~ ZHPDiag v2016.5.9.95 By Nicolas Coolman (2016/05/09) ~ Run by SUN (Administrator) (2016/06/03 19:04:45) ~ Web: http://www.nicolascoolman.com ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ State version: ~ Mode: Scan ~ Report: C:\Users\SUN\Desktop\ZHPDiag.txt ~ Report: C:\Users\SUN\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ System startup: Normal (Normal boot) Windows 7 Home Basic, 64-bit Service Pack 1 (Build 7601) ---\\ Internet Browsers (1) - 0s MSIE: Internet Explorer v11.0.9600.16428 ---\\ Windows Product Information (4) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK Windows Activation Technologies : KO ---\\ Surveillance software (2) - 2s Adobe Flash Player 10 ActiveX Adobe Reader X ---\\ Information on the system (6) - 0s ~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4140.912 MB (40% free) System Restore: Activé (Enable) System drive C: has 402 GB () free of 451 GB ---\\ Connection to the system mode (3) - 0s ~ Computer Name: SUN-HP ~ User Name: SUN ~ Logged in as Administrator ---\\ Enumeration of the disk units (5) - 0s ~ Drive C: has 402 GB free of 451 GB (System) ~ Drive D: has 2 GB free of 21 GB ~ Drive E: has 1 GB free of 4 GB ~ Drive G: has 384 GB free of 476 GB ~ Drive H: has GB free of 0 GB ---\\ State of the Windows Security Center (11) - 0s [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ---\\ Search Generic System Files (24) - 1s [MD5.332FEAB1435662FC6C672E25BEB37BE3] - 22/10/2011 - (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\Explorer.exe [2871808] =>.Microsoft Corporation [MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Windows host process (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation [MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Windows Start-Up Application.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation [MD5.E6CB36B85BE59095337427E853A5B65A] - 27/05/2016 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\Windows\System32\wininet.dll [2332160] =>.Microsoft Corporation [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - 21/11/2010 - (.Microsoft Corporation - Windows Logon Application.) -- C:\Windows\System32\Winlogon.exe [390656] =>.Microsoft Corporation [MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Software Licensing Library.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation [MD5.492D07D79E7024CA310867B526D9636D] - 22/10/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation [MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 22/10/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation [MD5.D5B031C308A409A0A576BFF4CF083D30] - 22/10/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [499200] =>.Microsoft Corporation [MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows® [MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation [MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - 21/11/2010 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [102400] =>.Microsoft Corporation [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - i8042 Port Driver.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation [MD5.A5D9106A73DC88564C825D317CAC68AC] - 22/10/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [158208] =>.Microsoft Corporation [MD5.09594D1089C523423B32A4229263F068] - 21/11/2010 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [261632] =>.Microsoft Corporation [MD5.A2F74975097F52A00745F9637451FDD8] - 22/10/2011 - (.Microsoft Corporation - NT File System Driver.) -- C:\Windows\System32\drivers\ntfs.sys [1659776] =>.Microsoft Windows® [MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Parallel Port Driver.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation [MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - 21/11/2010 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [119296] =>.Microsoft Corporation [MD5.DF8126BD41180351A093A3AD2FC8903B] - 22/10/2011 - (.Microsoft Corporation - Volume Shadow Copy Driver.) -- C:\Windows\System32\drivers\volsnap.sys [296320] =>.Microsoft Windows® ---\\ Non Microsoft non disabled Windows Services (19) - 2s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe =>.AMD O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe =>.Broadcom Corporation® O23 - Service: TrueSuiteService (FPLService) . (.HP - HP Service.) - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe =>.AuthenTec, Inc.® O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Company® O23 - Service: HP Auto (HPAuto) . (.Hewlett-Packard - HP Usage Improvement Tracking.) - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe =>.Hewlett-Packard Company® O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company - HP Quick Synchronization Service.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe =>.Hewlett-Packard Company® O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe =>.Hewlett-Packard Company® O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2008 - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.HUAWEI Technologies Co., Ltd.® O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation® O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe =>.Realtek Semiconductor Corp® O23 - Service: itisaluna. OUC (itisaluna. RunOuc) . (...) - C:\Program Files (x86)\itisaluna\UpdateDog\ouc.exe =>.HUAWEI Technologies Co., Ltd.® O23 - Service: Intel(R) Identity Protection Technology Host Interface Serv (jhi_service) . (.Intel Corporation - Intel IPT Host Interface Service.) - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe =>.Intel® Identity Protection Technology Software® O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation® O23 - Service: SafeBox (SafeBox) . (.Bitdefender - Safebox Service.) - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe =>.Bitdefender SRL® O23 - Service: @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc. O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe =>.Bitdefender SRL® O23 - Service: Bitdefender Virus Shield (VSSERV) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe =>.Bitdefender SRL® ---\\ Services not Microsoft (SR=Run, SS=Stop) (24) - 15s SR - Auto [06/06/2011] [ 64952] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated® SR - Auto [18/08/2011] [ 204288] (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe =>.AMD SS - Disabl [27/05/2016] [ 77632] Bitdefender Desktop Parental Control (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe =>.Bitdefender SRL® SR - Auto [20/09/2011] [ 1085216] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe =>.Broadcom Corporation® SR - Auto [19/08/2011] [ 260424] TrueSuiteService (FPLService) . (.HP.) - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe =>.AuthenTec, Inc.® SS - Demand [12/10/2010] [ 206072] GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe =>.WildTangent Inc® SR - Auto [10/09/2011] [ 86072] HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Company® SR - Auto [17/02/2011] [ 682040] HP Auto (HPAuto) . (.Hewlett-Packard.) - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe =>.Hewlett-Packard Company® SR - Auto [13/09/2011] [ 227896] HP Quick Synchronization Service (HPDrvMntSvc.exe) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe =>.Hewlett-Packard Company® SR - Demand [13/09/2011] [ 992824] HP Software Framework Service (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe =>.Hewlett-Packard Company® SR - Auto [12/07/2011] [ 26680] HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe =>.Hewlett-Packard Company® SR - Auto [14/03/2011] [ 346976] HWDeviceService64.exe (HWDeviceService64.exe) . (.Copyright (C) 2008.) - C:\ProgramData\DatacardService\HWDeviceService64.exe =>.HUAWEI Technologies Co., Ltd.