cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2021.2.13.278 By Nicolas Coolman (2021/02/13)
~ Run by Lenovo (Administrator) (2021/02/17 18:56:36)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ State version: Version OK
~ Mode: Scan
~ Report: C:\Users\Lenovo\Desktop\ZHPDiag.txt
~ Report: C:\Users\Lenovo\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ System startup: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 10240) =>.Microsoft Corporation

---\\ Internet Browsers (1) - 0s
~ MSIE: Internet Explorer v11.0.10240.17443

---\\ Windows Product Information (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ System protection software (1) - 2s
Windows Defender W10 (Activate) (Protection)

---\\ Sharing software PeerToPeer (1) - 2s
~ qBittorrent 4.3.3 v4.3.3 (P2P)

---\\ Informations on the system (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 8232.304 MB (77% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 80 GB (65%) free of 123 GB : OK =>.Disk Space

---\\ Connection to the system mode (3) - 0s
~ Computer Name: DESKTOP-0IJ68OS
~ User Name: Lenovo
~ Logged in as Administrator

---\\ Enumeration of the disk units (4) - 0s
~ Drive C: has 80 GB free of 123 GB (System)
~ Drive D: has 203 GB free of 319 GB
~ Drive F: has 30 GB free of 290 GB
~ Drive H: has 119 GB free of 119 GB

---\\ State of the Windows Security Center (7) - 0s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Search Generic System Files (25) - 2s
[MD5.10E4809BA77D58392C742097DD61E1A6] - 04/03/2017 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [4533320] =>.Microsoft Windows®
[MD5.5DED2A3F11AE916C8F2724947E736261] - 10/07/2015 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [59392] [Unsigned] =>.Microsoft Corporation
[MD5.5BAB7FBE0A0989A614040C7A402706FE] - 07/09/2016 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [290304] [Unsigned] =>.Microsoft Corporation
[MD5.2779C8E90D7E3151284E7790722E33DB] - 28/04/2017 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [3494400] [Unsigned] =>.Microsoft Corporation
[MD5.E47C40E95942DF6CA2B13F71F78D2EC1] - 04/03/2017 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [579072] [Unsigned] =>.Microsoft Corporation
[MD5.ECB1943967424DFB96E03F6A098434EF] - 19/07/2015 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [430592] [Unsigned] =>.Microsoft Corporation
[MD5.BC6BACFC848F957823F4C4C43CEA832D] - 04/03/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [680768] =>.Microsoft Windows®
[MD5.31D6510FF915677CFD16557A551F338C] - 04/03/2017 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [534056] =>.Microsoft Windows®
[MD5.348655E3A6E7FFCB2B789C10405B83C6] - 21/03/2018 - (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2243072] [Unsigned] =>.Microsoft Corporation
[MD5.A3D96563BF46FC8A0E5756B796127D14] - 05/11/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [577888] [Unsigned] =>.Microsoft Corporation
[MD5.8921DF6060DB5C7700AA48CB12E9EA08] - 10/07/2015 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [28512] [Unsigned] =>.Microsoft Corporation
[MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - 10/07/2015 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92672] [Unsigned] =>.Microsoft Corporation
[MD5.CA160E02F35A61C6F5C681FB4669C519] - 10/07/2015 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [174080] [Unsigned] =>.Microsoft Corporation
[MD5.777362D3376B232AA38EC9921E9E70F7] - 04/03/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [139264] [Unsigned] =>.Microsoft Corporation
[MD5.0915B65E73B9C73ED11243111C512A4D] - 30/09/2016 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [80896] [Unsigned] =>.Microsoft Corporation
[MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - 10/07/2015 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [114688] [Unsigned] =>.Microsoft Corporation
[MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - 10/07/2015 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [143360] [Unsigned] =>.Microsoft Corporation
[MD5.FF80FDFF07668C3EEF3A5CB46B321A06] - 04/03/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [415232] [Unsigned] =>.Microsoft Corporation
[MD5.1BD49789354B1CFE28D96DC232071A02] - 28/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [272896] [Unsigned] =>.Microsoft Corporation
[MD5.655A6C92FA97C95FEB1D3EBCFA70D49E] - 30/09/2016 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [2115936] [Unsigned] =>.Microsoft Corporation
[MD5.38F1AE32339731F6E5A7281AE8042545] - 10/07/2015 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [96768] [Unsigned] =>.Microsoft Corporation
[MD5.2521520142F7853E39028AE6BD66E072] - 23/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [104960] [Unsigned] =>.Microsoft Corporation
[MD5.A32AED8C644734B283A7C9D08D76064D] - 10/07/2015 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [176128] [Unsigned] =>.Microsoft Corporation
[MD5.43F9E10B919D81B68DA332BE0B828F33] - 03/06/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [116064] [Unsigned] =>.Microsoft Corporation
[MD5.823A237D871CD652C6BFD47BECB6810A] - 10/07/2015 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [378720] [Unsigned] =>.Microsoft Corporation

---\\ No disabled Windows Services (63) - 3s
O23 - Service: C:\Windows\System32\AudioEndpointBuilder.dll (AudioEndpointBuilder) . (.Microsoft Corporation - Windows Audio Endpoint Builder.) - C:\Windows\System32\AudioEndpointBuilder.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\audiosrv.dll (Audiosrv) . (.Microsoft Corporation - Windows Audio Service.) - C:\Windows\System32\Audiosrv.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: Bluetooth Driver Management Service (BcmBtRSupport) . (.Broadcom Corporation. - Bluetooth Radio Management Support.) - C:\Windows\System32\BtwRSupportService.exe [Unsigned] =>.Broadcom Corporation.
O23 - Service: C:\Windows\System32\bfe.dll (BFE) . (.Microsoft Corporation - Base Filtering Engine.) - C:\Windows\System32\bfe.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\qmgr.dll (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) - C:\Windows\System32\qmgr.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\system32\bisrv.dll (BrokerInfrastructure) . (.Microsoft Corporation - Background Tasks Infrastructure Service.) - C:\Windows\System32\bisrv.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\coremessaging.dll (CoreMessagingRegistrar) . (.Microsoft Corporation - Microsoft CoreMessaging Dll.) - C:\Windows\System32\coremessaging.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\cryptsvc.dll (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) - C:\Windows\System32\cryptsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\das.dll (DeviceAssociationService) . (.Microsoft Corporation - Device Association Service.) - C:\Windows\System32\das.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\dhcpcore.dll (Dhcp) . (.Microsoft Corporation - DHCP Client Service.) - C:\Windows\System32\dhcpcore.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\diagtrack.dll (DiagTrack) . (.Microsoft Corporation - Microsoft Windows Diagnostics Tracking.) - C:\Windows\System32\diagtrack.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\dmwappushsvc.dll (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) - C:\Windows\System32\dmwappushsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\dnsapi.dll (Dnscache) . (.Microsoft Corporation - DNS Caching Resolver Service.) - C:\Windows\System32\dnsrslvr.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\dosvc.dll (DoSvc) . (.Microsoft Corporation - Host Process for Windows Services.) - C:\Windows\System32\svchost.exe =>.Microsoft®
O23 - Service: C:\Windows\System32\efssvc.dll (EFS) . (.Microsoft Corporation - Local Security Authority Process.) - C:\Windows\System32\lsass.exe [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\wevtsvc.dll (EventLog) . (.Microsoft Corporation - Host Process for Windows Services.) - C:\Windows\System32\svchost.exe =>.Microsoft®
O23 - Service: @comres.dll,-2450 (EventSystem) . (.Microsoft Corporation - COM+.) - C:\Windows\System32\es.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\FntCache.dll (FontCache) . (.Microsoft Corporation - Windows Font Cache Service.) - C:\Windows\System32\FntCache.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: @gpapi.dll,-112 (gpsvc) . (.Microsoft Corporation - Group Policy Client.) - C:\Windows\System32\gpsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe [Unsigned] =>.Intel Corporation
O23 - Service: C:\Windows\System32\iphlpsvc.dll (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) - C:\Windows\System32\iphlpsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\srvsvc.dll (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) - C:\Windows\System32\srvsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\wkssvc.dll (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) - C:\Windows\System32\wkssvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\system32\lsm.dll (LSM) . (.Microsoft Corporation - Local Session Manager Service.) - C:\Windows\System32\lsm.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\moshost.dll (MapsBroker) . (.Microsoft Corporation - Downloaded Maps Manager.) - C:\Windows\System32\moshost.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: McAfee WebAdvisor (McAfee WebAdvisor) . (.McAfee, LLC - McAfee WebAdvisor.) - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe =>.McAfee, LLC®
O23 - Service: C:\Windows\System32\FirewallAPI.dll (MpsSvc) . (.Microsoft Corporation - Microsoft Protection Service.) - C:\Windows\System32\mpssvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\nlasvc.dll (NlaSvc) . (.Microsoft Corporation - Network Location Awareness 2.) - C:\Windows\System32\nlasvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\nsisvc.dll (nsi) . (.Microsoft Corporation - Network Store Interface RPC server.) - C:\Windows\System32\nsisvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation - NVIDIA Container.) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
O23 - Service: C:\Windows\System32\APHostRes.dll (OneSyncSvc) . (.Microsoft Corporation - Accounts Host Service.) - C:\Windows\System32\APHostService.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: Sync Host_Session1 (OneSyncSvc_Session1) . (.Microsoft Corporation - Host Process for Windows Services.) - C:\Windows\System32\svchost.exe =>.Microsoft®
O23 - Service: Office Software Protection Platform (osppsvc) . (.Microsoft Corporation - Microsoft Office Software Protection Platfo.) - C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE =>.Microsoft Corporation®
O23 - Service: OS Remediation System Service (osrss) . (.Microsoft Corporation - osrss.) - C:\Windows\System32\osrss.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\pcasvc.dll (PcaSvc) . (.Microsoft Corporation - Program Compatibility Assistant Service.) - C:\Windows\System32\pcasvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\umpnpmgr.dll (PlugPlay) . (.Microsoft Corporation - User-mode Plug-and-Play Service.) - C:\Windows\System32\umpnpmgr.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\umpo.dll (Power) . (.Microsoft Corporation - User-mode Power Service.) - C:\Windows\System32\umpo.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\profsvc.dll (ProfSvc) . (.Microsoft Corporation - ProfSvc.) - C:\Windows\System32\profsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\system32\RpcEpMap.dll (RpcEptMapper) . (.Microsoft Corporation - RPC Endpoint Mapper.) - C:\Windows\System32\RpcEpMap.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: @combase.dll,-5010 (RpcSs) . (.Microsoft Corporation - Distributed COM Services.) - C:\Windows\System32\rpcss.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\schedsvc.dll (Schedule) . (.Microsoft Corporation - Task Scheduler Service.) - C:\Windows\System32\schedsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: Windows Remediation Service (sedsvc) . (.Microsoft Corporation - sedsvc.) - C:\Program Files\rempl\sedsvc.exe =>.Microsoft®
O23 - Service: C:\Windows\System32\Sens.dll (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) - C:\Windows\System32\sens.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: Service KMSELDI (Service KMSELDI) . (...) - C:\Program Files\KMSpico\Service_KMS.exe (.not file.) =>HackTool.KMSpico
O23 - Service: C:\Windows\System32\shsvcs.dll (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) - C:\Windows\System32\shsvcs.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\spoolsv.exe,-1 (Spooler) . (.Microsoft Corporation - Spooler SubSystem App.) - C:\Windows\System32\spoolsv.exe [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\sppsvc.exe,-101 (sppsvc) . (.Microsoft Corporation - Microsoft Software Protection Platform Serv.) - C:\Windows\System32\sppsvc.exe [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\wiaservc.dll (stisvc) . (.Microsoft Corporation - Still Image Devices Service.) - C:\Windows\System32\wiaservc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
O23 - Service: C:\Windows\System32\sysmain.dll (SysMain) . (.Microsoft Corporation - Superfetch Service Host.) - C:\Windows\System32\sysmain.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\system32\SystemEventsBrokerServer.dll (SystemEventsBroker) . (.Microsoft Corporation - System Events Broker.) - C:\Windows\System32\SystemEventsBrokerServer.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\themeservice.dll (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) - C:\Windows\System32\themeservice.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\tileobjserver.dll (tiledatamodelsvc) . (.Microsoft Corporation - Tile Data model server.) - C:\Windows\System32\tileobjserver.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\usermgr.dll (UserManager) . (.Microsoft Corporation - UserMgr.) - C:\Windows\System32\usermgr.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\usocore.dll (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) - C:\Windows\System32\usocore.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\wbiosrvc.dll (WbioSrvc) . (.Microsoft Corporation - Windows Biometric Service.) - C:\Windows\System32\wbiosrvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\wcmsvc.dll (Wcmsvc) . (.Microsoft Corporation - Windows Connection Manager Service DLL.) - C:\Windows\System32\wcmsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) . (.Microsoft Corporation - Antimalware Service Executable.) - C:\Program Files\Windows Defender\MsMpEng.exe =>.Microsoft®
O23 - Service: C:\Windows\System32\wbem\wmisvc.dll (Winmgmt) . (.Microsoft Corporation - WMI.) - C:\Windows\System32\wbem\WMIsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\wlansvc.dll (WlanSvc) . (.Microsoft Corporation - Windows WLAN AutoConfig Service DLL.) - C:\Windows\System32\wlansvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\wscsvc.dll (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) - C:\Windows\System32\wscsvc.dll [Unsigned] =>.Microsoft Corporation
O23 - Service: C:\Windows\System32\SearchIndexer.exe,-103 (WSearch) . (.Microsoft Corporation - Microsoft Windows Search Indexer.) - C:\Windows\System32\SearchIndexer.exe [Unsigned] =>.Microsoft Corporation

