - SDL:2009/08/23 05:23:08 A . (.Motorola Inc. - Motorola SM56 Modem WDM Driver.) -- C:\WINDOWS\System32\drivers\smserial.sys [24035] =>.Motorola Inc.
O58 - SDL:2010/01/06 09:49:34 A . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) -- C:\WINDOWS\System32\drivers\srvkp.sys [24035] =>.Silicon Integrated Systems Corporation
O58 - SDL:2014/12/11 20:53:08 A . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tapwp01.sys [24035] =>.OpenVPN Technologies, Inc.®
O58 - SDL:2017/01/25 21:30:27 A . (...) -- C:\WINDOWS\System32\drivers\TrueSight.sys [24035] =>.Adlice®
O58 - SDL:2008/04/14 15:00:00 A . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [24035] =>.Toshiba Corporation
O58 - SDL:2009/08/09 23:25:56 A . (.Elaborate Bytes AG - VirtualCloneCD Driver.) -- C:\WINDOWS\System32\drivers\VClone.sys [24035] =>.Elaborate Bytes AG
O58 - SDL:2008/04/14 15:00:00 A . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [24035] =>.RAVISENT Technologies Inc.
O58 - SDL:2016/11/20 09:20:28 A . (...) -- C:\WINDOWS\System32\drivers\vwifikerneldrv.sys [24035]
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ansi.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\country.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\himem.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\key01.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\keyboard.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos404.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos411.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos412.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntdos804.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio404.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio411.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio412.sys [24035] =>.Microsoft Corporation
O58 - SDL:2008/04/14 15:00:00 A . (...) -- C:\WINDOWS\System32\ntio804.sys [24035] =>.Microsoft Corporation
---\\ Last modified or created user files (1) - 19s
O61 - LFC: 2017/01/26 13:53:19 A . (.QQPlayer.NET Tencent.) -- C:\Documents and Settings\ahmed\My Documents\Downloads\QQPlayer_Setup_English.exe [32963797] =>.Superfluous.Tencent
---\\ File Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat>
O67 - Shell Spawning: <.cpl>
O67 - Shell Spawning: <.cmd>
O67 - Shell Spawning: <.com>
O67 - Shell Spawning: <.exe>
O67 - Shell Spawning: <.html>
O67 - Shell Spawning: <.js>
O67 - Shell Spawning: <.reg>
O67 - Shell Spawning: <.scr>
O67 - Shell Spawning: <.html>
---\\ Start Menu Internet (12) - 0s
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
---\\ Search Browser Infection (3) - 6s
O69 - SBI: SearchScopes [HKCU] {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} - (Avast Search) - http://search.avast.com/ =>.Avast Software s.r.o
O69 - SBI: SearchScopes [HKCU] {B7725F08-F62A-40B0-B3CC-0625D8491A39} [DefaultScope] - (Google) - http://www.google.com/ =>.Google Inc.
O69 - SBI: SearchScopes [HKLM] {8C31F27B-BE8A-4e4b-A478-17760AF1F5D9} - (Avast Search) - http://search.avast.com/ =>.Avast Software s.r.o
---\\ Search Svchost Services (41) - 0s
O83 - Search Svchost Services: 6to4 (6to4) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\WINDOWS\system32\6to4svc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\WINDOWS\system32\appmgmts.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - Logical Disk Manager service dll.) -- C:\WINDOWS\system32\dmserver.dll [24035] =>.Microsoft Corp.
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - DHCP Client Service.) -- C:\WINDOWS\system32\dhcpcsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\system32\shsvcs.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: HidServ (HidServ) . (...) -- C:\WINDOWS\System32\hidserv.dll [24035]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Network Connections Manager.) -- C:\WINDOWS\system32\netman.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provi.) -- C:\WINDOWS\system32\mswsock.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Removable Storage Manager.) -- C:\WINDOWS\system32\ntmssvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Task Scheduler Engine.) -- C:\WINDOWS\system32\schedsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\WINDOWS\system32\seclogon.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\WINDOWS\system32\ipnathlp.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - System Restore Service.) -- C:\WINDOWS\system32\srsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\WINDOWS\system32\tapisrv.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\system32\shsvcs.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Windows Time Service.) -- C:\WINDOWS\system32\w32time.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Wireless Zero Configuration Service.) -- C:\WINDOWS\system32\wzcsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - Advanced Windows 32 Base API.) -- C:\WINDOWS\system32\advapi32.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Quarantine Agent Service Run-Time.) -- C:\WINDOWS\system32\qagentrt.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\WINDOWS\system32\kmsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\WINDOWS\system32\qmgr.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\WINDOWS\system32\shsvcs.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [24035] =>.Microsoft Corporation
O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\mspmsnsv.dll [24035] =>.Microsoft Corporation
---\\ Additional Scan (O88) (3) - 1s
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C935DDA0-269E-11E4-9235-78C81D5D46B0} =>.Superfluous.Orphan
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C935DDA0-269E-11E4-9235-78C81D5D46B0} =>.Superfluous.Orphan
C:\Documents and Settings\ahmed\My Documents\Downloads\QQPlayer_Setup_English.exe =>.Superfluous.Tencent
---\\ Summary of the elements found (1) - 0s
https://www.nicolascoolman.com/fr/adware-tencentaddressbar/ =>.Superfluous.Tencent
~ Unselected Options: O82,
~ End of the scan, 47172 items in 03mn34s (1020)(0)