® SR - Auto [30/04/2011] [ 13592] Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe =>.Intel Corporation® SR - Auto [01/09/2011] [ 2425960] IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe =>.Realtek Semiconductor Corp® SS - Auto [25/05/2016] [ 655712] itisaluna. OUC (itisaluna. RunOuc) . (...) - C:\Program Files (x86)\itisaluna\UpdateDog\ouc.exe =>.HUAWEI Technologies Co., Ltd.® SR - Auto [24/02/2011] [ 212944] Intel(R) Identity Protection Technology Host Interface Serv (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe =>.Intel® Identity Protection Technology Software® SR - Auto [02/02/2011] [ 326168] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation® SS - Demand [25/06/2010] [ 117264] Remote Packet Capture Protocol v.0 (experimental) (rpcapd) . (.CACE Technologies, Inc..) - C:\Program Files (x86)\WinPcap\rpcapd.exe =>.CACE Technologies, Inc.® SR - Auto [08/07/2013] [ 94624] SafeBox (SafeBox) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe =>.Bitdefender SRL® SR - Auto [08/09/2011] [ 305152] @C:\Windows\system32\stlang64.dll (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\stacsv64.exe =>.IDT, Inc. SR - Auto [02/02/2011] [ 2656280] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® SR - Auto [27/05/2016] [ 67320] Bitdefender Desktop Update Service (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe =>.Bitdefender SRL® SR - Auto [27/05/2016] [ 1538672] Bitdefender Virus Shield (VSSERV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe =>.Bitdefender SRL® ---\\ Task Planned Automatically (6) - 5s [MD5.00000000000000000000000000000000] [APT] [TaskName] (...) -- Task To Run (.not file.) [0] (.Activate.) =>.Superfluous.Empty [MD5.BC14706D68E7F855735369CFEE4028C7] [APT] [Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8] (.Bitdefender.) -- C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [98208] (.Activate.) =>.Bitdefender SRL® [MD5.B7F55E2AE978D3D34F7876EE5D689AAE] [APT] [MirageAgent] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] (.Activate.) =>.CyberLink® [MD5.00000000000000000000000000000000] [APT] [{123DC23B-D4D6-4D99-A49D-5C4CA5FD7356}] (...) -- C:\Users\SUN\Downloads\BIPCPSetup.exe (.not file.) [0] (.Activate.) =>.Superfluous.Empty O39 - APT: Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 - (.Bitdefender.) -- C:\Windows\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 [3498] =>.Bitdefender SRL® O39 - APT: MirageAgent - (.CyberLink.) -- C:\Windows\System32\Tasks\MirageAgent [3148] =>.CyberLink® ---\\ Process running (51) - 3s [MD5.ACEC3397D7FE8DF37DAD3B175CA2E148] - (.Bitdefender - Bitdefender Security Service.) -- C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672] [PID.128] =>.Bitdefender SRL® [MD5.EC3949088F617ACC056FC1AB54A6A13B] - (.HP - HP Service.) -- C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe [260424] [PID.916] =>.AuthenTec, Inc.® [MD5.6807D94E8148771263308521E8CADE5E] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [204288] [PID.1176] =>.AMD [MD5.7BF818B11C1FEDC3E76D233124470A30] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\stacsv64.exe [305152] [PID.1368] =>.IDT, Inc. [MD5.382EFFE93413F2683A4FFED3CF8C8AB4] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [485376] [PID.1780] =>.AMD [MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.2340] =>.Adobe Systems, Incorporated® [MD5.1249EDE2280F9A1564C946AFDDCD59D5] - (.Broadcom Corporation. - Bluetooth Support Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [1085216] [PID.2420] =>.Broadcom Corporation® [MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232] [PID.2576] =>.EasyBits Software AS [MD5.E6AB9E7FF923928E9F549FDDFCEDB28A] - (.Hewlett-Packard Company - HP Quick Synchronization Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [227896] [PID.2652] =>.Hewlett-Packard Company® [MD5.491CE9B6321FB74E4B37AF2C47F98434] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [26680] [PID.2708] =>.Hewlett-Packard Company® [MD5.E90DA42B87D684DEBFB73B38A718A006] - (.Copyright (C) 2008 - DCSHOST.) -- C:\ProgramData\DatacardService\HWDeviceService64.exe [346976] [PID.2764] =>.HUAWEI Technologies Co., Ltd.® [MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.2848] =>.HUAWEI Technologies Co., Ltd.® [MD5.625C98D60AD5AB1FCCBD0E2C0AC0D905] - (...) -- C:\ProgramData\itisaluna\OnlineUpdate\ouc.exe [655712] [PID.2916] =>.HUAWEI Technologies Co., Ltd.® [MD5.6C85719A21B3F62C2C76280F4BD36C7B] - (.Intel Corporation - Intel IPT Host Interface Service.) -- C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [212944] [PID.2928] =>.Intel® Identity Protection Technology Software® [MD5.B239FDC885A77E4D5FB93AD1BA2A80EC] - (.Bitdefender - Bitdefender Update Service.) -- C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320] [PID.3028] =>.Bitdefender SRL® [MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.2012] =>.Microsoft Corporation® [MD5.7B8C1B09C11E8DB7C4480ABD7D17E821] - (.Hewlett-Packard - HP Usage Improvement Tracking.) -- C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040] [PID.2908] =>.Hewlett-Packard Company® [MD5.E228C336F195FA629D00B02F9FFC5667] - (.Bitdefender - Safebox Service.) -- C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624] [PID.3000] =>.Bitdefender SRL® [MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.3100] =>.Microsoft Corporation® [MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [PID.3900] =>.CyberLink® [MD5.31F52459AA89317FFB57EBAF9B4DD8BC] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [167704] [PID.3612] =>.Intel Corporation® [MD5.39AC970429FB9E56A29655FA8B959E90] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [392472] [PID.3624] =>.Intel Corporation® [MD5.7CA105C4CCDFCA407859B2DF3D05A645] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [416024] [PID.3608] =>.Intel Corporation® [MD5.67BB817D8D76963E9E4281E9823ADEAF] - (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2799912] [PID.2596] =>.Synaptics Incorporated® [MD5.A2199C8FBBE252614815E5AD62350B17] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe [1424896] [PID.4120] =>.IDT, Inc. [MD5.1B6FD58BDE2C3A23F5CAD11802B8643D] - (.© Copyright 2011 Hewlett-Packard Development Company, - HP Taskbar Process HP.) -- C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe [107320] [PID.4352] =>.Hewlett-Packard Company® [MD5.4C988ECE4DB6D5B262329B30E7962D91] - (.Hewlett-Packard Development Company, L.P. - HP Taskbar Process TP.) -- C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe [707896] [PID.4372] =>.Hewlett-Packard Company® [MD5.D5F1ADEA6513A230E27A3ADAD2A3B160] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520] [PID.4428] =>.Bitdefender SRL® [MD5.33B25AFE2D6658E7681D929BC8B23858] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [121640] [PID.4636] =>.Synaptics Incorporated® [MD5.0DFC21F95480B688E83C715A6C668095] - (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400] [PID.4740] =>.Bitdefender SRL® [MD5.DB1919F34AB9CD5F43B0ED463D7E8D28] - (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256] [PID.4860] =>.Bitdefender SRL® [MD5.6C3DBE1AB6E79D29C53A2242044DCC76] - (.Hewlett-Packard Company - HP QuickWeb Utilities.) -- C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe [169528] [PID.4944] =>.Hewlett-Packard Company® [MD5.99ECAF298145F950B1326656167FBFDF] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336] [PID.4964] =>.CyberLink® [MD5.BC6390A6736A5F4A048AC75168DD7869] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008] [PID.4972] =>.Hewlett-Packard