---\\ Services not Microsoft (SR=Run, SS=Stop) (69) - 10s
SR - Boot [10/07/2015] [ 107360] (3ware) . (.LSI.) - C:\Windows\System32\drivers\3ware.sys =>.Microsoft®
SR - Demand [30/12/2020] [ 42328] Lenovo Virtual Power Controlle (ACPIVPC) . (.Lenovo Corporation.) - C:\Windows\System32\drivers\AcpiVpc.sys =>.LENOVO®
SS - Demand [30/12/2020] [ 335416] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Inc.®
SR - Boot [10/07/2015] [ 1135456] (ADP80XX) . (.PMC-Sierra.) - C:\Windows\System32\drivers\ADP80XX.SYS =>.Microsoft®
SR - Boot [10/07/2015] [ 83296] (amdsata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdsata.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 259424] (amdsbs) . (.AMD Technologies Inc..) - C:\Windows\System32\drivers\amdsbs.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 26976] (amdxata) . (.Advanced Micro Devices.) - C:\Windows\System32\drivers\amdxata.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 131936] Adaptec SAS/SATA-II RAID S (arcsas) . (.PMC-Sierra, Inc..) - C:\Windows\System32\drivers\arcsas.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 531296] Broadcom NetXtreme II VBD (b06bdrv) . (.Broadcom Corporation.) - C:\Windows\System32\drivers\bxvbda.sys =>.Microsoft®
SR - Demand [30/12/2020] [ 199472] Bluetooth RAM Firmware Download (bcbtums) . (.Broadcom Corporation..) - C:\Windows\System32\drivers\bcbtums.sys =>.Broadcom Corporation®
SR - Demand [10/07/2015] [ 7593176] Broadcom 802.11 Net (BCM43XX) . (.Broadcom Corporation.) - C:\Windows\System32\DRIVERS\bcmwl63a.sys =>.Broadcom Corporation®
SR - Auto [30/12/2020] [ 2278152] Bluetooth Driver Mana (BcmBtRSupport) . (.Broadcom Corporation..) - C:\Windows\System32\BtwRSupportService.exe =>.Broadcom Corporation®
SR - Demand [10/07/2015] [ 17624] bcmfn2 Service (bcmfn2) . (.Broadcom Corporation.) - C:\Windows\System32\drivers\bcmfn2.sys =>.Broadcom Corporation®
SR - Demand [30/12/2020] [ 214328] btwampfl (btwampfl) . (.Broadcom Corporation..) - C:\Windows\System32\DRIVERS\btwampfl.sys =>.Broadcom Corporation®
SS - Demand [30/12/2020] [ 299488] Intel(R) Content Protection HECI Service (cphs) . (.Intel Corporation.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX®
SR - Demand [02/02/2021] [ 131712] SAMSUNG Mobile USB Comp (dg_ssudbus) . (.Samsung Electronics Co., Ltd..) - C:\Windows\System32\DRIVERS\ssudbus.sys =>.Samsung Electronics CO., LTD.®
SR - Boot [10/07/2015] [ 3436896] QLogic 10 Gigabit Ethernet Ada (ebdrv) . (.QLogic Corporation.) - C:\Windows\System32\drivers\evbda.sys =>.Microsoft®
SS - Demand [04/02/2021] [ 1434224] Google Chrome Elevation Service (GoogleChromeElevationServi (GoogleChromeElevationService) . (.Google LLC.) - C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\elevation_service.exe =>.Google LLC®
SR - Auto [30/12/2020] [ 144200] Google Update Service (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [30/12/2020] [ 144200] Google Update Service (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SR - Boot [10/07/2015] [ 64352] (HpSAMD) . (.Hewlett-Packard Company.) - C:\Windows\System32\drivers\HpSAMD.sys =>.Microsoft®
SR - Demand [10/07/2015] [ 38128] Intel(R) Serial IO (iaLPSSi_GPIO) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSSi_GPIO.sys =>.Intel Corporation - Client Components Group®
SR - Demand [10/07/2015] [ 122608] Intel(R) Serial IO I (iaLPSSi_I2C) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaLPSSi_I2C.sys =>.Intel Corporation - Client Components Group®
SR - Boot [10/07/2015] [ 673120] Intel(R) SATA RAID Cont (iaStorAV) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorAV.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 412000] Intel RAID Controller Wi (iaStorV) . (.Intel Corporation.) - C:\Windows\System32\drivers\iaStorV.sys =>.Microsoft®
SR - Demand [10/07/2015] [ 424800] Mellanox InfiniBand Bus/A (ibbus) . (.Mellanox.) - C:\Windows\System32\drivers\ibbus.sys =>.Microsoft®
SR - Auto [20/12/2018] [ 229296] IDMWFP (IDMWFP) . (.Tonec Inc..) - C:\Windows\System32\DRIVERS\idmwfp.sys =>.Tonec Inc.®
SR - Demand [30/12/2020] [ 3811288] (igfx) . (.Intel Corporation.) - C:\Windows\System32\DRIVERS\igdkmd64.sys =>.Intel(R) pGFX®
SR - Auto [30/12/2020] [ 337888] Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation.) - C:\Windows\System32\igfxCUIService.exe =>.Intel(R) pGFX®
SR - Demand [01/12/2015] [ 50160] Intel WiDi Audio Device (intaud_WaveExtensible) . (.Intel Corporation.) - C:\Windows\System32\drivers\intelaud.sys =>.Intel(R) Wireless Display®
SR - Demand [21/08/2015] [ 463112] Intel(R) Display Audio (IntcDAud) . (.Intel(R) Corporation.) - C:\Windows\System32\DRIVERS\IntcDAud.sys =>.Intel Corporation - Client Components Group®
SR - Demand [01/12/2015] [ 38896] IWD Bus Enumerator (iwdbus) . (.Intel Corporation.) - C:\Windows\System32\drivers\iwdbus.sys =>.Intel(R) Wireless Display®
SR - Demand [10/07/2015] [ 129224] NDIS Miniport Drive (L1C) . (.Qualcomm Atheros Co., Ltd..) - C:\Windows\System32\drivers\L1C63x64.sys =>.Qualcomm Atheros®
SR - Boot [10/07/2015] [ 108896] (LSI_SAS) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 104800] (LSI_SAS2i) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sas2i.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 99168] (LSI_SAS3i) . (.Avago Technologies.) - C:\Windows\System32\drivers\lsi_sas3i.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 82784] (LSI_SSS) . (.LSI Corporation.) - C:\Windows\System32\drivers\lsi_sss.sys =>.Microsoft®
SR - Auto [12/02/2021] [ 959752] McAfee WebAdvisor (McAfee WebAdvisor) . (.McAfee, LLC.) - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe =>.McAfee, LLC®
SR - Boot [10/07/2015] [ 59744] (megasas) . (.Avago Technologies.) - C:\Windows\System32\drivers\megasas.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 575840] (megasr) . (.LSI Corporation, Inc..) - C:\Windows\System32\drivers\megasr.sys =>.Microsoft®
SR - Demand [30/12/2020] [ 202032] Intel(R) Management Engine Interfac (MEIx64) . (.Intel Corporation.) - C:\Windows\System32\drivers\TeeDriverW8x64.sys =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
SR - Demand [10/07/2015] [ 705376] Mellanox ConnectX Bus E (mlx4_bus) . (.Mellanox.) - C:\Windows\System32\drivers\mlx4_bus.sys =>.Microsoft®
SS - Demand [09/02/2021] [ 220640] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Boot [10/07/2015] [ 63840] (mvumis) . (.Marvell Semiconductor, Inc..) - C:\Windows\System32\drivers\mvumis.sys =>.Microsoft®
SR - Demand [10/07/2015] [ 76128] NetworkDirect Service (ndfltr) . (.Mellanox.) - C:\Windows\System32\drivers\ndfltr.sys =>.Microsoft®
SR - Auto [29/12/2016] [ 458176] NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation®
SR - Demand [30/12/2020] [14190520] (nvlddmkm) . (.NVIDIA Corporation.) - C:\Windows\System32\DRIVERS\nvlddmkm.sys =>.NVIDIA Corporation®
SR - Boot [30/12/2020] [ 48696] (nvpciflt) . (.NVIDIA Corporation.) - C:\Windows\System32\DRIVERS\nvpciflt.sys =>.NVIDIA Corporation®
SR - Boot [10/07/2015] [ 150368] (nvraid) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvraid.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 166240] (nvstor) . (.NVIDIA Corporation.) - C:\Windows\System32\drivers\nvstor.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 58208] (percsas2i) . (.LSI Corporation.) - C:\Windows\System32\drivers\percsas2i.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 58720] (percsas3i) . (.Avago Technologies.) - C:\Windows\System32\drivers\percsas3i.sys =>.Microsoft®
SR - Auto [00/00/0000] [ 0] Service KMSELDI (Service KMSELDI) . (...) - C:\Program Files\KMSpico\Service_KMS.exe (.not file.) [Unsigned] =>HackTool.KMSpico
SR - Boot [10/07/2015] [ 44896] (SiSRaid2) . (.Silicon Integrated Systems Corp..) - C:\Windows\System32\drivers\SiSRaid2.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 81760] (SiSRaid4) . (.Silicon Integrated Systems.) - C:\Windows\System32\drivers\sisraid4.sys =>.Microsoft®
SR - Demand [30/12/2020] [ 42696] (SmbDrvI) . (.Synaptics Incorporated.) - C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys =>.Synaptics Incorporated®
SR - Demand [02/02/2021] [ 165504] SAMSUNG Mobile USB Modem Dr (ssudmdm) . (.Samsung Electronics Co., Ltd..) - C:\Windows\System32\DRIVERS\ssudmdm.sys =>.Samsung Electronics CO., LTD.®
SR - Boot [10/07/2015] [ 31072] (stexstor) . (.Promise Technology, Inc..) - C:\Windows\System32\drivers\stexstor.sys =>.Microsoft®
SR - Demand [30/12/2020] [ 613576] Synaptics TouchPad Driver (SynTP) . (.Synaptics Incorporated.) - C:\Windows\System32\DRIVERS\SynTP.sys =>.Synaptics Incorporated®
SR - Auto [30/12/2020] [ 249032] SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated®
SR - Demand [10/07/2015] [ 44032] USB Device Emulation Support Library (UdeCx) . (...) - C:\Windows\System32\drivers\udecx.sys [Unsigned]
SR - Demand [30/12/2020] [ 648872] Digital Camera 1 (vm331avs) . (.Vimicro Corporation.) - C:\Windows\System32\Drivers\vm331avs.sys =>.Microsoft Windows Hardware Compatibility Publisher®
SR - Boot [10/07/2015] [ 166752] (vsmraid) . (.VIA Technologies Inc.,Ltd.) - C:\Windows\System32\drivers\vsmraid.sys =>.Microsoft®
SR - Boot [10/07/2015] [ 305504] VIA StorX Storage RAID Co (VSTXRAID) . (.VIA Corporation.) - C:\Windows\System32\drivers\vstxraid.sys =>.Microsoft®
SR - Auto [13/06/2011] [ 1069752] WebcamMax, WDM Video Capt (WCMVCAM) . (.Tenki Technology Co., Ltd..) - C:\Windows\System32\DRIVERS\wcmvcam64.sys =>.Tenki Technology Co., Ltd.®
SR - Demand [10/01/2021] [ 151184] (wdm_usb) . (.MBB.) - C:\Windows\System32\DRIVERS\usb2ser.sys =>.NGO®
SR - Demand [00/00/0000] [ 0] Microsoft WFP Message Cap (wfpcapture) . (...) - C:\Windows\System32\drivers\wfpcapture.sys (.not file.) [Unsigned]
SR - Demand [10/07/2015] [ 26976] WinMad Service (WinMad) . (.Mellanox.) - C:\Windows\System32\drivers\winmad.sys =>.Microsoft®
SR - Demand [10/07/2015] [ 59232] WinVerbs Service (WinVerbs) . (.Mellanox.) - C:\Windows\System32\drivers\winverbs.sys =>.Microsoft®

---\\ Task Planned Automatically (Register) (14) - 10s
O38 - TASK: {0E85DCCB-552E-475A-B346-BE81CACEE957} [64Bits][\Adobe Flash Player PPAPI Notifier] - (.Adobe - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [1499704] =>.Adobe
O38 - TASK: {4BC3089E-A0E9-471C-A638-F56876F515F6} [64Bits][\Adobe Flash Player NPAPI Notifier] - (.Adobe - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312] =>.Adobe
O38 - TASK: {5472834A-3BFD-43E4-9424-6AFE7961660E} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc.
O38 - TASK: {82B750C6-61BA-4222-9582-8D7A1A0AEF05} [64Bits][\Adobe Flash Player Updater] - (.Adobe - Adobe® Flash® Player Update Service 32.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416] =>.Adobe
O38 - TASK: {8772230C-ED98-4698-AAC7-FF55AD4312AF} [64Bits][\Mozilla\Firefox Default Browser Agent E7CF176E110C211B] - (.Mozilla Foundation - Firefox Default Browser Agent.) -- C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [615904] =>.Mozilla Foundation
O38 - TASK: {92A96CEC-9BBE-490E-8143-206BF12BCB04} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Google Installer.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc.
O38 - TASK: {DD5DC284-133F-4CD7-B7D1-364D98D1AED3} [64Bits][\Scheduled Update for Ask Toolbar] - (.Ask.com - .) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe [131976] =>Toolbar.Ask
C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier - (.Adobe.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe [-check pepperplugin.-check] =>.Adobe
C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier - (.Adobe.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [-check plugin.-check] =>.Adobe
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/c] =>.Google Inc.
C:\Windows\System32\Tasks\Adobe Flash Player Updater - (.Adobe.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [] =>.Adobe
C:\Windows\System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B - (.Mozilla Foundation.) -- C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [do-task "E7CF176E110C211B.do-task] =>.Mozilla Foundation
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [/ua ./ua] =>.Google Inc.
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar - (.Ask.com.) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe [] =>Toolbar.Ask

---\\ Auto loading programs from Registry and folders (11) - 1s
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft®
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc.
O4 - HKCU\..\Run: [Facebook.MessengerDesktop] . (. - .) -- C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe (.Not File.) =>.SUP.Orphan
O4 - HKCU\..\Run: [Spotify] . (. - .) -- --minimized. =>.SUP.Orphan
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft®
O4 - HKLM\..\Wow6432Node\Run: [331BigDog] . (.Vimicro - VM331 StiMnt.) -- C:\Program Files (x86)\USB Camera\VM331STI.EXE =>.Microsoft Windows Hardware Compatibility Publisher®
O4 - HKUS\S-1-5-21-711026783-1579360917-4037451402-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft®
O4 - HKUS\S-1-5-21-711026783-1579360917-4037451402-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc.
O4 - HKUS\S-1-5-21-711026783-1579360917-4037451402-1001\..\Run: [Facebook.MessengerDesktop] . (. - .) -- C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe (.Not File.) =>.SUP.Orphan
O4 - HKUS\S-1-5-21-711026783-1579360917-4037451402-1001\..\Run: [Spotify] . (. - .) -- --minimized. =>.SUP.Orphan

---\\ Process running (23) - 24s
[MD5.6A9C613D0F5F9676D128F39B63ACE45B] - (.Intel Corporation - igfxCUIService Module.) -- C:\Windows\System32\igfxCUIService.exe [337888] [PID.1292] [Unsigned] =>.Intel Corporation
[MD5.C876D675153BF2FE025E9EBBFDB235FC] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) -- C:\Windows\System32\BtwRSupportService.exe [2278152] [PID.1820] [Unsigned] =>.Broadcom Corporation.
[MD5.A31E8CDE43F29EC9E48D93911A718A09] - (.McAfee, LLC - McAfee WebAdvisor.) -- C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [959752] [PID.1856] =>.McAfee, LLC®
[MD5.2328568EE63439A4A11F9DC0692E5527] - (.NVIDIA Corporation - NVIDIA Container.) -- C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176] [PID.1888] =>.NVIDIA Corporation®
[MD5.6FBDBC24B1642868E041463795CBFA44] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032] [PID.924] =>.Synaptics Incorporated®
[MD5.93A49F8ECC625EE8FD3BFC3C5FEB8D47] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1285568] [PID.3052] =>.NVIDIA Corporation®
[MD5.EEAE4471514D3D835FC358CE101CA122] - (.McAfee, LLC - McAfee WebAdvisor.) -- C:\Program Files\McAfee\WebAdvisor\uihost.exe [958728] [PID.3580] =>.McAfee, LLC®
[MD5.B0D7CD705519C43B4A14A29C627EC0B2] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136] [PID.3404] =>.Synaptics Incorporated®
[MD5.C7025ED9332D112CD4DAD7C8E92F30B1] - (.Intel Corporation - igfxEM Module.) -- C:\Windows\system32\igfxEM.exe [549344] [PID.4196] [Unsigned] =>.Intel Corporation
[MD5.D8D19E718075D7B3DCA6B668968F3A87] - (.Intel Corporation - igfxHK Module.) -- C:\Windows\system32\igfxHK.exe [266208] [PID.4212] [Unsigned] =>.Intel Corporation
[MD5.BBD33D80F5208FE34A54EEA8552F5A9A] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxTray.exe [391648] [PID.4224] [Unsigned] =>.Intel Corporation
[MD5.D08862FCD46DB3B7712FCCEC479B4F86] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [210120] [PID.4812] =>.Synaptics Incorporated®
[MD5.E8DE6E81B27B60A15B07D63B51F88D2B] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe [292680] [PID.6084] =>.Google LLC®
[MD5.33F147B0C09C965F5A4E7EEEFF2D9659] - (.Google LLC - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe [373064] [PID.6092] =>.Google LLC®
[MD5.5E6F09123922ECB86796273B61D7D6AA] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4043888] [PID.4796] [Unsigned] =>.Tonec Inc.
[MD5.946932EB00327F19CF749445FC8A829F] - (.Spotify Ltd - Spotify.) -- C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe [23722056] [PID.3064] =>.Spotify AB®
[MD5.946932EB00327F19CF749445FC8A829F] - (.Spotify Ltd - Spotify.) -- C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe [23722056] [PID.5876] =>.Spotify AB®
[MD5.946932EB00327F19CF749445FC8A829F] - (.Spotify Ltd - Spotify.) -- C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe [23722056] [PID.6260] =>.Spotify AB®
[MD5.279175F66914D5BE0D3A3DD9F85FD5B3] - (.Vimicro - VM331 StiMnt.) -- C:\Program Files (x86)\USB Camera\VM331STI.EXE [571928] [PID.6276] =>.Microsoft Windows Hardware Compatibility Publisher®
[MD5.946932EB00327F19CF749445FC8A829F] - (.Spotify Ltd - Spotify.) -- C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe [23722056] [PID.6356] =>.Spotify AB®
[MD5.7631C33878C331D7396679B0C391FCA8] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [384312] [PID.6664] =>.Tonec Inc.®
[MD5.946932EB00327F19CF749445FC8A829F] - (.Spotify Ltd - Spotify.) -- C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe [23722056] [PID.6708] =>.Spotify AB®
[MD5.13351951E285BD84A3AF23C9F9EE8B0F] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Lenovo\Downloads\Programs\ZHPDiag3.exe [3284616] [PID.4436] [Unsigned] =>.Nicolas Coolman

---\\ Google Chrome, Start,Search,Extensions (30) - 2s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients2.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fonts.googleapis.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ogs.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google-analytics.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.googletagmanager.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [aapocclcgogkmnckokdopfmhonfmgoek] =>.Google Inc. {Slides}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [aegnopegbbhjeeiganiajffnalhlkkjb] Safe Torrent Scanner =>.Legitimate
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [apdfllckaahabafndbhieahigkjlhalf] http://drive.google.com/ =>.Google Inc. {Drive}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [blpcfgokakmgnkcojhhkbfbldkacnbeo] http://www.youtube.com =>.Youtube {Youtube}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [coobgpohoikkiipiblmjeljniedjpjpf] http://www.google.com/ =>.Google Inc. {Hidden Chrome extensions}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [felcaaldnbdncclmgdcncolpebgiejap] =>.Google Inc. {Sheets}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [fheoggkfdfchfphceeifdbepaooicaho] =>.McAfee {SECURE Safe Browsing}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [gighmmpiobklfepjocnamgkkbiglidom] Toggle Pause/Resume on all sites =>.Legitimate
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [jgeocpdicgmkeemopbanhokmhcgcflmi] Twitter =>.64px.com
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [ngpampappnmepgilojfohadhhmbhlaek] IDM Integration Module =>.IDM Computer Solutions, Inc.
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [pjkljhegncpnkpknbcohdijeoejaedia] http://mail.google.com/ =>.Google Inc. {Gmail}
G2 - GCE: Preference [Lenovo][User Data\Default\Extensions] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.
G2 - GCE: Preference [Lenovo][User Data\Default\Local Extension Settings] [fheoggkfdfchfphceeifdbepaooicaho] =>.McAfee {SECURE Safe Browsing}
G2 - GCE: Preference [Lenovo][User Data\Default\Local Extension Settings] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion}
G2 - GCE: Preference [Lenovo][User Data\Default\Local Extension Settings] [gighmmpiobklfepjocnamgkkbiglidom] =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [Lenovo][User Data\Default\Local Extension Settings] [ngpampappnmepgilojfohadhhmbhlaek] =>.Legitimate
G2 - GCE: Preference [Lenovo][User Data\Default\Managed Extension Settings] [gighmmpiobklfepjocnamgkkbiglidom] =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [Lenovo][User Data\Default\Sync Extension Settings] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] =>.Google Inc. {Chrome Media Router}

---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (20) - 1s
M0 - MFSP: prefs.js [Lenovo - vu8sgq2l.default-release] user_pref( browser.startup.homepage_override.once , {\ message_id\ :\ WNP_MOMENTS_2\ ,\ url\ :\ http://www.mozilla.org/ =>.Mozilla Corporation
P2 - EXT FILE: (.Legitimate.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\doh-rollout@mozilla.org.xpi [Unsigned]
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi [Unsigned] =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [Unsigned] =>.Mozilla Corporation
P2 - EXT FILE: (.webcompat.com.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [Unsigned] =>.webcompat.com
P2 - EXT FILE: (.webcompat.com.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi [Unsigned] =>.webcompat.com
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll =>.Adobe
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\bookmarkbackups =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\crashes =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\datareporting =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\extensions =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\features =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\gmp-gmpopenh264 =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\gmp-widevinecdm =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\minidumps =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\saved-telemetry-pings =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\security_state =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\sessionstore-backups =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\shader-cache =>Mozilla Corporation
C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\vu8sgq2l.default-release\storage =>Mozilla Corporation

---\\ Internet Explorer Extensions, Start, Search (17) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ar.hao123.com/ =>PUP.Optional.Browser
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {00000000-6E41-4FD3-8538-502F5495E5FC} Orphan =>.SUP.Orphan
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.10240.17394 (th1_st1.170427-1347)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation
R4 - HKLM\Software\WOW6432Node\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 =>Default.Value

---\\ INTERNET EXPLORER, trusted site and sensitive site (1) - 0s
~ Microsoft Internet Explorer Restricted Site(s) Domains: 0(Good) / 0(Bad)

---\\ Internet Explorer, Proxy Management (3) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 =>.Default.Value
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 =>.Default.Value
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Hosts file redirection (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object (BHO) (4) - 0s
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll =>.Tonec Inc.®
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O2 - BHO: McAfee WebAdvisor [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, LLC - McAfee WebAdvisor.) -- C:\Program Files\McAfee\WebAdvisor\x64\ieplugin.dll =>.McAfee, LLC®
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL =>.Microsoft®

---\\ Internet Explorer Toolbars (1) - 1s
O3 - Toolbar: 0x00 - [HKLM]{D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll {286F8A30E2EAC6965B936F826A05305D}. =>Toolbar.Ask