Company® [MD5.8A3B69683E63808719D24E1C68C21CC7] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960] [PID.4980] =>.Hewlett-Packard Company® [MD5.17A6D025B3824044A737087BA0509BB8] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [1338144] [PID.5040] =>.Broadcom Corporation® [MD5.DBDC0581D4506C13E6BEF48D14B1C55B] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [992824] [PID.4392] =>.Hewlett-Packard Company® [MD5.C861851A0BBD9903E324487011AA3705] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [299008] [PID.3936] =>.Advanced Micro Devices Inc. [MD5.D28C5A1411BB0B47E05E0D6AAF896690] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [299008] [PID.2800] =>.ATI Technologies Inc. [MD5.13BB1114451C63BFB41BA7DAA4D70A29] - (.Hewlett-Packard Company - HP Support Assistant Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86072] [PID.5688] =>.Hewlett-Packard Company® [MD5.E79A8E33BD136D14BAE1FA20EB2EF124] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.5744] =>.Intel Corporation® [MD5.D3090576412EC63E0C6271D8B0974D73] - (.Realsil Microelectronics Inc. - Realtek Card Reader Icon Tool..) -- C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2425960] [PID.5884] =>.Realtek Semiconductor Corp® [MD5.D75C4B4A8FE6D7FD74A7EECDBAEC729F] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [326168] [PID.5908] =>.Intel Corporation® [MD5.758C2CE427C343F780A205E28555C98D] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.6032] =>.Intel Corporation® [MD5.F2C941822BF4276A2C3DE29A49B607A6] - (.Bitdefender - Bitdefender Security Center.) -- C:\Program Files\Bitdefender\Bitdefender\seccenter.exe [1359440] [PID.2972] =>.Bitdefender SRL® [MD5.06A333E9A76CFA19848B452C5B011140] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10x_ActiveX.exe [243360] [PID.5588] =>.Adobe Systems Incorporated® [MD5.A6B060B72FD17BFE6458114CF3417DF0] - (.HP - TouchControl.) -- C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe [653128] [PID.6596] =>.AuthenTec, Inc.® [MD5.3E20865C7F84CDEFF9307B048B6E1671] - (.HP - BioMonitor.) -- C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe [142664] [PID.6052] =>.AuthenTec, Inc.® [MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.1900] =>.HUAWEI Technologies Co., Ltd.® [MD5.86E9B3A9E2738356212457B5B0877035] - (...) -- C:\Program Files (x86)\itisaluna\itisaluna.exe [514048] [PID.3836] [MD5.4CB9134ADBB2CF83BF8BDDB10775B5F1] - (.Nicolas Coolman - ZHPDiag.) -- G:\After Hacked\مؤقت\Downloads\ZHPDiag3.exe [2204160] [PID.2692] =>.Nicolas Coolman ---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (1) - 1s P2 - FPN: [HKLM] [@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (.WildTangent.) -- C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll =>.WildTangent ---\\ Internet Explorer Extensions, Start, Search (11) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Line Analysis, IniFiles, Auto loading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation ---\\ Hosts file redirection (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Browser Helper Object (BHO) (3) - 0s O2 - BHO: Bitdefender Wallet [64Bits] - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (.Bitdefender - Bitdefender Password Manager Internet Explo.) -- C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll =>.Bitdefender SRL® O2 - BHO: TSBHO Class [64Bits] - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} . (.HP - Website Log On.) -- C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll =>.AuthenTec, Inc.® O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation® ---\\ Internet Explorer Toolbars (1) - 0s O3 - Toolbar: Bing - [HKLM]{8dcb7100-df86-4384-8842-8fa844297b3f} . (...) -- (.not file.) ---\\ Auto loading programs from Registry and folders (24) - 0s O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe =>.Intel Corporation® O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe =>.Intel Corporation® O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe =>.Intel Corporation® O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics Incorporated - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe =>.Synaptics Incorporated® O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe =>.IDT, Inc. O4 - HKLM\..\Run: [SetDefault] . (.Hewlett-Packard Development Company, L.P. - SetDefault.) -- C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe =>.Hewlett-Packard Company® O4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender\bdagent.exe =>.Bitdefender SRL® O4 - HKCU\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe =>.Bitdefender SRL® O4 - HKCU\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe =>.Bitdefender SRL® O4 - HKCU\..\Run: [Bitdefender Wallet Application Agent] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe =>.Bitdefender SRL® O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc.® O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe =>.Bitdefender SRL® O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe =>.Bitdefender SRL® O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Application Agent] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe =>.Bitdefender SRL® O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe =>.Bitdefender SRL® O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe =>.Bitdefender SRL® O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Application Agent] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe =>.Bitdefender SRL® O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-2088086660-1261043681-1886644693-1000\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe =>.Bitdefender SRL® O4 - HKUS\S-1-5-21-2088086660-1261043681-1886644693-1000\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe =>.Bitdefender SRL® O4 - HKUS\S-1-5-21-2088086660-1261043681-1886644693-1000\..\Run: [Bitdefender Wallet Application Agent] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe =>.Bitdefender SRL® ---\\ Global shortcuts Startup (19) - 5s O4 - GS\Desktop [Administrator]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\SUN\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\TaskBar [Administrator]: HP Recommended.LNK . (...) C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe O4 - GS\TaskBar [Administrator]: Windows Live.LNK . (.Hewlett-Packard Development Company, L.P. - .) C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe =>.Hewlett-Packard Development Company, L.P. O4 - GS\Desktop [Guest]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\SUN\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\TaskBar [Guest]: HP Recommended.LNK . (...) C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe O4 - GS\TaskBar [Guest]: Windows Live.LNK . (.Hewlett-Packard Development Company, L.P. - .) C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe =>.Hewlett-Packard Development Company, L.P. O4 - GS\Desktop [SUN]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\SUN\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman O4 - GS\TaskBar [SUN]: HP Recommended.LNK . (...) C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe O4 - GS\TaskBar [SUN]: Windows Live.LNK . (.Hewlett-Packard Development Company, L.P. - .) C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe =>.Hewlett-Packard Development Company, L.P. O4 - GS\CommonDesktop [Public]: Bitdefender Safepay.lnk . (.Bitdefender - .) C:\Program Files (x86)\Bitdefender\Bitdefender\antispam32\obk.exe =>.BitDefender O4 - GS\CommonDesktop [Public]: Bitdefender Total Security.lnk . (.Bitdefender - .) C:\Program Files (x86)\Bitdefender\Bitdefender\seccenter.exe =>.BitDefender O4 - GS\CommonDesktop [Public]: HP Support Assistant.lnk . (.Hewlett-Packard Company - HP Support Assistant.) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe =>.Hewlett-Packard Company® O4 - GS\CommonDesktop [Public]: itisaluna.lnk . (...) C:\Program Files (x86)\itisaluna\itisaluna.exe O4 - GS\CommonDesktop [Public]: Magic Desktop.lnk . (.EasyBits Software AS - EasyBits Security Shield.) C:\Program Files (x86)\EasyBits For Kids\ezSecShield.exe =>.EasyBits Software AS® O4 - GS\CommonDesktop [Public]: Microsoft Office 2010.lnk . (.Hewlett-Packard Company - OfficeDesktopIconThread.) C:\SYSTEM.SAV\util\OfficeDesktopIconThread.exe =>.Hewlett-Packard Company® O4 - GS\CommonDesktop [Public]: Skype.lnk . (.Microsoft - launcher.) C:\Program Files (x86)\Online Services\Skype\SkypeLauncher.exe =>.Skype Technologies SA® O4 - GS\CommonDesktop [Public]: WildTangent Games App - hp.lnk . (...) C:\Program Files (x86)\HP Games\onplay\onplay.exe =>.WildTangent Inc® O4 - GS\Startup [Public]: Bluetooth.lnk . (.Broadcom Corporation. - .) C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.exe =>.Broadcom Corporation. O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc ---\\ Lop.com/Domain Hijackers (2) - 0s O17 - HKLM\System\CCS\Services\Tcpip\..\{D1E5FA7A-F49E-41CB-B00B-91E9D0117130}: NameServer = 8.8.8.8 109.237.192.11 O17 - HKLM\System\CCS\Services\Tcpip\..\{012EE486-BB42-463E-9450-055F95A75F76}: DhcpNameServer = 192.168.169.1 8.8.8.8 ---\\ Extra protocols (24) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation® O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - OLE32 Extensions for Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll =>.Microsoft Corporation® O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - ActiveX control for streaming video.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll =>.Microsoft Corporation® O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation® O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation® ---\\ Software installed (83) - 10s O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX =>.Adobe Systems Incorporated® O42 - Logiciel: Adobe Reader X (10.1.0) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AA1000000001} =>.Adobe Systems Incorporated O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} =>.Advanced Micro Devices Inc. O42 - Logiciel: AuthenTec TrueAPI - (.AuthenTec, Inc..) [HKLM][64Bits] -- {054EF02F-95D8-48F4-9EEB-2F9CE3072ED8} =>.AuthenTec, Inc. O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-95582ef0-2f3c-4132-83f6-ac5879bc2f07 =>.WildTangent Inc® O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {9FA13759-5C2B-4177-9DDC-0038F8B5BEFD} =>.Microsoft Corporation O42 - Logiciel: Bitdefender Total Security - (.Bitdefender.) [HKLM][64Bits] -- Bitdefender =>.Bitdefender SRL® O42 - Logiciel: Blackhawk Striker 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-40d35b02-e278-42bd-943e-8538356103b3 =>.WildTangent Inc® O42 - Logiciel: Broadcom 802.11 Wireless LAN Adapter - (.Broadcom Corporation.) [HKLM][64Bits] -- Broadcom 802.11 Wireless LAN Adapter =>.Broadcom Corporation O42 - Logiciel: Broadcom Bluetooth Software - (.Broadcom Corporation.) [HKLM][64Bits] -- {6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1} =>.Broadcom Corporation O42 - Logiciel: Broadcom InConcert Maestro - (.Broadcom Corporation.) [HKLM][64Bits] -- {57DD35E9-D9BB-4089-BB05-EF933C586CB3} =>.Broadcom Corporation O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-a4bb04f9-199c-45a6-8bc0-3e2c8cf7621d =>.WildTangent Inc® O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-4f713b23-a6a9-4677-9269-3c08b4904f26 =>.WildTangent Inc® O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B} =>.CyberLink® O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} =>.CyberLink® O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink® O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} =>.CyberLink® O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} =>.Microsoft O42 - Logiciel: Dora's World Adventure - (.WildTangent.) [HKLM][64Bits] -- WTA-52106f68-369c-4ceb-a86b-93ec2a0de3eb =>.WildTangent Inc® O42 - Logiciel: ESU for Microsoft Windows 7 SP1 - (.Hewlett-Packard.) [HKLM][64Bits] -- {E96CAA2A-0244-4A2A-8403-0C3C9534778B} =>.Hewlett-Packard O42 - Logiciel: Evernote v. 4.2.3 - (.Evernote Corp..) [HKLM][64Bits] -- {F761359C-9CED-45AE-9A51-9D6605CD55C4} =>.Evernote Corp. O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-c8417fa9-a0ae-40bf-869e-7b75241046c7 =>.WildTangent Inc® O42 - Logiciel: Farmscapes - (.WildTangent.) [HKLM][64Bits] -- WTA-78266176-e5ed-4610-bfa5-c1bde82cb3b4 =>.WildTangent Inc® O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WTA-54bd2bca-76dc-4065-8f56-b7ca17c1a731 =>.WildTangent Inc® O42 - Logiciel: Final Drive Fury - (.WildTangent.) [HKLM][64Bits] -- WTA-8272968d-fbe6-4397-ba6f-5e6c25d7487c =>.WildTangent Inc® O42 - Logiciel: Hewlett-Packard ACLM.NET v1.1.2.0 - (.Hewlett-Packard.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F} =>.Hewlett-Packard O42 - Logiciel: Hoyle Card Games - (.WildTangent.) [HKLM][64Bits] -- WTA-140434d0-40a9-4840-b7d4-55905a5228cb =>.WildTangent Inc® O42 - Logiciel: HP Auto - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1} =>.Hewlett-Packard Company O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544} =>.Hewlett-Packard O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {3D5C7E0E-AEC0-40EB-99D3-C40469738040} =>.Hewlett-Packard O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall =>.WildTangent Inc O42 - Logiciel: HP Launch Box - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {BF1E75D0-E7AF-4BEA-9FBC-567F0C54BDF9} =>.Hewlett-Packard Company O42 - Logiciel: HP On Screen Display - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED1BD69A-07E3-418C-91F1-D856582581BF} =>.Hewlett-Packard Company O42 - Logiciel: HP Power Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E44578C7-4667-4124-8BC2-1161BCA54978} =>.Hewlett-Packard Company O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {285F722C-0E45-47DE-B38E-5B3B10FA4A7C} =>.Hewlett-Packard Company O42 - Logiciel: HP QuickWeb - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {BB4FC2AD-DF12-4EE1-8AA7-2C0A26B5E2FB} =>.Hewlett-Packard Company O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {DBCD5E64-7379-4648-9444-8A6558DCB614} =>.Hewlett-Packard O42 - Logiciel: HP Security Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {562608FE-2051-4488-BF22-8CE4C03046AC} =>.Hewlett-Packard O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1} =>.Hewlett-Packard Company O42 - Logiciel: HP SimplePass PE 2011 - (.Hewlett-Packard.) [HKLM][64Bits] -- {4741965C-AFD0-4D00-81D1-1039F96D4DC3} =>.Hewlett-Packard O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {AF240B18-034B-4A82-B3FC-0B879C4BAE2E} =>.Hewlett-Packard Company O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001} =>.IDT O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421} =>.Intel Corporation® O42 - Logiciel: Intel(R) Display Audio Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} =>.Intel Corporation® O42 - Logiciel: Intel(R) Identity Protection Technology 1.1.2.0 - (.Intel Corporation.) [HKLM][64Bits] -- {C01A86F5-56E7-101F-9BC9-E3F1025EB779} =>.Intel Corporation O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} =>.Intel Corporation® O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} =>.Intel Corporation® O42 - Logiciel: itisaluna - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- itisaluna =>.Huawei Technologies Co.,Ltd O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-7802e6a7-b178-4eb9-8375-e9eb43fcba88 =>.WildTangent Inc® O42 - Logiciel: Jewel Quest Mysteries: The Seventh Gate Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-b5d3d66a-7dea-4a1a-9527-07a39add0aab =>.WildTangent Inc® O42 - Logiciel: John Deere Drive Green - (.WildTangent.) [HKLM][64Bits] -- WTA-6df2fdb0-04c1-45e3-a9d8-5ab48bdf9925 =>.WildTangent Inc® O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} =>.Microsoft Corporation O42 - Logiciel: Letters from Nowhere 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-1cbdafef-e041-4019-9c06-d8f862675353 =>.WildTangent Inc® O42 - Logiciel: Luxor HD - (.WildTangent.) [HKLM][64Bits] -- WTA-cad942ab-d609-4175-a908-b02ac99aaeaf =>.WildTangent Inc® O42 - Logiciel: Mah Jong Medley - (.WildTangent.) [HKLM][64Bits] -- WTA-282c65d9-55a8-4553-9b89-1fe64c43fab5 =>.WildTangent Inc® O42 - Logiciel: Microsoft Application Error Reporting - (.Microsoft Corporation.) [HKLM][64Bits] -- {95120000-00B9-0409-1000-0000000FF1CE} =>.Microsoft Corporation O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation® O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} =>.Microsoft Corporation O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} =>.Microsoft O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} =>.Microsoft O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} =>.Microsoft O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77} =>.Microsoft O42 - Logiciel: opensource - (.Your Company Name.) [HKLM][64Bits] -- {3677D4D8-E5E0-49FC-B86E-06541CF00BBE} =>.Your Company Name O42 - Logiciel: Penguins! - (.WildTangent.) [HKLM][64Bits] -- WTA-676bdb4e-e617-469f-b8f9-5f8d37f53eed =>.WildTangent Inc® O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-5461c740-be54-42e9-a6c4-a609085b8020 =>.WildTangent Inc® O42 - Logiciel: Poker Superstars III - (.WildTangent.) [HKLM][64Bits] -- WTA-cb0cea43-2fe5-4c39-adab-97f10d2d8699 =>.WildTangent Inc® O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-41630d36-9f8d-4fd3-8756-c7aa9291ae69 =>.WildTangent Inc® O42 - Logiciel: Polar Golfer - (.WildTangent.) [HKLM][64Bits] -- WTA-cd6abf9c-0b06-40ed-ab00-dbabcb1069c8 =>.WildTangent Inc® O42 - Logiciel: PX Profile Update - (.AMD.) [HKLM][64Bits] -- {422CB2BA-2A49-B156-D96C-5B1971DBFF2C} =>.AMD O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek Semiconductor Corp® O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C} =>.Realtek Semiconductor Corp® O42 - Logiciel: RollerCoaster Tycoon 3: Platinum - (.WildTangent.) [HKLM][64Bits] -- WTA-ad74d562-e82a-40ea-a99f-22eba2f25aa4 =>.WildTangent Inc® O42 - Logiciel: Skype™ 5.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {AA59DDE4-B672-4621-A016-4C248204957A} =>.Skype Technologies S.A. O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} =>.Adobe Systems, Inc O42 - Logiciel: Synaptics TouchPad Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey =>.Synaptics Incorporated O42 - Logiciel: The Treasures of Mystery Island: The Ghost Ship - (.WildTangent.) [HKLM][64Bits] -- WTA-ba3ec129-8a69-448f-877f-a9f23886e95e =>.WildTangent Inc® O42 - Logiciel: Torchlight - (.WildTangent.) [HKLM][64Bits] -- WTA-7f1332d4-4faa-45a5-abe8-2c2a2673be61 =>.WildTangent Inc® O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App =>.WildTangent Inc O42 - Logiciel: VIP Access SDK (1.0.1.2) - (.Symantec Inc..) [HKLM][64Bits] -- VIP Access SDK =>.Symantec Inc. O42 - Logiciel: Virtual Villagers 4 - The Tree of Life - (.WildTangent.) [HKLM][64Bits] -- WTA-aae08ac7-1168-4b29-ae5c-928b0c717129 =>.WildTangent Inc® O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp =>.WildTangent Inc O42 - Logiciel: WinPcap 4.1.2 - (.CACE Technologies.) [HKLM][64Bits] -- WinPcapInst =>.CACE Technologies O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-b2155436-85c3-4a56-a2d2-bf461c2fc369 =>.WildTangent Inc® ---\\ HKCU & HKLM Software Keys (55) - 10s HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AppDataLow HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\ATI Technologies HKLM\SOFTWARE\Wow6432Node\AuthenTec HKLM\SOFTWARE\Wow6432Node\Bitdefender HKLM\SOFTWARE\Wow6432Node\Caphyon HKLM\SOFTWARE\Wow6432Node\CyberLink HKLM\SOFTWARE\Wow6432Node\EasyBits HKLM\SOFTWARE\Wow6432Node\Eset HKLM\SOFTWARE\Wow6432Node\Evernote HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\Huawei technologies HKLM\SOFTWARE\Wow6432Node\IDT HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Insyde HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\Lake HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Realtek HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Software HKLM\SOFTWARE\Wow6432Node\Symantec HKLM\SOFTWARE\Wow6432Node\TGUID HKLM\SOFTWARE\Wow6432Node\WhlProvider HKLM\SOFTWARE\Wow6432Node\WildTangent HKLM\SOFTWARE\Wow6432Node\Win32 Services HKLM\SOFTWARE\Wow6432Node\WinPcap HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\ATI HKCU\SOFTWARE\Bitdefender HKCU\SOFTWARE\CyberLink HKCU\SOFTWARE\ESET HKCU\SOFTWARE\Google HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\Intel HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\Northcode Inc HKCU\SOFTWARE\Symantec HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Widcomm HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\Adobe ---\\ Contents of the Common Files folders (150) - 25s O43 - CFD: 24/05/2016 - [] D -- C:\Program Files\ATI =>.Advanced Micro Devices, Inc.® O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Bitdefender =>.Bitdefender SRL® O43 - CFD: 24/05/2016 - [] D -- C:\Program Files\Broadcom =>.Broadcom Corporation® O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Common Files O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\DVD Maker O43 - CFD: 23/10/2011 - [] D -- C:\Program Files\Hewlett-Packard O43 - CFD: 24/05/2016 - [] D -- C:\Program Files\IDT O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Internet Explorer =>.Microsoft Corporation® O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Microsoft Games O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\MSBuild O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies O43 - CFD: 24/05/2016 - [] D -- C:\Program Files\Symantec O43 - CFD: 24/05/2016 - [] D -- C:\Program Files\Synaptics =>.Synaptics Incorporated® O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information O43 - CFD: 24/05/2016 - [] D -- C:\Program Files\WIDCOMM =>.Broadcom Corporation® O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Windows Defender O43 - CFD: 31/05/2016 - [] D -- C:\Program Files\Windows Live O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Windows Mail O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Windows Media Player O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows NT O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 21/11/2010 - [] D -- C:\Program Files\Windows Portable Devices O43 - CFD: 27/05/2016 - [] D -- C:\Program Files\Windows Sidebar O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Adobe =>.Adobe Systems, Incorporated® O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\AMD APP O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\ATI Technologies O43 - CFD: 28/05/2016 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\CyberLink =>.CyberLink® O43 - CFD: 23/10/2011 - [] D -- C:\Program Files (x86)\EasyBits For Kids =>.EasyBits Software AS® O43 - CFD: 22/10/2011 - [] D -- C:\Program Files (x86)\Evernote O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Hewlett-Packard =>.Hewlett-Packard Company® O43 - CFD: 22/10/2011 - [] D -- C:\Program Files (x86)\HP Games O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\HP SimplePass 2011 =>.AuthenTec, Inc.