---\\ Global shortcuts Startup (61) - 11s
O4 - GS\Desktop [Administrator]: rufus-3.13p - Shortcut.lnk . (.Akeo Consulting - Rufus.) C:\Users\Lenovo\Downloads\Programs\rufus-3.13p.exe =>.Akeo Consulting®
O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Lenovo\AppData\Roaming\ZHP\ZHPDiag3.exe [Unsigned] =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrator]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Quicklaunch [Administrator]: WINAMP.LNK . (...) C:\Program Files (x86)\Winamp\winamp.exe [Unsigned]
O4 - GS\sendTo [Administrator]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - Transfers files between device.) C:\Windows\System32\fsquirt.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\sendTo [Administrator]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation
O4 - GS\TaskBar [Administrator]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\TaskBar [Administrator]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\TaskBar [Administrator]: Twitter.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi =>.Google LLC®
O4 - GS\Programs [Administrator]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft®
O4 - GS\Programs [Administrator]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Programs [Administrator]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\Desktop [Guest]: rufus-3.13p - Shortcut.lnk . (.Akeo Consulting - Rufus.) C:\Users\Lenovo\Downloads\Programs\rufus-3.13p.exe =>.Akeo Consulting®
O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Lenovo\AppData\Roaming\ZHP\ZHPDiag3.exe [Unsigned] =>.Nicolas Coolman
O4 - GS\Quicklaunch [Guest]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Quicklaunch [Guest]: WINAMP.LNK . (...) C:\Program Files (x86)\Winamp\winamp.exe [Unsigned]
O4 - GS\sendTo [Guest]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - Transfers files between device.) C:\Windows\System32\fsquirt.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\sendTo [Guest]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation
O4 - GS\TaskBar [Guest]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\TaskBar [Guest]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\TaskBar [Guest]: Twitter.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi =>.Google LLC®
O4 - GS\Programs [Guest]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft®
O4 - GS\Programs [Guest]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Programs [Guest]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\Desktop [Lenovo]: rufus-3.13p - Shortcut.lnk . (.Akeo Consulting - Rufus.) C:\Users\Lenovo\Downloads\Programs\rufus-3.13p.exe =>.Akeo Consulting®
O4 - GS\Desktop [Lenovo]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Lenovo\AppData\Roaming\ZHP\ZHPDiag3.exe [Unsigned] =>.Nicolas Coolman
O4 - GS\Quicklaunch [Lenovo]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Quicklaunch [Lenovo]: WINAMP.LNK . (...) C:\Program Files (x86)\Winamp\winamp.exe [Unsigned]
O4 - GS\sendTo [Lenovo]: Bluetooth File Transfer.LNK . (.Microsoft Corporation - Transfers files between device.) C:\Windows\System32\fsquirt.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\sendTo [Lenovo]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation
O4 - GS\TaskBar [Lenovo]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\TaskBar [Lenovo]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\TaskBar [Lenovo]: Twitter.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi =>.Google LLC®
O4 - GS\Programs [Lenovo]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft®
O4 - GS\Programs [Lenovo]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Programs [Lenovo]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\CommonDesktop [Public]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\Lenovo\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft®
O4 - GS\Programs [Public]: Optional Features.lnk . (.Microsoft Corporation - Features On Demand Helper.) C:\Windows\System32\fodhelper.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Programs [Public]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB®
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Notepad.) C:\Windows\system32\notepad.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Remote Desktop Connection.) C:\Windows\system32\mstsc.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Snipping Tool.) C:\Windows\system32\SnippingTool.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Steps Recorder.) C:\Windows\system32\psr.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Sticky Notes.) C:\Windows\system32\StikyNot.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Windows Wordpad Application.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - XPS Viewer.) C:\Windows\system32\xpsrchvw.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Character Map.) C:\Windows\system32\charmap.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Devices Flow.lnk . (.Microsoft Corporation - Devices Flow.) C:\Windows\DevicesFlow\DevicesFlow.exe =>.Microsoft®
O4 - GS\ProgramsCommon [Public]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google LLC - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\Windows\System32\Control.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\Windows\MiracastView\MiracastView.exe =>.Microsoft®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\Windows\PrintDialog\PrintDialog.exe =>.Microsoft®
O4 - GS\ProgramsCommon [Public]: Search.lnk . (.Microsoft Corporation - Windows host process (Rundll32).) C:\Windows\system32\rundll32.exe -sta {C90FB8CA-3295-4462-A721-2935E83694BA} [Unsigned] =>..Microsoft Corporation

---\\ Lop.com/Domain Hijackers (2) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{93800003-dfd7-4d10-a2be-7355f6d18cfd}: DhcpNameServer = 192.168.1.1 192.168.1.1 =>.Local IP Adress

---\\ Extra protocols (19) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\System32\urlmon.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\System32\MSVidCtl.dll [Unsigned] =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll [Unsigned] =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ AppInit_DLLs Registry value Autorun (1) - 0s
O20 - Winlogon : UserInit . (.Microsoft Corporation - Userinit Logon Application.) - C:\Windows\system32\userinit.exe =>.Microsoft Corporation

---\\ ASIC (ActiveSetup Installed Components) (6) - 1s
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll [Unsigned] =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe [Unsigned] =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Microsoft Windows Media Player Setup Utilit.) -- C:\Windows\System32\unregmp2.exe [Unsigned] =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe [Unsigned] =>.Microsoft Corporation
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll =>.Microsoft®
O40 - ASIC: Google Chrome [64Bits] - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google LLC - Google Chrome Installer.) -- C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe =>.Google LLC®

---\\ Software installed (184) - 41s
O42 - Logiciel: Adobe Flash Player 32 NPAPI - (.Adobe.) [HKLM][64Bits] -- Adobe Flash Player NPAPI =>.Adobe Inc.®
O42 - Logiciel: Adobe Flash Player 32 PPAPI - (.Adobe.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Inc.®
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM][64Bits] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE} [Unsigned] =>Toolbar.AskTBar
O42 - Logiciel: Definition Update for Microsoft Office 2010 (KB3115475) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C6943CC4-79E1-4B29-BFF7-8C4049C7DF61} =>.Microsoft Corporation®
O42 - Logiciel: Google Chrome - (.Google, Inc..) [HKLM][64Bits] -- {71925994-C336-3763-BFE3-867C081D2BB0} [Unsigned] =>.Google, Inc.
O42 - Logiciel: IDMActivator-mrelhlawany 6.32.5 - (.mrelhlawany.com.) [HKLM][64Bits] -- IDMActivator-mrelhlawany 6.32.5 [Unsigned]
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager =>.Tonec Inc.®
O42 - Logiciel: Lenovo EasyCamera - (.Vimicro.) [HKLM][64Bits] -- {ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332} =>.Microsoft Windows Hardware Compatibility Publisher®
O42 - Logiciel: Microsoft Office Access MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0015-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Access Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0117-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Excel MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0016-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Groove MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00BA-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office InfoPath MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0044-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Office 64-bit Components 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office OneNote MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-00A1-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Outlook MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office PowerPoint MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0018-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Professional Plus 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.PROPLUS =>.Microsoft®
O42 - Logiciel: Microsoft Office Proof (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Proof (French) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Proof (Spanish) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Proofing (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002C-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Publisher MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0019-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Shared 64-bit MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-002A-0409-1000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0116-0409-1000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Shared MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Shared Setup Metadata MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-0115-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Office Word MUI (English) 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90140000-001B-0409-0000-0000000FF1CE} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft®
O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D8E6291-B0D5-35EC-8441-6616F567A0F7} [Unsigned] =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - (.Microsoft Corporation.) [HKLM][64Bits] -- {F0C3E5D1-1ADE-321E-8167-68EF0DE699A5} [Unsigned] =>.Microsoft Corporation
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} =>.Microsoft®
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} =>.Microsoft®
O42 - Logiciel: Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {37B8F9C7-03FB-3253-8781-2517C99D7C00} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {B175520C-86A2-35A7-8619-86DC379688B9} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BD95A8CD-1D9F-35AD-981A-3E7925026EBB} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 - (.Microsoft Corporation.) [HKLM][64Bits] -- {ef6b00ec-13e1-4c25-9064-b2f383cb8412} =>.Microsoft®
O42 - Logiciel: Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 - (.Microsoft Corporation.) [HKLM][64Bits] -- {61087a79-ac85-455c-934d-1fa22cc64f36} =>.Microsoft®
O42 - Logiciel: Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 - (.Microsoft Corporation.) [HKLM][64Bits] -- {5740BD44-B58D-321A-AFC0-6D3D4556DD6C} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 - (.Microsoft Corporation.) [HKLM][64Bits] -- {CB0836EC-B072-368D-82B2-D3470BF95707} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 - (.Microsoft Corporation.) [HKLM][64Bits] -- {7DAD0258-515C-3DD4-8964-BD714199E0F7} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 - (.Microsoft Corporation.) [HKLM][64Bits] -- {E30D8B21-D82D-3211-82CC-0F0A5D1495E8} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 - (.Microsoft Corporation.) [HKLM][64Bits] -- {852adda4-4c78-4a38-b583-c0b360a329d6} =>.Microsoft®
O42 - Logiciel: Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 - (.Microsoft Corporation.) [HKLM][64Bits] -- {45231ab4-69fd-486a-859d-7a59fcd11013} =>.Microsoft®
O42 - Logiciel: Microsoft Visual C++ 2019 X64 Additional Runtime - 14.23.27820 - (.Microsoft Corporation.) [HKLM][64Bits] -- {9CA7111B-263D-45DE-B898-61FAD30B3237} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.23.27820 - (.Microsoft Corporation.) [HKLM][64Bits] -- {A94EC1B2-932B-49D7-8AF2-4FBD29FF314B} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 - (.Microsoft Corporation.) [HKLM][64Bits] -- {86BE78D9-65A1-4E69-86F8-C1F5281F8553} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 - (.Microsoft Corporation.) [HKLM][64Bits] -- {00AC3934-26B4-406E-807C-1692AC7329EC} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- {9495AEB4-AB97-39DE-8C42-806EEF75ECA7} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Microsoft Visual Studio 2010 Tools for Office Runtime (x64) - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Visual Studio 2010 Tools for Office Runtime (x64) =>.Microsoft®
O42 - Logiciel: Mozilla Firefox 85.0.2 (x86 en-US) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 85.0.2 (x86 en-US) =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService [Unsigned] =>.Mozilla
O42 - Logiciel: NVIDIA Control Panel 376.54 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel [Unsigned] =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Display Container - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainer [Unsigned] =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Display Container LS - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVDisplayContainerLS [Unsigned] =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: NVIDIA Graphics Driver 376.54 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver [Unsigned] =>.NVIDIA Corporation
O42 - Logiciel: NVIDIA Install Application - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer [Unsigned] =>.NVIDIA Corporation (Hidden)
O42 - Logiciel: qBittorrent 4.3.3 - (.The qBittorrent project.) [HKLM][64Bits] -- qBittorrent [Unsigned] =>.The qBittorrent project
O42 - Logiciel: QQPlayer - (.Tencent Technology Coropration Ltd..) [HKCU][64Bits] -- QQPlayer [Unsigned]
O42 - Logiciel: Security Update for Microsoft Access 2010 (KB4484385) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7699831F-CDA3-4EE8-A7B3-914E4D5882AE} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Excel 2010 (KB4493222) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F6E29F5B-32C4-4180-96D3-BEB0B027F952} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft InfoPath 2010 (KB3114414) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B3F75577-16EF-48AA-9259-2AF290C973FD} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft InfoPath 2010 (KB3114414) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{B3F75577-16EF-48AA-9259-2AF290C973FD} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{473DA037-A808-4DF4-9F37-548928C3CDA1} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{473DA037-A808-4DF4-9F37-548928C3CDA1} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553332) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{41D9A855-2AF2-43AF-9EE5-E2C72600BC3D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2553332) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{41D9A855-2AF2-43AF-9EE5-E2C72600BC3D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7AC3F78E-ECA0-45F4-A9CC-3E885DA23662} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5EE42B42-1159-435C-898A-2A3298453B20} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2881029) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{433890E5-7858-4D14-8FD3-CCD28015472F} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2956063) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{0567725C-77BA-47C1-BE23-FFC218C8F953} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB2956076) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{A12F43A5-CF0B-44E3-942F-2441CD442F0D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB3114565) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{80B7E22F-C1B8-4C71-A095-CCBDE2CF89CA} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB3191908) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D196C74E-1419-4DC9-981F-45B6A6504D69} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB3203468) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{548F42CA-61CC-4A49-9963-50124AC7B81D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB3203468) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{C1954E2B-1672-4E5C-B564-F8CB2D08345B} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB3203468) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{A7AA9E77-A9F4-4596-8AFD-4910FF258C3D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB3213626) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{01D38795-AC70-4381-9A39-9B583A18B101} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB3213631) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5553566A-EC2B-4B4C-9576-8A46B0629BE0} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB4011610) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{AB14B711-25E6-4977-8C14-F2BE68D9763C} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB4022206) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{459CBA32-2A7A-4F9C-9629-EA0F7B144B38} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB4022206) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{459CBA32-2A7A-4F9C-9629-EA0F7B144B38} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB4022208) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{FFD4D070-EEAA-490F-9DBE-AC9CADDF80C0} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB4484455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{75750B4B-B1A1-457E-B420-1C15AC44D5C3} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB4493143) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{568C794C-9637-4C1A-AA9C-5A212B36DD5E} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Office 2010 (KB4493181) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2732103A-70AC-491F-B96F-C91300B709F8} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft OneNote 2010 (KB3114885) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{67E31350-8E55-4143-9F7A-4E703B49FD45} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft OneNote 2010 (KB3114885) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{67E31350-8E55-4143-9F7A-4E703B49FD45} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft OneNote 2010 (KB3114885) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{82148027-13B5-4920-97F3-6A44A29B83D0} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Outlook 2010 (KB4486742) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{636A62FF-4B5F-4298-AF86-8ABDC189C97D} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Outlook 2010 (KB4486742) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{5253DDDE-C286-4040-884E-3C322EEE7607} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Publisher 2010 (KB4032216) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{91A1FBCA-4E1D-4746-BFCC-FCC8E5ECDD7E} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Visio 2010 (KB4462225) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{FFDD17B7-988D-4690-9785-57EC47767DC9} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Visio Viewer 2010 (KB2999465) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D54D39CD-37D6-42EF-AD2E-2222515782F1} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Word 2010 (KB4461625) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7580D98B-D1D5-4B84-8C68-0C2310B715E5} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Word 2010 (KB4461625) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7580D98B-D1D5-4B84-8C68-0C2310B715E5} =>.Microsoft Corporation®
O42 - Logiciel: Security Update for Microsoft Word 2010 (KB4493145) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{30301A31-B837-48C0-86D0-F87D2D70A827} =>.Microsoft Corporation®
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B} =>.Microsoft Corporation®
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0015-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0019-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{09A9DF49-DA06-4093-A2FD-F339211E39EA} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{ECC1D579-DC17-4B90-929C-B4A0BB35F7B3} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{8C5A05B6-FF56-480F-A0E6-9F4BCA4B4CAC} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E4D76E88-C65F-4003-9C71-EC4306679D17} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0409-1000-0000000FF1CE}_Office14.PROPLUS_{03AE1408-7BF1-4AC6-A327-E32E7799BCE4} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002C-0409-0000-0000000FF1CE}_Office14.PROPLUS_{945F1D43-451D-4383-9BBE-241F37950B15} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0044-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{8DD50F3B-E0BD-4E39-AF1F-2F316B4FC528} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-00BA-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0115-0409-0000-0000000FF1CE}_Office14.PROPLUS_{8DD50F3B-E0BD-4E39-AF1F-2F316B4FC528} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0116-0409-1000-0000000FF1CE}_Office14.PROPLUS_{03AE1408-7BF1-4AC6-A327-E32E7799BCE4} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0117-0409-0000-0000000FF1CE}_Office14.PROPLUS_{D6A2CD7F-C90C-4B90-BBA7-2BADE2E08610} =>.Microsoft Corporation® (Hidden)
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify =>.Spotify AB®
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey [Unsigned] =>.Synaptics Incorporated
O42 - Logiciel: TeraCopy 2.27 - (.Code Sector.) [HKLM][64Bits] -- TeraCopy_is1 =>.Code Sector®
O42 - Logiciel: Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUS_{A7C2902F-C60B-428F-BDD7-ECE4DC0A2CA1} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{A7C2902F-C60B-428F-BDD7-ECE4DC0A2CA1} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Excel 2010 (KB2956084) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{A7C2902F-C60B-428F-BDD7-ECE4DC0A2CA1} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Filter Pack 2.0 (KB3114879) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{87A369D7-ECD5-4BD4-A302-376DFFD9E1BF} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Filter Pack 2.0 (KB3114879) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{87A369D7-ECD5-4BD4-A302-376DFFD9E1BF} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{8BEEA2FC-D416-428A-B52A-A3ED45921151} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{8BEEA2FC-D416-428A-B52A-A3ED45921151} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0015-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0019-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0409-1000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002C-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0044-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-00BA-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0115-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0116-0409-1000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0117-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7CA28304-D86F-4ACA-97FA-D126E0D02416} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{AEB4E79E-26B6-42F3-9980-096443C534BE} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{091CB6F9-4347-4084-A572-7C320DA7D686} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2589339) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{0CC5A044-3C4A-45F0-B444-C4163B16D7BD} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A4F91D60-654C-4892-BFD3-0D41ADA649B6} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{43EBBFDD-8FB7-4FCC-9780-EB40277987A2} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2881030) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D6C976E4-E88C-4048-9A6B-39400D2933C7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D1C4AD0B-CC79-41D2-8D6A-571E7B30658C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9C9636BD-37A7-43F7-BB00-5C7606B42D27} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{A786FC51-D7D5-4499-A230-D1EBEA64932C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A786FC51-D7D5-4499-A230-D1EBEA64932C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B29C45D3-4B2D-4FC2-B072-81E3528E4EE1} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB4092436) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{619A54EF-90BA-4700-AE00-AC7E7DAC69BD} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB4461579) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{E768F199-7B27-400F-B7E2-E277D008376A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB4461579) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E768F199-7B27-400F-B7E2-E277D008376A} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB4461626) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{81552592-6945-4622-8D53-341B6D95FF07} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB4462172) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{32D844E0-6696-4FAC-AB73-7D9C459F929C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB4462187) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D336721D-4E01-43A0-A10D-843A5D9382DD} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Office 2010 (KB4493180) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{86016929-0E68-4E0B-BC9C-9C87E59AAD67} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Outlook 2010 (KB3114559) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7B84F1D8-AC12-4C8A-82F8-CE95A60F1320} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Editi - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{E7C8C158-9575-4120-AF5E-5CCEF2DD6761} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft PowerPoint 2010 (KB4092435) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{BBD9BE45-D50B-4788-88EF-E48208ABE40B} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft PowerPoint 2010 (KB4493179) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{79E73CB9-16D2-4AA9-B22C-81F17613C18C} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035} =>.Microsoft Corporation®
O42 - Logiciel: Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035} =>.Microsoft Corporation®
O42 - Logiciel: Update for Windows 10 for x64-based Systems (KB4023057) - (.Microsoft Corporation.) [HKLM][64Bits] -- {6753CC12-A884-47B2-9270-F5CD31B6F256} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Update for Windows 10 for x64-based Systems (KB4480730) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0746492E-47B6-4251-940C-44462DFD74BB} [Unsigned] =>.Microsoft Corporation
O42 - Logiciel: UpdateAssistant - (.Microsoft Corporation.) [HKLM][64Bits] -- {76A22428-2400-4521-96AF-7AC4A6174CA5} [Unsigned] =>.Microsoft Corporation (Hidden)
O42 - Logiciel: Vulkan Run Time Libraries 1.0.26.0 - (.LunarG, Inc..) [HKLM][64Bits] -- VulkanRT1.0.26.0 =>.LunarG, Inc.®
O42 - Logiciel: WebAdvisor by McAfee - (.McAfee, LLC.) [HKLM][64Bits] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A} =>.McAfee, LLC®
O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver =>.win.rar GmbH®

---\\ HKCU & HKLM Software Keys (118) - 41s
HKLM\SOFTWARE\Avast Software =>.AVAST Software
HKLM\SOFTWARE\Code Sector =>.Code Sector
HKLM\SOFTWARE\Dell =>.Dell
HKLM\SOFTWARE\Google =>.Google
HKLM\SOFTWARE\InstalledOptions =>.Installed Options
HKLM\SOFTWARE\Intel =>.Intel
HKLM\SOFTWARE\Khronos =>.Khronos
HKLM\SOFTWARE\KONAMI =>.Konami
HKLM\SOFTWARE\Lenovo =>.Lenovo
HKLM\SOFTWARE\Macromedia =>.Macromedia
HKLM\SOFTWARE\McAfee =>.McAfee Inc.
HKLM\SOFTWARE\Mozilla =>.Mozilla
HKLM\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\NeoSmart Technologies =>.NeoSmart Technologies
HKLM\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKLM\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\OEM =>.OEM
HKLM\SOFTWARE\Partner =>.Google Inc.
HKLM\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKLM\SOFTWARE\Synaptics =>.Synaptics
HKLM\SOFTWARE\Volatile =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\Activision =>.Activision
HKLM\SOFTWARE\WOW6432Node\Adobe =>.Adobe
HKLM\SOFTWARE\WOW6432Node\AskToolbar =>Toolbar.Ask
HKLM\SOFTWARE\WOW6432Node\Audio Explosion
HKLM\SOFTWARE\WOW6432Node\Avast Software =>.AVAST Software
HKLM\SOFTWARE\WOW6432Node\Google =>.Google
HKLM\SOFTWARE\WOW6432Node\Intel =>.Intel
HKLM\SOFTWARE\WOW6432Node\Internet Download Manager =>.Tonec Inc
HKLM\SOFTWARE\WOW6432Node\Khronos =>.Khronos
HKLM\SOFTWARE\WOW6432Node\Lenovo =>.Lenovo
HKLM\SOFTWARE\WOW6432Node\Macromedia =>.Macromedia
HKLM\SOFTWARE\WOW6432Node\McAfee NGI =>.McAfee Inc.
HKLM\SOFTWARE\WOW6432Node\Mozilla =>.Mozilla
HKLM\SOFTWARE\WOW6432Node\mozilla.org =>.mozilla.org
HKLM\SOFTWARE\WOW6432Node\MozillaPlugins =>.MozillaPlugins
HKLM\SOFTWARE\WOW6432Node\NeoSmart Technologies =>.NeoSmart Technologies
HKLM\SOFTWARE\WOW6432Node\NVIDIA Corporation =>.nVidia Corporation
HKLM\SOFTWARE\WOW6432Node\ODBC =>.DB Connectivity Solutions
HKLM\SOFTWARE\WOW6432Node\qBittorrent =>.uTorrent (P2P)
HKLM\SOFTWARE\WOW6432Node\Tencent =>.Tencent
HKLM\SOFTWARE\WOW6432Node\WinRAR =>.WinRAR
HKLM\SOFTWARE\WOW6432Node\WOW6432Node =>.Microsoft Corporation
HKLM\SOFTWARE\WOW6432Node\ZSMC =>.ZSMC Corporation
HKLM\SOFTWARE\WOW6432Node\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Adobe =>.Adobe
HKCU\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKCU\SOFTWARE\Ask.com =>Toolbar.Ask
HKCU\SOFTWARE\Audio Explosion
HKCU\SOFTWARE\AVAST Software =>.AVAST Software
HKCU\SOFTWARE\Baidu =>.Baidu
HKCU\SOFTWARE\BitTorrentPersist
HKCU\SOFTWARE\Camfrog =>.Camshare LC
HKCU\SOFTWARE\Chromium =>.Chromium
HKCU\SOFTWARE\Code Sector =>.Code Sector
HKCU\SOFTWARE\DownloadManager =>.DownloadManager
HKCU\SOFTWARE\Google =>.Google
HKCU\SOFTWARE\Intel =>.Intel
HKCU\SOFTWARE\Macromedia =>.Macromedia
HKCU\SOFTWARE\McAfee =>.McAfee Inc.
HKCU\SOFTWARE\Mine =>.Microsoft Corporation
HKCU\SOFTWARE\Mozilla =>.Mozilla
HKCU\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKCU\SOFTWARE\Netscape =>.Netscape
HKCU\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKCU\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKCU\SOFTWARE\QtProject =>.QtProject
HKCU\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKCU\SOFTWARE\Spotify =>.Spotify
HKCU\SOFTWARE\Synaptics =>.Synaptics
HKCU\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKCU\SOFTWARE\TelegramDesktop =>.TelegramDesktop
HKCU\SOFTWARE\Tencent =>.Tencent
HKCU\SOFTWARE\Ultimate Windows Tweaker =>.Paras Sidhu Corp
HKCU\SOFTWARE\Valve =>.Valve
HKCU\SOFTWARE\WinRAR =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX =>.RarLab
HKCU\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKCU\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKCU\SOFTWARE\ZHP =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software =>.Microsoft Corporation
HKCU\SOFTWARE\AppDataLow\Software\AskToolbar =>Toolbar.Ask
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Adobe =>.Adobe
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\AppDataLow =>.Microsoft Corporation
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Ask.com =>Toolbar.Ask
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Audio Explosion
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\AVAST Software =>.AVAST Software
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Baidu =>.Baidu
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\BitTorrentPersist
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Camfrog =>.Camshare LC
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Chromium =>.Chromium
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Code Sector =>.Code Sector
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\DownloadManager =>.DownloadManager
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Google =>.Google
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Intel =>.Intel
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Macromedia =>.Macromedia
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\McAfee =>.McAfee Inc.
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Mine =>.Microsoft Corporation
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Mozilla =>.Mozilla
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\MozillaPlugins =>.MozillaPlugins
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Netscape =>.Netscape
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\NVIDIA Corporation =>.nVidia Corporation
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\ODBC =>.DB Connectivity Solutions
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\QtProject =>.QtProject
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\RegisteredApplications =>.Microsoft Corporation
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Spotify =>.Spotify
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Synaptics =>.Synaptics
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\SyncEngines =>.Microsoft Corporation
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\TelegramDesktop =>.TelegramDesktop
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Tencent =>.Tencent
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Ultimate Windows Tweaker =>.Paras Sidhu Corp
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Valve =>.Valve
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\WinRAR =>.WinRAR
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\WinRAR SFX =>.RarLab
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Wow6432Node =>.Microsoft Corporation
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\Yahoo =>.Yahoo! Inc.
HKU\S-1-5-21-711026783-1579360917-4037451402-1001\SOFTWARE\ZHP =>.Nicolas Coolman

---\\ Contents of the Common Files folders (180) - 14s
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\CMAK =>.Microsoft Corporation
O43 - CFD: 25/01/2021 - [] D -- C:\Program Files\Common Files =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files\CUAssistant =>.Microsoft®
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files\Intel =>.Intel Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 07/01/2021 - [] D -- C:\Program Files\KMSpico [Unsigned] =>HackTool.KMSpico
O43 - CFD: 24/01/2021 - [] D -- C:\Program Files\McAfee =>.McAfee
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files\rempl =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated®
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files\TeraCopy =>.Code Sector Inc.
O43 - CFD: 10/07/2015 - [0] HD -- C:\Program Files\Uninstall Information =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\Windows Defender =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files\Windows NT =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] SHD -- C:\Program Files\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 29/01/2021 - [] HD -- C:\Program Files\WindowsApps =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Ask.com {286F8A30E2EAC6965B936F826A05305D}. =>Toolbar.Ask
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\baidu =>.Baidu
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\CMAK =>.Microsoft Corporation
O43 - CFD: 15/02/2021 - [] D -- C:\Program Files (x86)\Common Files =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Google =>.Google Inc®
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\IDMActivator-mrelhlawany [Unsigned]
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Intel =>.Intel Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Internet Download Manager =>.Tonec Inc
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\Internet Explorer =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Microsoft Analysis Services =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Microsoft Sync Framework =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Microsoft.NET =>.Microsoft Corporation
O43 - CFD: 10/02/2021 - [] D -- C:\Program Files (x86)\Mozilla Firefox =>.Mozilla
O43 - CFD: 10/02/2021 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service =>.Mozilla
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\MSBuild =>.Microsoft Corporation
O43 - CFD: 16/02/2021 - [0] D -- C:\Program Files (x86)\NeoSmart Technologies =>.NeoSmart Technologies
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 12/02/2021 - [] D -- C:\Program Files (x86)\qBittorrent [Unsigned]
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Tencent =>.Tencent Technology(Shenzhen) Company Limited®
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\USB Camera =>.Microsoft Windows Hardware Compatibility Publisher®
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\VulkanRT =>.LunarG, Inc
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\Windows Defender =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Windows NT =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\Program Files (x86)\Windows Portable Devices =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] SHD -- C:\Program Files (x86)\Windows Sidebar =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] SD -- C:\Program Files (x86)\WindowsPowerShell =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\WinRAR =>.win.rar GmbH®
O43 - CFD: 10/01/2021 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 30/12/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 07/01/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office =>.Microsoft Corporation
O43 - CFD: 12/02/2021 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent
O43 - CFD: 30/12/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy =>.Code Sector Inc.
O43 - CFD: 30/12/2020 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 25/01/2021 - [] D -- C:\ProgramData\Adobe =>.Adobe
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Application Data =>.Microsoft Corporation
O43 - CFD: 25/01/2021 - [] D -- C:\ProgramData\Avast Software =>.AVAST Software
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\Comms =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Desktop =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Documents =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [0] D -- C:\ProgramData\IDM =>.IDM
O43 - CFD: 24/01/2021 - [] D -- C:\ProgramData\McAfee =>.McAfee
O43 - CFD: 17/02/2021 - [] SD -- C:\ProgramData\Microsoft =>.Microsoft Corporation
O43 - CFD: 12/02/2021 - [] D -- C:\ProgramData\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\ProgramData\Microsoft OneDrive =>.Microsoft Corporation
O43 - CFD: 13/02/2021 - [] D -- C:\ProgramData\Mozilla =>.Mozilla Corporation
O43 - CFD: 17/02/2021 - [] D -- C:\ProgramData\NVIDIA =>.nVidia Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\ProgramData\NVIDIA Corporation =>.nVidia Corporation
O43 - CFD: 10/01/2021 - [] D -- C:\ProgramData\Package Cache =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] D -- C:\ProgramData\SoftwareDistribution =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Start Menu =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\ProgramData\Templates =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOPrivate =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\ProgramData\USOShared =>.Microsoft Corporation
O43 - CFD: 25/01/2021 - [] D -- C:\Program Files (x86)\Common Files\Adobe =>.Adobe
O43 - CFD: 13/01/2021 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER =>.Designer
O43 - CFD: 30/12/2020 - [] D -- C:\Program Files (x86)\Common Files\Intel =>.Intel Corporation
O43 - CFD: 14/01/2021 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\Program Files (x86)\Common Files\Services =>.Microsoft Corporation
O43 - CFD: 14/01/2021 - [] D -- C:\Program Files (x86)\Common Files\System =>.Microsoft Corporation
O43 - CFD: 15/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\Adobe =>.Adobe
O43 - CFD: 25/01/2021 - [0] D -- C:\Users\Lenovo\AppData\Roaming\baidu =>.Baidu
O43 - CFD: 17/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\DMCache =>.DMCache
O43 - CFD: 13/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\IDM =>.IDM
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 16/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\Messenger =>.Microsoft Corporation
O43 - CFD: 24/01/2021 - [] SD -- C:\Users\Lenovo\AppData\Roaming\Microsoft =>.Microsoft Corporation
O43 - CFD: 25/01/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\Mozilla =>.Mozilla Corporation
O43 - CFD: 04/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\NVIDIA =>.nVidia Corporation
O43 - CFD: 12/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\qBittorrent
O43 - CFD: 17/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\Spotify =>.Spotify
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\Tencent =>.Tencent
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\TeraCopy =>.Code Sector Inc.
O43 - CFD: 25/01/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\uTorrent
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\WebcamMax =>.CoolwareMax
O43 - CFD: 16/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\WhatsApp =>.WhatsApp
O43 - CFD: 10/01/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\WinRAR =>.WinRAR
O43 - CFD: 17/02/2021 - [] D -- C:\Users\Lenovo\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 15/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Adobe =>.Adobe
O43 - CFD: 30/12/2020 - [0] SHD -- C:\Users\Lenovo\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 25/01/2021 - [] D -- C:\Users\Lenovo\AppData\Local\BitTorrentHelper
O43 - CFD: 24/01/2021 - [] D -- C:\Users\Lenovo\AppData\Local\CEF =>.CEF
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Local\Comms =>.Microsoft Corporation
O43 - CFD: 15/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\CrashDumps =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Local\Google =>.Google
O43 - CFD: 30/12/2020 - [0] SHD -- C:\Users\Lenovo\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 16/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Messenger =>.Microsoft Corporation
O43 - CFD: 16/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\messenger-updater
O43 - CFD: 12/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [0] D -- C:\Users\Lenovo\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Local\MicrosoftEdge =>.Microsoft Corporation
O43 - CFD: 25/01/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Mozilla =>.Mozilla Corporation
O43 - CFD: 16/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\NeoSmart_Technologies =>.NeoSmart Technologies
O43 - CFD: 30/12/2020 - [0] D -- C:\Users\Lenovo\AppData\Local\NetworkTiles =>.NetworkTiles
O43 - CFD: 10/01/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Nik Software =>.Nik Software
O43 - CFD: 08/01/2021 - [] D -- C:\Users\Lenovo\AppData\Local\OneDrive =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Local\Packages =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [0] D -- C:\Users\Lenovo\AppData\Local\PeerDistRepub =>.Microsoft Corporation
O43 - CFD: 16/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Programs =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Local\Publishers =>.Microsoft Corporation
O43 - CFD: 12/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\qBittorrent
O43 - CFD: 17/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Spotify =>.Spotify
O43 - CFD: 24/01/2021 - [] D -- C:\Users\Lenovo\AppData\Local\SquirrelTemp =>.Squirrels
O43 - CFD: 17/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [0] SHD -- C:\Users\Lenovo\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Local\TileDataLayer =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [0] D -- C:\Users\Lenovo\AppData\Local\VirtualStore =>.Microsoft Corporation
O43 - CFD: 16/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\WhatsApp =>.WhatsApp
O43 - CFD: 17/02/2021 - [] D -- C:\Users\Lenovo\AppData\Local\ZHP =>.Nicolas Coolman
O43 - CFD: 30/12/2020 - [0] D -- C:\Users\Lenovo\AppData\Local\Programs\Common =>.Microsoft Corporation
O43 - CFD: 15/02/2021 - [] D -- C:\Users\Lenovo\AppData\LocalLow\Adobe =>.Adobe
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\LocalLow\AskToolbar =>Toolbar.Ask
O43 - CFD: 24/01/2021 - [] D -- C:\Users\Lenovo\AppData\LocalLow\Messenger =>.Microsoft Corporation
O43 - CFD: 24/01/2021 - [] D -- C:\Users\Lenovo\AppData\LocalLow\Microsoft =>.Microsoft Corporation
O43 - CFD: 13/02/2021 - [0] D -- C:\Users\Lenovo\AppData\LocalLow\Mozilla =>.Mozilla Corporation
O43 - CFD: 25/01/2021 - [] D -- C:\Users\Lenovo\AppData\LocalLow\uTorrent
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] RD -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories =>.Microsoft Corporation
O43 - CFD: 10/01/2021 - [] RD -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools =>.Administrative Tools
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager =>.Tonec Inc
O43 - CFD: 10/07/2015 - [] D -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QQPlayer
O43 - CFD: 10/01/2021 - [] RD -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] RD -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools =>.Microsoft Corporation
O43 - CFD: 16/02/2021 - [0] D -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp =>.WhatsApp
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp =>.Winamp
O43 - CFD: 10/07/2015 - [] RSD -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR =>.WinRAR
O43 - CFD: 10/07/2015 - [0] SHD -- C:\Users\Default\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\Users\Default\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\Users\Default\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [0] D -- C:\Users\Default\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] D -- C:\Users\Default\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\Users\Default\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\Users\Default User\AppData\Local\Application Data =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\Users\Default User\AppData\Local\History =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [] D -- C:\Users\Default User\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [0] D -- C:\Users\Default User\AppData\Local\Microsoft Help =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] D -- C:\Users\Default User\AppData\Local\Temp =>.Microsoft Corporation
O43 - CFD: 10/07/2015 - [0] SHD -- C:\Users\Default User\AppData\Local\Temporary Internet Files =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] D -- C:\Windows\System32\Config\systemprofile\AppData\Local\Microsoft =>.Microsoft Corporation
O43 - CFD: 30/12/2020 - [] -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Macromedia =>.Macromedia
O43 - CFD: 06/02/2021 - [] SD -- C:\Windows\System32\Config\systemprofile\AppData\Roaming\Microsoft =>.Microsoft Corporation

---\\ Latest files created in Prefetcher (2) - 17s
O45 - LFCP:[MD5.310DBC4B18D88B411A9AE77832FE7B52] 30/12/2020 A -- C:\Windows\Prefetch\KMSPICO_SETUP.TMP-BC40A1D1.pf =>HackTool.KMSpico
O45 - LFCP:[MD5.64137432DEAD58B1433F6C8619C49710] 30/12/2020 A -- C:\Windows\Prefetch\KMSPICO_SETUP.TMP-CF65193A.pf =>HackTool.KMSpico

---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc.®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - Client Side Caching UI.) -- C:\Windows\System32\cscui.dll [Unsigned] =>.Microsoft Corporation