® O43 - CFD: 24/05/2016 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Intel =>.Intel® Identity Protection Technology Software® O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 25/05/2016 - [] D -- C:\Program Files (x86)\itisaluna =>.HUAWEI Technologies Co., Ltd.® O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Microsoft =>.Microsoft Corporation® O43 - CFD: 23/10/2011 - [] D -- C:\Program Files (x86)\Microsoft Office =>.Microsoft Corporation® O43 - CFD: 31/05/2016 - [] D -- C:\Program Files (x86)\Microsoft OneDrive =>.Microsoft Corporation® O43 - CFD: 23/10/2011 - [] D -- C:\Program Files (x86)\Microsoft Silverlight =>.Microsoft Corporation® O43 - CFD: 23/10/2011 - [] D -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 31/05/2016 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 24/05/2016 - [] RD -- C:\Program Files (x86)\Online Services =>.Skype Technologies SA® O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Realtek =>.Realtek Semiconductor Corp® O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 23/10/2011 - [] RD -- C:\Program Files (x86)\Skype =>.Skype Technologies SA® O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\SymSilent =>.Symantec Corporation® O43 - CFD: 30/05/2016 - [] D -- C:\Program Files (x86)\Tools4Free O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 22/10/2011 - [] D -- C:\Program Files (x86)\WildTangent Games =>.WildTangent Inc® O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 31/05/2016 - [] D -- C:\Program Files (x86)\Windows Live =>.Microsoft Corporation® O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Windows Photo Viewer =>.Microsoft Corporation® O43 - CFD: 21/11/2010 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 29/05/2016 - [] D -- C:\Program Files (x86)\WinPcap =>.CACE Technologies, Inc.® O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 27/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Communication and Chat O43 - CFD: 23/10/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel O43 - CFD: 25/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\itisaluna O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 23/10/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection O43 - CFD: 24/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 31/05/2016 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live O43 - CFD: 29/05/2016 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Adobe O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\ATI O43 - CFD: 27/05/2016 - [] D -- C:\ProgramData\BDLogging O43 - CFD: 27/05/2016 - [] D -- C:\ProgramData\Bitdefender O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\CyberLink O43 - CFD: 25/05/2016 - [] D -- C:\ProgramData\DatacardService O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Downloaded Installations O43 - CFD: 27/05/2016 - [] D -- C:\ProgramData\Easybits Magic Desktop for HP O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Hewlett-Packard O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Intel O43 - CFD: 25/05/2016 - [] D -- C:\ProgramData\itisaluna O43 - CFD: 29/05/2016 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 31/05/2016 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 25/05/2016 - [] D -- C:\ProgramData\Norton O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\NortonInstaller O43 - CFD: 23/10/2011 - [] D -- C:\ProgramData\Skype O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Synaptics O43 - CFD: 24/05/2016 - [] D -- C:\ProgramData\Temp O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 22/10/2011 - [] D -- C:\ProgramData\WildTangent O43 - CFD: 23/10/2011 - [] D -- C:\ProgramData\{A8DA1505-E615-42BB-BB77-74D5CC91FE7E} O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Common Files\AuthenTec O43 - CFD: 28/05/2016 - [] D -- C:\Program Files (x86)\Common Files\EagleGet O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 31/05/2016 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 24/05/2016 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 14/07/2009 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 27/05/2016 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 23/10/2011 - [] D -- C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 27/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\Adobe O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\ATI O43 - CFD: 27/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\Bitdefender O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\Hewlett-Packard O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\hpqlog O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\Identities O43 - CFD: 27/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\Macromedia O43 - CFD: 29/05/2016 - [] SD -- C:\Users\SUN\AppData\Roaming\Microsoft O43 - CFD: 27/05/2016 - [0] D -- C:\Users\SUN\AppData\Roaming\QuickScan O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\Symantec O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Roaming\Synaptics O43 - CFD: 03/06/2016 - [] D -- C:\Users\SUN\AppData\Roaming\ZHP O43 - CFD: 31/05/2016 - [0] D -- C:\Users\SUN\AppData\Local\Adobe O43 - CFD: 24/05/2016 - [0] SHD -- C:\Users\SUN\AppData\Local\Application Data O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Local\ATI O43 - CFD: 27/05/2016 - [] D -- C:\Users\SUN\AppData\Local\Broadcom O43 - CFD: 03/06/2016 - [] D -- C:\Users\SUN\AppData\Local\CrashDumps O43 - CFD: 31/05/2016 - [] D -- C:\Users\SUN\AppData\Local\CrashRpt =>.Superfluous.CrashReports O43 - CFD: 29/05/2016 - [] D -- C:\Users\SUN\AppData\Local\Diagnostics O43 - CFD: 28/05/2016 - [] D -- C:\Users\SUN\AppData\Local\ElevatedDiagnostics O43 - CFD: 29/05/2016 - [] D -- C:\Users\SUN\AppData\Local\ESET O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Local\Hewlett-Packard O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Local\Hewlett-Packard_Company O43 - CFD: 24/05/2016 - [0] SHD -- C:\Users\SUN\AppData\Local\History O43 - CFD: 31/05/2016 - [] D -- C:\Users\SUN\AppData\Local\Microsoft O43 - CFD: 28/05/2016 - [] D -- C:\Users\SUN\AppData\Local\Programs O43 - CFD: 24/05/2016 - [] D -- C:\Users\SUN\AppData\Local\RemEngine O43 - CFD: 03/06/2016 - [] D -- C:\Users\SUN\AppData\Local\Temp O43 - CFD: 24/05/2016 - [0] SHD -- C:\Users\SUN\AppData\Local\Temporary Internet Files O43 - CFD: 24/05/2016 - [0] D -- C:\Users\SUN\AppData\Local\VirtualStore O43 - CFD: 31/05/2016 - [] D -- C:\Users\SUN\AppData\Local\Windows Live O43 - CFD: 28/05/2016 - [0] D -- C:\Users\SUN\AppData\Local\Programs\Common O43 - CFD: 14/07/2009 - [] RD -- C:\Users\SUN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 24/05/2016 - [] RD -- C:\Users\SUN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 14/07/2009 - [] RD -- C:\Users\SUN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 24/05/2016 - [] RD -- C:\Users\SUN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup ---\\ ShellIconOverlayIdentifiers (SIOI) (5) - 0s O106 - SIOI: UpToDateOverlayHandler Class [ SkyDrive1] - {F241C880-6982-4CE5-8CF7-7085BA96DA5A}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\SUN\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation® O106 - SIOI: SyncingOverlayHandler Class [ SkyDrive2] - {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\SUN\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation® O106 - SIOI: ErrorOverlayHandler Class [ SkyDrive3] - {BBACC218-34EA-4666-9D7A-C78F2274A524}. (.Microsoft Corporation - Microsoft OneDrive Shell Extension.) -- C:\Users\SUN\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\SkyDriveShell.dll =>.Microsoft Corporation® O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - Windows Enhanced Storage Shell Extension DL.) -- C:\Windows\System32\EhStorShell.dll =>.Microsoft Corporation O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Shell extensions for sharing.) -- C:\Windows\System32\ntshrui.dll =>.Microsoft Corporation ---\\ System Drivers List (88) - 8s O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] =>.Microsoft Windows® O58 - SDL:2011/10/22 23:27:55 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] =>.Microsoft Windows® O58 - SDL:2011/10/22 23:27:55 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] =>.Microsoft Windows® O58 - SDL:2011/08/18 12:40:56 A . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\drivers\atikmdag.sys [9981952] =>.ATI Technologies Inc. O58 - SDL:2011/08/18 08:34:48 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\drivers\atikmpag.sys [310272] =>.Advanced Micro Devices, Inc. O58 - SDL:2016/05/27 11:27:16 A . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\drivers\avc3.sys [1288472] =>.Bitdefender SRL® O58 - SDL:2016/05/27 11:31:12 A . (.BitDefender - BitDefender AntiVirus Active Virus Control.) -- C:\Windows\System32\drivers\avchv.sys [263032] =>.Bitdefender SRL® O58 - SDL:2016/05/27 11:29:39 A . (.BitDefender - Active Virus Control Kernel Filtering drive.) -- C:\Windows\System32\drivers\avckf.sys [647752] =>.Bitdefender SRL® O58 - SDL:2009/06/10 23:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] =>.Broadcom Corporation O58 - SDL:2011/09/21 04:36:50 A . (.Broadcom Corporation. - Broadcom Bluetooth Firmware Download Filter.) -- C:\Windows\System32\drivers\bcbtums.sys [133672] =>.Broadcom Corporation® O58 - SDL:2016/05/24 10:23:45 A . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless dr.) -- C:\Windows\System32\drivers\BCMWL664.SYS [4729408] =>.Broadcom Corporation® O58 - SDL:2013/02/22 18:46:52 A . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\System32\drivers\BdfNdisf6.sys [93600] =>.Bitdefender SRL® O58 - SDL:2013/11/04 15:47:36 A . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\Windows\System32\drivers\bdsandbox.sys [82824] =>.Bitdefender SRL® O58 - SDL:2012/04/17 13:34:26 A . (.BitDefender - FileVault Disk Driver.) -- C:\Windows\System32\drivers\bdvedisk.sys [76944] =>.BitDefender SRL® O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] =>.Brother Industries, Ltd. O58 - SDL:2009/06/10 23:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] =>.Brother Industries, Ltd. O58 - SDL:2009/07/14 04:19:07 A . (.Brother Industries Ltd. - Brotehr Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] =>.Brother Industries Ltd. O58 - SDL:2009/06/10 23:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] =>.Brother Industries Ltd. O58 - SDL:2011/09/21 04:36:50 A . (.Broadcom Corporation. - Broadcom Bluetooth USB AMP Filter for Windo.) -- C:\Windows\System32\drivers\btwampfl.sys [620584] =>.Broadcom Corporation® O58 - SDL:2011/09/21 04:36:44 A . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\System32\drivers\btwaudio.sys [167976] =>.Broadcom Corporation® O58 - SDL:2011/09/21 04:36:44 A . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\System32\drivers\btwavdt.sys [178728] =>.Broadcom Corporation® O58 - SDL:2011/09/21 04:36:50 A . (.Broadcom Corporation. - Bluetooth LAN Access Server Driver.) -- C:\Windows\System32\drivers\btwdpan.sys [89640] =>.Broadcom Corporation® O58 - SDL:2011/09/21 04:36:44 A . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\System32\drivers\btwl2cap.sys [39976] =>.Broadcom Corporation® O58 - SDL:2011/09/21 04:36:44 A . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\System32\drivers\btwrchid.sys [21544] =>.Broadcom Corporation® O58 - SDL:2009/06/10 23:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] =>.Broadcom Corporation O58 - SDL:2010/07/28 19:13:50 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\Windows\System32\drivers\clwvd.sys [31088] =>.CyberLink® O58 - SDL:2009/07/14 04:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] =>.Microsoft Windows® O58 - SDL:2016/01/06 22:37:26 A . (.eagleGet - eagleGet Network Filter.) -- C:\Windows\System32\drivers\eagleGet.sys [77624] {5EAA8EA6DE5A4AE14D8CEF6B69520D27} =>.EagleGet O58 - SDL:2009/07/14 04:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] =>.Microsoft Windows® O58 - SDL:2009/06/10 23:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] =>.Broadcom Corporation O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\drivers\ewdcsc.sys [32768] =>.Huawei Tech. Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ewusbmdm.sys [223232] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\drivers\ewusbwwan.sys [417280] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\Windows\System32\drivers\ew_hwupgrade.sys [22016] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\drivers\ew_hwusbdev.sys [117248] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\drivers\ew_jubusenum.sys [87040] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\Windows\System32\drivers\ew_jucdcacm.sys [98304] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_jucdcecm.sys [72192] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\Windows\System32\drivers\ew_juextctrl.sys [28672] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\drivers\ew_juwwanecm.sys [218624] =>.Huawei Technologies Co., Ltd. O58 - SDL:2016/05/25 17:49:20 A . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\Windows\System32\drivers\ew_usbenumfilter.sys [13952] =>.Huawei Technologies Co., Ltd. O58 - SDL:2013/08/23 12:48:49 A . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\drivers\gzflt.sys [150256] =>.Bitdefender SRL® O58 - SDL:2009/06/10 23:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] =>.Hauppauge Computer Works, Inc. O58 - SDL:2010/10/20 03:34:26 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [56344] =>.Intel Corporation® O58 - SDL:2010/11/21 06:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] =>.Microsoft Windows® O58 - SDL:2011/04/26 21:07:36 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\drivers\iaStor.sys [557848] =>.Intel Corporation® O58 - SDL:2011/10/22 23:27:55 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] =>.Microsoft Windows® O58 - SDL:2011/08/09 19:32:02 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [12289472] =>.Intel Corporation O58 - SDL:2011/08/09 19:32:02 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdpmd64.sys [12289472] =>.Intel Corporation O58 - SDL:2009/07/14 04:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] =>.Microsoft Windows® O58 - SDL:2010/10/15 12:28:16 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\drivers\IntcDAud.sys [317440] =>.Intel(R) Corporation O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] =>.Microsoft Windows® O58 - SDL:2016/05/25 17:49:20 A . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\drivers\mod7700.sys [1001472] =>.DiBcom SA O58 - SDL:2009/07/14 04:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] =>.Microsoft Windows® O58 - SDL:2010/06/25 20:07:26 A . (.CACE Technologies, Inc. - npf.sys (NT5/6 AMD64) Kernel Driver.) -- C:\Windows\System32\drivers\npf.sys [35344] =>.CACE Technologies, Inc.® O58 - SDL:2009/06/10 23:35:35 A . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\drivers\nvm62x64.sys [408960] =>.NVIDIA Corporation O58 - SDL:2011/10/22 23:27:55 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] =>.Microsoft Windows® O58 - SDL:2011/10/22 23:27:55 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] =>.Microsoft Windows® O58 - SDL:2011/08/24 08:57:24 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Dri.) -- C:\Windows\System32\drivers\Rt64win7.sys [565352] =>.Realtek Semiconductor Corp® O58 - SDL:2011/09/02 22:46:00 A . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\drivers\RtsPStor.sys [339048] =>.Realtek Semiconductor Corp® O58 - SDL:2009/06/10 23:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] =>.Macrovision Corporation, Macrovision Europe Limited, O58 - SDL:2009/07/14 04:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] =>.Microsoft Windows® O58 - SDL:2011/09/08 16:42:28 A . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\drivers\stwrt64.sys [535040] =>.IDT, Inc. O58 - SDL:2011/06/10 05:19:54 A . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [1451056] =>.Synaptics Incorporated® O58 - SDL:2016/05/27 11:34:54 A . (.Anchorfree Inc. - Anchorfree HSS VPN Adapter.) -- C:\Windows\System32\drivers\taphss6.sys [42064] =>.AnchorFree Inc® O58 - SDL:2016/05/27 11:28:45 A . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\drivers\trufos.sys [452040] =>.Bitdefender SRL® O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] =>.Microsoft Windows® O58 - SDL:2009/07/14 04:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] =>.Microsoft Windows® O58 - SDL:2009/06/11 00:01:11 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\drivers\VSTAZL6.SYS [292864] =>.Conexant Systems, Inc. O58 - SDL:2009/06/11 00:01:11 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\drivers\VSTCNXT6.SYS [740864] =>.Conexant Systems, Inc. O58 - SDL:2009/06/11 00:01:11 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\drivers\VSTDPV6.SYS [1485312] =>.Conexant Systems, Inc. ---\\ Last modified or created user files (4) - 9s O61 - LFC: 2016/05/29 16:59:19 A . (.Tools4Free.) -- C:\Users\SUN\Downloads\AntiNetCut3-Win7.exe [2709440] O61 - LFC: 2016/05/27 15:19:55 A . (..) -- C:\Users\SUN\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin [297531] O61 - LFC: 2016/05/31 17:01:50 A . (..) -- C:\Users\SUN\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\CollectOneDriveLogs.bat [5843] O61 - LFC: 2016/06/03 09:23:47 A . (..) -- C:\Users\SUN\AppData\Local\ATI\ACE\Manifest.Bin [29689] ---\\ File Associations Shell Spawning (10) - 1s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe =>.Microsoft Corporation O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe =>.Microsoft Corporation O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe =>.Microsoft Corporation O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Start Menu Internet (4) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation ---\\ Search Browser Infection (10) - 0s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {2fa28606-de77-4029-af96-b231e3b8f827} - (Ask.com) - http://eu.ask.com/ =>Toolbar.Ask O69 - SBI: SearchScopes [HKCU] {b7fca997-d0fb-4fe0-8afd-255e89cf9671} - (Yahoo) - http://uk.search.yahoo.com/ =>.Yahoo Search O69 - SBI: SearchScopes [HKCU] {d43b3890-80c7-4010-a95d-1e77b5924dc3} - (Wikipedia) - http://en.wikipedia.org/ O69 - SBI: SearchScopes [HKCU] {F623842B-86AF-45DA-ABE5-A2019D1536F5} - (Amazon (UK) Search Suggestions) - http://www.amazon.co.uk/ O69 - SBI: SearchScopes [HKLM] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKLM] {2fa28606-de77-4029-af96-b231e3b8f827} - (Ask.com) - http://eu.ask.com/ =>Toolbar.Ask O69 - SBI: SearchScopes [HKLM] {b7fca997-d0fb-4fe0-8afd-255e89cf9671} - (Yahoo) - http://uk.search.yahoo.com/ =>.Yahoo Search O69 - SBI: SearchScopes [HKLM] {d43b3890-80c7-4010-a95d-1e77b5924dc3} - (Wikipedia) - http://en.wikipedia.org/ O69 - SBI: SearchScopes [HKLM] {F623842B-86AF-45DA-ABE5-A2019D1536F5} - (Amazon (UK) Search Suggestions) - http://www.amazon.co.uk/ ---\\ Search Svchost Services (32) - 0s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Application Experience Service.) -- C:\Windows\System32\aelupsvc.dll [72192] =>.Microsoft Corporation O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation.) -- C:\Windows\System32\certprop.dll [80384] =>.Microsoft Corporation O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\system32\srvsvc.dll [236032] =>.Microsoft Corporation O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [777728] =>.Microsoft Corporation O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [853504] =>.Microsoft Corporation O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\Windows\System32\Audiosrv.dll [679424] =>.Microsoft Corporation O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [99328] =>.Microsoft Corporation O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [344064] =>.Microsoft Corporation O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [97792] =>.Microsoft Corporation O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\Sens.dll [64512] =>.Microsoft Corporation O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [359424] =>.Microsoft Corporation O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [316928] =>.Microsoft Corporation O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Remote Desktop Session Host Server Remote C.) -- C:\Windows\System32\termsrv.dll [680960] =>.Microsoft Corporation O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\system32\wuaueng.dll [2589184] =>.Microsoft Corporation O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [849920] =>.Microsoft Corporation O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [370688] =>.Microsoft Corporation O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over.) -- C:\Windows\System32\iphlpsvc.dll [569344] =>.Microsoft Corporation O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720] =>.Microsoft Corporation O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [70656] =>.Microsoft Corporation O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\system32\iscsiexe.dll [156672] =>.Microsoft Corporation O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Multimedia Class Scheduler Service.) -- C:\Windows\system32\mmcss.dll [67584] =>.Microsoft Corporation O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] =>.Microsoft Corporation O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\SessEnv.dll [121856] =>.Microsoft Corporation O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [136192] =>.Microsoft Corporation O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [111104] =>.Microsoft Corporation O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\system32\schedsvc.dll [1110016] =>.Microsoft Corporation O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Key Management Service.) -- C:\Windows\system32\kmsvc.dll [90624] =>.Microsoft Corporation O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [84480] =>.Microsoft Corporation O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [209920] =>.Microsoft Corporation O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\system32\themeservice.dll [44544] =>.Microsoft Corporation O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [100864] =>.Microsoft Corporation ---\\ Additional Scan (O88) (3) - 0s C:\Users\SUN\AppData\Local\CrashRpt =>.Superfluous.CrashReports HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} =>Toolbar.Ask HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} =>Toolbar.Ask ---\\ Summary of the elements found (2) - 0s http://www.nicolascoolman.fr/?p=5145 =>.Superfluous.CrashReports http://www.nicolascoolman.fr/?p=235 =>Toolbar.Ask ~ End of the scan, 47659 items in 00h02mn22s (731)(0)