---\\ Search Context Menu Handlers (SCMH) (46) - 7s
O108 - CMH1: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Windows Briefcase.) -- C:\Windows\System32\syncui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH1: Open With [64Bits] - {09799AFB-AD67-11d1-ABCD-00C04FC30936} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Open With EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH1: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH1: TeraCopy [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]
O108 - CMH1: TeraCopyS64 [64Bits] - {A764EEF0-D6E8-48AF-8DFA-023B1CF660A7} . (. - Simple Context Menu.) -- C:\Program Files\TeraCopy\TeraCopyExt64.dll [Unsigned]
O108 - CMH1: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH1: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH1: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH1: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O108 - CMH2: NvAppShExt [64Bits] - {A929C4CE-FD36-4270-B4F5-34ECAC5BD63C} . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\system32\nv3dappshext.dll [Unsigned] =>.NVIDIA Corporation
O108 - CMH2: OpenContainingFolderMenu [64Bits] - {37ea3a21-7493-4208-a011-7f9ea79ce9f5} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH2: OpenGLShExt [64Bits] - {E97DEC16-A50D-49bb-AE24-CF682282E08D} . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\system32\nv3dappshext.dll [Unsigned] =>.NVIDIA Corporation
O108 - CMH2: TeraCopy [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]
O108 - CMH2: TeraCopyS64 [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]
O108 - CMH3: CopyAsPathMenu [64Bits] - {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: SendTo [64Bits] - {7BA4C740-9E81-11CF-99D3-00AA004AE837} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH3: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O108 - CMH4: EncryptionMenu [64Bits] - {A470F8CF-A1E8-4f65-8335-227475AA5C46} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH4: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\Windows\System32\cscui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH4: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH4: TeraCopy [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]
O108 - CMH4: TeraCopyS64 [64Bits] - {A764EEF0-D6E8-48AF-8DFA-023B1CF660A7} . (. - Simple Context Menu.) -- C:\Program Files\TeraCopy\TeraCopyExt64.dll [Unsigned]
O108 - CMH4: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH4: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O108 - CMH5: igfxDTCM [64Bits] - {9B5F5829-A529-4B12-814A-E81BCB8D93FC} . (.Intel Corporation - igfxDTCM Module.) -- C:\Windows\system32\igfxDTCM.dll [Unsigned] =>.Intel Corporation
O108 - CMH5: New [64Bits] - {D969A300-E7FF-11d0-A93B-00A0C90F2719} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH5: NvCplDesktopContext [64Bits] - {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\nvshext.dll [Unsigned] =>.NVIDIA Corporation
O108 - CMH5: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH5: TeraCopy [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]
O108 - CMH5: TeraCopyS64 [64Bits] - {A764EEF0-D6E8-48AF-8DFA-023B1CF660A7} . (. - Simple Context Menu.) -- C:\Program Files\TeraCopy\TeraCopyExt64.dll [Unsigned]
O108 - CMH5: WorkFolders [64Bits] - {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} . (.Microsoft Corporation - Microsoft (C) Work Folders Shell Extension.) -- C:\Windows\System32\WorkfoldersShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH5: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O108 - CMH6: BriefcaseMenu [64Bits] - {85BBD920-42A0-1069-A2E4-08002B30309D} . (.Microsoft Corporation - Windows Briefcase.) -- C:\Windows\System32\syncui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH6: Library Location [64Bits] - {3dad6c5d-2167-4cae-9914-f99e41c12cfa} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: Offline Files [64Bits] - {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} . (.Microsoft Corporation - Client Side Caching UI.) -- C:\Windows\System32\cscui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH6: PintoStartScreen [64Bits] - {470C0EBD-5D73-4d58-9CED-E91E22E23282} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll =>.Microsoft Windows®
O108 - CMH6: TeraCopy [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]
O108 - CMH6: TeraCopyS64 [64Bits] - {A764EEF0-D6E8-48AF-8DFA-023B1CF660A7} . (. - Simple Context Menu.) -- C:\Program Files\TeraCopy\TeraCopyExt64.dll [Unsigned]
O108 - CMH6: WinRAR [64Bits] - {B41DB860-64E4-11D2-9906-E49FADC173CA} . (.Alexander Roshal - WinRAR shell extension.) -- C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH®
O108 - CMH6: WinRAR32 [64Bits] - {B41DB860-8EE4-11D2-9906-E49FADC173CA} . (.Orphan.) [Unsigned]
O108 - CMH6: XXX Groove GFS Context Menu Handler XXX [64Bits] - {6C467336-8281-4E60-8204-430CED96822D} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft®
O108 - CMH7: EnhancedStorageShell [64Bits] - {2854F705-3548-414C-A113-93E27C808C85} . (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH7: Sharing [64Bits] - {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} . (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll [Unsigned] =>.Microsoft Corporation
O108 - CMH7: TeraCopy [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]
O108 - CMH7: TeraCopyS64 [64Bits] - {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} . (...) -- C:\Program Files\TeraCopy\TeraCopyExt.dll [Unsigned]

---\\ Image File Execution Options (18) - 1s
O50 - IFEO:C:\Windows\System32\cscript.exe - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\dllhost.exe - (.Microsoft Corporation - COM Surrogate.) [DisableExceptionChainValidation\\3] =>.Microsoft®
O50 - IFEO:C:\Windows\System32\drvinst.exe - (.Microsoft Corporation - Driver Installation Module.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ie4uinit.exe - (.Microsoft Corporation - IE Per-User Initialization Utility.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\ieUnatt.exe - (.Microsoft Corporation - IE 7.0 Unattended Install Utility.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mmc.exe - (.Microsoft Corporation - Microsoft Management Console.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\MRT.exe - (.Microsoft Corporation - Microsoft Windows Malicious Software Remova.) [CFGOptions\\1] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\msfeedssync.exe - (.Microsoft Corporation - Microsoft Feeds Synchronization.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\mshta.exe - (.Microsoft Corporation - Microsoft (R) HTML Application host.) [MitigationOptions\\256] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PresentationHost.exe - (.Microsoft Corporation - Windows Presentation Foundation Host.) [MitigationOptions\\1118481] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\PrintIsolationHost.exe - (.Microsoft Corporation - PrintIsolationHost.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\rundll32.exe - (.Microsoft Corporation - Windows host process (Rundll32).) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\runtimebroker.exe - (.Microsoft Corporation - Runtime Broker.) [MitigationOptions\\4294967296] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\searchprotocolhost.exe - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Spooler SubSystem App.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\spoolsv.exe - (.Microsoft Corporation - Spooler SubSystem App.) [MitigationOptions\\2097152] [Unsigned] =>.Microsoft Corporation
O50 - IFEO:C:\Windows\System32\svchost.exe - (.Microsoft Corporation - Host Process for Windows Services.) [MinimumStackCommitInBytes\\32768] =>.Microsoft®
O50 - IFEO:C:\Windows\System32\wscript.exe - (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) [DisableExceptionChainValidation\\3] [Unsigned] =>.Microsoft Corporation

---\\ System Drivers List (372) - 23s
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\drivers\1394ohci.sys [235520] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\drivers\3ware.sys [107360] =>.Microsoft®
O58 - SDL:2015/07/22 07:15:16 A . (.Microsoft Corporation - ACPI Driver for NT.) -- C:\Windows\System32\drivers\acpi.sys [565088] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - ACPIEx Driver.) -- C:\Windows\System32\drivers\acpiex.sys [127840] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - ACPI Processor Aggregator Device Driver.) -- C:\Windows\System32\drivers\acpipagr.sys [12288] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\drivers\acpipmi.sys [13312] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - ACPI Wake Alarm.) -- C:\Windows\System32\drivers\acpitime.sys [12800] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2020/12/30 14:51:49 A . (.Lenovo Corporation - ACPI Virtual Power Controller Driver.) -- C:\Windows\System32\drivers\AcpiVpc.sys [42328] =>.LENOVO®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\Windows\System32\drivers\adp80xx.sys [1135456] =>.Microsoft®
O58 - SDL:2015/11/05 07:13:31 A . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\afd.sys [577888] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:51 A . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\drivers\agilevpn.sys [105984] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - 440 NT AGP Filter.) -- C:\Windows\System32\drivers\AGP440.sys [63328] =>.Microsoft®
O58 - SDL:2016/09/07 06:26:06 A . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\drivers\ahcache.sys [215552] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\amdk8.sys [121344] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\amdppm.sys [118272] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [83296] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [259424] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [26976] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:01 A . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\drivers\appid.sys [141664] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [131936] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:53 A . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\drivers\asyncmac.sys [28160] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [28512] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\drivers\ataport.sys [192864] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\drivers\BasicDisplay.sys [55296] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/06/03 12:04:35 A . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\drivers\BasicRender.sys [40960] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\drivers\battc.sys [36704] =>.Microsoft®
O58 - SDL:2020/12/30 08:33:21 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [199472] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 12:59:38 A . (. - BCM Function 2 Device Driver.) -- C:\Windows\System32\drivers\bcmfn2.sys [17624] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 12:59:36 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL63a.SYS [7593176] =>.Broadcom Corporation®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\drivers\beep.sys [9728] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/10/25 07:35:00 A . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\drivers\bowser.sys [104448] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/04/09 09:22:40 A . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\drivers\bridge.sys [114688] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Mana.) -- C:\Windows\System32\drivers\BtaMPM.sys [22016] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth A2DP Driver.) -- C:\Windows\System32\drivers\BthA2DP.sys [165376] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/09/30 06:04:58 A . (.Microsoft Corporation - Bluetooth Audio/Video Remote Control HID.) -- C:\Windows\System32\drivers\BthAvrcpTg.sys [42496] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth Bus Extender.) -- C:\Windows\System32\drivers\bthenum.sys [105984] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth Hands-free Audio Device Driver.) -- C:\Windows\System32\drivers\BthHfAud.sys [36864] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/30 05:44:26 A . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control.) -- C:\Windows\System32\drivers\bthhfenum.sys [65536] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth Hands-free HID Minidriver.) -- C:\Windows\System32\drivers\BthhfHid.sys [30720] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/03/16 05:45:14 A . (.Microsoft Corporation - Bluetooth LE Bus Enumerator.) -- C:\Windows\System32\drivers\BthLEEnum.sys [238080] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/09/17 07:50:33 A . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\drivers\bthmodem.sys [65536] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth Personal Area Networking.) -- C:\Windows\System32\drivers\bthpan.sys [128512] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/09/17 07:50:27 A . (.Microsoft Corporation - Bluetooth Bus Driver.) -- C:\Windows\System32\drivers\bthport.sys [929280] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth Miniport Driver.) -- C:\Windows\System32\drivers\BTHUSB.SYS [84992] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2020/12/30 08:33:23 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter.) -- C:\Windows\System32\drivers\btwampfl.sys [214328] =>.Broadcom Corporation®
O58 - SDL:2015/09/17 07:50:08 A . (.Microsoft Corporation - Button Converter Driver.) -- C:\Windows\System32\drivers\buttonconverter.sys [36352] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [531296] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - CapImg HID Driver.) -- C:\Windows\System32\drivers\capimg.sys [116736] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:14 A . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\cdfs.sys [92672] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\cdrom.sys [174080] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:50 A . (.Microsoft Corporation - Event Aggregation Kernel Mode Library.) -- C:\Windows\System32\drivers\CEA.sys [76640] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\drivers\circlass.sys [48640] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\drivers\Classpnp.sys [374624] =>.Microsoft®
O58 - SDL:2016/11/19 12:21:29 A . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\drivers\clfs.sys [381792] =>.Microsoft Windows®
O58 - SDL:2015/07/10 13:00:01 A . (.Microsoft Corporation - CLIP Service.) -- C:\Windows\System32\drivers\ClipSp.sys [597344] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\drivers\CmBatt.sys [29184] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Kernel Configuration Manager Initial Config.) -- C:\Windows\System32\drivers\cmimcext.sys [21856] =>.Microsoft®
O58 - SDL:2017/06/03 15:44:41 A . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\drivers\cng.sys [605472] =>.Microsoft Windows®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - CNG Hardware Assist algorithm provider.) -- C:\Windows\System32\drivers\cnghwassist.sys [39264] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - Console Driver.) -- C:\Windows\System32\drivers\condrv.sys [41984] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\drivers\crashdmp.sys [76128] =>.Microsoft®
O58 - SDL:2015/07/10 15:14:33 A . (.Microsoft Corporation - Windows Client Side Caching Driver.) -- C:\Windows\System32\drivers\csc.sys [544768] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/16 07:39:09 A . (.Microsoft Corporation - DAM Kernel Driver.) -- C:\Windows\System32\drivers\dam.sys [61280] =>.Microsoft®
O58 - SDL:2017/03/04 07:25:27 A . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\dfsc.sys [139264] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\drivers\disk.sys [101216] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\drivers\Diskdump.sys [37728] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Boot Over USB Dump Driver.) -- C:\Windows\System32\drivers\Dmpusbstor.sys [14336] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\drivers\dmvsc.sys [33792] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\drivers\drmk.sys [96768] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\drivers\drmkaud.sys [16168] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:13 A . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\drivers\Dumpata.sys [35680] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\drivers\dumpfve.sys [80232] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\drivers\dumpsd.sys [184672] =>.Microsoft®
O58 - SDL:2017/06/03 15:34:24 A . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\drivers\dxgkrnl.sys [1979744] =>.Microsoft Windows®
O58 - SDL:2017/03/28 12:11:19 A . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\drivers\dxgmms1.sys [393568] =>.Microsoft Windows®
O58 - SDL:2015/09/17 08:48:42 A . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\drivers\dxgmms2.sys [505696] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Enhanced Storage Class driver for IEEE 1667.) -- C:\Windows\System32\drivers\EhStorClass.sys [88928] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft driver for storage devices suppor.) -- C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\drivers\errdev.sys [11776] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3436896] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:58 A . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\drivers\exfat.sys [313856] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/04/09 12:05:05 A . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\drivers\fastfat.sys [331616] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft Virtual Fibre Channel HBA minipor.) -- C:\Windows\System32\drivers\fcvsc.sys [31232] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\drivers\fdc.sys [32256] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Windows sandboxing and encryption filter.) -- C:\Windows\System32\drivers\filecrypt.sys [83968] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:58 A . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\drivers\fileinfo.sys [83808] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:55 A . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\drivers\filetrace.sys [35840] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\drivers\flpydisk.sys [26112] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - Microsoft Filesystem Filter Manager.) -- C:\Windows\System32\drivers\fltMgr.sys [368992] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:56 A . (.Microsoft Corporation - File System Dependency Manager Mini Filter.) -- C:\Windows\System32\drivers\fsdepends.sys [62816] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\drivers\fs_rec.sys [31072] =>.Microsoft®
O58 - SDL:2016/02/23 16:51:55 A . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\drivers\fvevol.sys [633184] =>.Microsoft®
O58 - SDL:2015/09/17 08:48:49 A . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\drivers\FWPKCLNT.SYS [406864] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - MS Generic AGPv3.0 Filter for K8/9 Processo.) -- C:\Windows\System32\drivers\GAGP30KX.sys [66912] =>.Microsoft®
O58 - SDL:2016/09/30 06:05:03 A . (.Microsoft Corporation - Generic USB Function Class Driver.) -- C:\Windows\System32\drivers\genericusbfn.sys [20992] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/12/01 08:03:10 A . (.Microsoft Corporation - GPU Energy Kernel Driver.) -- C:\Windows\System32\drivers\gpuenergydrv.sys [8192] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/09/30 06:05:18 A . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\hdaudbus.sys [80896] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/09/30 06:05:21 A . (.Microsoft Corporation - High Definition Audio Function Driver.) -- C:\Windows\System32\drivers\HdAudio.sys [379392] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\drivers\hidbatt.sys [28160] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth Miniport Driver for HID Devices.) -- C:\Windows\System32\drivers\hidbth.sys [107520] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Hid Class Library.) -- C:\Windows\System32\drivers\hidclass.sys [153088] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\Windows\System32\drivers\hidi2c.sys [51200] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - HID Button over Interrupt Driver.) -- C:\Windows\System32\drivers\hidinterrupt.sys [50016] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\drivers\hidir.sys [46592] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\drivers\hidparse.sys [39936] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\drivers\hidusb.sys [38400] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [64352] =>.Microsoft®
O58 - SDL:2016/03/16 06:37:02 A . (.Microsoft Corporation - HTTP Protocol Stack.) -- C:\Windows\System32\drivers\http.sys [1010016] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:13 A . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\drivers\hwpolicy.sys [29024] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\Windows\System32\drivers\hyperkbd.sys [16384] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft VMBus Video Device Miniport Drive.) -- C:\Windows\System32\drivers\HyperVideo.sys [26112] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [114688] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [38128] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 12:59:36 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\drivers\iaLPSSi_I2C.sys [122608] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- C:\Windows\System32\drivers\iaStorAV.sys [673120] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [412000] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\drivers\ibbus.sys [424800] =>.Microsoft®
O58 - SDL:2018/12/20 01:05:20 A . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\drivers\idmwfp.sys [229296] =>.Tonec Inc.®
O58 - SDL:2020/12/30 15:04:02 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [3811288] =>.Intel(R) pGFX®
O58 - SDL:2015/08/21 21:50:48 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [463112] =>.Intel Corporation - Client Components Group®
O58 - SDL:2015/12/01 21:46:03 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\intelaud.sys [50160] =>.Intel(R) Wireless Display®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\drivers\intelide.sys [19296] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\Windows\System32\drivers\intelpep.sys [43872] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\intelppm.sys [129536] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - I/O QoS Filter.) -- C:\Windows\System32\drivers\ioqos.sys [26624] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\drivers\ipfltdrv.sys [85504] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - WMI IPMI DRIVER.) -- C:\Windows\System32\drivers\IPMIDrv.sys [81408] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:53 A . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\ipnat.sys [143360] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:51 A . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\drivers\irda.sys [120320] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:53 A . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\drivers\irenum.sys [19456] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - PNP ISA Bus Driver.) -- C:\Windows\System32\drivers\isapnp.sys [22368] =>.Microsoft®
O58 - SDL:2015/12/01 21:46:03 A . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\drivers\iwdbus.sys [38896] =>.Intel(R) Wireless Display®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Keyboard Class Driver.) -- C:\Windows\System32\drivers\kbdclass.sys [62304] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - HID Keyboard Filter Driver.) -- C:\Windows\System32\drivers\kbdhid.sys [36864] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Microsoft Kernel Debugger Network Miniport.) -- C:\Windows\System32\drivers\kdnic.sys [23040] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\drivers\ks.sys [382976] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/09/07 07:25:22 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\drivers\ksecdd.sys [131424] =>.Microsoft®
O58 - SDL:2016/08/03 07:46:33 A . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\drivers\ksecpkg.sys [158048] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\drivers\ksthunk.sys [26112] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabi.) -- C:\Windows\System32\drivers\L1C63x64.sys [129224] =>.Qualcomm Atheros®
O58 - SDL:2015/07/10 12:59:51 A . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\drivers\lltdio.sys [64000] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [108896] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2i.sys [104800] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas3i.sys [99168] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sss.sys [82784] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:56 A . (.Microsoft Corporation - LUA File Virtualization Filter Driver.) -- C:\Windows\System32\drivers\luafv.sys [127488] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\drivers\mcd.sys [23552] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [59744] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\megasr.sys [575840] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\drivers\mlx4_bus.sys [705376] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:04 A . (.Microsoft Corporation - MMCSS Driver.) -- C:\Windows\System32\drivers\mmcss.sys [48128] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Modem Device Driver.) -- C:\Windows\System32\drivers\modem.sys [41984] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\drivers\monitor.sys [38400] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Mouse Class Driver.) -- C:\Windows\System32\drivers\mouclass.sys [59232] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - HID Mouse Filter Driver.) -- C:\Windows\System32\drivers\mouhid.sys [32256] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/08/04 06:07:05 A . (.Microsoft Corporation - Mount Point Manager.) -- C:\Windows\System32\drivers\mountmgr.sys [102752] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:07 A . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\drivers\mpsdrv.sys [76288] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/09/30 06:12:28 A . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\drivers\mrxdav.sys [143872] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/03/04 07:27:57 A . (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\mrxsmb.sys [415232] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/03/04 07:28:15 A . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\drivers\mrxsmb10.sys [284672] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/03/04 07:28:15 A . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\drivers\mrxsmb20.sys [217600] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\drivers\msfs.sys [31232] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - GPIO Class Extension Driver.) -- C:\Windows\System32\drivers\msgpioclx.sys [159072] =>.Microsoft®
O58 - SDL:2015/08/03 04:18:37 A . (.Microsoft Corporation - GPIO Button Driver.) -- C:\Windows\System32\drivers\msgpiowin32.sys [46432] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\drivers\mshidkmdf.sys [8704] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Pass-through Driver for HID-UMDF Interface.) -- C:\Windows\System32\drivers\mshidumdf.sys [11776] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\drivers\msisadrv.sys [19296] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\drivers\msiscsi.sys [276832] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\drivers\mskssrv.sys [13824] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:50 A . (.Microsoft Corporation - Microsoft Link-Layer Discovery Protocol Dri.) -- C:\Windows\System32\drivers\mslldp.sys [82432] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\drivers\mspclock.sys [10752] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\drivers\mspqm.sys [10752] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\drivers\msrpc.sys [355168] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\drivers\mssmbios.sys [43872] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\drivers\mstee.sys [12800] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Microsoft Multi-Touch HID Driver.) -- C:\Windows\System32\drivers\MTConfig.sys [15872] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\drivers\mup.sys [118624] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\drivers\mvumis.sys [63840] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\drivers\ndfltr.sys [76128] =>.Microsoft®
O58 - SDL:2015/09/17 08:37:20 A . (.Microsoft Corporation - Network Driver Interface Specification (NDI.) -- C:\Windows\System32\drivers\ndis.sys [1168736] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\drivers\ndiscap.sys [50176] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:53 A . (.Microsoft Corporation - Microsoft Network Adapter Multiplexor.) -- C:\Windows\System32\drivers\NdisImPlatform.sys [129024] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\drivers\ndistapi.sys [25600] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:53 A . (.Microsoft Corporation - NDIS User mode I/O driver.) -- C:\Windows\System32\drivers\ndisuio.sys [63488] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Microsoft Virtual Network Adapter Enumerato.) -- C:\Windows\System32\drivers\NdisVirtualBus.sys [20992] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:53 A . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\drivers\ndiswan.sys [188928] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\drivers\ndproxy.sys [60928] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:53 A . (.Microsoft Corporation - Windows Network Data Usage Monitoring Drive.) -- C:\Windows\System32\drivers\Ndu.sys [124928] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:50 A . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\drivers\netbios.sys [57184] =>.Microsoft®
O58 - SDL:2016/05/28 05:41:04 A . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netbt.sys [272896] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/11/05 07:14:21 A . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\drivers\netio.sys [459104] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Virtual NDIS Miniport.) -- C:\Windows\System32\drivers\netvsc.sys [94720] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\drivers\npfs.sys [63488] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:40 A . (.Microsoft Corporation - Named pipe service triggers.) -- C:\Windows\System32\drivers\npsvctrig.sys [26624] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\drivers\nsiproxy.sys [40448] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/09/30 07:59:00 A . (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [2115936] =>.Microsoft®
O58 - SDL:2015/07/10 13:01:10 A . (.Microsoft Corporation - NTOS extension host driver.) -- C:\Windows\System32\drivers\ntosext.sys [18784] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\drivers\null.sys [7168] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2020/12/30 12:57:27 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys [14190520] =>.NVIDIA Corporation®
O58 - SDL:2020/12/30 12:57:29 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvpciflt.sys [48696] =>.NVIDIA Corporation®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [150368] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166240] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - NForce NT AGP Filter.) -- C:\Windows\System32\drivers\NV_AGP.SYS [126304] =>.Microsoft®
O58 - SDL:2016/09/07 06:22:47 A . (.Microsoft Corporation - NativeWiFi Miniport Driver.) -- C:\Windows\System32\drivers\nwifi.sys [529408] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:50 A . (.Microsoft Corporation - QoS Packet Scheduler.) -- C:\Windows\System32\drivers\pacer.sys [160096] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\parport.sys [96768] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\drivers\partmgr.sys [117088] =>.Microsoft®
O58 - SDL:2016/05/28 07:00:08 A . (.Microsoft Corporation - NT Plug and Play PCI Enumerator.) -- C:\Windows\System32\drivers\pci.sys [327520] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\pciide.sys [15712] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\drivers\pciidex.sys [51552] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - PCMCIA Bus Driver.) -- C:\Windows\System32\drivers\pcmcia.sys [118112] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\drivers\pcw.sys [51552] =>.Microsoft®
O58 - SDL:2015/09/17 08:50:17 A . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\drivers\pdc.sys [99664] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - Protected Environment Authentication and Au.) -- C:\Windows\System32\drivers\PEAuth.sys [721408] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas2i.sys [58208] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\percsas3i.sys [58720] =>.Microsoft®
O58 - SDL:2015/09/17 07:50:33 A . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\Windows\System32\drivers\portcls.sys [320000] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\drivers\processr.sys [117248] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:50 A . (.Microsoft Corporation - Microsoft Quality Windows Audio Video Exper.) -- C:\Windows\System32\drivers\qwavedrv.sys [48640] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:50 A . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\drivers\rasacd.sys [17408] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/02/23 13:59:39 A . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\rasl2tp.sys [104960] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:51 A . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\drivers\raspppoe.sys [81408] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\drivers\raspptp.sys [95744] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\drivers\rassstp.sys [78336] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) -- C:\Windows\System32\drivers\rdbss.sys [414720] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 15:14:48 A . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\drivers\rdpbus.sys [26112] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 15:14:35 A . (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [176128] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 15:14:38 A . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\drivers\rdpvideominiport.sys [29536] =>.Microsoft®
O58 - SDL:2015/08/06 05:17:34 A . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\drivers\rdyboost.sys [237392] =>.Microsoft®
O58 - SDL:2015/07/17 06:23:30 A . (.Microsoft Corporation - NT ReFS FS Driver.) -- C:\Windows\System32\drivers\refsv1.sys [934752] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\System32\drivers\rfcomm.sys [167936] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/11/25 06:30:59 A . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\drivers\rmcast.sys [147968] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:51 A . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\drivers\RNDISMP.sys [34304] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\drivers\rootmdm.sys [12800] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:51 A . (.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) -- C:\Windows\System32\drivers\rspndr.sys [80896] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\drivers\sbp2port.sys [109920] =>.Microsoft®
O58 - SDL:2017/03/04 06:21:39 A . (.Microsoft Corporation - Microsoft Smart Card Reader Filter Driver.) -- C:\Windows\System32\drivers\scfilter.sys [43008] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\drivers\scsiport.sys [173408] =>.Microsoft®
O58 - SDL:2015/09/17 08:48:41 A . (.Microsoft Corporation - SecureDigital Bus Driver.) -- C:\Windows\System32\drivers\sdbus.sys [278352] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - SD Host Controller Port Driver.) -- C:\Windows\System32\drivers\sdport.sys [84320] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - SD Storage Class Driver.) -- C:\Windows\System32\drivers\sdstor.sys [92512] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - Serial Class Extension.) -- C:\Windows\System32\drivers\SerCx.sys [74592] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Serial Class Extension V2.) -- C:\Windows\System32\drivers\SerCx2.sys [155488] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\drivers\serenum.sys [24576] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/02/23 13:45:47 A . (.Microsoft Corporation - Serial Device Driver.) -- C:\Windows\System32\drivers\serial.sys [83968] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\drivers\sermouse.sys [27648] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\drivers\sfloppy.sys [18432] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [44896] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [81760] =>.Microsoft®
O58 - SDL:2020/12/30 14:52:24 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys [42184] =>.Synaptics Incorporated®
O58 - SDL:2020/12/30 14:52:24 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel.sys [42696] =>.Synaptics Incorporated®
O58 - SDL:2020/12/30 14:52:24 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys [42696] =>.Synaptics Incorporated®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\drivers\smclib.sys [21504] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\drivers\spaceport.sys [474464] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\drivers\SpbCx.sys [77664] =>.Microsoft®
O58 - SDL:2017/04/28 03:32:31 A . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\drivers\srv.sys [411136] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/04/28 03:32:35 A . (.Microsoft Corporation - Smb 2.0 Server driver.) -- C:\Windows\System32\drivers\srv2.sys [672768] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/09/07 06:12:58 A . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\drivers\srvnet.sys [240128] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2021/02/02 01:44:45 A . (.Samsung Electronics Co., Ltd. - SAMSUNG USB Composite Device Driver.) -- C:\Windows\System32\drivers\ssudbus.sys [131712] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2021/02/02 01:45:28 A . (.Samsung Electronics Co., Ltd. - SAMSUNG Android Modem Device Driver.) -- C:\Windows\System32\drivers\ssudmdm.sys [165504] =>.Samsung Electronics CO., LTD.®
O58 - SDL:2015/07/10 12:59:39 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\drivers\stexstor.sys [31072] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\drivers\storahci.sys [133984] =>.Microsoft®
O58 - SDL:2015/08/11 12:02:56 A . (.Microsoft Corporation - Microsoft NVM Express Storport Miniport Dri.) -- C:\Windows\System32\drivers\stornvme.sys [80720] =>.Microsoft®
O58 - SDL:2016/06/24 06:58:18 A . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\drivers\storport.sys [442208] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - Storage QoS Filter.) -- C:\Windows\System32\drivers\storqosflt.sys [61952] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - MS UFS Storport Miniport Driver.) -- C:\Windows\System32\drivers\storufs.sys [40288] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\drivers\storvsc.sys [36192] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\drivers\stream.sys [74240] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft RemoteFX Synth3D Video VSC.) -- C:\Windows\System32\drivers\Synth3dVsc.sys [64000] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2020/12/30 14:52:26 A . (.Synaptics Incorporated - Synaptics Touchpad Win64 Driver.) -- C:\Windows\System32\drivers\SynTP.sys [613576] =>.Synaptics Incorporated®
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\drivers\tape.sys [31232] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:55 A . (.Microsoft Corporation - Export driver for kernel mode TPM API.) -- C:\Windows\System32\drivers\tbs.sys [24928] =>.Microsoft®
O58 - SDL:2016/09/07 07:23:14 A . (.Microsoft Corporation - TCP/IP Driver.) -- C:\Windows\System32\drivers\tcpip.sys [2429792] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\drivers\tcpipreg.sys [52224] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\drivers\tdi.sys [39776] =>.Microsoft®
O58 - SDL:2017/06/03 14:21:15 A . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [116064] =>.Microsoft Windows®
O58 - SDL:2020/12/30 08:32:15 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\TeeDriverW8x64.sys [202032] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O58 - SDL:2015/07/10 15:14:47 A . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\drivers\terminpt.sys [38752] =>.Microsoft®
O58 - SDL:2017/06/03 15:44:08 A . (.Microsoft Corporation - Kernel Transaction Manager Driver.) -- C:\Windows\System32\drivers\tm.sys [123744] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - TPM Device Driver.) -- C:\Windows\System32\drivers\tpm.sys [207712] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Remote Desktop USB Hub Filter Driver.) -- C:\Windows\System32\drivers\TsUsbFlt.sys [61440] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:40 A . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\drivers\TsUsbGD.sys [33280] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/30 05:45:54 A . (.Microsoft Corporation - Microsoft Tunnel Interface Driver.) -- C:\Windows\System32\drivers\tunnel.sys [155136] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - MS AGPv3.5 Filter.) -- C:\Windows\System32\drivers\UAGP35.sys [66400] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Microsoft Uasp Driver.) -- C:\Windows\System32\drivers\uaspstor.sys [77664] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - USB Connector Manager KMDF Class Extension.) -- C:\Windows\System32\drivers\UcmCx.sys [61952] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/14 04:04:21 A . (.Microsoft Corporation - USB Connector Manager UCSI Client.) -- C:\Windows\System32\drivers\UcmUcsi.sys [46080] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\drivers\Ucx01000.sys [209760] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:48 A . (...) -- C:\Windows\System32\drivers\Udecx.sys [44032] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:58 A . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\drivers\udfs.sys [321024] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\drivers\uefi.sys [28512] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - USB Function Driver Class Extension.) -- C:\Windows\System32\drivers\ufx01000.sys [245088] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - UFX Chipidea Client Driver.) -- C:\Windows\System32\drivers\UfxChipidea.sys [94048] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - UFX Synopsys Client Driver.) -- C:\Windows\System32\drivers\ufxsynopsys.sys [127840] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - ULi AGPv3.0 Filter for K8/9 Processor Platf.) -- C:\Windows\System32\drivers\ULIAGPKX.SYS [66912] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\drivers\umbus.sys [57344] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\drivers\umpass.sys [12800] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:40 A . (.Microsoft Corporation - USB Role-Switch Driver for Chipidea Core.) -- C:\Windows\System32\drivers\urschipidea.sys [28512] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:00 A . (.Microsoft Corporation - USB Role-Switch Class Extension.) -- C:\Windows\System32\drivers\urscx01000.sys [57696] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:40 A . (.Microsoft Corporation - USB Role-Switch Driver for Synopsys Core.) -- C:\Windows\System32\drivers\urssynopsys.sys [27488] =>.Microsoft®
O58 - SDL:2021/01/10 20:28:10 A . (.MBB - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\usb2ser.sys [151184] =>.NGO®
O58 - SDL:2015/11/25 06:36:17 A . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\drivers\usb8023.sys [22528] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:59 A . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\drivers\USBCAMD2.sys [36864] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\drivers\usbccgp.sys [159072] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\drivers\usbcir.sys [102400] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/10/25 11:30:39 A . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\drivers\usbd.sys [31584] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\drivers\usbehci.sys [95584] =>.Microsoft®
O58 - SDL:2015/09/25 06:01:05 A . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\drivers\usbhub.sys [498016] =>.Microsoft®
O58 - SDL:2015/11/25 07:40:09 A . (.Microsoft Corporation - USB3 HUB Driver.) -- C:\Windows\System32\drivers\USBHUB3.SYS [516448] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\drivers\usbohci.sys [29184] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/10/25 11:38:03 A . (.Microsoft Corporation - USB 1.1 & 2.0 Port Driver.) -- C:\Windows\System32\drivers\usbport.sys [457056] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:37 A . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\drivers\usbprint.sys [27136] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:38 A . (.Microsoft Corporation - Windows USB Redirection Policy Manager.) -- C:\Windows\System32\drivers\usbrpm.sys [32768] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/01/31 07:19:04 A . (.Microsoft Corporation - USB Serial Driver.) -- C:\Windows\System32\drivers\usbser.sys [67072] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2016/02/23 16:43:22 A . (.Microsoft Corporation - USB Mass Storage Class Driver.) -- C:\Windows\System32\drivers\USBSTOR.SYS [127840] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\drivers\usbuhci.sys [34816] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\drivers\usbvideo.sys [221184] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/08/18 09:55:45 A . (.Microsoft Corporation - USB XHCI Driver.) -- C:\Windows\System32\drivers\USBXHCI.SYS [373072] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Virtual Drive Root Enumerator.) -- C:\Windows\System32\drivers\vdrvroot.sys [42848] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - Driver Verifier Extension.) -- C:\Windows\System32\drivers\VerifierExt.sys [200544] =>.Microsoft®
O58 - SDL:2016/11/19 11:19:24 A . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\drivers\vhdmp.sys [671584] =>.Microsoft Windows®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Virtual HID Framework (VHF) Driver.) -- C:\Windows\System32\drivers\vhf.sys [31744] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:05 A . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\drivers\videoprt.sys [50176] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2020/12/30 08:31:08 A . (.Vimicro Corporation - VM0331 Digital Camera Driver.) -- C:\Windows\System32\drivers\vm331avs.sys [648872] =>.Microsoft Windows Hardware Compatibility Publisher®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\Windows\System32\drivers\vmbkmcl.sys [77664] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Child.) -- C:\Windows\System32\drivers\vmbus.sys [125792] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\drivers\VMBusHID.sys [25088] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\Windows\System32\drivers\vmgencounter.sys [13312] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\drivers\vms3cap.sys [8704] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\drivers\vmstorfl.sys [45920] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\drivers\volmgr.sys [81248] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:13 A . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\drivers\volmgrx.sys [370016] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [378720] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Virtual PCI Bus.) -- C:\Windows\System32\drivers\vpci.sys [74080] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [166752] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\drivers\VSTXRAID.SYS [305504] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Virtual WiFi Bus Driver.) -- C:\Windows\System32\drivers\vwifibus.sys [26112] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\drivers\vwififlt.sys [72704] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\drivers\vwifimp.sys [39936] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\drivers\wacompen.sys [29696] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\drivers\wanarp.sys [80384] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:05 A . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\drivers\watchdog.sys [58880] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2011/06/13 22:05:10 A . (. - WebcamMax Capture.) -- C:\Windows\System32\drivers\wcmvcam64.sys [1069752] =>.Tenki Technology Co., Ltd.®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\drivers\WdBoot.sys [44568] =>.Microsoft®
O58 - SDL:2015/09/17 08:49:10 A . (.Microsoft Corporation - Kernel Mode Driver Framework Runtime.) -- C:\Windows\System32\drivers\Wdf01000.sys [894256] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\drivers\WdFilter.sys [291680] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\drivers\WdfLdr.sys [61248] =>.Microsoft®
O58 - SDL:2016/09/07 06:22:07 A . (.Microsoft Corporation - WDI Driver Framework Driver.) -- C:\Windows\System32\drivers\WdiWiFi.sys [685568] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:50 A . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\drivers\WdNisDrv.sys [119648] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:20 A . (.Microsoft Corporation - Windows Error Reporting Kernel Driver.) -- C:\Windows\System32\drivers\werkernel.sys [39776] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\Windows\System32\drivers\wfplwfs.sys [153440] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:58 A . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\drivers\wimmount.sys [35168] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:10 A . (.Microsoft Corporation - Windows Trusted Runtime Interface Driver.) -- C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:40 A . (.Microsoft Corporation - Windows Trusted Runtime Service Proxy Drive.) -- C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:48 A . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\drivers\winhv.sys [31584] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\drivers\winmad.sys [26976] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:36 A . (.Microsoft Corporation - Windows WinUSB Class Driver.) -- C:\Windows\System32\drivers\winusb.sys [87552] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:39 A . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\drivers\winverbs.sys [59232] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\drivers\wmiacpi.sys [18432] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\drivers\wmilib.sys [20320] =>.Microsoft®
O58 - SDL:2015/08/06 05:17:40 A . (.Microsoft Corporation - Windows Overlay Filter.) -- C:\Windows\System32\drivers\wof.sys [200528] =>.Microsoft®
O58 - SDL:2015/08/03 04:17:53 A . (.Microsoft Corporation - Family Safety Filter Driver.) -- C:\Windows\System32\drivers\wpcfltr.sys [52264] =>.Microsoft®
O58 - SDL:2015/07/10 13:01:20 A . (.Microsoft Corporation - Windows Portable Device Upper Class Filter.) -- C:\Windows\System32\drivers\WpdUpFltr.sys [29536] =>.Microsoft®
O58 - SDL:2015/07/10 13:00:09 A . (.Microsoft Corporation - WPP Trace Recorder.) -- C:\Windows\System32\drivers\WppRecorder.sys [24928] =>.Microsoft®
O58 - SDL:2015/07/10 12:59:52 A . (.Microsoft Corporation - Winsock2 IFS Layer.) -- C:\Windows\System32\drivers\ws2ifsl.sys [22528] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:13 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\drivers\WUDFPf.sys [97280] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:13 A . (.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) -- C:\Windows\System32\drivers\WUDFRd.sys [214016] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - Game Input Protocol Driver.) -- C:\Windows\System32\drivers\xboxgip.sys [222720] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 12:59:38 A . (.Microsoft Corporation - XINPUT filter driver for HID.) -- C:\Windows\System32\drivers\xinputhid.sys [25600] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2015/07/10 13:00:05 A . (.Microsoft Corporation - Full/Desktop Multi-User Win32 Driver.) -- C:\Windows\System32\win32k.sys [114176] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/06/03 12:03:13 A . (.Microsoft Corporation - Base Win32k Kernel Driver.) -- C:\Windows\System32\win32kbase.sys [1382400] [Unsigned] =>.Microsoft Corporation
O58 - SDL:2017/06/03 12:03:47 A . (.Microsoft Corporation - Full/Desktop Win32k Kernel Driver.) -- C:\Windows\System32\win32kfull.sys [3581952] [Unsigned] =>.Microsoft Corporation

---\\ File Associations Shell Spawning (10) - 1s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* =>.Default.Value
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft®
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (...) -- C:\Windows\System32\WScript.exe "%1" %* =>.Default.Value
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe [Unsigned] =>.Microsoft Corporation
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S =>.Default.Value

---\\ Start Menu Internet (12) - 1s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Google LLC - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Google LLC - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Google LLC - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation

---\\ Search Browser Infection (2) - 15s
O69 - SBI: SearchScopes [HKCU] [64Bits]{286283D0-B6DE-4163-8DB9-63F7194B72F8} - (Ask Search) - http://websearch.ask.com/ =>Toolbar.Ask
O69 - SBI: SearchScopes [HKLM] [64Bits]{0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (@ieframe.dll,-12512) - http://www.bing.com/ =>.Bing.com

---\\ Search Svchost Services (42) - 3s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [192000] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [283648] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [1336832] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\IKEEXT.DLL [954368] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [954880] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\System32\seclogon.dll [31232] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [93696] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [151040] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [106496] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [1012736] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [226304] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [133120] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [324096] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [371200] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [95744] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\Windows\System32\wlidsvc.dll [2093056] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [196096] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Se.) -- C:\Windows\System32\NcaSvc.dll [167424] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\Windows\System32\NetSetupSvc.dll [197632] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [106496] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [680448] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [497152] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [72192] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [452608] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2243072] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [1142784] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [593920] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [63488] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1149440] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1019392] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Update Session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [355328] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [712704] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [27136] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Managent Service DLL.) -- C:\Windows\System32\Windows.Internal.Management.dll [267776] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [918016] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [1016832] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [359936] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [237568] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [58368] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [200192] [Unsigned] =>.Microsoft Corporation

---\\ Firewall Active Exception List (17) - 4s
O87 - FAEL: "{04E8F01F-E5D9-4AD7-9F88-ABA8C1276B4F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQPlayer\QQPlayerShareFile.exe =>.Tencent Technology(Shenzhen) Company Limited®
O87 - FAEL: "{4E8C2882-B66C-44D6-AAAE-F574182BF742}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Tencent\QQPlayer\QQPlayerShareFile.exe =>.Tencent Technology(Shenzhen) Company Limited®
O87 - FAEL: "{0F81BC0D-F777-49BC-A5DA-D5A11A3DE8DD}" [In-None-P6-TRUE] .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O87 - FAEL: "{2404D9AC-F14B-4958-BFFF-0A04F3F3FBDA}" [In-None-P17-TRUE] .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation®
O87 - FAEL: "{20403F2E-2EFA-48C8-921E-2301F46EBFD0}" [In-None-P6-TRUE] .(...) -- C:\Program Files\KMSpico\Service_KMS.exe [Unsigned] (.not file.) =>HackTool.KMSpico
O87 - FAEL: "{962AA760-1869-4AAA-9C59-6E0555C6419C}" [In-None-P17-TRUE] .(...) -- C:\Program Files\KMSpico\Service_KMS.exe [Unsigned] (.not file.) =>HackTool.KMSpico
O87 - FAEL: "{15687599-FDC4-42DC-8F45-58A981AFA38E}" [In-None-P6-TRUE] .(...) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "{B9E8EF65-8462-47C7-826E-988B6E847235}" [In-None-P17-TRUE] .(...) -- C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe [Unsigned] (.not file.) =>.SUP.Orphan
O87 - FAEL: "TCP Query User{3979132B-E758-456B-9E9C-25B7773B6431}C:\users\lenovo\appdata\roaming\spotify\spotify.exe" [In-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\users\lenovo\appdata\roaming\spotify\spotify.exe =>.Spotify AB®
O87 - FAEL: "UDP Query User{1DF2E8DA-26A3-496D-9B83-F2F016240B7F}C:\users\lenovo\appdata\roaming\spotify\spotify.exe" [In-None-P17-TRUE] .(.Spotify Ltd - Spotify.) -- C:\users\lenovo\appdata\roaming\spotify\spotify.exe =>.Spotify AB®
O87 - FAEL: "TCP Query User{F22C04F1-4A03-4592-B31E-C71C986228AA}C:\users\lenovo\appdata\roaming\spotify\spotify.exe" [In-None-P6-TRUE] .(.Spotify Ltd - Spotify.) -- C:\users\lenovo\appdata\roaming\spotify\spotify.exe =>.Spotify AB®
O87 - FAEL: "UDP Query User{9EB5AAF5-39C6-4483-BEDE-E0699FFEFBB3}C:\users\lenovo\appdata\roaming\spotify\spotify.exe" [In-None-P17-TRUE] .(.Spotify Ltd - Spotify.) -- C:\users\lenovo\appdata\roaming\spotify\spotify.exe =>.Spotify AB®
O87 - FAEL: "TCP Query User{9CD97352-2798-4450-A85A-819986BDBA40}D:\games\counter-strike\hl.exe" [In-None-P6-TRUE] .(.Valve - Half-Life Launcher.) -- D:\games\counter-strike\hl.exe [Unsigned] =>.Valve
O87 - FAEL: "UDP Query User{358D7FF3-839C-4EB2-BE2E-72BE72E998A4}D:\games\counter-strike\hl.exe" [In-None-P17-TRUE] .(.Valve - Half-Life Launcher.) -- D:\games\counter-strike\hl.exe [Unsigned] =>.Valve
O87 - FAEL: "{870AD248-81C0-44E2-8140-10E8DD9564B4}" [In-None-P17-TRUE] .(.Google LLC - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC®
O87 - FAEL: "{7D799FD8-FE28-4F8E-A566-085BC667F5E9}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe [Unsigned]
O87 - FAEL: "{0A433FED-1635-439F-9B42-9E6CCB1F5778}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe [Unsigned]

---\\ Product Upgrade Codes (40) - 2s
O90 - PUC: "00004109110000000000000000F01FEC" [HKLM] . (.Microsoft Office Professional Plus 2010.) =>.Microsoft Corporation
O90 - PUC: "000041091A0090400000000000F01FEC" [HKLM] . (.Microsoft Office OneNote MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109440090400000000000F01FEC" [HKLM] . (.Microsoft Office InfoPath MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109510090400000000000F01FEC" [HKLM] . (.Microsoft Office Access MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109511090400000000000F01FEC" [HKLM] . (.Microsoft Office Shared Setup Metadata MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109610090400000000000F01FEC" [HKLM] . (.Microsoft Office Excel MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109611090400100000000F01FEC" [HKLM] . (.Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109711090400000000000F01FEC" [HKLM] . (.Microsoft Office Access Setup Metadata MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109810090400000000000F01FEC" [HKLM] . (.Microsoft Office PowerPoint MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109910090400000000000F01FEC" [HKLM] . (.Microsoft Office Publisher MUI (English) 2010.) =>.bl.org
O90 - PUC: "00004109A10090400000000000F01FEC" [HKLM] . (.Microsoft Office Outlook MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109A20000000100000000F01FEC" [HKLM] . (.Microsoft Office Office 64-bit Components 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109A20090400100000000F01FEC" [HKLM] . (.Microsoft Office Shared 64-bit MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109AB0090400000000000F01FEC" [HKLM] . (.Microsoft Office Groove MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109B10090400000000000F01FEC" [HKLM] . (.Microsoft Office Word MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109C20090400000000000F01FEC" [HKLM] . (.Microsoft Office Proofing (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109E60090400000000000F01FEC" [HKLM] . (.Microsoft Office Shared MUI (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F10090400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (English) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F100A0C00000000000F01FEC" [HKLM] . (.Microsoft Office Proof (Spanish) 2010.) =>.Microsoft Corporation
O90 - PUC: "00004109F100C0400000000000F01FEC" [HKLM] . (.Microsoft Office Proof (French) 2010.) =>.Microsoft Corporation
O90 - PUC: "12B8D03ED28D112328CCF0A0D541598E" [HKLM] . (.Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660.) =>.Microsoft Corporation
O90 - PUC: "1926E8D15D0BCE53481466615F760A7F" [HKLM] . (.Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219.) =>.bl.org
O90 - PUC: "1D5E3C0FEDA1E123187686FED06E995A" [HKLM] . (.Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.) =>.bl.org
O90 - PUC: "21CC3576488A2B7429075FDC136B2F65" [HKLM] . (.Update for Windows 10 for x64-based Systems (KB4023057).) =>.Microsoft Corporation
O90 - PUC: "2B1CE49AB2397D94A82FF4DB92FF13B4" [HKLM] . (.Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.23.27820.) =>.Microsoft Corporation
O90 - PUC: "4393CA004B62E60408C76129CA3792CE" [HKLM] . (.Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820.) =>.Microsoft Corporation
O90 - PUC: "44DB0475D85BA123FA0CD6D35465DDC6" [HKLM] . (.Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660.) =>.Microsoft Corporation
O90 - PUC: "49952917633C3673FB3E68C780D1B20B" [HKLM] . (.Google Chrome.) =>.Google Inc.
O90 - PUC: "4BEA594979BAED93C82408E6FE57CE7A" [HKLM] . (.Microsoft Visual Studio 2010 Tools for Office Runtime (x64).) =>.Microsoft Corporation
O90 - PUC: "7C9F8B73BF303523781852719CD9C700" [HKLM] . (.Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: "82422A670042125469FAA74C6A71C45A" [HKLM] . (.UpdateAssistant.) =>.Corel Corporation
O90 - PUC: "8520DAD7C5154DD39846DB1714990E7F" [HKLM] . (.Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660.) =>.Microsoft Corporation
O90 - PUC: "9D87EB681A5696E4688F1C5F82F15835" [HKLM] . (.Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820.) =>.Microsoft Corporation
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" [HKLM] . (.Ask Toolbar.) -- c:\program files (x86)\ask.com\fv_fb1a.ico =>Toolbar.AskTBar
O90 - PUC: "B1117AC9D362ED548B8916AF3DB02373" [HKLM] . (.Microsoft Visual C++ 2019 X64 Additional Runtime - 14.23.27820.) =>.Microsoft Corporation
O90 - PUC: "C025571B2A687A53689168CD7369889B" [HKLM] . (.Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: "C3AEB2FCAE628F23AAB933F1E743AB79" [HKLM] . (.Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: "CE6380BC270BD863282B3D74B09F7570" [HKLM] . (.Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660.) =>.Microsoft Corporation
O90 - PUC: "DC8A59DBF9D1DA5389A1E3975220E6BB" [HKLM] . (.Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030.) =>.Microsoft Corporation
O90 - PUC: "E29464706B74152449C04464D2DF47BB" [HKLM] . (.Update for Windows 10 for x64-based Systems (KB4480730).) =>.Microsoft Corporation

---\\ Windows Installer Scan (2) - 15s
[MD5.34297F056D2C1DC413BEBC5A1669EA50] [WIS][2015/12/17 17:00:38] (.Google, Inc. - Google Chrome Installer.) -- C:\Windows\Installer\1947c.msi [45617152] =>.Google, Inc.
[MD5.2D79500C2D5B8BABCDB7CD1B61617F5C] [WIS][2020/12/30 05:34:25] (.Ask.com - InstallShield® 2010 - Premier Edition 16.) -- C:\Windows\Installer\d693e.msi [3174400] =>Toolbar.Ask

---\\ FEATURE CONTROL. (178) - 0s
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ACTIVEX_REPURPOSEDETECTION]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:infopath.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_INPUT_PROMPTS]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_INPUT_PROMPTS]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_LEGACY_COMPRESSION]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPfewgsrv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGUI.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPGuiIT.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLgPad.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:SAPLOGON.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:Scale_for_R3.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:ieuser.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_TELNET_PROTOCOL]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_TELNET_PROTOCOL]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK]:YahooMusicEngine.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DOCUMENT_COMPATIBLE_MODE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:devenv.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:dexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:helppane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FEEDS]:msfeedssync.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_XML_PROLOG]:msiexec.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:cs.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:waol.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART]:wm.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_INTERNET_SHELL_FOLDERS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DISPPARAMS]:helppane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DLCONTROL_BEHAVIORS]:wlmail.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:msaccess.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:Groove.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:powerpnt.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:excel.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:winword.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:winwordd.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN]:mspub.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:mshta.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:outlook.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME]:sidebar.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RELEASE_CALLBACK_ON_STOP_BINDING]:communicator.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:winmail.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_OBJECT_DATA_ATTRIBUTE]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHIM_MSHELP_COMBINE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHIM_MSHELP_COMBINE]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_APP_PROTOCOL_WARN_DIALOG]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SSLUX]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:msimn.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:outlook.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN]:winmail.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:excel.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:infopath.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:powerpnt.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL]:winword.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VIEWLINKEDWEBOC_IS_UNSAFE]:HelpPane.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD]:msn.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS]:OUTLOOK.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:explorer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:iexplore.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:PresentationHost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:prevhost.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:wmplayer.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:clview.exe =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:GROOVE.EXE =>.Legitimate
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION]:OUTLOOK.EXE =>.Legitimate

---\\ Observer Of Events (117) - 94s

Application.Error: Software Protection Platform Service (621)
~Numéro: 10924
~Date: 02/17/2021 06:54:34 PM
~ID: 8198
~Description: License Activation (slui.exe) failed with the following error code: hr=0xC004C003 Command-line arguments: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27
~Suggestion: Aucune

Application.Warning: Windows Search Service (6)
~Numéro: 10909
~Date: 02/17/2021 02:22:26 PM
~ID: 3036
~Description: Crawl could not be completed on content source <%2>.Context: Application, SystemIndex CatalogDetails: The parameter is incorrect. (HRESULT : 0x80070057) (0x80070057)
~Suggestion: https://www.repairwin.com/fix-windows-event-3036-search-content-source-cannot-accessed-solved/

Application.Error: Microsoft-Windows-Immersive-Shell (20)
~Numéro: 10905
~Date: 02/17/2021 11:59:48 AM
~ID: 2484
~Description: Package %1 was terminated because it took too long to suspend.

Application.Error: Application Error (8)
~Numéro: 10303
~Date: 02/16/2021 08:23:12 PM
~ID: 1000
~Description: Faulting application name: %1, version: %2, time stamp: 0x600a5b6d Faulting module name: %4, version: %5, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x0000000074f02c50 Faulting process id: 0x3b8 Faulting application start time: 0
~Suggestion: Réparer ou réinstaller l'application.

Application.Warning: Wlclntfy (9)
~Numéro: 10080
~Date: 02/16/2021 02:03:46 AM
~ID: 6000
~Description: The winlogon notification subscriber <%1> was unavailable to handle a notification event.

Application.Error: Application Hang (8)
~Numéro: 10073
~Date: 02/16/2021 02:03:24 AM
~ID: 1002
~Description: The program %1 version %2 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel. Process ID: b70 Start Time: 01d703f70ed6f
~Suggestion: Essayer les commandes suivantes ipconfig /release et ipconfig / renew.

Application.Error: ESENT (115)
~Numéro: 9909
~Date: 02/15/2021 09:50:44 PM
~ID: 413
~Description: %1 (%2) %3Unable to create a new logfile because the database cannot write to the log drive. The drive may be read-only, out of disk space, misconfigured, or corrupted. Error %4.

Application.Error: Firefox Default Browser Agent (2)
~Numéro: 9562
~Date: 02/14/2021 09:58:51 PM
~ID: 12007
~Description: 0x80072EE7 in IsAgentRemoteDisabledInternal:68

Application.Error: Microsoft-Windows-CAPI2 (3)
~Numéro: 8480
~Date: 02/12/2021 01:33:34 AM
~ID: 513
~Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.%1.

Application.Warning: Microsoft Fax (2)
~Numéro: 6740
~Date: 02/01/2021 06:03:49 PM
~ID: 32068
~Description: The outgoing routing rule is not valid because it cannot find a valid device. Check the routing rule configuration. Country/region code: '%1' Area code: '%2'

System.Warning: Microsoft-Windows-DNS-Client (1750)
~Numéro: 10742
~Date: 02/17/2021 07:00:41 PM
~ID: 1014
~Description: Name resolution for the name %1 timed out after none of the configured DNS servers responded.
~Suggestion: https://social.technet.microsoft.com/wiki/contents/articles/3336.event-id-1014-microsoft-windows-dns-client.aspx

System.Error: DCOM (54)
~Numéro: 10735
~Date: 02/17/2021 06:54:28 PM
~ID: 10016
~Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYNETWORK SERVICES-1-5-20LocalHost (Using LRPC)UnavailableUnavailable
~Suggestion: Vérifier les autorisations pour l'accès DCOM

System.Error: Service Control Manager (309)
~Numéro: 10698
~Date: 02/17/2021 10:22:12 AM
~ID: 7000
~Description: The %1 service failed to start due to the following error: %%1058

System.Warning: Microsoft-Windows-Kernel-PnP (73)
~Numéro: 10693
~Date: 02/17/2021 10:22:11 AM
~ID: 219
~Description: The driver %5 failed to load for the device %2.
~Suggestion: Vérifier que le pilote a bien été chargé dans les informations système

System.Error: volmgr (4)
~Numéro: 10511
~Date: 02/16/2021 09:28:05 PM
~ID: 46
~Description: Crash dump initialization failed!

System.Error: EventLog (14)
~Numéro: 10425
~Date: 02/16/2021 09:12:32 PM
~ID: 6008
~Description: The previous system shutdown at %1 on %2 was unexpected.

System.Error: Schannel (1)
~Numéro: 9926
~Date: 02/16/2021 07:58:02 PM
~ID: 4119
~Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is %1.

System.Error: Microsoft-Windows-WLAN-AutoConfig (6)
~Numéro: 9693
~Date: 02/15/2021 11:27:03 PM
~ID: 4003
~Description: WLAN AutoConfig detected limit connectivity, performing Reset/Recover.adapter. Code: %1 %2 0x0
~Suggestion: Vérifier les paramètres d'économie d'énergie

System.Warning: disk (94)
~Numéro: 9544
~Date: 02/15/2021 06:20:19 PM
~ID: 51
~Description: An error was detected on device %1 during a paging operation.

System.Warning: cdrom (66)
~Numéro: 9182
~Date: 02/14/2021 02:05:28 AM

System.Warning: Microsoft-Windows-Bits-Client (1)
~Numéro: 8552
~Date: 02/13/2021 06:50:32 PM
~ID: 16393
~Description: BITS has encountered an error communicating with an Internet Gateway Device. Please check that the device is functioning properly. BITS will not attempt to use this device until the next system reboot. Error code: %1.

System.Error: Microsoft-Windows-WindowsUpdateClient (3)
~Numéro: 7752
~Date: 02/12/2021 01:33:37 AM
~ID: 20
~Description: Installation Failure: Windows failed to install the following update with error %1: %2.
~Suggestion: http://kb.eventtracker.com/evtpass/evtpages/EventId_20_Microsoft-Windows-WindowsUpdateClient_63351.asp

---\\ Additional Scan (O88) (57) - 13s
HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI =>HackTool.KMSpico
C:\Program Files (x86)\Ask.com\UpdateTask.exe =>Toolbar.Ask
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar =>Toolbar.Ask
C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll =>Toolbar.Ask
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} =>Toolbar.AskTBar
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} =>Toolbar.AskTBar
C:\Program Files\KMSpico =>HackTool.KMSpico
C:\Program Files (x86)\Ask.com =>Toolbar.Ask
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>HackTool.KMSpico
C:\Users\Lenovo\AppData\LocalLow\AskToolbar =>Toolbar.Ask
C:\Windows\Prefetch\KMSPICO_SETUP.TMP-BC40A1D1.pf =>HackTool.KMSpico
C:\Windows\Prefetch\KMSPICO_SETUP.TMP-CF65193A.pf =>HackTool.KMSpico
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKLM\Software\Classes\CLSID\{B41DB860-8EE4-11D2-9906-E49FADC173CA} =>.SUP.Orphan
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\WinRAR32 =>.SUP.Orphan
HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{286283D0-B6DE-4163-8DB9-63F7194B72F8} =>Toolbar.Ask
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{20403F2E-2EFA-48C8-921E-2301F46EBFD0} =>HackTool.KMSpico
[HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\firewallRules]:{962AA760-1869-4AAA-9C59-6E0555C6419C} =>HackTool.KMSpico
c:\program files (x86)\ask.com\fv_fb1a.ico =>Toolbar.AskTBar
HKLM\SOFTWARE\Wow6432Node\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AskTBar
HKLM\SOFTWARE\Wow6432Node\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF =>Toolbar.AskTBar
C:\Windows\Installer\d693e.msi =>Toolbar.Ask
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\File System\008 =>.SUP.Temporary.Chrome
C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\File System\016 =>.SUP.Temporary.Chrome
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\programes\Messenger.86.5.119.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\programes\Messenger.86.5.119.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Avast Software\Avast\AvastUI.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Avast Software\Avast\AvastUI.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\WhatsApp\WhatsApp.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\WhatsApp\WhatsApp.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:D:\games\Spider_Man_2000_Win_Files_EN\Game Files\sysinfo.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:D:\games\Spider_Man_2000_Win_Files_EN\Game Files\SpideyPC.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\programes\Messenger.86.5.119.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:G:\programes\Messenger.86.5.119.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Avast Software\Avast\AvastUI.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Program Files\Avast Software\Avast\AvastUI.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\Telegram Desktop\Telegram.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\WhatsApp\WhatsApp.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:C:\Users\Lenovo\AppData\Local\WhatsApp\WhatsApp.exe.ApplicationCompany =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:D:\games\Spider_Man_2000_Win_Files_EN\Game Files\sysinfo.exe.FriendlyAppName =>.SUP.Orphan.MUICache
[HKU\S-1-5-21-711026783-1579360917-4037451402-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]:D:\games\Spider_Man_2000_Win_Files_EN\Game Files\SpideyPC.exe.FriendlyAppName =>.SUP.Orphan.MUICache
C:\Users\Lenovo\AppData\Local\Temp\APNLogs =>Toolbar.Ask

---\\ Summary of the elements found (9) - 0s
https://nicolascoolman.eu/2017/02/16/hacktool-kmspico/ =>HackTool.KMSpico
https://nicolascoolman.eu/2017/02/28/toolbar-ask/ =>Toolbar.Ask
https://nicolascoolman.eu/2017/09/12/origine-lignes-orphelines/ =>.SUP.Orphan
https://nicolascoolman.eu/2017/01/26/hijacker-browser/ =>PUP.Optional.Browser
https://nicolascoolman.eu/2017/09/23/barres-doutils-de-navigateur-toolbars/ =>Toolbar.AskTBar
https://nicolascoolman.eu/forum/Topic/warning-eventlogapp-evenement-dapplication/ =>Warning.EventLogApp
https://nicolascoolman.eu/forum/Topic/warning-eventlogsys-evenement-systeme/ =>Warning.EventLogSys
https://nicolascoolman.eu/forum/Topic/logiciels-potentiellement-superflus-lps/ =>.SUP.Temporary.Chrome
https://nicolascoolman.eu/forum/Topic/orphan-muicache-logiciel-potentiellement-superflu-lps/ =>.SUP.Orphan.MUICache

---\\ Serial Number
[03B471CD4D7FFEC29A3B20B2CB0F5F54] [09/09/2016] (.LunarG, Inc..) - C:\Program Files (x86)\VulkanRT\1.0.26.0\UninstallVulkanRT.exe =>.LunarG, Inc.
[06AEA76BAC46A9E8CFE6D29E45AAF033] [05/02/2021] (.Google LLC.) - C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe =>.Google LLC
[06AEA76BAC46A9E8CFE6D29E45AAF033] [05/02/2021] (.Google LLC.) - C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe =>.Google LLC
[06C5078AA528BBD3B8668AB10B035F94] [12/05/2020] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\Uninstall.exe =>.Tonec Inc.
[06C5078AA528BBD3B8668AB10B035F94] [13/03/2020] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe =>.Tonec Inc.
[06C5078AA528BBD3B8668AB10B035F94] [31/07/2020] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll =>.Tonec Inc.
[0C15BE4A15BB0903C901B1D6C265302F] [04/02/2021] (.Google LLC.) - C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\elevation_service.exe =>.Google LLC
[0C15BE4A15BB0903C901B1D6C265302F] [04/02/2021] (.Google LLC.) - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google LLC
[0C15BE4A15BB0903C901B1D6C265302F] [04/02/2021] (.Google LLC.) - C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe =>.Google LLC
[0C15BE4A15BB0903C901B1D6C265302F] [09/02/2021] (.Google LLC.) - C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe =>.Google LLC
[0C15BE4A15BB0903C901B1D6C265302F] [24/01/2021] (.Google LLC.) - C:\Users\Lenovo\AppData\Local\Spotify\User Data\WidevineCDM\4.10.1440.18\ia32\widevinecdm.dll =>.Google LLC
[0C15BE4A15BB0903C901B1D6C265302F] [28/01/2021] (.Google LLC.) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\software_reporter_tool.exe =>.Google LLC
[0D2CACCD3E9EEC06738410BA31BF6595] [30/12/2020] (.Adobe Inc..) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Inc.
[0D2CACCD3E9EEC06738410BA31BF6595] [30/12/2020] (.Adobe Inc..) - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_pepper.exe =>.Adobe Inc.
[0D2CACCD3E9EEC06738410BA31BF6595] [30/12/2020] (.Adobe Inc..) - C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe =>.Adobe Inc.
[0DDEB53F957337FBEAF98C4A615B149D] [09/02/2021] (.Mozilla Corporation.) - C:\Program Files (x86)\Mozilla Firefox\firefox.exe =>.Mozilla Corporation
[0DDEB53F957337FBEAF98C4A615B149D] [09/02/2021] (.Mozilla Corporation.) - C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
[0DDEB53F957337FBEAF98C4A615B149D] [09/02/2021] (.Mozilla Corporation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation
[0ED57C685D6CDDE62A0B62DA4B6E95F2] [16/02/2021] (.Facebook, Inc..) - C:\Users\Lenovo\AppData\Local\messenger-updater\installer.exe =>.Not verified
[0ED57C685D6CDDE62A0B62DA4B6E95F2] [16/02/2021] (.Facebook, Inc..) - C:\Users\Lenovo\AppData\Local\messenger-updater\pending\update.exe =>.Not verified
[0ED57C685D6CDDE62A0B62DA4B6E95F2] [29/01/2021] (.Facebook, Inc..) - C:\Users\Lenovo\AppData\Local\Temp\~nsu.tmp\Un_A.exe =>.Not verified
[0F4D8F268EE80DC8859E7CC11874E40C] [06/02/2021] (.Spotify AB.) - C:\Users\Lenovo\AppData\Roaming\Spotify\Spotify.exe =>.Spotify AB
[0F4D8F268EE80DC8859E7CC11874E40C] [24/01/2021] (.Spotify AB.) - C:\Users\Lenovo\AppData\Local\Microsoft\Windows\INetCache\IE\LOC3JXOR\SpotifyFullSetup[1].exe =>.Spotify AB
[1044F31AE1F93A0BB95F19AB9FAAC6BB] [13/02/2021] (.ESET, spol. s r.o..) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\edls_64.dll =>.ESET, spol. s r.o.
[1044F31AE1F93A0BB95F19AB9FAAC6BB] [13/02/2021] (.ESET, spol. s r.o..) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\em000_64.dll =>.ESET, spol. s r.o.
[1044F31AE1F93A0BB95F19AB9FAAC6BB] [13/02/2021] (.ESET, spol. s r.o..) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\em001_64.dll =>.ESET, spol. s r.o.
[1044F31AE1F93A0BB95F19AB9FAAC6BB] [13/02/2021] (.ESET, spol. s r.o..) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\em005_64.dll =>.ESET, spol. s r.o.
[14781BC862E8DC503A559346F5DCC518] [29/12/2016] (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe =>.NVIDIA Corporation
[14781BC862E8DC503A559346F5DCC518] [29/12/2016] (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe =>.NVIDIA Corporation
[14781BC862E8DC503A559346F5DCC518] [30/12/2020] (.NVIDIA Corporation.) - C:\Windows\System32\DRIVERS\nvlddmkm.sys =>.NVIDIA Corporation
[14781BC862E8DC503A559346F5DCC518] [30/12/2020] (.NVIDIA Corporation.) - C:\Windows\System32\DRIVERS\nvpciflt.sys =>.NVIDIA Corporation
[1BA7EF22FB3BE25B922AF13705001118] [13/06/2011] (.Tenki Technology Co., Ltd..) - C:\Windows\System32\DRIVERS\wcmvcam64.sys =>.Tenki Technology Co., Ltd.
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\dpinst.exe =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\Windows\System32\drivers\Smb_driver_AMDASF_Aux.sys =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\Windows\System32\drivers\Smb_driver_Intel_Aux.sys =>.Synaptics Incorporated
[1D9FF0CFF14FE700963E52F6CDACF575] [30/12/2020] (.Synaptics Incorporated.) - C:\Windows\System32\DRIVERS\SynTP.sys =>.Synaptics Incorporated
[1DE909DE446485F9C6F4B405E24F687D] [10/07/2015] (.Broadcom Corporation.) - C:\Windows\System32\drivers\bcmfn2.sys =>.Broadcom Corporation
[1DE909DE446485F9C6F4B405E24F687D] [30/12/2020] (.Broadcom Corporation.) - C:\Windows\System32\BtwRSupportService.exe =>.Broadcom Corporation
[24692663EF6C0C0A3B23CFA310C3649B] [13/02/2021] (.Akeo Consulting.) - C:\Users\Lenovo\Downloads\Programs\rufus-3.13p.exe =>.Akeo Consulting
[26181CEDF2C113E16AC74820DF7A38A3] [02/02/2021] (.Samsung Electronics CO., LTD..) - C:\Windows\System32\DRIVERS\ssudbus.sys =>.Samsung Electronics CO., LTD.
[26181CEDF2C113E16AC74820DF7A38A3] [02/02/2021] (.Samsung Electronics CO., LTD..) - C:\Windows\System32\DRIVERS\ssudmdm.sys =>.Samsung Electronics CO., LTD.
[27FDC908767179534AB3EBBA1D098533] [30/12/2020] (.Code Sector.) - C:\Program Files\TeraCopy\unins000.exe =>.Code Sector
[286F8A30E2EAC6965B936F826A05305D] [02/02/2011] (.Ask.com.) - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll =>.Not verified
[286F8A30E2EAC6965B936F826A05305D] [02/02/2011] (.Ask.com.) - C:\Program Files (x86)\Ask.com\SaUpdate.exe =>.Not verified
[2912C70C9A2B8A3EF6F6074662D68B8D] [30/12/2020] (.Google Inc.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
[30AA59DD718CFBDE163AB821] [12/02/2021] (.McAfee, LLC.) - C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe =>.McAfee, LLC
[30AA59DD718CFBDE163AB821] [12/02/2021] (.McAfee, LLC.) - C:\Program Files\McAfee\WebAdvisor\uihost.exe =>.McAfee, LLC
[30AA59DD718CFBDE163AB821] [12/02/2021] (.McAfee, LLC.) - C:\Program Files\McAfee\WebAdvisor\Uninstaller.exe =>.McAfee, LLC
[30AA59DD718CFBDE163AB821] [12/02/2021] (.McAfee, LLC.) - C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll =>.McAfee, LLC
[330000B7E741A34024FC3AB6E700020000B7E7] [01/12/2015] (.Intel(R) Wireless Display.) - C:\Windows\System32\drivers\intelaud.sys =>.Intel(R) Wireless Display
[330000B7E741A34024FC3AB6E700020000B7E7] [01/12/2015] (.Intel(R) Wireless Display.) - C:\Windows\System32\drivers\iwdbus.sys =>.Intel(R) Wireless Display
[330000B898AA86B5A39E5A1BBD00020000B898] [30/12/2020] (.Intel(R) pGFX.) - C:\Windows\System32\DRIVERS\igdkmd64.sys =>.Intel(R) pGFX
[330000B898AA86B5A39E5A1BBD00020000B898] [30/12/2020] (.Intel(R) pGFX.) - C:\Windows\System32\igfxCUIService.exe =>.Intel(R) pGFX
[330000B898AA86B5A39E5A1BBD00020000B898] [30/12/2020] (.Intel(R) pGFX.) - C:\Windows\SysWOW64\IntelCpHeciSvc.exe =>.Intel(R) pGFX
[467C402C26FAB742484F70E0A0E66CCD] [10/07/2015] (.Qualcomm Atheros.) - C:\Windows\System32\drivers\L1C63x64.sys =>.Qualcomm Atheros
[5716180DB7D4989DC4A17083DCFA7567] [30/12/2020] (.LENOVO.) - C:\Windows\System32\drivers\AcpiVpc.sys =>.LENOVO
[5AE2E638FDF6401611B8D5512C9AECE7] [10/07/2015] (.Broadcom Corporation.) - C:\Windows\System32\DRIVERS\bcmwl63a.sys =>.Broadcom Corporation
[5AE2E638FDF6401611B8D5512C9AECE7] [30/12/2020] (.Broadcom Corporation.) - C:\Windows\System32\drivers\bcbtums.sys =>.Broadcom Corporation
[5AE2E638FDF6401611B8D5512C9AECE7] [30/12/2020] (.Broadcom Corporation.) - C:\Windows\System32\DRIVERS\btwampfl.sys =>.Broadcom Corporation
[65628C146ACE93037FC58659F14BD35F] [13/02/2021] (.ESET, spol. s r.o..) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\em002_64.dll =>.ESET, spol. s r.o.
[65628C146ACE93037FC58659F14BD35F] [13/02/2021] (.ESET, spol. s r.o..) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\em003_64.dll =>.ESET, spol. s r.o.
[65628C146ACE93037FC58659F14BD35F] [13/02/2021] (.ESET, spol. s r.o..) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\SwReporter\88.253.200\em004_64.dll =>.ESET, spol. s r.o.
[75953FA54DD12DD9CA6B948C17BFD67C] [15/02/2015] (.win.rar GmbH.) - C:\Program Files (x86)\WinRAR\Rar.exe =>.win.rar GmbH
[75953FA54DD12DD9CA6B948C17BFD67C] [15/02/2015] (.win.rar GmbH.) - C:\Program Files (x86)\WinRAR\RarExt64.dll =>.win.rar GmbH
[75953FA54DD12DD9CA6B948C17BFD67C] [15/02/2015] (.win.rar GmbH.) - C:\Program Files (x86)\WinRAR\uninstall.exe =>.win.rar GmbH
[7828C7315808BC8717710E13FA3C0B24] [02/05/2019] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc.
[7828C7315808BC8717710E13FA3C0B24] [20/12/2018] (.Tonec Inc..) - C:\Windows\System32\DRIVERS\idmwfp.sys =>.Tonec Inc.
[7C443D7DBB054E459C513D665DFA8DB7] [07/01/2020] (.Tencent Technology(Shenzhen) Company Limited.) - C:\Program Files (x86)\Tencent\QQPlayer\FileTypeAsso.exe =>.Tencent Technology(Shenzhen) Company Limited
[7C443D7DBB054E459C513D665DFA8DB7] [07/01/2020] (.Tencent Technology(Shenzhen) Company Limited.) - C:\Program Files (x86)\Tencent\QQPlayer\QQPlayer.exe =>.Tencent Technology(Shenzhen) Company Limited
[7C443D7DBB054E459C513D665DFA8DB7] [07/01/2020] (.Tencent Technology(Shenzhen) Company Limited.) - C:\Program Files (x86)\Tencent\QQPlayer\QQPlayerShareFile.exe =>.Tencent Technology(Shenzhen) Company Limited
[7FE63AB8AB9D36964BC29EAD7641180A] [10/01/2021] (.NGO.) - C:\Windows\System32\DRIVERS\usb2ser.sys =>.NGO

~ Unselected Options: WR, O82,
~ End of the scan, 6839 items in 06mn15s (2023)(0)

Publicité


Signaler le contenu de ce document

Publicité